TemplateMan Update [Sat Oct 14 19:50:16 UTC 2023] 🤖
parent
f1b7046cfb
commit
076aa6cafd
|
@ -8,11 +8,9 @@ info:
|
|||
- https://github.com/arbor/yara/blob/master/madness.yara
|
||||
- https://github.com/Yara-Rules/rules/blob/master/malware/MALW_Madness.yar
|
||||
tags: malware,file
|
||||
|
||||
file:
|
||||
- extensions:
|
||||
- all
|
||||
|
||||
matchers:
|
||||
- type: word
|
||||
part: raw
|
||||
|
@ -25,4 +23,4 @@ file:
|
|||
- "\"location\"];"
|
||||
- "d3Rm"
|
||||
- "ZXhl"
|
||||
condition: and
|
||||
condition: and
|
||||
|
|
|
@ -19,7 +19,7 @@ info:
|
|||
cve-id: CVE-2004-1965
|
||||
cwe-id: NVD-CWE-Other
|
||||
epss-score: 0.0113
|
||||
epss-percentile: 0.82864
|
||||
epss-percentile: 0.83056
|
||||
cpe: cpe:2.3:a:openbb:openbb:1.0.0_beta1:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
max-request: 1
|
||||
|
|
|
@ -15,7 +15,7 @@ info:
|
|||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
||||
cvss-score: 9.8
|
||||
cve-id: CVE-2016-5649
|
||||
cwe-id: CWE-319,CWE-200
|
||||
cwe-id: CWE-200,CWE-319
|
||||
epss-score: 0.15681
|
||||
epss-percentile: 0.95295
|
||||
cpe: cpe:2.3:o:netgear:dgn2200_firmware:1.0.0.50_7.0.50:*:*:*:*:*:*:*
|
||||
|
|
|
@ -18,7 +18,7 @@ info:
|
|||
cve-id: CVE-2017-4011
|
||||
cwe-id: CWE-79
|
||||
epss-score: 0.00142
|
||||
epss-percentile: 0.49337
|
||||
epss-percentile: 0.49705
|
||||
cpe: cpe:2.3:a:mcafee:network_data_loss_prevention:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
max-request: 1
|
||||
|
|
|
@ -18,7 +18,7 @@ info:
|
|||
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L
|
||||
cvss-score: 8.2
|
||||
cve-id: CVE-2019-11248
|
||||
cwe-id: CWE-419,CWE-862
|
||||
cwe-id: CWE-862,CWE-419
|
||||
epss-score: 0.74826
|
||||
epss-percentile: 0.97777
|
||||
cpe: cpe:2.3:a:kubernetes:kubernetes:*:*:*:*:*:*:*:*
|
||||
|
|
|
@ -18,7 +18,7 @@ info:
|
|||
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
||||
cvss-score: 9.8
|
||||
cve-id: CVE-2020-10148
|
||||
cwe-id: CWE-287,CWE-288
|
||||
cwe-id: CWE-288,CWE-287
|
||||
epss-score: 0.97324
|
||||
epss-percentile: 0.99837
|
||||
cpe: cpe:2.3:a:solarwinds:orion_platform:2019.4:hotfix5:*:*:*:*:*:*
|
||||
|
|
|
@ -26,7 +26,7 @@ info:
|
|||
vendor: apache
|
||||
product: airflow
|
||||
shodan-query: http.html:"Apache Airflow" || title:"Airflow - DAGs"
|
||||
tags: cve,cve2020,apache,airflow,rce,kev
|
||||
tags: packetstorm,cve,cve2020,apache,airflow,rce,kev
|
||||
|
||||
http:
|
||||
- raw:
|
||||
|
|
|
@ -20,7 +20,7 @@ info:
|
|||
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
|
||||
cvss-score: 7.5
|
||||
cve-id: CVE-2020-3452
|
||||
cwe-id: CWE-22,CWE-20
|
||||
cwe-id: CWE-20,CWE-22
|
||||
epss-score: 0.97545
|
||||
epss-percentile: 0.99992
|
||||
cpe: cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*
|
||||
|
|
|
@ -14,7 +14,7 @@ info:
|
|||
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
|
||||
cvss-score: 6.5
|
||||
cve-id: CVE-2020-5412
|
||||
cwe-id: CWE-441,CWE-610
|
||||
cwe-id: CWE-610,CWE-441
|
||||
epss-score: 0.39161
|
||||
epss-percentile: 0.96796
|
||||
cpe: cpe:2.3:a:vmware:spring_cloud_netflix:*:*:*:*:*:*:*:*
|
||||
|
|
|
@ -16,7 +16,7 @@ info:
|
|||
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
|
||||
cvss-score: 6.5
|
||||
cve-id: CVE-2020-8193
|
||||
cwe-id: CWE-287,CWE-284
|
||||
cwe-id: CWE-284,CWE-287
|
||||
epss-score: 0.93458
|
||||
epss-percentile: 0.98801
|
||||
cpe: cpe:2.3:o:citrix:application_delivery_controller_firmware:*:*:*:*:*:*:*:*
|
||||
|
|
|
@ -15,7 +15,7 @@ info:
|
|||
cvss-metrics: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
||||
cvss-score: 8.8
|
||||
cve-id: CVE-2021-3577
|
||||
cwe-id: CWE-78,CWE-863
|
||||
cwe-id: CWE-863,CWE-78
|
||||
epss-score: 0.97098
|
||||
epss-percentile: 0.99695
|
||||
cpe: cpe:2.3:o:binatoneglobal:halo\+_camera_firmware:*:*:*:*:*:*:*:*
|
||||
|
|
|
@ -16,7 +16,7 @@ info:
|
|||
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
|
||||
cvss-score: 5.3
|
||||
cve-id: CVE-2021-38314
|
||||
cwe-id: CWE-200,CWE-916
|
||||
cwe-id: CWE-916,CWE-200
|
||||
epss-score: 0.00153
|
||||
epss-percentile: 0.51334
|
||||
cpe: cpe:2.3:a:redux:gutenberg_template_library_\&_redux_framework:*:*:*:*:*:wordpress:*:*
|
||||
|
|
|
@ -17,7 +17,7 @@ info:
|
|||
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
|
||||
cvss-score: 5.3
|
||||
cve-id: CVE-2021-39327
|
||||
cwe-id: CWE-200,CWE-459
|
||||
cwe-id: CWE-459,CWE-200
|
||||
epss-score: 0.1118
|
||||
epss-percentile: 0.94527
|
||||
cpe: cpe:2.3:a:ait-pro:bulletproof_security:*:*:*:*:*:wordpress:*:*
|
||||
|
|
|
@ -15,7 +15,7 @@ info:
|
|||
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
|
||||
cvss-score: 7.5
|
||||
cve-id: CVE-2021-41277
|
||||
cwe-id: CWE-200,CWE-22
|
||||
cwe-id: CWE-22,CWE-200
|
||||
epss-score: 0.11624
|
||||
epss-percentile: 0.94638
|
||||
cpe: cpe:2.3:a:metabase:metabase:0.40.0:-:*:*:*:*:*:*
|
||||
|
|
|
@ -18,7 +18,7 @@ info:
|
|||
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
|
||||
cvss-score: 9.1
|
||||
cve-id: CVE-2022-0482
|
||||
cwe-id: CWE-359,CWE-863
|
||||
cwe-id: CWE-863,CWE-359
|
||||
epss-score: 0.03299
|
||||
epss-percentile: 0.902
|
||||
cpe: cpe:2.3:a:easyappointments:easyappointments:*:*:*:*:*:wordpress:*:*
|
||||
|
|
|
@ -16,7 +16,7 @@ info:
|
|||
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
||||
cvss-score: 8.8
|
||||
cve-id: CVE-2022-0824
|
||||
cwe-id: CWE-863,CWE-284
|
||||
cwe-id: CWE-284,CWE-863
|
||||
epss-score: 0.97276
|
||||
epss-percentile: 0.99802
|
||||
cpe: cpe:2.3:a:webmin:webmin:*:*:*:*:*:*:*:*
|
||||
|
|
|
@ -19,7 +19,7 @@ info:
|
|||
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
||||
cvss-score: 9.8
|
||||
cve-id: CVE-2022-22963
|
||||
cwe-id: CWE-94,CWE-917
|
||||
cwe-id: CWE-917,CWE-94
|
||||
epss-score: 0.97508
|
||||
epss-percentile: 0.99978
|
||||
cpe: cpe:2.3:a:vmware:spring_cloud_function:*:*:*:*:*:*:*:*
|
||||
|
|
|
@ -17,7 +17,7 @@ info:
|
|||
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
|
||||
cvss-score: 5.3
|
||||
cve-id: CVE-2022-23134
|
||||
cwe-id: CWE-287,CWE-284
|
||||
cwe-id: CWE-284,CWE-287
|
||||
epss-score: 0.26637
|
||||
epss-percentile: 0.962
|
||||
cpe: cpe:2.3:a:zabbix:zabbix:*:*:*:*:*:*:*:*
|
||||
|
|
|
@ -18,7 +18,7 @@ info:
|
|||
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
|
||||
cvss-score: 7.5
|
||||
cve-id: CVE-2022-23854
|
||||
cwe-id: CWE-22,CWE-23
|
||||
cwe-id: CWE-23,CWE-22
|
||||
epss-score: 0.85553
|
||||
epss-percentile: 0.98158
|
||||
cpe: cpe:2.3:a:aveva:intouch_access_anywhere:*:*:*:*:*:*:*:*
|
||||
|
|
|
@ -18,7 +18,7 @@ info:
|
|||
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
|
||||
cvss-score: 8.2
|
||||
cve-id: CVE-2022-2633
|
||||
cwe-id: CWE-610,CWE-73
|
||||
cwe-id: CWE-73,CWE-610
|
||||
epss-score: 0.05267
|
||||
epss-percentile: 0.92161
|
||||
cpe: cpe:2.3:a:plugins360:all-in-one_video_gallery:*:*:*:*:*:wordpress:*:*
|
||||
|
|
|
@ -16,7 +16,7 @@ info:
|
|||
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
||||
cvss-score: 8.8
|
||||
cve-id: CVE-2022-3800
|
||||
cwe-id: CWE-89,CWE-707
|
||||
cwe-id: CWE-707,CWE-89
|
||||
epss-score: 0.04344
|
||||
epss-percentile: 0.91362
|
||||
cpe: cpe:2.3:a:ibax:go-ibax:-:*:*:*:*:*:*:*
|
||||
|
|
|
@ -18,7 +18,7 @@ info:
|
|||
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
||||
cvss-score: 9.8
|
||||
cve-id: CVE-2022-46169
|
||||
cwe-id: CWE-74,CWE-78
|
||||
cwe-id: CWE-78,CWE-74
|
||||
epss-score: 0.967
|
||||
epss-percentile: 0.99522
|
||||
cpe: cpe:2.3:a:cacti:cacti:*:*:*:*:*:*:*:*
|
||||
|
|
|
@ -28,7 +28,7 @@ info:
|
|||
product: solarview_compact_firmware
|
||||
shodan-query: http.html:"SolarView Compact"
|
||||
fofa-query: body="SolarView Compact" && title="Top"
|
||||
tags: cve,cve2023,solarview,rce
|
||||
tags: packetstorm,cve,cve2023,solarview,rce
|
||||
variables:
|
||||
cmd: "echo+CVE-2023-23333|rev"
|
||||
|
||||
|
|
|
@ -17,7 +17,7 @@ info:
|
|||
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
|
||||
cvss-score: 7.5
|
||||
cve-id: CVE-2023-28432
|
||||
cwe-id: CWE-200
|
||||
cwe-id: CWE-200,NVD-CWE-noinfo
|
||||
epss-score: 0.14384
|
||||
epss-percentile: 0.95092
|
||||
cpe: cpe:2.3:a:minio:minio:*:*:*:*:*:*:*:*
|
||||
|
|
|
@ -22,7 +22,7 @@ info:
|
|||
max-request: 2
|
||||
vendor: totolink
|
||||
product: x5000r_firmware
|
||||
tags: cve,cve2023,totolink,unauth,rce,intrusive
|
||||
tags: packetstorm,cve,cve2023,totolink,unauth,rce,intrusive
|
||||
|
||||
http:
|
||||
- raw:
|
||||
|
|
|
@ -24,7 +24,7 @@ info:
|
|||
max-request: 1
|
||||
vendor: rudderstack
|
||||
product: rudder-server
|
||||
tags: cve,cve2023,rudder,rudderstack
|
||||
tags: packetstorm,cve,cve2023,rudder,rudderstack
|
||||
variables:
|
||||
cmd: "wget {{interactsh-url}}"
|
||||
|
||||
|
|
|
@ -26,7 +26,7 @@ info:
|
|||
vendor: juniper
|
||||
product: junos
|
||||
shodan-query: title:"Juniper Web Device Manager"
|
||||
tags: cve,cve2023,rce,unauth,juniper
|
||||
tags: packetstorm,cve,cve2023,rce,unauth,juniper
|
||||
|
||||
http:
|
||||
- raw:
|
||||
|
|
|
@ -25,7 +25,7 @@ info:
|
|||
max-request: 1
|
||||
vendor: copyparty_project
|
||||
product: copyparty
|
||||
tags: cve,cve2023,traversal,copyparty
|
||||
tags: packetstorm,cve,cve2023,traversal,copyparty
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
|
|
|
@ -28,7 +28,7 @@ info:
|
|||
vendor: ivanti
|
||||
product: mobileiron_sentry
|
||||
shodan-query: 'html:"Note: Requires a local Sentry administrative user"'
|
||||
tags: cve,cve2023,ivanti,mobileiron,sentry,kev,rce,auth-bypass,oast
|
||||
tags: packetstorm,cve,cve2023,ivanti,mobileiron,sentry,kev,rce,auth-bypass,oast
|
||||
variables:
|
||||
oast: "{{interactsh-url}}/?"
|
||||
padstr: "{{randstr}}"
|
||||
|
|
|
@ -27,7 +27,7 @@ info:
|
|||
vendor: copyparty_project
|
||||
product: copyparty
|
||||
shodan-query: title:"copyparty"
|
||||
tags: copyparty,cve,cve2023,xss
|
||||
tags: packetstorm,copyparty,cve,cve2023,xss
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
|
|
|
@ -28,7 +28,7 @@ info:
|
|||
vendor: filemage
|
||||
product: filemage
|
||||
shodan-query: title:"FileMage"
|
||||
tags: cve,cve2023,lfi,filemage
|
||||
tags: packetstorm,cve,cve2023,lfi,filemage
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
|
|
|
@ -28,7 +28,7 @@ info:
|
|||
product: media_library_assistant
|
||||
framework: wordpress
|
||||
publicwww-query: "wp-content/plugins/media-library-assistant"
|
||||
tags: cve,cve2023,wordpress,wp,wp-plugin,lfi,rce,media-library-assistant
|
||||
tags: packetstorm,cve,cve2023,wordpress,wp,wp-plugin,lfi,rce,media-library-assistant
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
|
|
|
@ -11,9 +11,9 @@ info:
|
|||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
|
||||
cvss-score: 8.3
|
||||
cwe-id: CWE-522
|
||||
tags: hortonworks,smartsense,default-login
|
||||
metadata:
|
||||
max-request: 1
|
||||
tags: hortonworks,smartsense,default-login
|
||||
|
||||
http:
|
||||
- raw:
|
||||
|
|
|
@ -7,11 +7,11 @@ info:
|
|||
description: BMC Discovery Outpost admin panel was detected.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0.0
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
tags: panel,bmc
|
||||
metadata:
|
||||
max-request: 1
|
||||
tags: panel,bmc
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
|
|
|
@ -9,11 +9,11 @@ info:
|
|||
- https://www.connectwise.com/company/trust/security-bulletins/r1soft-and-recover-security-bulletin
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0.0
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
metadata:
|
||||
max-request: 1
|
||||
verified: true
|
||||
max-request: 1
|
||||
shodan-query: http.component:zk http.title:"Server Backup Manager"
|
||||
tags: panel,connectwise,backup
|
||||
|
||||
|
|
|
@ -9,9 +9,9 @@ info:
|
|||
reference:
|
||||
- https://www.quilium.io/
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 2
|
||||
shodan-query: http.html:"CMS Quilium"
|
||||
verified: true
|
||||
tags: panel,quilium,login,detect
|
||||
|
||||
http:
|
||||
|
@ -21,6 +21,7 @@ http:
|
|||
- '{{BaseURL}}/en/login'
|
||||
|
||||
stop-at-first-match: true
|
||||
|
||||
matchers-condition: and
|
||||
matchers:
|
||||
- type: word
|
||||
|
|
|
@ -7,11 +7,11 @@ info:
|
|||
description: Sitecore admin login panel was detected.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0.0
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
tags: panel,sitecore,login
|
||||
metadata:
|
||||
max-request: 1
|
||||
tags: panel,sitecore,login
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
|
|
|
@ -4,9 +4,9 @@ info:
|
|||
name: Keycloak JSON File
|
||||
author: oppsec
|
||||
severity: info
|
||||
tags: exposure,keycloak,config,files
|
||||
metadata:
|
||||
max-request: 1
|
||||
tags: exposure,keycloak,config,files
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
|
|
|
@ -6,9 +6,9 @@ info:
|
|||
severity: info
|
||||
reference:
|
||||
- https://github.com/detectify/ugly-duckling/blob/master/modules/crowdsourced/thumbs-db-disclosure.json
|
||||
tags: exposure,files
|
||||
metadata:
|
||||
max-request: 1
|
||||
tags: exposure,files
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
|
|
|
@ -4,16 +4,17 @@ info:
|
|||
name: Zapier Webhook Disclosure
|
||||
author: Ice3man
|
||||
severity: info
|
||||
tags: exposure,token
|
||||
metadata:
|
||||
max-request: 1
|
||||
tags: exposure,token
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
path:
|
||||
- "{{BaseURL}}"
|
||||
|
||||
extractors:
|
||||
- type: regex
|
||||
part: body
|
||||
regex:
|
||||
- 'https://(?:www.)?hooks\.zapier\.com/hooks/catch/[A-Za-z0-9]+/[A-Za-z0-9]+/'
|
||||
- 'https://(?:www.)?hooks\.zapier\.com/hooks/catch/[A-Za-z0-9]+/[A-Za-z0-9]+/'
|
||||
|
|
|
@ -5,8 +5,8 @@ info:
|
|||
author: pdteam
|
||||
severity: low
|
||||
metadata:
|
||||
max-request: 1
|
||||
verified: true
|
||||
max-request: 1
|
||||
shodan-query: title:"Airflow - DAGs"
|
||||
tags: apache,airflow,fpd,misconfig
|
||||
|
||||
|
@ -17,7 +17,6 @@ http:
|
|||
|
||||
matchers-condition: and
|
||||
matchers:
|
||||
|
||||
- type: word
|
||||
part: body
|
||||
words:
|
||||
|
@ -27,4 +26,4 @@ http:
|
|||
|
||||
- type: status
|
||||
status:
|
||||
- 500
|
||||
- 500
|
||||
|
|
|
@ -3,17 +3,18 @@ id: calendy
|
|||
info:
|
||||
name: Calendy User Name Information - Detect
|
||||
author: dwisiswant0
|
||||
description: Calendy user name information check was conducted.
|
||||
severity: info
|
||||
description: Calendy user name information check was conducted.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0.0
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
tags: osint,osint-misc,calendy
|
||||
metadata:
|
||||
max-request: 1
|
||||
tags: osint,osint-misc,calendy
|
||||
|
||||
self-contained: true
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
path:
|
||||
|
|
|
@ -3,17 +3,18 @@ id: furaffinity
|
|||
info:
|
||||
name: FurAffinity User Name Information - Detect
|
||||
author: dwisiswant0
|
||||
description: FurAffinity user name information check was conducted.
|
||||
severity: info
|
||||
description: FurAffinity user name information check was conducted.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0.0
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
tags: osint,osint-images,furaffinity
|
||||
metadata:
|
||||
max-request: 1
|
||||
tags: osint,osint-images,furaffinity
|
||||
|
||||
self-contained: true
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
path:
|
||||
|
|
|
@ -6,9 +6,9 @@ info:
|
|||
severity: high
|
||||
reference:
|
||||
- https://github.com/EdOverflow/can-i-take-over-xyz
|
||||
tags: takeover
|
||||
metadata:
|
||||
max-request: 1
|
||||
tags: takeover
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
|
@ -25,4 +25,4 @@ http:
|
|||
words:
|
||||
- Profile not found
|
||||
- Hmmm....something is not right.
|
||||
condition: and
|
||||
condition: and
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/ad-inserter/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: ad-inserter
|
||||
wpscan: https://wpscan.com/plugin/ad-inserter
|
||||
tags: tech,wordpress,wp-plugin,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/add-to-any/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: add-to-any
|
||||
wpscan: https://wpscan.com/plugin/add-to-any
|
||||
tags: tech,wordpress,wp-plugin,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/admin-menu-editor/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: admin-menu-editor
|
||||
wpscan: https://wpscan.com/plugin/admin-menu-editor
|
||||
tags: tech,wordpress,wp-plugin,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/advanced-custom-fields/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: advanced-custom-fields
|
||||
wpscan: https://wpscan.com/plugin/advanced-custom-fields
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/akismet/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: akismet
|
||||
wpscan: https://wpscan.com/plugin/akismet
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/all-404-redirect-to-homepage/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: all-404-redirect-to-homepage
|
||||
wpscan: https://wpscan.com/plugin/all-404-redirect-to-homepage
|
||||
tags: tech,wordpress,wp-plugin,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/all-in-one-seo-pack/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: all-in-one-seo-pack
|
||||
wpscan: https://wpscan.com/plugin/all-in-one-seo-pack
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/all-in-one-wp-migration/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: all-in-one-wp-migration
|
||||
wpscan: https://wpscan.com/plugin/all-in-one-wp-migration
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/all-in-one-wp-security-and-firewall/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: all-in-one-wp-security-and-firewall
|
||||
wpscan: https://wpscan.com/plugin/all-in-one-wp-security-and-firewall
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/amp/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: amp
|
||||
wpscan: https://wpscan.com/plugin/amp
|
||||
tags: tech,wordpress,wp-plugin,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/antispam-bee/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: antispam-bee
|
||||
wpscan: https://wpscan.com/plugin/antispam-bee
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/astra-sites/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: astra-sites
|
||||
wpscan: https://wpscan.com/plugin/astra-sites
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/astra-widgets/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: astra-widgets
|
||||
wpscan: https://wpscan.com/plugin/astra-widgets
|
||||
tags: tech,wordpress,wp-plugin,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/autoptimize/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: autoptimize
|
||||
wpscan: https://wpscan.com/plugin/autoptimize
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/backwpup/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: backwpup
|
||||
wpscan: https://wpscan.com/plugin/backwpup
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/better-search-replace/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: better-search-replace
|
||||
wpscan: https://wpscan.com/plugin/better-search-replace
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/better-wp-security/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: better-wp-security
|
||||
wpscan: https://wpscan.com/plugin/better-wp-security
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/black-studio-tinymce-widget/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: black-studio-tinymce-widget
|
||||
wpscan: https://wpscan.com/plugin/black-studio-tinymce-widget
|
||||
tags: tech,wordpress,wp-plugin,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/breadcrumb-navxt/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: breadcrumb-navxt
|
||||
wpscan: https://wpscan.com/plugin/breadcrumb-navxt
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/breeze/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: breeze
|
||||
wpscan: https://wpscan.com/plugin/breeze
|
||||
tags: tech,wordpress,wp-plugin,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/broken-link-checker/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: broken-link-checker
|
||||
wpscan: https://wpscan.com/plugin/broken-link-checker
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/child-theme-configurator/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: child-theme-configurator
|
||||
wpscan: https://wpscan.com/plugin/child-theme-configurator
|
||||
tags: tech,wordpress,wp-plugin,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/classic-editor/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: classic-editor
|
||||
wpscan: https://wpscan.com/plugin/classic-editor
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/classic-widgets/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: classic-widgets
|
||||
wpscan: https://wpscan.com/plugin/classic-widgets
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/click-to-chat-for-whatsapp/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: click-to-chat-for-whatsapp
|
||||
wpscan: https://wpscan.com/plugin/click-to-chat-for-whatsapp
|
||||
tags: tech,wordpress,wp-plugin,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/cmb2/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: cmb2
|
||||
wpscan: https://wpscan.com/plugin/cmb2
|
||||
tags: tech,wordpress,wp-plugin,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/coblocks/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: coblocks
|
||||
wpscan: https://wpscan.com/plugin/coblocks
|
||||
tags: tech,wordpress,wp-plugin,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/code-snippets/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: code-snippets
|
||||
wpscan: https://wpscan.com/plugin/code-snippets
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/coming-soon/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: coming-soon
|
||||
wpscan: https://wpscan.com/plugin/coming-soon
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/complianz-gdpr/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: complianz-gdpr
|
||||
wpscan: https://wpscan.com/plugin/complianz-gdpr
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/contact-form-7-honeypot/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: contact-form-7-honeypot
|
||||
wpscan: https://wpscan.com/plugin/contact-form-7-honeypot
|
||||
tags: tech,wordpress,wp-plugin,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/contact-form-7/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: contact-form-7
|
||||
wpscan: https://wpscan.com/plugin/contact-form-7
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/contact-form-cfdb7/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: contact-form-cfdb7
|
||||
wpscan: https://wpscan.com/plugin/contact-form-cfdb7
|
||||
tags: tech,wordpress,wp-plugin,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/cookie-law-info/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: cookie-law-info
|
||||
wpscan: https://wpscan.com/plugin/cookie-law-info
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/cookie-notice/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: cookie-notice
|
||||
wpscan: https://wpscan.com/plugin/cookie-notice
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/creame-whatsapp-me/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: creame-whatsapp-me
|
||||
wpscan: https://wpscan.com/plugin/creame-whatsapp-me
|
||||
tags: tech,wordpress,wp-plugin,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/creative-mail-by-constant-contact/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: creative-mail-by-constant-contact
|
||||
wpscan: https://wpscan.com/plugin/creative-mail-by-constant-contact
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/custom-css-js/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: custom-css-js
|
||||
wpscan: https://wpscan.com/plugin/custom-css-js
|
||||
tags: tech,wordpress,wp-plugin,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/custom-fonts/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: custom-fonts
|
||||
wpscan: https://wpscan.com/plugin/custom-fonts
|
||||
tags: tech,wordpress,wp-plugin,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/custom-post-type-ui/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: custom-post-type-ui
|
||||
wpscan: https://wpscan.com/plugin/custom-post-type-ui
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/disable-comments/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: disable-comments
|
||||
wpscan: https://wpscan.com/plugin/disable-comments
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/disable-gutenberg/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: disable-gutenberg
|
||||
wpscan: https://wpscan.com/plugin/disable-gutenberg
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/duplicate-page/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: duplicate-page
|
||||
wpscan: https://wpscan.com/plugin/duplicate-page
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/duplicate-post/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: duplicate-post
|
||||
wpscan: https://wpscan.com/plugin/duplicate-post
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/duplicator/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: duplicator
|
||||
wpscan: https://wpscan.com/plugin/duplicator
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/duracelltomi-google-tag-manager/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: duracelltomi-google-tag-manager
|
||||
wpscan: https://wpscan.com/plugin/duracelltomi-google-tag-manager
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/easy-fancybox/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: easy-fancybox
|
||||
wpscan: https://wpscan.com/plugin/easy-fancybox
|
||||
tags: tech,wordpress,wp-plugin,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/easy-table-of-contents/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: easy-table-of-contents
|
||||
wpscan: https://wpscan.com/plugin/easy-table-of-contents
|
||||
tags: tech,wordpress,wp-plugin,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/easy-wp-smtp/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: easy-wp-smtp
|
||||
wpscan: https://wpscan.com/plugin/easy-wp-smtp
|
||||
tags: tech,wordpress,wp-plugin,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/elementor/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: elementor
|
||||
wpscan: https://wpscan.com/plugin/elementor
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/elementskit-lite/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: elementskit-lite
|
||||
wpscan: https://wpscan.com/plugin/elementskit-lite
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/enable-media-replace/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: enable-media-replace
|
||||
wpscan: https://wpscan.com/plugin/enable-media-replace
|
||||
tags: tech,wordpress,wp-plugin,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/envato-elements/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: envato-elements
|
||||
wpscan: https://wpscan.com/plugin/envato-elements
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/essential-addons-for-elementor-lite/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: essential-addons-for-elementor-lite
|
||||
wpscan: https://wpscan.com/plugin/essential-addons-for-elementor-lite
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/ewww-image-optimizer/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: ewww-image-optimizer
|
||||
wpscan: https://wpscan.com/plugin/ewww-image-optimizer
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
|
@ -7,6 +7,7 @@ info:
|
|||
reference:
|
||||
- https://wordpress.org/plugins/facebook-for-woocommerce/
|
||||
metadata:
|
||||
max-request: 1
|
||||
plugin_namespace: facebook-for-woocommerce
|
||||
wpscan: https://wpscan.com/plugin/facebook-for-woocommerce
|
||||
tags: tech,wordpress,wp-plugin,top-100,top-200
|
||||
|
|
Some files were not shown because too many files have changed in this diff Show More
Loading…
Reference in New Issue