[Bug] Template generic-blind-xxe wrong raw definition #9488

derekkddj · 2024-04-02T14:49:08Z

The original template is:

id: generic-blind-xxe

info:
  name: Generic Blind XXE
  author: geeknik
  severity: high
  description: This template detects Generic Blind XXE.
  metadata:
    max-request: 1
  tags: xxe,generic,blind

http:
  - raw:
      - |
        POST / HTTP/1.1
        Host: {{Hostname}}

But acording to documentation:
https://docs.projectdiscovery.io/templates/protocols/http/raw-http

It should be:

id: generic-blind-xxe

info:
  name: Generic Blind XXE
  author: geeknik
  severity: high
  description: This template detects Generic Blind XXE.
  metadata:
    max-request: 1
  tags: xxe,generic,blind

http:
  - raw:
      - |
        POST  HTTP/1.1
        Host: {{Hostname}}

With the original template nuclei always add a trailing slash to every URL.
www.target.com/wii -> www.target.com/wii/

And is not the intended operation.

The text was updated successfully, but these errors were encountered:

ehsandeep · 2024-04-02T15:05:09Z

@dhd0004 there is bug in nuclei engine that is being fixed here - projectdiscovery/nuclei#4955

derekkddj · 2024-04-02T21:00:54Z

but in that bug they were using "unsafe:true", not in this template
EDIT: sorry, i saw there was a bug referenced projectdiscovery/nuclei#4921

github-actions bot assigned ritikchaddha Apr 2, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Bug] Template generic-blind-xxe wrong raw definition #9488

[Bug] Template generic-blind-xxe wrong raw definition #9488

derekkddj commented Apr 2, 2024

ehsandeep commented Apr 2, 2024

derekkddj commented Apr 2, 2024 •

edited

[Bug] Template generic-blind-xxe wrong raw definition #9488

[Bug] Template generic-blind-xxe wrong raw definition #9488

Comments

derekkddj commented Apr 2, 2024

ehsandeep commented Apr 2, 2024

derekkddj commented Apr 2, 2024 • edited

derekkddj commented Apr 2, 2024 •

edited