Update seeyon-unauth.yaml

misconfiguration/seeyon-unauth.yaml

@@ -1,9 +1,12 @@
 id: seeyon-unauth
 
 info:
-  name: Seeyon Unauthoried
+  name: Seeyon Unauthoried Access
   author: pikpikcu
   severity: low
+  metadata:
+    verified: true
+    fofa-query: app="致远互联-OA"
   tags: seeyon,unauth
 
 requests:
@@ -12,7 +15,6 @@ requests:
         POST /seeyon/thirdpartyController.do HTTP/1.1
         Host: {{Hostname}}
         User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0
-        Content-Length: 5
         Content-Type: application/x-www-form-urlencoded
         Accept-Encoding: deflate
 
@@ -34,11 +36,15 @@ requests:
         regex:
           - 'JSESSIONID=(.*)'
 
+    matchers-condition: and
     matchers:
-
       - type: word
+        part: body
         words:
           - "当前已登录了一个用户，同一窗口中不能登录多个用户"
           - "<a href='/seeyon/main.do?method=logout'"
-        part: body
-        condition: and
+        condition: and
+
+      - type: status
+        status:
+          - 200