Add CVE-2025-49706.yaml test

crowdsec-automation · crowdsec-automation · commit a16e153bce1f · 2025-12-10T16:06:53.000+01:00
diff --git a/.appsec-tests/vpatch-CVE-2025-49706/CVE-2025-49706.yaml b/.appsec-tests/vpatch-CVE-2025-49706/CVE-2025-49706.yaml
@@ -0,0 +1,22 @@
+## autogenerated on 2025-12-10 15:06:47
+id: CVE-2025-49706
+info:
+  name: CVE-2025-49706
+  author: crowdsec
+  severity: info
+  description: CVE-2025-49706 testing
+  tags: appsec-testing
+http:
+  - raw:
+      - |
+        POST /_layouts/15/ToolPane.aspx?DisplayMode=Edit&a=/ToolPane.aspx HTTP/1.1
+        Host: {{Hostname}}
+        Content-Type: application/x-www-form-urlencoded
+        Accept-Encoding: gzip
+
+        MSOTlPn_Uri=&MSOTlPn_DWP=
+    cookie-reuse: true
+    matchers:
+    - type: status
+      status:
+       - 403
