minor changes
parent
b25ba806dc
commit
b273765752
|
@ -19,3 +19,6 @@ helpers/
|
|||
miscellaneous/
|
||||
headless/
|
||||
iot/
|
||||
|
||||
# CVEs
|
||||
cves/2017/CVE-2017-17562.yaml
|
|
@ -7,15 +7,12 @@ info:
|
|||
reference:
|
||||
- https://www.elttam.com/blog/goahead/
|
||||
- https://github.com/ivanitlearning/CVE-2017-17562
|
||||
- https://github.com/vulhub/vulhub/tree/master/goahead/CVE-2017-17562
|
||||
severity: high
|
||||
tags: cve,cve2017,rce,embedthis,goahead
|
||||
tags: cve,cve2017,rce,embedthis,goahead,fuzz
|
||||
|
||||
requests:
|
||||
- payloads:
|
||||
path:
|
||||
- /
|
||||
- /cgi-bin/
|
||||
- /cgi/
|
||||
endpoint:
|
||||
- admin
|
||||
- apply
|
||||
|
@ -84,13 +81,13 @@ requests:
|
|||
- welcome
|
||||
raw:
|
||||
- |
|
||||
GET §path§§endpoint§?LD_DEBUG=help HTTP/1.1
|
||||
GET /cgi-bin/§endpoint§?LD_DEBUG=help HTTP/1.1
|
||||
Host: {{Hostname}}
|
||||
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)
|
||||
Accept: */*
|
||||
Connection: close
|
||||
|
||||
attack: clusterbomb
|
||||
attack: sniper
|
||||
matchers-condition: and
|
||||
matchers:
|
||||
- type: status
|
||||
|
|
Loading…
Reference in New Issue