Merge pull request #10165 from Matsue/update-polyfill-io-severity

Update severity of polyfill-backdoor to high
patch-5
pussycat0x 2024-07-15 20:38:59 +05:30 committed by GitHub
commit b31258c143
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 3 additions and 3 deletions

View File

@ -1,9 +1,9 @@
id: polyfill-backdoor
info:
name: Polyfill.io - Detection
name: Polyfill.io - Backdoor
author: kazet
severity: low
severity: high
description: |
The polyfill.io CDN was suspected to serve malware.
reference:
@ -30,4 +30,4 @@ http:
part: body
regex:
- "<script[^>]* src=['\"]https?://([a-zA-Z0-9-]*.)?polyfill.io[/'\"]"
# digest: 4a0a0047304502202741c6e8841c555d7c41536c7eccafe5207519fdbe69a21a76d09728e190bc5d022100ac5f13bcb311fa2091c545e60acfa5a45f6b000cdf5e4fd5a46f76d0632f4575:922c64590222798bb761d5b6d8e72950
# digest: 4a0a0047304502202741c6e8841c555d7c41536c7eccafe5207519fdbe69a21a76d09728e190bc5d022100ac5f13bcb311fa2091c545e60acfa5a45f6b000cdf5e4fd5a46f76d0632f4575:922c64590222798bb761d5b6d8e72950