Skip to content

Commit 03de60a

Browse files
zema1zema1
authored
Update jira-cve-2019-8449.yml
1 parent 352e142 commit 03de60a

File tree

1 file changed

+1
-1
lines changed

1 file changed

+1
-1
lines changed

pocs/jira-cve-2019-8449.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -3,7 +3,7 @@ rules:
33
- method: GET
44
path: /rest/api/latest/groupuserpicker?query=testuser12345&maxResults=50&showAvatar=false
55
expression: |
6-
response.status == 200 && response.content_type.icontains("json") && "X-AREQUESTID" in response.headers && response.body.bcontains(b"total") && response.body.bcontains(b"groups") && response.body.bcontains(b"header") && response.body.bcontains(b"users")
6+
response.status == 200 && response.content_type.icontains("json") && response.headers["X-AREQUESTID"] != "" && response.body.bcontains(b"total") && response.body.bcontains(b"groups") && response.body.bcontains(b"header") && response.body.bcontains(b"users")
77
detail:
88
author: MaxSecurity(https://github.com/MaxSecurity)
99
links:

0 commit comments

Comments
 (0)