Merge pull request #11006 from pwnhxl/addtimebased

add time-based tags

Author: ritikchaddha

dast/vulnerabilities/sqli/time-based-sqli.yaml

@@ -6,7 +6,7 @@ info:
   severity: critical
   description: |
     This Template detects time-based Blind SQL Injection vulnerability
-  tags: sqli,dast,time-based,blind
+  tags: time-based-sqli,sqli,dast,blind
 
 flow: http(1) && http(2)
 
@@ -48,4 +48,5 @@ http:
       - type: dsl
         dsl:
           - "duration>=7 && duration <=16"
+
 # digest: 4b0a00483046022100e8266a692ff2cc477215800d03fea01da4bb13c82251996b57ef4a6fc6ba63d702210095cfc9e092e7375b414bc41745d4954bf5ef0de6117040a43f83e63ebd7b7d13:922c64590222798bb761d5b6d8e72950

http/cves/2015/CVE-2015-2196.yaml

@@ -28,7 +28,7 @@ info:
     vendor: web-dorado
     product: spider_calendar
     framework: wordpress
-  tags: cve2015,cve,wordpress,wp,sqli,wpscan,wp-plugin,spider-event-calendar,unauth,edb,web-dorado
+  tags: time-based-sqli,cve2015,cve,wordpress,wp,sqli,wpscan,wp-plugin,spider-event-calendar,unauth,edb,web-dorado
 
 http:
   - raw:

http/cves/2015/CVE-2015-4062.yaml

@@ -30,7 +30,7 @@ info:
     vendor: newstatpress_project
     product: newstatpress
     framework: wordpress
-  tags: cve2015,cve,authenticated,sqli,wp-plugin,newstatpress,packetstorm,wordpress,wp,newstatpress_project
+  tags: time-based-sqli,cve2015,cve,authenticated,sqli,wp-plugin,newstatpress,packetstorm,wordpress,wp,newstatpress_project
 
 http:
   - raw:

http/cves/2015/CVE-2015-9323.yaml

@@ -29,7 +29,7 @@ info:
     vendor: duckdev
     product: 404_to_301
     framework: wordpress
-  tags: cve2015,cve,404-to-301,sqli,wpscan,wp-plugin,wp,wordpress,authenticated,duckdev
+  tags: time-based-sqli,cve2015,cve,404-to-301,sqli,wpscan,wp-plugin,wp,wordpress,authenticated,duckdev
 
 http:
   - raw:

http/cves/2018/CVE-2018-16159.yaml

@@ -31,7 +31,7 @@ info:
     framework: wordpress
     shodan-query: http.html:"/wp-content/plugins/gift-voucher/"
     fofa-query: body="/wp-content/plugins/gift-voucher/"
-  tags: cve,cve2018,sqli,wordpress,unauth,wp,gift-voucher,edb,wpscan,wp-plugin,codemenschen
+  tags: time-based-sqli,cve,cve2018,sqli,wordpress,unauth,wp,gift-voucher,edb,wpscan,wp-plugin,codemenschen
 
 http:
   - raw:

http/cves/2018/CVE-2018-7282.yaml

@@ -31,7 +31,7 @@ info:
     fofa-query: title="printmonitor"
     google-query: intitle:"printmonitor"
     product": printmonitor
-  tags: cve2018,cve,sqli,printmonitor,unauth,titool
+  tags: time-based-sqli,cve2018,cve,sqli,printmonitor,unauth,titool
 variables:
   username: "{{rand_base(6)}}"
   password: "{{rand_base(8)}}"

http/cves/2019/CVE-2019-7139.yaml

@@ -32,7 +32,7 @@ info:
       - http.component:"Magento"
       - cpe:"cpe:2.3:a:magento:magento"
       - http.component:"magento"
-  tags: cve,cve2019,sqli,magento
+  tags: time-based-sqli,cve,cve2019,sqli,magento
 
 flow: http(1) && http(2)
 

http/cves/2020/CVE-2020-11530.yaml

@@ -30,7 +30,7 @@ info:
     vendor: idangero
     product: chop_slider
     framework: wordpress
-  tags: cve,cve2020,wpscan,seclists,sqli,wordpress,wp-plugin,wp,chopslider,unauth,idangero
+  tags: time-based-sqli,cve,cve2020,wpscan,seclists,sqli,wordpress,wp-plugin,wp,chopslider,unauth,idangero
 
 http:
   - raw:

http/cves/2020/CVE-2020-17463.yaml

@@ -31,7 +31,7 @@ info:
     shodan-query: http.title:"fuel cms"
     fofa-query: title="fuel cms"
     google-query: intitle:"fuel cms"
-  tags: cve,cve2020,packetstorm,sqli,fuel-cms,kev,thedaylightstudio
+  tags: time-based-sqli,cve,cve2020,packetstorm,sqli,fuel-cms,kev,thedaylightstudio
 
 http:
   - raw:

http/cves/2020/CVE-2020-26248.yaml

@@ -29,7 +29,7 @@ info:
     vendor: prestashop
     product: productcomments
     framework: prestashop
-  tags: cve,cve2020,packetstorm,sqli,prestshop,prestashop
+  tags: time-based-sqli,cve,cve2020,packetstorm,sqli,prestshop,prestashop
 
 http:
   - raw: