daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #38 from projectdiscovery/master 

Updation
patch-1
Dhiyaneshwaran 2021-04-05 23:02:16 +05:30 committed by GitHub
parent db580f47c8 8c3326b63b
commit 44bd681af7
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
6 changed files with 93 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
README.md
View File

@ -37,13 +37,13 @@ An overview of the nuclei template directory including number of templates assoc
| Templates | Counts | Templates | Counts | Templates | Counts |
| ---------------- | ------------------------------ | --------------- | ------------------------------- | -------------- | ---------------------------- |
| cves | 267 | vulnerabilities | 119 | exposed-panels | 117 |
| cves | 267 | vulnerabilities | 120 | exposed-panels | 117 |
| takeovers | 67 | exposures | 66 | technologies | 58 |
| misconfiguration | 55 | workflows | 26 | miscellaneous | 19 |
| default-logins | 20 | exposed-tokens | 9 | dns | 8 |
| misconfiguration | 54 | workflows | 26 | miscellaneous | 19 |
| default-logins | 21 | exposed-tokens | 9 | dns | 8 |
| fuzzing | 7 | helpers | 6 | iot | 11 |
**80 directories, 881 files**.
**82 directories, 885 files**.
</td>
</tr>

26
default-logins/nagios/nagios-default-credential.yaml Normal file
View File

@ -0,0 +1,26 @@
id: nagios-default-credentials
info:
name: Nagios Default Credentials Check
author: iamthefrogy
severity: high
tags: nagios,default-login
reference: https://www.nagios.org
requests:
- method: GET
path:
- "{{BaseURL}}/nagios/side.php"
headers:
Authorization: Basic bmFnaW9zYWRtaW46bmFnaW9zYWRtaW4=
matchers-condition: and
matchers:
- type: status
status:
- 200
- type: word
words:
- 'Current Status'
- 'Reports'
condition: and

8
exposed-tokens/generic/general-tokens.yaml
View File

@ -2,7 +2,7 @@ id: generic-tokens
info:
name: Generic Tokens
author: nadino
author: nadino & geeknik
severity: info
tags: token
@ -12,6 +12,12 @@ requests:
- '{{BaseURL}}'
matchers-condition: and
matchers:
- type: regex
part: body
regex:
- (K|k)ey(up|down|press)
negative: true
- type: dsl
dsl:
- regex("TOKEN[\\-|_|A-Z0-9]*(\'|\")?(:|=)(\'|\")?[\\-|_|A-Z0-9]{10}",replace(toupper(body),"",""))

31
misconfiguration/aem/aem-jcr-querybuilder.yaml Normal file
View File

@ -0,0 +1,31 @@
id: aem-jcr-querybuilder
info:
author: DhiyaneshDk
name: Query JCR role via QueryBuilder Servlet
severity: info
tags: aem
requests:
- raw:
- |
GET /bin/querybuilder.json.;%0aa.css?p.hits=full&property=rep:authorizableId&type=rep:User HTTP/1.1
Host: {{Hostname}}
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Firefox/68.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: close
Upgrade-Insecure-Requests: 1
Cache-Control: max-age=0
matchers-condition: and
matchers:
- type: status
status:
- 200
- type: word
words:
- '"success":true'
- 'jcr:uuid'

25
vulnerabilities/other/empirecms-xss.yaml Normal file
View File

@ -0,0 +1,25 @@
id: empirecms-xss
info:
name: EmpireCMS v75 XSS
author: pikpikcu
severity: medium
reference: https://www.geek-share.com/detail/2777280260.html
tags: empirecms,xss
requests:
- method: GET
path:
- "{{BaseURL}}/e/ViewImg/index.html?url=javascript:alert(document.domain)"
matchers-condition: and
matchers:
- type: word
words:
- 'onmousewheel=\"return bbimg(this)\"'
- type: status
status:
- 200

1
workflows/vbulletin-workflow.yaml
View File

@ -17,5 +17,4 @@ workflows:
- name: vbulletin
subtemplates:
- template: cves/2019/CVE-2019-16759.yaml
- template: cves/2019/CVE-2019-6340.yaml
- template: cves/2020/CVE-2020-12720.yaml