Add mass vendor and product info to templates

patch-1
Parth 2024-02-22 06:25:04 +05:30
parent c7f632fd03
commit 3063c5c5bf
480 changed files with 1103 additions and 143 deletions

View File

@ -14,6 +14,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: 3cx
product: 3cx
max-request: 1
shodan-query:
- http.title:"3CX Phone System Management Console"

View File

@ -14,6 +14,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: 3cx
product: 3cx
max-request: 1
shodan-query: http.title:"3CX Webclient"
google-query: intitle:"3CX Webclient"

View File

@ -8,6 +8,8 @@ info:
classification:
cwe-id: CWE-200
metadata:
vendor: sierrawireless
product: airlink_mobility_manager
max-request: 1
fofa-query: app="ACEmanager"
tags: panel,login,tech,acemanager

View File

@ -10,6 +10,8 @@ info:
classification:
cwe-id: CWE-200
metadata:
vendor: activeadmin
product: activeadmin
max-request: 1
tags: panel,activeadmin

View File

@ -10,6 +10,8 @@ info:
classification:
cwe-id: CWE-200
metadata:
vendor: apache
product: activemq
max-request: 1
tags: panel,activemq,apache

View File

@ -12,6 +12,8 @@ info:
cvss-score: 7.5
cwe-id: CWE-200
metadata:
vendor: adiscon
product: loganalyzer
max-request: 1
tags: adiscon,loganalyzer,syslog,exposure,panel

View File

@ -16,6 +16,8 @@ info:
# Most versions have some kind of SSRF usability
# Is generally handy if you find SQL creds
metadata:
vendor: adminer
product: adminer
max-request: 741
tags: panel,brute-force,adminer,login,sqli

View File

@ -10,6 +10,8 @@ info:
classification:
cwe-id: CWE-200
metadata:
vendor: adminer
product: adminer
verified: true
max-request: 8
shodan-query: title:"Login - Adminer"

View File

@ -10,6 +10,8 @@ info:
classification:
cwe-id: CWE-200
metadata:
vendor: adobe
product: coldfusion
max-request: 2
shodan-query: http.component:"Adobe ColdFusion"
vendor: adobe

View File

@ -10,6 +10,8 @@ info:
classification:
cwe-id: CWE-200
metadata:
vendor: adobe
product: connect
max-request: 1
tags: adobe,panel,connect-central

View File

@ -10,6 +10,8 @@ info:
classification:
cwe-id: CWE-200
metadata:
vendor: adobe
product: experience_manager
max-request: 1
shodan-query: http.title:"AEM Sign In"
vendor: adobe

View File

@ -12,6 +12,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: adobe
product: experience_manager
max-request: 1
shodan-query:
- http.title:"AEM Sign In"

View File

@ -12,6 +12,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: adobe
product: experience_manager
max-request: 1
shodan-query:
- http.title:"AEM Sign In"

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: afterlogic
product: aurora
max-request: 1
fofa-query: "X-Server: AfterlogicDAVServer"
vendor: afterlogic

View File

@ -12,6 +12,8 @@ info:
cvss-score: 0
cwe-id: CWE-668
metadata:
vendor: apache
product: airflow
max-request: 2
shodan-query: title:"Sign In - Airflow"
vendor: apache

View File

@ -10,6 +10,8 @@ info:
classification:
cwe-id: CWE-200
metadata:
vendor: akamai
product: cloudtest
max-request: 1
tags: panel,akamai

View File

@ -10,6 +10,8 @@ info:
classification:
cwe-id: CWE-200
metadata:
vendor: alfresco
product: alfresco
max-request: 1
tags: alfresco,tech,panel

View File

@ -12,6 +12,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: alliedtelesyn
product: at-8024
verified: true
max-request: 1
shodan-query: title:"Allied Telesis Device GUI"

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-668
metadata:
vendor: apache
product: ambari
max-request: 1
tags: panel,apache,ambari,exposure

View File

@ -10,6 +10,8 @@ info:
classification:
cwe-id: CWE-200
metadata:
vendor: amcrest
product: ip2m-853ew
max-request: 1
shodan-query: html:"amcrest"
google-query: intext:"amcrest" "LDAP User"

View File

@ -8,6 +8,8 @@ info:
classification:
cwe-id: CWE-200
metadata:
vendor: ametys
product: ametys
max-request: 1
tags: panel,ametys,cms

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: cubecoders
product: amp
verified: true
max-request: 1
shodan-query: title:"AMP - Application Management Panel"

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: ampache
product: ampache
verified: true
max-request: 3
shodan-query: http.title:"For the Love of Music"

View File

@ -13,6 +13,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: redhat
product: ansible_tower
max-request: 1
shodan-query: title:"Ansible Tower"
google-query: intitle:"Ansible Tower"

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: apache
product: jmeter
verified: true
max-request: 1
shodan-query: title:"Apache JMeter Dashboard"

View File

@ -8,6 +8,8 @@ info:
classification:
cwe-id: CWE-200
metadata:
vendor: apache
product: apisix
max-request: 1
fofa-query: title="Apache APISIX Dashboard"
vendor: apache

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: apache
product: mesos
verified: true
max-request: 2
shodan-query: http.title:"Mesos"

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: apache
product: tomcat
max-request: 2
shodan-query: title:"Apache Tomcat"
vendor: apache

View File

@ -12,6 +12,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: appsmith
product: appsmith
verified: true
max-request: 1
shodan-query: http.title:"appsmith"

View File

@ -8,6 +8,8 @@ info:
reference:
- https://www.appspace.com/
metadata:
vendor: appspace
product: appspace
verified: true
max-request: 3
shodan-query: title:"Appspace"

View File

@ -5,6 +5,8 @@ info:
author: DhiyaneshDK
severity: info
metadata:
vendor: open-xchange
product: open-xchange_appsuite
verified: true
max-request: 1
shodan-query: html:"Appsuite"

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: appwrite
product: appwrite
verified: true
max-request: 2
shodan-query: http.favicon.hash:-633108100

View File

@ -9,6 +9,8 @@ info:
reference:
- https://www.arangodb.com/docs/stable/
metadata:
vendor: arangodb
product: arangodb
verified: "true"
max-request: 1
shodan-query: http.title:"ArangoDB Web Interface"

View File

@ -10,6 +10,8 @@ info:
classification:
cwe-id: CWE-200
metadata:
vendor: esri
product: arcgis_enterprise
max-request: 1
tags: docs,arcgis,cms,panel

View File

@ -10,6 +10,8 @@ info:
classification:
cwe-id: CWE-200
metadata:
vendor: esri
product: arcgis_engine
max-request: 1
tags: api,arcgis,cms,panel

View File

@ -8,6 +8,8 @@ info:
reference:
- https://enterprise.arcgis.com/en/
metadata:
vendor: esri
product: arcgis_server
verified: true
max-request: 1
shodan-query: title:"ArcGIS"

View File

@ -8,6 +8,8 @@ info:
reference:
- https://enterprise.arcgis.com/en/
metadata:
vendor: esri
product: arcgis_server
verified: true
max-request: 1
shodan-query: title:"ArcGIS"

View File

@ -12,6 +12,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: archibus
product: web_central
verified: true
max-request: 3
shodan-query: http.favicon.hash:889652940

View File

@ -8,6 +8,8 @@ info:
- https://twitter.com/HunterMapping/status/1674267368359444480
- https://github.com/mdsecactivebreach/CVE-2023-26258-ArcServe
metadata:
vendor: arcserve
product: udp
verified: true
max-request: 1
shodan-query: http.favicon.hash:-1889244460

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: commscope
product: dg3450
verified: true
max-request: 1
shodan-query: html:"phy.htm"

View File

@ -12,6 +12,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: runatlantis
product: atlantis
verified: true
max-request: 1
shodan-query: http.favicon.hash:-1706783005

View File

@ -10,6 +10,8 @@ info:
classification:
cwe-id: CWE-200
metadata:
vendor: atlassian
product: crowd
max-request: 1
vendor: atlassian
product: crowd

View File

@ -12,6 +12,8 @@ info:
cvss-score: 0
cwe-id: CWE-668
metadata:
vendor: avantfax
product: avantfax
max-request: 1
shodan-query: http.title:"AvantFAX - Login"
tags: panel,avantfax,login

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: avaya
product: aura_communication_manager
max-request: 1
tags: panel,avaya

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: avaya
product: aura_system_manager
max-request: 1
tags: panel,avaya

View File

@ -10,6 +10,8 @@ info:
classification:
cwe-id: CWE-200
metadata:
vendor: aviatrix
product: controller
max-request: 1
shodan-query: http.title:"Aviatrix Cloud Controller"
tags: panel,aviatrix

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: avigilon
product: avigilon_control_center
verified: true
max-request: 1
shodan-query: http.title:"Login - Avigilon Control Center"

View File

@ -12,6 +12,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: amazon
product: opensearch
max-request: 1
tags: panel,opensearch,aws

View File

@ -13,6 +13,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: axway
product: securetransport
verified: true
max-request: 1
shodan-query: http.title:"SecureTransport" || http.favicon.hash:1330269434

View File

@ -12,6 +12,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: axway
product: securetransport
verified: true
max-request: 1
google-query: intitle:"ST Web Client"

View File

@ -11,6 +11,8 @@ info:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cwe-id: CWE-200
metadata:
vendor: axxonsoft
product: axxon_next
verified: true
max-request: 1
shodan-query: title:"Axxon Next client"

View File

@ -12,6 +12,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: bedita
product: bedita
max-request: 1
shodan-query: http.title:"BEdita"
tags: panel,bedita

View File

@ -13,6 +13,8 @@ info:
cvss-score: 5.3
cwe-id: CWE-200
metadata:
vendor: beego
product: beego
verified: true
max-request: 1
shodan-query: html:"Beego Admin Dashboard"

View File

@ -10,6 +10,8 @@ info:
classification:
cwe-id: CWE-200
metadata:
vendor: bigbluebutton
product: greenlight
max-request: 1
tags: panel,bigbluebutton

View File

@ -15,6 +15,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: f5
product: big-ip_access_policy_manager
max-request: 1
shodan-query: http.title:"BIG-IP®-+Redirect" +"Server"
vendor: f5

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: bitdefender
product: gravityzone
verified: true
max-request: 1
shodan-query: title:"Bitdefender GravityZone"

View File

@ -8,6 +8,8 @@ info:
classification:
cwe-id: CWE-200
metadata:
vendor: bitrix
product: bitrix24
max-request: 1
tags: panel,bitrix,login

View File

@ -7,6 +7,8 @@ info:
reference:
- https://bitwarden.com/?utm_source=google&utm_medium=cpc&utm_campaign=AW_ALL_NU_CL_Bitwarden_en_GSN_DTMB_Brand-Login_KW:Brand-Login_Consolidated&utm_content=646427936792&utm_term=bitwarden%20vault%20login|kwd-826827349840&hsa_acc=2567950947&hsa_cam=19621984700&hsa_grp=145977914135&hsa_ad=646427936792&hsa_src=g&hsa_tgt=kwd-826827349840&hsa_kw=bitwarden%20vault%20login&hsa_mt=e&hsa_net=adwords&hsa_ver=3&gad=1&gclid=Cj0KCQjwpompBhDZARIsAFD_Fp-07Mni-xzuKd5Ewi6I7qzRTdZOYSxMsMVvKVWhGm5qg2KUiY2Z7SQaAvSIEALw_wcB
metadata:
vendor: bitwarden
product: bitwarden
verified: true
max-request: 1
shodan-query: title:"Bitwarden Web Vault"

View File

@ -5,6 +5,8 @@ info:
author: theamanrawat
severity: info
metadata:
vendor: bloofox
product: bloofoxcms
verified: "true"
max-request: 2
fofa-query: "Powered by bloofoxCMS"

View File

@ -12,6 +12,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: boltcms
product: bolt
max-request: 1
tags: panel,bolt,cms,login

View File

@ -12,6 +12,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: bookstackapp
product: bookstack
max-request: 1
shodan-query: http.title:"BookStack"
tags: panel,bookstack

View File

@ -12,6 +12,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: buildbot
product: buildbot
verified: true
max-request: 1
shodan-query: http.title:"BuildBot"

View File

@ -12,6 +12,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: cacti
product: cacti
max-request: 2
tags: tech,cacti,login,panel

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: apereo
product: central_authentication_service
max-request: 1
shodan-query: http.title:'CAS - Central Authentication Service'
vendor: apereo

View File

@ -12,6 +12,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: casbin
product: casdoor
max-request: 1
shodan-query: http.title:"Casdoor"
vendor: casbin

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: centreon
product: centreon_web
max-request: 1
shodan-query: http.title:"Centreon"
tags: panel,centreon,login

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: tribe29
product: checkmk
max-request: 1
tags: login,tech,synology,rackstation,panel

View File

@ -13,6 +13,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: checkpoint
product: ssl_network_extender
max-request: 1
shodan-query: http.title:"Check Point SSL Network Extender"
google-query: intitle:"SSL Network Extender Login"

View File

@ -12,6 +12,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: cisco
product: anyconnect_secure_mobility_client
max-request: 1
tags: cisco,panel,vpn

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: cisco
product: adaptive_security_appliance_software
max-request: 1
tags: cisco,panel

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: cisco
product: edge_340_firmware
max-request: 1
shodan-query: http.title:"Cisco Edge 340"
tags: panel,cisco

View File

@ -12,6 +12,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: cisco
product: finesse
max-request: 1
tags: panel,cisco,edb

View File

@ -12,6 +12,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: cisco
product: integrated_management_controller
max-request: 1
tags: panel,cisco,edb

View File

@ -12,6 +12,8 @@ info:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cwe-id: CWE-200
metadata:
vendor: cisco
product: ios_xe
verified: "true"
max-request: 2
shodan-query: http.html_hash:1076109428

View File

@ -10,6 +10,8 @@ info:
- https://www.cisco.com/c/en/us/products/collateral/cloud-systems-management/smart-software-manager-satellite/datasheet-c78-734539.html
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ssm-sql-X9MmjSYh
metadata:
vendor: cisco
product: smart_software_manager_on-prem
verified: true
max-request: 2
shodan-query: title:"On-Prem License Workspace"

View File

@ -11,6 +11,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: cisco
product: prime_infrastructure
max-request: 1
shodan-query: http.title:"prime infrastructure"
vendor: cisco

View File

@ -12,6 +12,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: cisco
product: sd-wan
max-request: 1
tags: panel,cisco

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: cisco
product: secure_desktop
max-request: 1
tags: cisco,panel

View File

@ -12,6 +12,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: cisco
product: unified_computing_system
max-request: 1
shodan-query: http.title:"Cisco UCS KVM Direct"
tags: panel,cisco,ucs,kvm

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: citrix
product: gateway
max-request: 2
tags: panel,citrix

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: citrix
product: gateway
max-request: 1
tags: panel,citrix

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: arubanetworks
product: clearpass_policy_manager
max-request: 1
shodan-query: http.title:"ClearPass Policy Manager"
tags: panel,aruba

View File

@ -5,6 +5,8 @@ info:
author: DhiyaneshDk
severity: info
metadata:
vendor: mgt-commerce
product: cloudpanel
verified: true
max-request: 1
shodan-query: http.favicon.hash:151132309

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: cobblerd
product: cobbler
max-request: 1
shodan-query: http.title:"Cobbler Web Interface"
tags: cobbler,webserver,panel

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: coder
product: code-server
verified: true
max-request: 1
shodan-query: http.title:"code-server login"

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: code42
product: code42
max-request: 1
tags: panel,code42

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-668
metadata:
vendor: wibu
product: codemeter
max-request: 1
tags: codemeter,webadmin,panel

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: adobe
product: coldfusion
max-request: 1
shodan-query: http.title:"ColdFusion Administrator Login"
tags: panel,coldfusion,adobe

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: compal
product: ch7465lg_firmware
max-request: 1
tags: panel

View File

@ -8,6 +8,8 @@ info:
reference:
- https://documentation.concretecms.org/developers/introduction/installing-concrete-cms
metadata:
vendor: concrete5
product: concrete5
verified: true
max-request: 2
shodan-query: http.title:"Install concrete5"

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: concrete5
product: concrete5
max-request: 1
shodan-query: http.title:"concrete5"
tags: panel,concrete5,cms

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: upc
product: connect_box_eurodocsis_firmware
verified: true
max-request: 1
shodan-query: 'NET-DK/1.0'

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: contao
product: contao
verified: true
max-request: 1
shodan-query: http.html:"Contao Open Source CMS"

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: corebos
product: corebos
verified: true
max-request: 1
shodan-query: http.html:"corebos"

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: paloaltonetworks
product: cortex_xsoar
max-request: 1
shodan-query: http.title:"Cortex XSOAR"
tags: panel,soar,login

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: apache
product: couchdb
max-request: 1
tags: panel,couchdb

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: apache
product: couchdb
max-request: 1
tags: panel,apache,couchdb

View File

@ -10,6 +10,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: cpanel
product: cpanel
verified: true
max-request: 1
shodan-query: title:"CPanel - API Codes"

View File

@ -12,6 +12,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: crushftp
product: crushftp
verified: true
max-request: 1
tags: panel,edb,crushftp,detect

View File

@ -12,6 +12,8 @@ info:
cvss-score: 0
cwe-id: CWE-200
metadata:
vendor: sophos
product: cyberoam
max-request: 1
shodan-query: title:"Cyberoam SSL VPN Portal"
google-query: intitle:"Cyberoam SSL VPN Portal"

Some files were not shown because too many files have changed in this diff Show More