Dashboard Content Enhancements (#3980)

Dashboard Content Enhancements
2022-03-25 10:16:18 -04:00 · 2022-03-25 10:16:18 -04:00 · eb23e6e44e
parent dbae77b729
commit eb23e6e44e
23 changed files with 20 additions and 42 deletions
--- a/cnvd/2021/CNVD-2021-15824.yaml
+++ b/cnvd/2021/CNVD-2021-15824.yaml
@ -9,12 +9,11 @@ info:
    - https://sourceforge.net/projects/empirecms/
    - https://www.bilibili.com/read/cv10441910
    - https://vul.wangan.com/a/CNVD-2021-15824
-  tags: empirecms,cnvd,cnvd2021,xss,domxss
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N
    cvss-score: 7.2
-    cve-id:
    cwe-id: CWE-79
+  tags: empirecms,cnvd,cnvd2021,xss,domxss

 requests:
  - method: GET
--- a/default-logins/aem/aem-default-login.yaml
+++ b/default-logins/aem/aem-default-login.yaml
@ -7,12 +7,12 @@ info:
  description: Adobe AEM default login credentials were discovered.
  reference:
    - https://experienceleague.adobe.com/docs/experience-manager-64/administering/security/security-checklist.html?lang=en
-  tags: aem,default-login,adobe
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
    cvss-score: 8.3
-    cve-id:
    cwe-id: CWE-522
+  tags: aem,default-login,adobe
+

 requests:
  - raw:
--- a/default-logins/alibaba/canal-default-login.yaml
+++ b/default-logins/alibaba/canal-default-login.yaml
@ -5,14 +5,13 @@ info:
  author: pdteam
  description: An Alibaba Canal default login was discovered.
  severity: high
-  tags: alibaba,default-login
  reference:
    - https://github.com/alibaba/canal/wiki/ClientAdapter
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
    cvss-score: 8.3
-    cve-id:
    cwe-id: CWE-522
+  tags: alibaba,default-login

 requests:
  - raw:
--- a/default-logins/alphaweb/alphaweb-default-login.yaml
+++ b/default-logins/alphaweb/alphaweb-default-login.yaml
@ -5,14 +5,13 @@ info:
  author: Lark Lab
  severity: medium
  description: An AlphaWeb XE default login was discovered.
-  tags: default-login
  reference:
    - https://wiki.zenitel.com/wiki/AlphaWeb
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N
    cvss-score: 5.8
-    cve-id:
    cwe-id: CWE-522
+  tags: default-login,AlphaWeb

 requests:
  - raw:
--- a/default-logins/ambari/ambari-default-login.yaml
+++ b/default-logins/ambari/ambari-default-login.yaml
@ -5,14 +5,13 @@ info:
  author: pdteam
  description: An Apache Ambari default admin login was discovered.
  severity: high
-  tags: ambari,default-login,apache
  reference:
    - https://ambari.apache.org/1.2.0/installing-hadoop-using-ambari/content/ambari-chap3-1.html
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
    cvss-score: 8.3
-    cve-id:
    cwe-id: CWE-522
+  tags: ambari,default-login,apache

 requests:
  - raw:
--- a/default-logins/apache/airflow-default-login.yaml
+++ b/default-logins/apache/airflow-default-login.yaml
@ -4,7 +4,6 @@ info:
  name: Apache Airflow Default Login
  author: pdteam
  severity: high
-  tags: airflow,default-login,apache
  description: An Apache Airflow default login was discovered.
  reference:
    - https://airflow.apache.org/docs/apache-airflow/stable/start/docker.html
@ -13,8 +12,8 @@ info:
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
    cvss-score: 8.3
-    cve-id:
    cwe-id: CWE-522
+  tags: airflow,default-login,apache

 requests:
  - raw:
--- a/default-logins/apache/apisix-default-login.yaml
+++ b/default-logins/apache/apisix-default-login.yaml
@ -4,7 +4,6 @@ info:
  name: Apache Apisix Default Admin Login
  author: pdteam
  severity: high
-  tags: apisix,apache,default-login
  description: An Apache Apisix default admin login was discovered.
  metadata:
    shodan-query: title:"Apache APISIX Dashboard"
@ -15,8 +14,8 @@ info:
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
    cvss-score: 8.3
-    cve-id:
    cwe-id: CWE-522
+  tags: apisix,apache,default-login

 requests:
  - raw:
--- a/default-logins/apollo/apollo-default-login.yaml
+++ b/default-logins/apollo/apollo-default-login.yaml
@ -9,12 +9,11 @@ info:
    shodan-query: http.favicon.hash:11794165
  reference:
    - https://github.com/apolloconfig/apollo
-  tags: apollo,default-login
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
    cvss-score: 8.3
-    cve-id:
    cwe-id: CWE-522
+  tags: apollo,default-login

 requests:
  - raw:
--- a/default-logins/arl/arl-default-login.yaml
+++ b/default-logins/arl/arl-default-login.yaml
@ -5,12 +5,11 @@ info:
  author: pikpikcu
  description: An ARL default admin login was discovered.
  severity: high
-  tags: arl,default-login
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
    cvss-score: 8.3
-    cve-id:
    cwe-id: CWE-522
+  tags: arl,default-login

 requests:
  - raw:
--- a/default-logins/digitalrebar/digitalrebar-default-login.yaml
+++ b/default-logins/digitalrebar/digitalrebar-default-login.yaml
@ -8,12 +8,11 @@ info:
  reference:
    - https://docs.rackn.io/en/latest/doc/faq-troubleshooting.html?#what-are-the-default-passwords
    - https://rackn.com/
-  tags: rackn,digitalrebar,default-login
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
    cvss-score: 8.3
-    cve-id:
    cwe-id: CWE-522
+  tags: rackn,digitalrebar,default-login

 requests:
  - raw:
--- a/default-logins/mantisbt/mantisbt-default-credential.yaml
+++ b/default-logins/mantisbt/mantisbt-default-credential.yaml
@ -9,12 +9,11 @@ info:
    - https://mantisbt.org/
  metadata:
    shodan-query: title:"MantisBT"
-  tags: mantisbt,default-login
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
    cvss-score: 8.3
-    cve-id:
    cwe-id: CWE-522
+  tags: mantisbt,default-login

 requests:
  - raw:
--- a/default-logins/stackstorm/stackstorm-default-login.yaml
+++ b/default-logins/stackstorm/stackstorm-default-login.yaml
@ -9,12 +9,11 @@ info:
    fofa-query: app="stackstorm"
  reference:
    - https://github.com/StackStorm/st2-docker
-  tags: stackstorm,default-login
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
    cvss-score: 8.3
-    cve-id:
    cwe-id: CWE-522
+  tags: stackstorm,default-login

 requests:
  - raw:
--- a/dns/caa-fingerprint.yaml
+++ b/dns/caa-fingerprint.yaml
@ -7,12 +7,11 @@ info:
  severity: info
  reference:
    - https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record
-  tags: dns,caa
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
    cvss-score: 0.0
-    cve-id:
    cwe-id: CWE-200
+  tags: dns,caa

 dns:
  - name: "{{FQDN}}"
--- a/exposed-panels/active-admin-exposure.yaml
+++ b/exposed-panels/active-admin-exposure.yaml
@ -5,14 +5,13 @@ info:
  author: pdteam
  severity: info
  description: An ActiveAdmin Admin dashboard was discovered.
-  tags: panel,activeadmin
  reference:
    - https://activeadmin.info/
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
    cvss-score: 0.0
-    cve-id:
    cwe-id: CWE-200
+  tags: panel,activeadmin

 requests:
  - method: GET
--- a/exposed-panels/activemq-panel.yaml
+++ b/exposed-panels/activemq-panel.yaml
@ -7,12 +7,11 @@ info:
  description: An Apache ActiveMQ implementation was discovered.
  reference:
    - https://activemq.apache.org/
-  tags: panel,activemq,apache
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
    cvss-score: 0.0
-    cve-id:
    cwe-id: CWE-200
+  tags: panel,activemq,apache

 requests:
  - method: GET
--- a/exposed-panels/ansible-semaphore-panel.yaml
+++ b/exposed-panels/ansible-semaphore-panel.yaml
@ -10,12 +10,11 @@ info:
    - https://github.com/ansible-semaphore/semaphore
  metadata:
    shodan-query: http.html:"Semaphore</title>"
-  tags: panel,ansible,semaphore,cicd,oss
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
    cvss-score: 0.0
-    cve-id:
    cwe-id: CWE-200
+  tags: panel,ansible,semaphore,cicd,oss

 requests:
  - method: GET
--- a/exposed-panels/aviatrix-panel.yaml
+++ b/exposed-panels/aviatrix-panel.yaml
@ -9,12 +9,11 @@ info:
    - https://docs.aviatrix.com/HowTos/controller_config.html
  metadata:
    shodan-query: http.title:"Aviatrix Cloud Controller"
-  tags: panel,aviatrix
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
    cvss-score: 0.0
-    cve-id:
    cwe-id: CWE-200
+  tags: panel,aviatrix

 requests:
  - method: GET
--- a/exposed-panels/bigbluebutton-login.yaml
+++ b/exposed-panels/bigbluebutton-login.yaml
@ -7,12 +7,11 @@ info:
  severity: info
  reference:
    - https://github.com/bigbluebutton/greenlight
-  tags: panel,bigbluebutton
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
    cvss-score: 0.0
-    cve-id:
    cwe-id: CWE-200
+  tags: panel,bigbluebutton

 requests:
  - method: GET
--- a/exposed-panels/blue-iris-login.yaml
+++ b/exposed-panels/blue-iris-login.yaml
@ -8,12 +8,11 @@ info:
  reference:
    - https://www.exploit-db.com/ghdb/6814
    - https://blueirissoftware.com/
-  tags: panel,blue-iris
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
    cvss-score: 0.0
-    cve-id:
    cwe-id: CWE-200
+  tags: panel,blue-iris

 requests:
  - method: GET
--- a/exposed-panels/epson-access-detect.yaml
+++ b/exposed-panels/epson-access-detect.yaml
@ -9,7 +9,6 @@ info:
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N
    cvss-score: 5.8
-    cve-id:
    cwe-id: CWE-522
  tags: iot,printer,panel,unauth,epson

--- a/exposed-panels/epson-web-control-detect.yaml
+++ b/exposed-panels/epson-web-control-detect.yaml
@ -9,7 +9,6 @@ info:
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
    cvss-score: 0.0
-    cve-id:
    cwe-id: CWE-200
  tags: iot,printer,panel,unauth,epson

--- a/technologies/teradici-pcoip.yaml
+++ b/technologies/teradici-pcoip.yaml
@ -10,7 +10,6 @@ info:
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
    cvss-score: 0.0
-    cve-id:
    cwe-id: CWE-200
  tags: tech,pcoip

--- a/vulnerabilities/other/unauth-hoteldruid-panel.yaml
+++ b/vulnerabilities/other/unauth-hoteldruid-panel.yaml
@ -11,7 +11,6 @@ info:
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
    cvss-score: 8.3
-    cve-id:
    cwe-id: CWE-522
  tags: hoteldruid,panel,unauth