Update CVE-2019-10098.yaml
parent
6ad9b94d76
commit
aad90ed60c
|
@ -19,15 +19,15 @@ info:
|
|||
cve-id: CVE-2019-10098
|
||||
cwe-id: CWE-601
|
||||
cpe: cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*
|
||||
tags: cve,cve2019,redirect,Apache HTTP server
|
||||
tags: cve,cve2019,redirect,apache,server
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
path:
|
||||
- "{{BaseURL}}/http%3A%2F%2Fwww.evil.com"
|
||||
- "{{BaseURL}}/http%3A%2F%2Fwww.interact.sh"
|
||||
|
||||
matchers:
|
||||
- type: regex
|
||||
part: header
|
||||
regex:
|
||||
- '(?m)^(?:Location\s*?:\s*?)(?:https?:\/\/|\/\/|\/\\\\|\/\\)?(?:[a-zA-Z0-9\-_\.@]*)evil\.com\/?(\/|[^.].*)?$'
|
||||
- '(?m)^(?:Location\s*?:\s*?)(?:https?:\/\/|\/\/|\/\\\\|\/\\)?(?:[a-zA-Z0-9\-_\.@]*)interact\.sh\/?(\/|[^.].*)?$'
|
||||
|
|
Loading…
Reference in New Issue