Update royalevent-management-xss.yaml

2022-06-24 00:05:48 +05:30 · 2022-06-24 00:05:48 +05:30 · a66f548304
parent 103861f588
commit a66f548304
1 changed files with 9 additions and 0 deletions
--- a/vulnerabilities/other/royalevent-management-xss.yaml
+++ b/vulnerabilities/other/royalevent-management-xss.yaml
@ -8,6 +8,8 @@ info:
    Detects an XSS vulnerability in Royal Event System
  reference:
    - https://www.sourcecodester.com/sites/default/files/download/oretnom23/Royal%20Event.zip
+  metadata:
+    verified: true
  tags: xss,authenticated,cms,royalevent

 requests:
@ -57,6 +59,13 @@ requests:
      - type: word
        words:
          - "<script>alert(document.domain)</script>"
+          - "Report from "
+        condition: and
+
+      - type: word
+        part: header
+        words:
+          - text/html

      - type: status
        status: