Update CVE-2022-1595.yaml

2023-06-01 13:01:39 +08:00 · 2023-06-01 13:01:39 +08:00 · 92d7192ed3
parent 9df19d477b
commit 92d7192ed3
1 changed files with 12 additions and 14 deletions
--- a/http/cves/2022/CVE-2022-1595.yaml
+++ b/http/cves/2022/CVE-2022-1595.yaml
@ -29,21 +29,19 @@ http:
        Host: {{Hostname}}
        Cookie: valid_login_slug=1

+      - |
+        HEAD /wp-login.php HTTP/1.1
+        Host: {{Hostname}}
+
    matchers-condition: and
    matchers:
-      - type: regex
-        part: header
-        regex:
-          - "Location: ([a-zA-Z0-9_.\\/-]+)"
-          - "wordpress_"
+      - type: dsl
+        dsl:
+          - "status_code_1 == 302"
+          - "contains(header_1, 'wordpress_')"
+          - "contains(header_1, 'Location')"
        condition: and

-      - type: word
-        part: header
-        words:
-          - "404.php"
-        negative: true
-
-      - type: status
-        status:
-          - 302
+      - type: dsl
+        dsl:
+          - "status_code_2 != 302"