Add CVE-2021-24876.yaml (vKEV)

[DhiyaneshGeek]

Template / PR Information

• Fixed CVE-2020-XXX / Added CVE-2020-XXX / Updated CVE-2020-XXX
• References:

Template Validation

I've validated this template locally?

• YES
• NO

Additional Details (leave it blank if not applicable)

Additional References:

• Nuclei Template Creation Guideline
• Nuclei Template Matcher Guideline
• Nuclei Template Contribution Guideline
• PD-Community Discord server

[github-actions]

⚠️ Weak matcher detected

It looks like Nuclei has found some results on the honeypot target.

To improve the accuracy of these results and avoid any false positives, please adjust the matchers as needed. This will help in providing more reliable and precise results.

Template ID
CVE-2021-24876

Ref 0315b6c

[popcorn94]

Sorry is this template valid?

[DhiyaneshGeek]

Hi @popcorn94,

I’ve raised a new PR since the existing one had several conflicts. The team is currently validating the template, and I’ll update you once the first round of validation is complete.

Thanks!

[popcorn94]

Hi @DhiyaneshGeek ,

Sorry , below is a updated template for your team to validate which won't be false positive as I added more words
CVE-2021-24876.yaml

[DhiyaneshGeek]

Validated Locally

LGTM !

                     __     _
   ____  __  _______/ /__  (_)
  / __ \/ / / / ___/ / _ \/ /
 / / / / /_/ / /__/ /  __/ /
/_/ /_/\__,_/\___/_/\___/_/   v3.4.10

		projectdiscovery.io

[INF] Current nuclei version: v3.4.10 (latest)
[INF] Current nuclei-templates version: v10.2.8 (latest)
[INF] New templates added in latest release: 114
[INF] Templates loaded for current scan: 1
[WRN] Loading 1 unsigned templates for scan. Use with caution.
[INF] Targets loaded for current scan: 1
[CVE-2021-24876] [http] [medium] http://localhost:8080/wp-admin/admin.php?page=registrations-for-the-events-calendar&tab=registrations&v="+style=animation-name:rotation+onanimationstart=alert(document.domain)//
[INF] Scan completed in 1.054728834s. 1 matches found.

[pussycat0x]

hello @popcorn94 ,Thank you for sharing this template with the community and for your contribution to this project.

[DhiyaneshGeek]

Hi @popcorn94,

Thank you for sharing the template and contributing to the project. We’ve made the necessary changes to improve detection and updated the matcher to address false positives.

[algora-pbc]

🎉🎈 @popcorn94 has been awarded $200 by ProjectDiscovery! 🎈🎊