fixed issues

arjun-akto · arjun-akto · commit f73d5bf42c10 · 2025-01-22T15:51:46.000+05:30
diff --git a/Broken-User-Authentication/UnionBasedMySQLiWithURLEncodedPayloadsPOST.yml b/Broken-User-Authentication/UnionBasedMySQLiWithURLEncodedPayloadsPOST.yml
@@ -97,8 +97,6 @@ wordLists:
     - "%27%20UNION%20SELECT%201,%20user(),%20now()%20WHERE%201%3D0%20--"
     - "%27%20UNION%20SELECT%201,%20user(),%20char(0x2F)%20WHERE%201%3D0%20--"
     - "%27%20UNION%20SELECT%201,%20user(),%20version_comment()%20WHERE%201%3D0%20--"
-
- 
 execute:
   type: multiple
   requests:
@@ -194,8 +192,52 @@ execute:
                 - <html>
                 - </html>
               neq: "${x1.response.body}"
+        - success: x3
+        - failure: exit
+    - req:
+        - modify_body_param:
+            userKey: ${userVal}${unionBasedNegativePayloads}
+        - validate:
+            response_code:
+              gte: 200
+              lt: 300
+            response_payload:
+              length:
+                gt: 0
+              not_contains:
+                - Error
+                - Internal Server
+                - Fail
+                - Unauthorized
+                - access denied
+                - Forbidden
+                - Method Not allowed
+                - Gateway timeout
+                - request timeout
+                - server error
+                - server busy
+                - authentication error
+                - authorization error
+                - validation error
+                - Permission Denied
+                - invalid
+                - token expired
+                - session expired
+                - session timeout
+                - unexpected error
+                - unable to process request
+                - bad request
+                - service unavailable
+                - account is locked
+                - account is blocked
+                - multiple failed attempts
+                - Attention Required!
+                - CloudFlare
+                - Sorry, you have been blocked
+                - UNION
+                - SELECT
+                - WHERE
+                - <html>
+                - </html>
+              eq: "${x2.response.body}"
         - success: vulnerable
-
-
-
-
diff --git a/Broken-User-Authentication/UnionColumnBasedSQLiPOST.yml b/Broken-User-Authentication/UnionColumnBasedSQLiPOST.yml
@@ -197,6 +197,50 @@ execute:
                 - <html>
                 - </html>
               neq: "${x1.response.body}"
-        - success: vulnerable
-
-
+        - success: x3
+        - failure: exit
+    - req:
+        - modify_body_param:
+            userKey: ${userVal}${unionBasedNegativePayloads}
+        - validate:
+            response_code:
+              gte: 200
+              lt: 300
+            response_payload:
+              length:
+                gt: 0
+              not_contains:
+                - Error
+                - Internal Server
+                - Fail
+                - Unauthorized
+                - access denied
+                - Forbidden
+                - Method Not allowed
+                - Gateway timeout
+                - request timeout
+                - server error
+                - server busy
+                - authentication error
+                - authorization error
+                - validation error
+                - Permission Denied
+                - invalid
+                - token expired
+                - session expired
+                - session timeout
+                - unexpected error
+                - unable to process request
+                - bad request
+                - service unavailable
+                - account is locked
+                - account is blocked
+                - multiple failed attempts
+                - Attention Required!
+                - CloudFlare
+                - Sorry, you have been blocked
+                - " UNION SELECT "
+                - <html>
+                - </html>
+              eq: "${x2.response.body}"
+        - success: vulnerable
diff --git a/Broken-User-Authentication/UnionDataTypeBasedSQLiPOST.yml b/Broken-User-Authentication/UnionDataTypeBasedSQLiPOST.yml
@@ -198,7 +198,50 @@ execute:
                 - <html>
                 - </html>
               neq: "${x1.response.body}"
-        - success: vulnerable
-
-
-
+        - success: x3
+        - failure: exit
+    - req:
+        - modify_body_param:
+            userKey: ${userVal}${unionBasedNegativePayloads}
+        - validate:
+            response_code:
+              gte: 200
+              lt: 300
+            response_payload:
+              length:
+                gt: 0
+              not_contains:
+                - Error
+                - Internal Server
+                - Fail
+                - Unauthorized
+                - access denied
+                - Forbidden
+                - Method Not allowed
+                - Gateway timeout
+                - request timeout
+                - server error
+                - server busy
+                - authentication error
+                - authorization error
+                - validation error
+                - Permission Denied
+                - invalid
+                - token expired
+                - session expired
+                - session timeout
+                - unexpected error
+                - unable to process request
+                - bad request
+                - service unavailable
+                - account is locked
+                - account is blocked
+                - multiple failed attempts
+                - Attention Required!
+                - CloudFlare
+                - Sorry, you have been blocked
+                - " UNION SELECT "
+                - <html>
+                - </html>
+              eq: "${x2.response.body}"
+        - success: vulnerable
