minor-update

http/vulnerabilities/other/azon-dominator-sqli.yaml

@@ -4,7 +4,8 @@ info:
   name: Azon Dominator - SQL Injection
   author: securityforeveryone
   severity: high
-  description: Azon Dominator software is vulnerable to a sql attack at /fetch_products.php.
+  description: |
+    Azon Dominator software is vulnerable to a sql attack at /fetch_products.php.
   reference:
     - https://www.exploit-db.com/exploits/52059
     - https://www.codester.com/items/12775/azon-dominator-affiliate-marketing-script
@@ -17,7 +18,7 @@ info:
 http:
   - raw:
       - |
-        @timeout 20sn
+        @timeout 20s
         POST /fetch_products.php HTTP/2
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded
@@ -27,7 +28,7 @@ http:
     matchers:
       - type: dsl
         dsl:
-          - 'contains_all(body,"id","name")'
+          - 'contains_all(body,"id","name","save_lists.php")'
           - 'duration>=6'
           - 'status_code==500'
         condition: and