-
Notifications
You must be signed in to change notification settings - Fork 0
/
CVE-2023-6000.yaml
39 lines (33 loc) · 1.02 KB
/
CVE-2023-6000.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
id: CVE-2023-6000
info:
name: Wordpress Improper Neutralization of Input During Web Page Generation in the Popup Builder plugin
author: rxerium
severity: critical
description: |
The Popup Builder WordPress plugin before 4.2.3 does not prevent simple visitors from updating existing popups, and injecting raw JavaScript in them, which could lead to Stored XSS attacks.
tags: wordpress
http:
- method: GET
path:
- "{{BaseURL}}/wp-content/plugins/popup-builder/readme.txt"
extractors:
- type: regex
part: body
internal: true
group: 1
regex:
- '(?i)Stable.tag:\s?([\w.]+)'
- type: regex
part: body
group: 1
regex:
- '(?i)Stable.tag:\s?([\w.]+)'
matchers-condition: or
matchers:
- type: dsl
dsl:
- compare_versions(internal_detected_version, concat("< 4.2.3"))
- type: regex
part: body
regex:
- '(?i)Stable.tag:\s?([\w.]+)'