Update CVE-2023-27524.yaml

[E1A]

Template / PR Information

This vulnerability lays in the standard SECRET_KEY, with this secret key you can forge your own cookies to login as an admin. The only problem with the original script is that most of the cookies don't work. I've changed these cookies with this PR so that they work. I've added a screenshot where nuclei_yaml includes my cookies and org_nulei.yaml is the original script, I've tested this on a few vulnerable hosts and as you can see in the screenshots it has more hits.

• Updated CVE-2023-27524 with right cookies
• References: https://www.horizon3.ai/cve-2023-27524-insecure-default-configuration-in-apache-superset-leads-to-remote-code-execution/

Template Validation

I've validated this template locally?

• YES
• NO

[ritikchaddha]

Hello @E1A, We appreciate your efforts in updating the template and making it more suitable, Your contribution has been truly valuable to us. Cheers! 🍻

You can join our discord server. It's a great place to connect with fellow contributors and stay updated with the latest developments. Thank you once again

[E1A]

Thanks! Already joined the discord and has very helpfull so far. Was this pr eligible with the defcon31 contest? Or was the pr only the bonus point