/claim #14587

PR Information

This pull request adds a robust nuclei template for detecting CVE-2018-9206, an unauthenticated arbitrary file upload vulnerability in Blueimp jQuery-File-Upload <= v9.22.0.

Key Features:

• Tests 11 common installation paths for maximum coverage
• Extracts uploaded file URL from server’s JSON response
• Verifies file content accessibility for reliable detection
• Handles PHP warnings gracefully with improved matcher logic
• Includes comprehensive testing environment with Docker

References:

• http://www.vapidlabs.com/advisory.php?v=204
• https://nvd.nist.gov/vuln/detail/CVE-2018-9206
• https://www.exploit-db.com/exploits/45790
• https://github.com/blueimp/jQuery-File-Upload/pull/3514

Template validation

• Validated with a host running a vulnerable version and/or configuration (True Positive)

Additional Details

Template validated using a local Docker environment running jQuery-File-Upload v9.22.0.

Additional References:

• Nuclei Template Creation Guideline
• Nuclei Template Matcher Guideline
• Nuclei Template Contribution Guideline