From b2737657522a49d56f45b8377df90fd32b71d0cb Mon Sep 17 00:00:00 2001
From: sandeep <8293321+ehsandeep@users.noreply.github.com>
Date: Thu, 1 Apr 2021 13:28:30 +0530
Subject: [PATCH] minor changes

---
 .nuclei-ignore                |  5 ++++-
 cves/2017/CVE-2017-17562.yaml | 11 ++++-------
 2 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/.nuclei-ignore b/.nuclei-ignore
index da3c79e0ed..9e79e412e5 100644
--- a/.nuclei-ignore
+++ b/.nuclei-ignore
@@ -18,4 +18,7 @@ fuzzing/
 helpers/
 miscellaneous/
 headless/
-iot/
\ No newline at end of file
+iot/
+
+# CVEs
+cves/2017/CVE-2017-17562.yaml
\ No newline at end of file
diff --git a/cves/2017/CVE-2017-17562.yaml b/cves/2017/CVE-2017-17562.yaml
index fbbcdbfe5b..100b6d29f9 100644
--- a/cves/2017/CVE-2017-17562.yaml
+++ b/cves/2017/CVE-2017-17562.yaml
@@ -7,15 +7,12 @@ info:
   reference:
     - https://www.elttam.com/blog/goahead/
     - https://github.com/ivanitlearning/CVE-2017-17562
+    - https://github.com/vulhub/vulhub/tree/master/goahead/CVE-2017-17562
   severity: high
-  tags: cve,cve2017,rce,embedthis,goahead
+  tags: cve,cve2017,rce,embedthis,goahead,fuzz
 
 requests:
   - payloads:
-      path:
-        - /
-        - /cgi-bin/
-        - /cgi/
       endpoint:
         - admin
         - apply
@@ -84,13 +81,13 @@ requests:
         - welcome
     raw:
       - |
-        GET §path§§endpoint§?LD_DEBUG=help HTTP/1.1
+        GET /cgi-bin/§endpoint§?LD_DEBUG=help HTTP/1.1
         Host: {{Hostname}}
         User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)
         Accept: */*
         Connection: close
 
-    attack: clusterbomb
+    attack: sniper
     matchers-condition: and
     matchers:
       - type: status