Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

CVE-2014-4592 and others #7543

Closed
mastercho opened this issue Jun 25, 2023 · 3 comments · Fixed by #7756
Closed

CVE-2014-4592 and others #7543

mastercho opened this issue Jun 25, 2023 · 3 comments · Fixed by #7756
Assignees
@ritikchaddha
Labels
defcon31 Done Ready to merge false-positive Nuclei template reporting invalid/unexpected result

Comments

@mastercho
Copy link
Contributor

Nuclei Version: v2.9.6

Template file: [CVE-2014-4592.yaml

](

nuclei-templates/http/cves/2014/CVE-2014-4592.yaml

Line 2 in 9e60dba

)

Command to reproduce:

nuclei.exe -t CVE-2014-4592.yaml -u https://hospitalburgasmed.bg

Anything else:

Debug log:

Host: hospitalburgasmed.bg
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1944.0 Safari/537.36
Connection: close
Accept: */*
Accept-Language: en
Accept-Encoding: gzip

[DBG] [CVE-2014-4592] Dumped HTTP response https://hospitalburgasmed.bg/wp-content/plugins/wp-planet/rss.class/scripts/magpie_debug.php?url=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E

HTTP/1.1 200 OK
Connection: close
Cache-Control: no-store, no-cache, must-revalidate
Content-Type: text/html; charset=UTF-8
Date: Sun, 25 Jun 2023 22:54:06 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Server: Apache/2.4.25 (Debian)
Set-Cookie: burgas=70ddc476f1adc2d401a8a66780f181d0; path=/
Upgrade: h2
Vary: Accept-Encoding
X-Powered-By: PHP/7.0.33-47+0~20210228.54+debian9~1.gbp7f60a9

<!DOCTYPE html>
<html lang="bg">
<head>

        <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
        <meta property="og:type" content="article" />

        <title> - Болница "Бургасмед"</title>
        <meta name="description" content='Болница "Бургасмед", ДКЦ "Бургасмед", Болница, hospital, хоспитал' />
        <meta name="keywords" content="Добре дошли в сайта на медицински център Бургасмед Бургас" />

        <link href="https://fonts.googleapis.com/css?family=Ubuntu+Condensed&subset=cyrillic,cyrillic-ext" rel="stylesheet">

        <link rel="canonical" href="https://hospitalburgasmed.bg/wp-content/plugins/wp-planet/rss.class/scripts/magpie_debug.php?url=<script>alert(document.domain)</script>" />
        <link rel="shortlink" href="https://hospitalburgasmed.bg" />
        <meta property="og:title" content=" - Болница "Бургасмед"" />
        <meta name="generator" content="Shop Online LTD" />
        <meta name="robots" content="index, follow, all" />
        <meta name="Revisit-After" content="5 days" />
        <link rel="shortcut icon" href="https://hospitalburgasmed.bg/favicon.ico" />

        <meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1, minimum-scale=1, user-scalable=no" />

        <meta property="og:site_name" content=' - Болница "Бургасмед"' />
        <meta property="og:description" content='Болница "Бургасмед", ДКЦ "Бургасмед", Болница, hospital, хоспитал' />
        <meta property="og:image" content='https://hospitalburgasmed.bg/images/theme/management.png' />
        <meta name="thumbnail" content="https://hospitalburgasmed.bg/images/theme/management.png"/>

        <link rel="apple-touch-icon-precomposed" href="http://hospitalburgasmed.bg/images/icon.png"/>

        <link rel="alternate" hreflang="x-default" href="http://hospitalburgasmed.bg" />

        <link rel="stylesheet" type="text/css" href="https://www.hospitalburgasmed.bg/css/default.css"/>
        <link rel="stylesheet" type="text/css" href="https://www.hospitalburgasmed.bg/css/mobile.css"/>

        <link rel="stylesheet" type="text/css" href="https://www.hospitalburgasmed.bg/css/rrssb.css" />

         <script src="https://code.jquery.com/jquery-latest.min.js" type="text/javascript"></script>
         <script src="https://s3.amazonaws.com/menumaker/menumaker.min.js" type="text/javascript"></script>
         <script src="https://www.hospitalburgasmed.bg/js/script.js"></script>
          <script src="https://www.hospitalburgasmed.bg/js/menumaker.min.js" type="text/javascript"></script>
         <link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css">
         <link rel="stylesheet" href="https://www.hospitalburgasmed.bg/css/styles.css">
         <link rel="stylesheet" type="text/css" href="https://www.hospitalburgasmed.bg/css/jquery.lightbox-0.5.css" media="screen" />
         <script type="text/javascript" src="https://www.hospitalburgasmed.bg/js/jquery.lightbox-0.5.js"></script>

         <!-- странициране -->
         <link href="https://www.hospitalburgasmed.bg/css/bootstrap.min.css" rel="stylesheet">
         <script src="https://www.hospitalburgasmed.bg/js/bootstrap.min.js"></script>
         <script src="https://www.hospitalburgasmed.bg/js/jquery.twbsPagination.js" type="text/javascript"></script>

         <!-- selected phone header-->
         <link href="https://www.hospitalburgasmed.bg/css/phone.css" rel="stylesheet" type="text/css" />
         <script src="https://www.hospitalburgasmed.bg/js/main.js"></script>

        <script>
                (function(i,s,o,g,r,a,m){i['GoogleAnalyticsObject']=r;i[r]=i[r]||function(){
                (i[r].q=i[r].q||[]).push(arguments)},i[r].l=1*new Date();a=s.createElement(o),
                m=s.getElementsByTagName(o)[0];a.async=1;a.src=g;m.parentNode.insertBefore(a,m)
                })(window,document,'script','https://www.google-analytics.com/analytics.js','ga');

                ga('create', 'UA-89117198-3', 'auto');
                ga('send', 'pageview');
        </script>
        <link rel="stylesheet" type="text/css" href="https://www.hospitalburgasmed.bg/css/new_d.css?version=3.71" />
</head>
<body>
        <!-- TOP LINE BEGIN -->
        <div class="top" style="display: none;">
                <div id="fixedTop">
                        <div id="sosPhone">
                                <cite>СПЕШНА <strong>ПОМОЩ</strong></cite>
                                <a href="tel:+359892222800" class="redPhone">0892 222 800</a>
                        </div>


                        <div class="mHide hBtn2">
                                <a href="https://webresult.hospitalburgasmed.bg/" target="_blank" style="color:white;">Онлайн<br /> резултати</a>
                        </div>
                </div>
        </div>
        <!-- TOP LINE END -->

        <!-- TOP LINE BEGIN -->
        <header>
                <div id="fixedHeader" style="padding: 10px;">
                <a href="https://www.hospitalburgasmed.bg/index.php" style="float: left;">
                                                        <img src="https://www.hospitalburgasmed.bg/images/theme/sign.png" width="606" height="80" alt="" id="logo" />
                                <img src="https://www.hospitalburgasmed.bg/images/theme/sign-mv.png" width="300" height="78" alt="" id="mlogo" />
                                        </a>
                        <script>
                          $( function() {
                                $('.image-filters').customradio({
                                  mobileImages: true
                                });
                          });
                        </script>
                        <div class="hBtn">
                                <form method="post" action="#" name="lang" id="lang">
                                        <input type="hidden" name="language" id="language" value="BG"/>
                                                                                        <span> <!-- <a href="#" title="" onclick="javascript: submitLang('EN');">EN</a>|--> <a href="#" title="" onclick="javascript: submitLang('RU');">RU</a></span>
                                                                                <script type="text/javascript">
                                                // Function that set new value to hidden input (Language)
                                                function submitLang(lang)
                                                {
                                                        document.getElementById("language").value = lang;
                                                        document.getElementById("lang").submit();
                                                }
                                        </script>
                                </form>

                        </div>
                        <div class="mHide hBtn1">
                                <a href="https://superdoc.bg/klinika/dkc-burgasmed" rel="nofollow" target="_blank" style="color:white;">Записване<br /> на час</a>
                        </div>
                        <div class="mHide hBtn2">
                                <a href="https://webresult.hospitalburgasmed.bg/" target="_blank" style="color:white;">Онлайн<br /> резултати</a>
                        </div>
                        <div class="mHide hBtn3">
                                <a href="https://www.hospitalburgasmed.bg/Новини/Тестове-за-COVID-19/p33" style="color:white;"><strong>Тестове<br />Covid-19</strong></a>
                        </div>
                        <div class="fixed"></div>
                </div>
        </header>
        <!-- TOP LINE END -->
        <a href="javascript:" id="return-to-top"><img src="https://www.hospitalburgasmed.bg/images/theme/back-to-top.png" onmouseover="this.src='https://www.hospitalburgasmed.bg/images/theme/top-active.png'"  onmouseout="this.src='https://www.hospitalburgasmed.bg/images/theme/back-to-top.png'" width="75" height="73" alt="Back to top hospitalburgasmed.bg" /></a>

        <!-- NAVIGATION BEGIN -->
        <nav>
                <div id="cssmenu">
                        <ul>
                                <li ><a href="https://www.hospitalburgasmed.bg/index.php">Начало</a></li>
                                                                                        <li class="selected"><a href="#" >За нас</a>
                                                        <ul>                                                                                                    <li><a href="https://www.hospitalburgasmed.bg/За-нас/Болница--Бургасмед-/p1">Болница "Бургасмед"</a></li>
                                                                                                                                                                                <li><a href="https://www.hospitalburgasmed.bg/За-нас/ДКЦ--Бургасмед-/p2">ДКЦ "Бургасмед"</a></li>
                                                                                                                                                                                <li><a href="https://www.hospitalburgasmed.bg/За-нас/Партньори/t3">Партньори</a></li>
                                                                                                                                                                                        <li><a href="https://www.hospitalburgasmed.bg/За-нас/Болнично-настоятелство/p38">Болнично настоятелство</a></li>
                                                                        </ul>                                                   </li>
                                                                                                <li ><a href="https://www.hospitalburgasmed.bg/За-нас/ДКЦ--Бургасмед-/p2" >ДКЦ</a>
                                                        <ul>                                                                                    <li><a class="otd" href="https://www.hospitalburgasmed.bg/ДКЦ/Образна-диагностика/k1">Образна диагностика</a></li>
                                                                                                                                                                <li><a class="otd" href="https://www.hospitalburgasmed.bg/ДКЦ/Клинична-лаборатория/k2">Клинична лаборатория</a></li>
                                                                                                                                                                <li><a class="otd" href="https://www.hospitalburgasmed.bg/ДКЦ/Микробиологична-лаборатория/k4">Микробиологична лаборатория</a></li>
                                                                                                                                                                <li><a class="otd" href="https://www.hospitalburgasmed.bg/ДКЦ/График-на-ДКЦ--Бургасмед-/g6">График на ДКЦ "Бургасмед"</a></li>
                                                                                        <li><a class="otd white" href="https://superdoc.bg/klinika/dkc-burgasmed">Записване на час</a></li>
                                                                                </ul>                                                   </li>
                                                                                                <li ><a href="#" >Oтделения</a>
                                                        <ul>                                                                                    <li><a class="otd white" href="https://www.hospitalburgasmed.bg/Oтделения/Отделение-по-Акушерство-и-гинекология/d1">Отделение по Акушерство и гинекология</a></li>
                                                                                                                                                                <li><a class="otd white" href="https://www.hospitalburgasmed.bg/Oтделения/Отделение-по-Анестезиология-и-интензивно-лечение-/d2">Отделение по Анестезиология и интензивно лечение </a></li>
                                                                                                                                                                <li><a class="otd white" href="https://www.hospitalburgasmed.bg/Oтделения/Отделение-по-Неонатология-/d3">Отделение по Неонатология </a></li>
                                                                                                                                                                <li><a class="otd white" href="https://www.hospitalburgasmed.bg/Oтделения/Отделение-по-Ушно---носно---гърлени-болести-/d4">Отделение по Ушно - носно - гърлени болести </a></li>
                                                                                                                                                                <li><a class="otd white" href="https://www.hospitalburgasmed.bg/Oтделения/Отделение-по-Вътрешни-болести-/d5">Отделение по Вътрешни болести </a></li>
                                                                                                                                                                <li><a class="otd white" href="https://www.hospitalburgasmed.bg/Oтделения/Отделение-по-Нервни-болести--/d6">Отделение по Нервни болести  </a></li>
                                                                                                                                                                <li><a class="otd white" href="https://www.hospitalburgasmed.bg/Oтделения/Отделение-по-Ортопедия-и-травматология-/d7">Отделение по Ортопедия и травматология </a></li>
                                                                                                                                                                <li><a class="otd white" href="https://www.hospitalburgasmed.bg/Oтделения/Отделение-по-Кардиология-/d8">Отделение по Кардиология </a></li>
                                                                                                                                                                <li><a class="otd white" href="https://www.hospitalburgasmed.bg/Oтделения/Отделение-по-Хирургия/d9">Отделение по Хирургия</a></li>
                                                                                                                                                                <li><a class="otd white" href="https://www.hospitalburgasmed.bg/Oтделения/Отделение-по-Неврохирургия/d10">Отделение по Неврохирургия</a></li>
                                                                                                                                                                <li><a class="otd white" href="https://www.hospitalburgasmed.bg/Oтделения/Отделение-по-Детски-болести/d11">Отделение по Детски болести</a></li>
                                                                                                                                                                <li><a class="otd white" href="https://www.hospitalburgasmed.bg/Oтделения/Отделение-по-Гръдна-хирургия/d12">Отделение по Гръдна хирургия</a></li>
                                                                                                                                                                <li><a class="otd white" href="https://www.hospitalburgasmed.bg/Oтделения/Отделение-по-Спешна-медицина/d13">Отделение по Спешна медицина</a></li>
                                                                                                                                                                <li><a class="otd white" href="https://www.hospitalburgasmed.bg/Oтделения/Отделение-по-Образна-диагностика/d14">Отделение по Образна диагностика</a></li>
                                                                                                                                                                <li><a class="otd white" href="https://www.hospitalburgasmed.bg/Oтделения/Отделение-по-Клинична-лаборатория/d15">Отделение по Клинична лаборатория</a></li>
                                                                                                                                                                <li><a class="otd white" href="https://www.hospitalburgasmed.bg/Oтделения/Болнична-аптека/d16">Болнична аптека</a></li>
                                                                                                                                                                <li><a class="otd white" href="https://www.hospitalburgasmed.bg/Oтделения/Администрация-/d17">Администрация </a></li>
                                                                        </ul>                                                   </li>
                                                                                                <li ><a href="#" >Полезна информация</a>
                                                        <ul>
                                                                                                                                                                                        <li><a href="https://www.hospitalburgasmed.bg/Полезна-информация/Допълнителни-услуги/p11">Допълнителни услуги</a></li>
                                                                                                                                                                                <li><a href="https://www.hospitalburgasmed.bg/Полезна-информация/Договори-с-фондове/p12">Договори с фондове</a></li>
                                                                                                                                                                                <li><a href="https://www.hospitalburgasmed.bg/Клинични-пътеки/cl13">Клинични пътеки</a></li>
                                                                                                                                                                                        <li><a href="https://www.hospitalburgasmed.bg/Полезна-информация/Училище-за-родители/p28">Училище за родители</a></li>
                                                                                                                                                                                <li><a href="https://www.hospitalburgasmed.bg/Полезна-информация/Полезна-информация-при--Прием-/p15">Полезна информация при „Прием”</a></li>
                                                                        </ul>                                                   </li>
                                                                                                <li ><a href="#" >Профилактика</a>
                                                        <ul>                                                                                                    <li><a class="otd" href="https://www.hospitalburgasmed.bg/Кампания--Бъдете-здрави-!/cg1">Кампания "Бъдете здрави"!</a></li>
                                                                                                                                                                                        <li><a class="otd" href="https://www.hospitalburgasmed.bg/Безплатни-профилактични-прегледи-/med17&i=0">Безплатни профилактични прегледи </a></li>
                                                                                  </ul>                                                 </li>
                                                                                                <li ><a href="#" >Новини</a>
                                                        <ul>                                                                                                    <li><a href="https://www.hospitalburgasmed.bg/Новини-/b20">Новини </a></li>
                                                                                                                                                                                        <li><a href="https://www.hospitalburgasmed.bg/За-нас-в-медиите/o21">За нас в медиите</a></li>
                                                                                                                                                                                        <li><a href="https://www.hospitalburgasmed.bg/Пациентите-за-нас/z22">Пациентите за нас</a></li>
                                                                                                                                                                                        <li><a href="https://www.hospitalburgasmed.bg/Полезно-е/q32">Полезно е</a></li>
                                                                                  </ul>                                                 </li>
                                                                                                <li><a href="#">COVID-19</a>
                                                                <ul>                                                                                                    <li><a style="background-color: #b5161b; color: white; font-weight: bold;" href="https://www.hospitalburgasmed.bg/COVID-19/Тестове-за-COVID-19/p33">Тестове за COVID-19</a></li>
                                                                                                                                                                                        <li><a href="https://www.hospitalburgasmed.bg/COVID-19/COVID-19-диагностични-пакети/p42">COVID-19 диагностични пакети</a></li>
                                                                                                                                                                                <li><a href="https://www.hospitalburgasmed.bg/COVID-19/Ваксини-COVID-19/p43">Ваксини COVID-19</a></li>
                                                                        </ul>                                                   </li>
                                                                                                <li ><a href="#" >Кариери</a>
                                                        <ul>                                                                                                    <li><a href="https://www.hospitalburgasmed.bg/Кариери/Обяви-за-работа/j23">Обяви за работа</a></li>
                                                                                                                                                                                        <li><a href="https://www.hospitalburgasmed.bg/Кариери/Обучение-и-Специализация/j24">Обучение и Специализация</a></li>
                                                                                  </ul>                                                 </li>
                                                                                                <li ><a href="#" >Контакти</a>
                                                        <ul>                                                                                                    <li><a href="https://www.hospitalburgasmed.bg/contacts.block1.php">Болница „Бургасмед”</a></li>
                                                                                                                                                                                        <li class="mobileNone"><a href="https://www.hospitalburgasmed.bg/contacts.hospital.php">Запитване Онлайн</a></li>
                                                                                  </ul>                                                 </li>
                                                                </ul>
                </div>
        </nav>
        <!-- NAVIGATION END --> <hr class='hrManagement'/>
        <section class="page">
                <div class="fix">
                        <ul class="breadcrumb"  itemscope itemtype="http://schema.org/BreadcrumbList">
                                <li itemprop="itemListElement" itemscope itemtype="http://schema.org/ListItem" style="float:left;">
                                        <a itemscope itemtype="http://schema.org/Thing" itemprop="item" href="http://hospitalpulmed.bg/">
                                                <span itemprop="name">Начало</span>
                                        </a>
                                        <meta itemprop="position" content="1" /> |  &nbsp;
                                </li>
                                <li itemprop="itemListElement" itemscope itemtype="http://schema.org/ListItem" style="float:left;">
                                        <a itemscope itemtype="http://schema.org/Thing" itemprop="item" href="https://www.hospitalburgasmed.bg///m">
                                                <span itemprop="name" style="color:#127443;"><strong></strong></span>
                                        </a>
                                        <meta itemprop="position" content="2" />
                                </li>
                        </ul>
                </div>
                <div class="PageManagement">
                        <div class="fixBreadcrumb">
                                <h1></h1>
                                <img src="https://www.hospitalburgasmed.bg/images/theme/management.png" alt="" />
                        </div>

                        <div class="fontMen"><div class="fix">
                                <div class="manager">
                                                                                <a href="https://www.hospitalburgasmed.bg/management.selected.php?id=7">
                                        <div class="greenBorder">
                                                <div class="ImageStaff">

                                                                <img src="https://www.hospitalburgasmed.bg/images/avatar-doc2.jpg" alt="Даниела Янкова" />

                                                </div>
                                        </div>
                                        <br />
                                        <button onclick="window.location.href = 'https-//www.hospitalburgasmed.bg/management.selected.php-id=7';" ></button>
                                        <span class="name"> Даниела Янкова</span>
                                        <span class="positionSpan">Главен счетоводител</span>
                                        </a>
                                </div>
                        </div><div class="fixed"></div></div>                   <div class="fixed"></div>
                        <br />
                </div>
        </section>
        <!-- FOOTER BEGIN -->
        <footer>
                <div id="fixedFooter">
                        <!-- COLUMN FOOFTER BEGIN -->
                        <div class="footerColl" style="width:23%;padding:1%;">
                                <h3>За нас</h3>
                                <a href="https://www.hospitalburgasmed.bg/За-нас/Болница--Бургасмед-/p1">МБАЛ "Бургасмед"</a>
                                <a href="https://www.hospitalburgasmed.bg/За-нас/ДКЦ--Бургасмед-/p2">ДКЦ "Бургасмед"</a>
                                <a href="https://www.hospitalburgasmed.bg/За-нас/Партньори/t3">Партньори</a>
                                <h3>Новини</h3>
                                <a href="#">Новини</a>
                                <a href="#">За нас в медиите</a>
                                <a href="#">Пациентите за нас</a>
                        </div>
                        <!-- COLUMN FOOFTER END -->
                        <!-- COLUMN FOOFTER BEGIN -->
                        <div class="footerColl" style="width:23%;padding:1%;">
                                <h3>Полезна информация</h3>
                                <a href="https://www.hospitalburgasmed.bg/Полезна-информация/Допълнителни-услуги/p11">Допълнителни услуги</a>
                                <a href="https://www.hospitalburgasmed.bg/Полезна-информация/Договори-с-фондове/p12">Договори с фондове</a>
                                                                <a href="https://www.hospitalburgasmed.bg/Клинични-пътеки/cl13">Клинични пътеки</a>
                                <a href="https://www.hospitalburgasmed.bg/Полезна-информация/Общопрактикуващи-лекари/p14">Общопрактикуващи лекари</a>
                                                                <a href="https://www.hospitalburgasmed.bg/Полезна-информация/Полезна-информация-при--Прием-/p15">Полезна информация при „Прием”</a>
                                <h3>СТРАНИЦА</h3>
                                <strong style="font-size: 9px; color: #137343; line-height: 9px; font-weight: normal;"> - Болница "Бургасмед"</strong>
                        </div>
                        <div class="footerColl" style="width:23%;padding:1%;">
                                <h3>Профилактика</h3>
                                <a href="https://www.hospitalburgasmed.bg/Кампании/cam16">Кампании</a>
                                                                <a href="https://www.hospitalburgasmed.bg/Безплатни-профилактични-прегледи-/med17&i=0">Безплатни профилактични прегледи</a>

                                                                <h3>Кариери</h3>
                                <a href="https://www.hospitalburgasmed.bg/Кариери/Обяви-за-работа/j23">Обяви за работа</a>
                                <a href="https://www.hospitalburgasmed.bg/Кариери/Обучение-и-Специализация/j24">Обучение и Специализация</a>
                                                        </div>
                        <div class="footerColl" style="width:23%;padding:1%;">
                                <h3>Контакти</h3>
                                <a href="https://www.hospitalburgasmed.bg/contacts.block1.php">МБАЛ "Бургасмед"</a>
                                <a href="https://www.hospitalburgasmed.bg/contacts.hospital.php">Запитване Онлайн</a>
                        </div>
                        <!-- COLUMN FOOFTER END -->
                        <div class="fixed"></div>
                </div>
        </footer>
        <!-- FOOTER END -->
        <script type="text/javascript">
        <!--
                // ===== Scroll to Top ====
                $(window).scroll(function() {
                        if ($(this).scrollTop() >= 50) {        // If page is scrolled more than 50px
                                $('#return-to-top').fadeIn(200);    // Fade in the arrow
                        } else {
                                $('#return-to-top').fadeOut(200);   // Else fade out the arrow
                        }
                });
                $('#return-to-top').click(function() {      // When arrow is clicked
                        $('body,html').animate({
                                scrollTop : 0                       // Scroll to top of body
                        }, 500);
                });

                 $(document).ready(function () {
            $('body').sectionScroll({
                easing: 'easeInOutQuart',
                scrollDuration: 1200
            });


            $('body').on('section-reached', function() {
                var section_title = $('body').sectionScroll.activeSection.data('section-title');
                //Materialize.toast('In view: ' + section_title, 1000);
            })
        })
        //-->
        </script>
        <!-- COPYRIGHT BEGIN -->
        <div id="copyRight">
                <div class="centerCopy">
                        <div class="copy"><a href="http://www.hospitalburgasmed.bg/" title="МБАЛ "Бургасмед"" style="margin-left: 139px;">МБАЛ "Бургасмед"</a> 2012-2023 &copy;  All rights reserved
                        <a href="http://none.bg/"  target="_blank"><img src="https://www.hospitalburgasmed.bg/images/none.png" onmouseover="this.src='https://www.hospitalburgasmed.bg/images/none-active.png'"  onmouseout="this.src='https://www.hospitalburgasmed.bg/images/none.png'"  alt="Design and development Shop Online Ltd." style="float:right; margin-top: 2px;" /></a></div>
                </div>
        </div>
        <!-- COPYRIGHT END -->
</body>
</html>
[CVE-2014-4592:word-1] [http] [medium] https://hospitalburgasmed.bg/wp-content/plugins/wp-planet/rss.class/scripts/magpie_debug.php?url=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E
[CVE-2014-4592:word-2] [http] [medium] https://hospitalburgasmed.bg/wp-content/plugins/wp-planet/rss.class/scripts/magpie_debug.php?url=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E
[CVE-2014-4592:status-3] [http] [medium] https://hospitalburgasmed.bg/wp-content/plugins/wp-planet/rss.class/scripts/magpie_debug.php?url=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E
@mastercho mastercho added the false-positive Nuclei template reporting invalid/unexpected result label Jun 25, 2023
@mastercho
Copy link
Contributor Author

mastercho commented Jun 25, 2023
edited
Loading

site also matches CVE-2021-26475,CVE-2019-0221,CVE-2013-4625,CVE-2021-30049,CVE-2011-4618,CVE-2018-5316, CVE-2016-1000127,CVE-2021-38702 as false-positive due same matchers

@mastercho mastercho changed the title CVE-2014-4592 CVE-2014-4592 and others Jul 6, 2023
@ritikchaddha ritikchaddha linked a pull request Jul 26, 2023 that will close this issue
Update XSS - False positive #7756
Merged
2 tasks
@ritikchaddha ritikchaddha added the Done Ready to merge label Jul 26, 2023
@mastercho
Copy link
Contributor Author

This is not quite complete as @ritikchaddha commit doesn't include other CVEs which matches as FP

@ritikchaddha
Copy link
Contributor

Hello @mastercho, We are aware of this, and these CVEs have been added to the list #5405

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@ritikchaddha ritikchaddha

Labels
defcon31 Done Ready to merge false-positive Nuclei template reporting invalid/unexpected result
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Update XSS - False positive projectdiscovery/nuclei-templates
4 participants
@ehsandeep @mastercho @princechaddha @ritikchaddha