Justboil.ME Plugins Image Upload Vulnerability New Method

### Is there an existing template for this?

- [x] I have searched the existing templates.

### Nuclei Template

```yaml
id: justboil-me-image-upload

info:
  name: Justboil.ME Plugins Image Upload Vulnerability
  author: 0xr2r
  severity: medium
  reference: https://github.com/0xr2r
  description: |
    This template checks for the Justboil.ME image upload vulnerability by verifying the presence of the vulnerable dialog file.
  tags: justboil, image-upload, vulnerability

http:
  - method: GET
    path:
      - "{{BaseURL}}/plugins/generic/tinymce/plugins/justboil.me/dialog-v4.htm"

    matchers-condition: and
    matchers:
      - type: status
        status:
          - 200
      - type: word
        words:
          - "JustBoil.me Images Plugin"
          - "TinyMCE"
      - type: word
        part: header
        words:
          - "Content-Type: text/html"

    extractors:
      - type: regex
        part: body
        regex:
          - "<title>(.*?)</title>"
```

### Relevant dumped responses

```


```

### Anything else?

![Image](https://github.com/user-attachments/assets/2a00da7a-1d10-46a9-8725-c6a6e0ae2375)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Justboil.ME Plugins Image Upload Vulnerability New Method #12741

Is there an existing template for this?

Nuclei Template

Relevant dumped responses

Anything else?

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Justboil.ME Plugins Image Upload Vulnerability New Method #12741

Description

Is there an existing template for this?

Nuclei Template

Relevant dumped responses

Anything else?

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions