commit
5dad2b1179
|
@ -15,19 +15,15 @@ info:
|
||||||
cve-id: CVE-2021-44228
|
cve-id: CVE-2021-44228
|
||||||
cwe-id: CWE-917
|
cwe-id: CWE-917
|
||||||
metadata:
|
metadata:
|
||||||
|
verified: true
|
||||||
shodan-query: title:"Cisco Unified"
|
shodan-query: title:"Cisco Unified"
|
||||||
verified: "true"
|
tags: cve,cve2021,rce,jndi,log4j,cisco,kev,oast
|
||||||
tags: cve,cve2021,rce,jndi,log4j,cisco,kev
|
|
||||||
|
|
||||||
requests:
|
requests:
|
||||||
- raw:
|
- raw:
|
||||||
- |
|
- |
|
||||||
POST /ccmadmin/j_security_check HTTP/1.1
|
POST /ccmadmin/j_security_check HTTP/1.1
|
||||||
Host: {{Hostname}}
|
Host: {{Hostname}}
|
||||||
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Firefox/91.0
|
|
||||||
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
|
|
||||||
Accept-Language: en-US,en;q=0.5
|
|
||||||
Accept-Encoding: gzip, deflate
|
|
||||||
Content-Type: application/x-www-form-urlencoded
|
Content-Type: application/x-www-form-urlencoded
|
||||||
Origin: {{BaseURL}}
|
Origin: {{BaseURL}}
|
||||||
Referer: {{BaseURL}}/ccmadmin/showHome.do
|
Referer: {{BaseURL}}/ccmadmin/showHome.do
|
||||||
|
|
|
@ -17,17 +17,13 @@ info:
|
||||||
metadata:
|
metadata:
|
||||||
shodan-query: title:"vManage"
|
shodan-query: title:"vManage"
|
||||||
verified: "true"
|
verified: "true"
|
||||||
tags: log4j,cisco,tenable,cve,cve2021,rce,jndi,kev
|
tags: log4j,cisco,tenable,cve,cve2021,rce,jndi,kev,oast
|
||||||
|
|
||||||
requests:
|
requests:
|
||||||
- raw:
|
- raw:
|
||||||
- |
|
- |
|
||||||
POST /j_security_check HTTP/1.1
|
POST /j_security_check HTTP/1.1
|
||||||
Host: {{Hostname}}
|
Host: {{Hostname}}
|
||||||
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Firefox/91.0
|
|
||||||
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
|
|
||||||
Accept-Language: en-US,en;q=0.5
|
|
||||||
Accept-Encoding: gzip, deflate
|
|
||||||
Content-Type: application/x-www-form-urlencoded
|
Content-Type: application/x-www-form-urlencoded
|
||||||
Origin: {{BaseURL}}
|
Origin: {{BaseURL}}
|
||||||
Referer: {{BaseURL}}
|
Referer: {{BaseURL}}
|
||||||
|
|
|
@ -15,19 +15,16 @@ info:
|
||||||
cve-id: CVE-2021-44228
|
cve-id: CVE-2021-44228
|
||||||
cwe-id: CWE-917
|
cwe-id: CWE-917
|
||||||
metadata:
|
metadata:
|
||||||
|
verified: true
|
||||||
shodan-query: title:"Graylog Web Interface"
|
shodan-query: title:"Graylog Web Interface"
|
||||||
verified: "true"
|
tags: cve,cve2021,rce,jndi,log4j,graylog,kev,oast
|
||||||
tags: cve,cve2021,rce,jndi,log4j,graylog,kev
|
|
||||||
|
|
||||||
requests:
|
requests:
|
||||||
- raw:
|
- raw:
|
||||||
- |
|
- |
|
||||||
POST /api/system/sessions HTTP/1.1
|
POST /api/system/sessions HTTP/1.1
|
||||||
Host: {{Hostname}}
|
Host: {{Hostname}}
|
||||||
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Firefox/91.0
|
|
||||||
Accept: application/json
|
Accept: application/json
|
||||||
Accept-Language: en-US,en;q=0.5
|
|
||||||
Accept-Encoding: gzip, deflate
|
|
||||||
X-Requested-With: XMLHttpRequest
|
X-Requested-With: XMLHttpRequest
|
||||||
X-Requested-By: XMLHttpRequest
|
X-Requested-By: XMLHttpRequest
|
||||||
Content-Type: application/json
|
Content-Type: application/json
|
||||||
|
|
|
@ -15,19 +15,15 @@ info:
|
||||||
cve-id: CVE-2021-44228
|
cve-id: CVE-2021-44228
|
||||||
cwe-id: CWE-917
|
cwe-id: CWE-917
|
||||||
metadata:
|
metadata:
|
||||||
|
verified: true
|
||||||
shodan-query: title:"Jamf Pro"
|
shodan-query: title:"Jamf Pro"
|
||||||
verified: "true"
|
tags: cve,cve2021,rce,jndi,log4j,jamfpro,kev,oast
|
||||||
tags: cve,cve2021,rce,jndi,log4j,jamfpro,kev
|
|
||||||
|
|
||||||
requests:
|
requests:
|
||||||
- raw:
|
- raw:
|
||||||
- |
|
- |
|
||||||
POST / HTTP/1.1
|
POST / HTTP/1.1
|
||||||
Host: {{Hostname}}
|
Host: {{Hostname}}
|
||||||
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Firefox/91.0
|
|
||||||
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
|
|
||||||
Accept-Language: en-US,en;q=0.5
|
|
||||||
Accept-Encoding: gzip, deflate
|
|
||||||
Content-Type: application/x-www-form-urlencoded
|
Content-Type: application/x-www-form-urlencoded
|
||||||
Origin: {{BaseURL}}
|
Origin: {{BaseURL}}
|
||||||
Referer: {{BaseURL}}
|
Referer: {{BaseURL}}
|
||||||
|
|
|
@ -17,7 +17,7 @@ info:
|
||||||
metadata:
|
metadata:
|
||||||
shodan-query: title:"Metabase"
|
shodan-query: title:"Metabase"
|
||||||
verified: "true"
|
verified: "true"
|
||||||
tags: cve,cve2021,rce,jndi,log4j,metabase,kev
|
tags: cve,cve2021,rce,jndi,log4j,metabase,kev,oast
|
||||||
|
|
||||||
requests:
|
requests:
|
||||||
- method: GET
|
- method: GET
|
||||||
|
|
|
@ -17,9 +17,9 @@ info:
|
||||||
cve-id: CVE-2021-44228
|
cve-id: CVE-2021-44228
|
||||||
cwe-id: CWE-917
|
cwe-id: CWE-917
|
||||||
metadata:
|
metadata:
|
||||||
|
verified: true
|
||||||
shodan-query: title:"OpenNMS Web Console"
|
shodan-query: title:"OpenNMS Web Console"
|
||||||
verified: "true"
|
tags: jndi,log4j,rce,opennms,cve,cve2021,kev,oast
|
||||||
tags: jndi,log4j,rce,opennms,cve,cve2021,kev
|
|
||||||
|
|
||||||
requests:
|
requests:
|
||||||
- raw:
|
- raw:
|
||||||
|
|
|
@ -17,17 +17,13 @@ info:
|
||||||
metadata:
|
metadata:
|
||||||
shodan-query: title:"Rundeck"
|
shodan-query: title:"Rundeck"
|
||||||
verified: "true"
|
verified: "true"
|
||||||
tags: cve,cve2021,rce,jndi,log4j,rundeck,kev
|
tags: cve,cve2021,rce,jndi,log4j,rundeck,kev,oast
|
||||||
|
|
||||||
requests:
|
requests:
|
||||||
- raw:
|
- raw:
|
||||||
- |
|
- |
|
||||||
POST /j_security_check HTTP/1.1
|
POST /j_security_check HTTP/1.1
|
||||||
Host: {{Hostname}}
|
Host: {{Hostname}}
|
||||||
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Firefox/91.0
|
|
||||||
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
|
|
||||||
Accept-Language: en-US,en;q=0.5
|
|
||||||
Accept-Encoding: gzip, deflate
|
|
||||||
Content-Type: application/x-www-form-urlencoded
|
Content-Type: application/x-www-form-urlencoded
|
||||||
Origin: {{BaseURL}}
|
Origin: {{BaseURL}}
|
||||||
Connection: close
|
Connection: close
|
||||||
|
|
|
@ -15,19 +15,16 @@ info:
|
||||||
cve-id: CVE-2021-44228
|
cve-id: CVE-2021-44228
|
||||||
cwe-id: CWE-917
|
cwe-id: CWE-917
|
||||||
metadata:
|
metadata:
|
||||||
|
verified: true
|
||||||
shodan-query: title:"VMware HCX"
|
shodan-query: title:"VMware HCX"
|
||||||
verified: "true"
|
tags: cve,cve2021,rce,jndi,log4j,vmware,kev,oast
|
||||||
tags: cve,cve2021,rce,jndi,log4j,vmware,kev
|
|
||||||
|
|
||||||
requests:
|
requests:
|
||||||
- raw:
|
- raw:
|
||||||
- |
|
- |
|
||||||
POST /hybridity/api/sessions HTTP/1.1
|
POST /hybridity/api/sessions HTTP/1.1
|
||||||
Host: {{Hostname}}
|
Host: {{Hostname}}
|
||||||
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Firefox/91.0
|
|
||||||
Accept: application/json
|
Accept: application/json
|
||||||
Accept-Language: en-US,en;q=0.5
|
|
||||||
Accept-Encoding: gzip, deflate
|
|
||||||
Content-Type: application/json
|
Content-Type: application/json
|
||||||
Origin: {{BaseURL}}
|
Origin: {{BaseURL}}
|
||||||
|
|
||||||
|
|
|
@ -15,19 +15,15 @@ info:
|
||||||
cve-id: CVE-2021-44228
|
cve-id: CVE-2021-44228
|
||||||
cwe-id: CWE-917
|
cwe-id: CWE-917
|
||||||
metadata:
|
metadata:
|
||||||
|
verified: true
|
||||||
shodan-query: html:"vmw_nsx_logo-black-triangle-500w.png"
|
shodan-query: html:"vmw_nsx_logo-black-triangle-500w.png"
|
||||||
verified: "true"
|
tags: cve,cve2021,rce,jndi,log4j,graylog,kev,oast
|
||||||
tags: cve,cve2021,rce,jndi,log4j,graylog,kev
|
|
||||||
|
|
||||||
requests:
|
requests:
|
||||||
- raw:
|
- raw:
|
||||||
- |
|
- |
|
||||||
POST /login HTTP/1.1
|
POST /login HTTP/1.1
|
||||||
Host: {{Hostname}}
|
Host: {{Hostname}}
|
||||||
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Firefox/91.0
|
|
||||||
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
|
|
||||||
Accept-Language: en-US,en;q=0.5
|
|
||||||
Accept-Encoding: gzip, deflate
|
|
||||||
Content-Type: application/x-www-form-urlencoded
|
Content-Type: application/x-www-form-urlencoded
|
||||||
Origin: {{BaseURL}}
|
Origin: {{BaseURL}}
|
||||||
Referer: {{BaseURL}}/login.jsp
|
Referer: {{BaseURL}}/login.jsp
|
||||||
|
|
|
@ -15,19 +15,15 @@ info:
|
||||||
cve-id: CVE-2021-44228
|
cve-id: CVE-2021-44228
|
||||||
cwe-id: CWE-917
|
cwe-id: CWE-917
|
||||||
metadata:
|
metadata:
|
||||||
|
verified: true
|
||||||
shodan-query: title:"vRealize Operations Manager"
|
shodan-query: title:"vRealize Operations Manager"
|
||||||
verified: "true"
|
tags: cve,cve2021,rce,jndi,log4j,vmware,kev,oast
|
||||||
tags: cve,cve2021,rce,jndi,log4j,vmware,kev
|
|
||||||
|
|
||||||
requests:
|
requests:
|
||||||
- raw:
|
- raw:
|
||||||
- |
|
- |
|
||||||
POST /ui/login.action HTTP/1.1
|
POST /ui/login.action HTTP/1.1
|
||||||
Host: {{Hostname}}
|
Host: {{Hostname}}
|
||||||
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Firefox/91.0
|
|
||||||
Accept: */*
|
|
||||||
Accept-Language: en-US,en;q=0.5
|
|
||||||
Accept-Encoding: gzip, deflate
|
|
||||||
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
|
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
|
||||||
X-Requested-With: XMLHttpRequest
|
X-Requested-With: XMLHttpRequest
|
||||||
Origin: {{BaseURL}}
|
Origin: {{BaseURL}}
|
||||||
|
|
Loading…
Reference in New Issue