daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

TemplateMan Update [Thu Nov 23 09:21:41 UTC 2023] 🤖

patch-1
GitHub Action 2023-11-23 09:21:41 +00:00
parent e87f3be492
commit 04441ab97a
18 changed files with 35 additions and 19 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
http/cves/2016/CVE-2016-5649.yaml
View File

@ -50,4 +50,5 @@ http:
regex:
- '<b>Success "([a-z]+)"'
part: body
# digest: 4a0a00473045022100c1cafff462085f70a9404a7deb63ed4e4792af0ef39785234deb65a3fe0ec1ab0220736c9d460c9ad5d3bda568c1af6a135d56ab355e19a84c1780a348a44d20b128:922c64590222798bb761d5b6d8e72950
# digest: 4a0a00473045022100c1cafff462085f70a9404a7deb63ed4e4792af0ef39785234deb65a3fe0ec1ab0220736c9d460c9ad5d3bda568c1af6a135d56ab355e19a84c1780a348a44d20b128:922c64590222798bb761d5b6d8e72950

3
http/cves/2018/CVE-2018-17246.yaml
View File

@ -51,4 +51,5 @@ http:
part: header
words:
- "application/json"
# digest: 4a0a004730450220213228268782693f66e0df02db68fa347d0fc84c027b111d046d1e62e0bfedda022100f36226e19502ddd34468b31ed8a94ca28128ec03f27440344a8117a633ec86e6:922c64590222798bb761d5b6d8e72950
# digest: 4a0a004730450220213228268782693f66e0df02db68fa347d0fc84c027b111d046d1e62e0bfedda022100f36226e19502ddd34468b31ed8a94ca28128ec03f27440344a8117a633ec86e6:922c64590222798bb761d5b6d8e72950

3
http/cves/2018/CVE-2018-3760.yaml
View File

@ -54,4 +54,5 @@ http:
- "/etc/passwd is no longer under a load path: (.*?),"
internal: true
part: body
# digest: 490a0046304402207d579f2bb140edf71c0f5f1f67bba1cf5ed33f996ee5c0d1c5b7d7d45bf320e4022040ce44822ae9823165872ce922a1fbb4de6f74e49c678396f16406047b5b02f9:922c64590222798bb761d5b6d8e72950
# digest: 490a0046304402207d579f2bb140edf71c0f5f1f67bba1cf5ed33f996ee5c0d1c5b7d7d45bf320e4022040ce44822ae9823165872ce922a1fbb4de6f74e49c678396f16406047b5b02f9:922c64590222798bb761d5b6d8e72950

3
http/cves/2020/CVE-2020-11034.yaml
View File

@ -37,4 +37,5 @@ http:
part: header
regex:
- '(?m)^(?:Location\s*?:\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\-_]*\.)?interact\.sh(?:\s*?)$'
# digest: 490a00463044022045030f48a82566b2c9aa6674b419b895d5ca497a056b16a36340c285fb9734b902207cb769c81df72bf8f923fadd026e72368812a6848c254c63014fff4945741fe6:922c64590222798bb761d5b6d8e72950
# digest: 490a00463044022045030f48a82566b2c9aa6674b419b895d5ca497a056b16a36340c285fb9734b902207cb769c81df72bf8f923fadd026e72368812a6848c254c63014fff4945741fe6:922c64590222798bb761d5b6d8e72950

3
http/cves/2020/CVE-2020-13942.yaml
View File

@ -79,4 +79,5 @@ http:
- type: status
status:
- 200
# digest: 4a0a00473045022054c5143860e4bb8b5ed1d3184be1936e0e24575fb31c35f02a0fb92cb4c45f97022100fd7b2b8e7db9bd2ada63f87d529049dbb982fc43f89f0629d25cad7f46cadfc6:922c64590222798bb761d5b6d8e72950
# digest: 4a0a00473045022054c5143860e4bb8b5ed1d3184be1936e0e24575fb31c35f02a0fb92cb4c45f97022100fd7b2b8e7db9bd2ada63f87d529049dbb982fc43f89f0629d25cad7f46cadfc6:922c64590222798bb761d5b6d8e72950

3
http/cves/2020/CVE-2020-15227.yaml
View File

@ -41,4 +41,5 @@ http:
- type: status
status:
- 200
# digest: 4a0a0047304502203fdf14c8d289962f9c0cc16ca822205c86a469cf89d7171cfb2c61ece7bf1b9f022100834f09993fa69a2cb72d3d080fb77f2848b65936b0c51bb6f2d8eb3b9ec4a6d5:922c64590222798bb761d5b6d8e72950
# digest: 4a0a0047304502203fdf14c8d289962f9c0cc16ca822205c86a469cf89d7171cfb2c61ece7bf1b9f022100834f09993fa69a2cb72d3d080fb77f2848b65936b0c51bb6f2d8eb3b9ec4a6d5:922c64590222798bb761d5b6d8e72950

2
http/cves/2020/CVE-2020-5412.yaml
View File

@ -46,4 +46,4 @@ http:
- 200
# To get crithit, try http://169.254.169.254/latest/metadata/
# digest: 490a0046304402207c8dc010e7627348a1813864fb2a05ef4c57457a8879e2582276a944ccd5e30d022002d266d1ff336125296e17c1475b7c163eeede34f4ffc98d53117daf1df95ce0:922c64590222798bb761d5b6d8e72950
# digest: 490a0046304402207c8dc010e7627348a1813864fb2a05ef4c57457a8879e2582276a944ccd5e30d022002d266d1ff336125296e17c1475b7c163eeede34f4ffc98d53117daf1df95ce0:922c64590222798bb761d5b6d8e72950

3
http/cves/2021/CVE-2021-1472.yaml
View File

@ -77,4 +77,5 @@ http:
part: body
words:
- '"jsonrpc":'
# digest: 4a0a00473045022100eaf9e154357402be84a4dc6132f635a03ec7c157847a939732cc239c26451e0602202fd75a5da7af04aa133baa277ddc7c89b3adaed52b77ef171158bc066d863259:922c64590222798bb761d5b6d8e72950
# digest: 4a0a00473045022100eaf9e154357402be84a4dc6132f635a03ec7c157847a939732cc239c26451e0602202fd75a5da7af04aa133baa277ddc7c89b3adaed52b77ef171158bc066d863259:922c64590222798bb761d5b6d8e72950

3
http/cves/2021/CVE-2021-20038.yaml
View File

@ -53,4 +53,5 @@ http:
part: interactsh_request
words:
- "User-Agent: {{useragent}}"
# digest: 4b0a00483046022100c1d729cb6476cc2313482cbe7cc9746db6f692333ee219a9f35afce49d3d4d9e022100ff7a07fee169324d73eaa31f24545649deb5fdb3090a47ed756a21aae2809471:922c64590222798bb761d5b6d8e72950
# digest: 4b0a00483046022100c1d729cb6476cc2313482cbe7cc9746db6f692333ee219a9f35afce49d3d4d9e022100ff7a07fee169324d73eaa31f24545649deb5fdb3090a47ed756a21aae2809471:922c64590222798bb761d5b6d8e72950

3
http/cves/2021/CVE-2021-24215.yaml
View File

@ -50,4 +50,5 @@ http:
- 'contains(content_type_2, "text/html")'
- 'contains(body_2, "This page allows direct access to your site settings") && contains(body_2, "Controlled Admin Access")'
condition: and
# digest: 4b0a00483046022100c8c5721b6bc45a29960354a8d3cba5864790d84238db095291f550e7dc5bc1f002210084abf5c0497657af5bd291d0ba1a249ded1910d074b92867b781682b509a69f1:922c64590222798bb761d5b6d8e72950
# digest: 4b0a00483046022100c8c5721b6bc45a29960354a8d3cba5864790d84238db095291f550e7dc5bc1f002210084abf5c0497657af5bd291d0ba1a249ded1910d074b92867b781682b509a69f1:922c64590222798bb761d5b6d8e72950

3
http/cves/2021/CVE-2021-24947.yaml
View File

@ -50,4 +50,5 @@ http:
- type: status
status:
- 200
# digest: 4a0a0047304502204f73ab41dee19a87000cd68de08787c160e0a67d889ebda69ba9b4e59d1dfa25022100a8bb3e937ecd995f0597b640d1e5581ce33c980eeeef5879d2a041573fca0dd7:922c64590222798bb761d5b6d8e72950
# digest: 4a0a0047304502204f73ab41dee19a87000cd68de08787c160e0a67d889ebda69ba9b4e59d1dfa25022100a8bb3e937ecd995f0597b640d1e5581ce33c980eeeef5879d2a041573fca0dd7:922c64590222798bb761d5b6d8e72950

3
http/cves/2021/CVE-2021-39144.yaml
View File

@ -85,4 +85,5 @@ http:
part: interactsh_request
words:
- "User-Agent: curl"
# digest: 4b0a00483046022100a57213ab517a061a53c46ed446372b4fb216c7c9e4604eeb0a26030a288a9351022100d26c9746512a424b678fdf83f8e1aca9db99098f758b81e8bfd1213da1146337:922c64590222798bb761d5b6d8e72950
# digest: 4b0a00483046022100a57213ab517a061a53c46ed446372b4fb216c7c9e4604eeb0a26030a288a9351022100d26c9746512a424b678fdf83f8e1aca9db99098f758b81e8bfd1213da1146337:922c64590222798bb761d5b6d8e72950

3
http/cves/2022/CVE-2022-1329.yaml
View File

@ -77,4 +77,5 @@ http:
regex:
- 'admin-ajax.php","nonce":"([0-9a-zA-Z]+)"}'
internal: true
# digest: 4a0a00473045022100e21c743d3da45d3a099674a7bd25cd6f07c43fa11afdf9b791224964dc1761e60220163bee65a4b7f6adfc03a7a1781f10e073dca25a1a943dedc26968e8cf180cbe:922c64590222798bb761d5b6d8e72950
# digest: 4a0a00473045022100e21c743d3da45d3a099674a7bd25cd6f07c43fa11afdf9b791224964dc1761e60220163bee65a4b7f6adfc03a7a1781f10e073dca25a1a943dedc26968e8cf180cbe:922c64590222798bb761d5b6d8e72950

3
http/cves/2022/CVE-2022-23134.yaml
View File

@ -51,4 +51,5 @@ http:
- type: status
status:
- 200
# digest: 4b0a004830460221009106fe578c4a1f0bc05f207953ada547dea38f08eff099b315eca84e81d06d0a022100d873a80cb4ff9443c04f2f7029bd08b9b50edc6ea398396c9c10d085db72134f:922c64590222798bb761d5b6d8e72950
# digest: 4b0a004830460221009106fe578c4a1f0bc05f207953ada547dea38f08eff099b315eca84e81d06d0a022100d873a80cb4ff9443c04f2f7029bd08b9b50edc6ea398396c9c10d085db72134f:922c64590222798bb761d5b6d8e72950

3
http/cves/2022/CVE-2022-23944.yaml
View File

@ -43,4 +43,5 @@ http:
- type: status
status:
- 200
# digest: 490a004630440220633500ad61da531a6800c4e5e5e9a6b8d47057b00e0d81b120a2f68b2b59d85a022068588bbaa52f6d15cdd6b967316bb3cc6f3b2a89097f605738b0360fb5d76cbb:922c64590222798bb761d5b6d8e72950
# digest: 490a004630440220633500ad61da531a6800c4e5e5e9a6b8d47057b00e0d81b120a2f68b2b59d85a022068588bbaa52f6d15cdd6b967316bb3cc6f3b2a89097f605738b0360fb5d76cbb:922c64590222798bb761d5b6d8e72950

3
http/cves/2022/CVE-2022-2633.yaml
View File

@ -47,4 +47,5 @@ http:
- type: status
status:
- 200
# digest: 4a0a0047304502201d2eabd0ea5977e27b0481a129792d8bd892fc3fe2240bf518b6bf37fa2be07f022100bea22bc270c424af1fd6280ac72c04a3bd0b960647fa7b0b5020d5c53cbf668d:922c64590222798bb761d5b6d8e72950
# digest: 4a0a0047304502201d2eabd0ea5977e27b0481a129792d8bd892fc3fe2240bf518b6bf37fa2be07f022100bea22bc270c424af1fd6280ac72c04a3bd0b960647fa7b0b5020d5c53cbf668d:922c64590222798bb761d5b6d8e72950

3
http/cves/2022/CVE-2022-46169.yaml
View File

@ -63,4 +63,5 @@ http:
- type: status
status:
- 200
# digest: 4b0a00483046022100f2519e822cc66ed0b10312f6c322097d0a7fef24a43d54cceac27545daea6ccc022100fb253b9b17a1774ad9e451c7f54f67dd0938fe1c943b96a9ff475dd21063e48e:922c64590222798bb761d5b6d8e72950
# digest: 4b0a00483046022100f2519e822cc66ed0b10312f6c322097d0a7fef24a43d54cceac27545daea6ccc022100fb253b9b17a1774ad9e451c7f54f67dd0938fe1c943b96a9ff475dd21063e48e:922c64590222798bb761d5b6d8e72950

4
http/exposed-panels/structurizr-panel.yaml
View File

@ -7,11 +7,10 @@ info:
description: Structurizr login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0
cwe-id: CWE-200
metadata:
max-request: 1
verified: true
max-request: 2
shodan-query: http.favicon.hash:1199592666
tags: panel,structurizr,detect
@ -24,6 +23,7 @@ http:
host-redirects: true
max-redirects: 2
stop-at-first-match: true
matchers-condition: and
matchers:
- type: word