Commit Graph

14721 Commits (158758bcdd6e7538ad763bf933f5c4ec06f04025)

Author SHA1 Message Date
Prince Chaddha 158758bcdd
Merge pull request #4407 from joshlarsen/xss-header-detect
Detect deprecated XSS Protection headers
2022-05-17 16:20:06 +05:30
GitHub Action 5bbb03725f Auto Generated New Template Addition List [Tue May 17 09:18:29 UTC 2022] 🤖 2022-05-17 09:18:29 +00:00
Sandeep Singh b59ff42aaf
additional reference to cves templates (#4395)
* additional reference to cves templates

* Update CVE-2006-1681.yaml

* Update CVE-2009-3318.yaml

* Update CVE-2009-4223.yaml

* Update CVE-2010-0942.yaml

* Update CVE-2010-0944.yaml

* Update CVE-2010-0972.yaml

* Update CVE-2010-1304.yaml

* Update CVE-2010-1308.yaml

* Update CVE-2010-1313.yaml

* Update CVE-2010-1461.yaml

* Update CVE-2010-1470.yaml

* Update CVE-2010-1471.yaml

* Update CVE-2010-1472.yaml

* Update CVE-2010-1474.yaml

* removed duplicate references

* misc fix

Co-authored-by: Prince Chaddha <prince@projectdiscovery.io>
Co-authored-by: Prince Chaddha <cyberbossprince@gmail.com>
2022-05-17 14:48:12 +05:30
GitHub Action f8b9a00f90 Auto Generated New Template Addition List [Tue May 17 09:11:44 UTC 2022] 🤖 2022-05-17 09:11:44 +00:00
MostInterestingBotInTheWorld 83cc50ce3e
Dashboard Content Enhancements (#4411)
* standardizing enhanced by tag

* Fix spacing. Add classification->cve

* Enhancement: cves/2021/CVE-2021-20158.yaml by mp

* Enhancement: cves/2021/CVE-2021-20167.yaml by mp

* Typo

* Enhancement: cves/2021/CVE-2021-20837.yaml by mp

* Enhancement: cves/2021/CVE-2021-21307.yaml by mp

* Enhancement: cves/2021/CVE-2021-21479.yaml by mp

* Enhancement: cves/2021/CVE-2021-21881.yaml by mp

* Enhancement: cves/2021/CVE-2021-21972.yaml by mp

* Enhancement: cves/2021/CVE-2021-21978.yaml by mp

* Enhancement: cves/2021/CVE-2021-22005.yaml by mp

* Enhancement: cves/2021/CVE-2021-22205.yaml by mp

* Enhancement: cves/2021/CVE-2021-22986.yaml by mp

* Enhancement: cves/2021/CVE-2021-24285.yaml by mp

* Enhancement: cves/2021/CVE-2021-24472.yaml by mp

* Enhancement: cves/2021/CVE-2021-20090.yaml by mp

* Enhancement: cves/2021/CVE-2021-20167.yaml by mp

* Enhancement: cves/2021/CVE-2021-21307.yaml by mp

* Enhancement: cves/2021/CVE-2021-21978.yaml by mp

* Enhancement: cves/2021/CVE-2021-21985.yaml by mp

* Enhancement: cves/2021/CVE-2021-21972.yaml by mp

* Enhancement: cves/2021/CVE-2021-22205.yaml by mp

* Enhancement: cves/2021/CVE-2021-22986.yaml by mp

* Enhancement: cves/2021/CVE-2021-24285.yaml by mp

* Restore empty lines

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Remove unnecessary file

* Restore content after bad dashboard edit

* Enhancement: undefined by cs

* Spacing issues

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Delete null file created by dashboard

* Remove improper Enhanced tag

* Spacing issues

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Remove test dashboard commits

* Enhancement: cves/2014/CVE-2014-9618.yaml by mp

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Not really enhanced

* Add classification->cve-id

* Restore content from dashboard mess up

* Enhancement: cves/2014/CVE-2014-9618.yaml by mp

* Enhancement: cves/2014/CVE-2014-9618.yaml by mp

* Restore newlines

* Enhancement: cves/2007/CVE-2007-4556.yaml by mp

* Enhancement: cves/2007/CVE-2007-4556.yaml by mp

* Enhancement: cves/2014/CVE-2014-9618.yaml by mp

* Enhancement: cves/2015/CVE-2015-1427.yaml by mp

* Enhancement: cves/2015/CVE-2015-3224.yaml by mp

* Enhancement: cves/2015/CVE-2015-7450.yaml by mp

* Enhancement: cves/2016/CVE-2016-10134.yaml by mp

* Enhancement: cves/2016/CVE-2016-1555.yaml by mp

* Enhancement: cves/2016/CVE-2016-2004.yaml by mp

* Enhancement: cves/2016/CVE-2016-5649.yaml by mp

* Enhancement: cves/2016/CVE-2016-7552.yaml by mp

* Enhancement: cves/2017/CVE-2017-1000486.yaml by mp

* Enhancement: cves/2017/CVE-2017-11444.yaml by mp

* Spacing issues

* Added better reference

* Enhancement: cves/2017/CVE-2017-12149.yaml by mp

* Enhancement: cves/2017/CVE-2017-12542.yaml by mp

* Enhancement: cves/2017/CVE-2017-12611.yaml by mp

* Enhancement: cves/2017/CVE-2017-12635.yaml by mp

* Enhancement: cves/2017/CVE-2017-14135.yaml by mp

* Enhancement: cves/2017/CVE-2017-3881.yaml by mp

* Enhancement: cves/2017/CVE-2017-7269.yaml by mp

* Enhancement: cves/2017/CVE-2017-8917.yaml by mp

* Enhancement: cves/2017/CVE-2017-9791.yaml by mp

* Enhancement: cves/2015/CVE-2015-1427.yaml by mp

* Enhancement: cves/2017/CVE-2017-12149.yaml by mp

* Enhancement: cves/2017/CVE-2017-12542.yaml by mp

* Enhancement: cves/2017/CVE-2017-8917.yaml by mp

* Spacing and other minor issues

* Update CVE-2015-1427.yaml

* Update CVE-2017-12149.yaml

* Update CVE-2017-12542.yaml

* Update CVE-2017-12635.yaml

* Update CVE-2017-14135.yaml

* Update CVE-2017-3881.yaml

* Update CVE-2017-7269.yaml

* Update CVE-2017-8917.yaml

* Update CVE-2017-9791.yaml

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by mp

* Enhancement: cnvd/2019/CNVD-2019-32204.yaml by mp

* Enhancement: cnvd/2020/CNVD-2020-68596.yaml by mp

* Enhancement: cnvd/2021/CNVD-2021-09650.yaml by mp

* Enhancement: cnvd/2021/CNVD-2021-26422.yaml by mp

* Enhancement: cnvd/2022/CNVD-2022-03672.yaml by mp

* Enhancement: cves/2017/CVE-2017-9841.yaml by mp

* Enhancement: cves/2018/CVE-2018-0127.yaml by mp

* Enhancement: cves/2018/CVE-2018-1000226.yaml by mp

* Enhancement: cves/2018/CVE-2018-1000861.yaml by mp

* Enhancement: cves/2018/CVE-2018-10562.yaml by mp

* Enhancement: cves/2018/CVE-2018-12031.yaml by mp

* Enhancement: cves/2018/CVE-2018-1207.yaml by mp

* Enhancement: cves/2018/CVE-2018-12634.yaml by mp

* Enhancement: cves/2018/CVE-2018-1273.yaml by mp

* Enhancement: cves/2018/CVE-2018-16763.yaml by mp

* Enhancement: cves/2018/CVE-2018-16167.yaml by mp

* Enhancement: cves/2018/CVE-2018-14916.yaml by mp

* Enhancement: cves/2018/CVE-2018-14064.yaml by mp

* Enhancement: cves/2018/CVE-2018-13379.yaml by mp

* Enhancement: cves/2017/CVE-2017-9841.yaml by mp

* Enhancement: cves/2018/CVE-2018-1000861.yaml by mp

* Enhancement: cves/2018/CVE-2018-10562.yaml by mp

* Enhancement: cves/2018/CVE-2018-12031.yaml by mp

* Enhancement: cves/2018/CVE-2018-1207.yaml by mp

* Enhancement: cves/2018/CVE-2018-12634.yaml by mp

* Enhancement: cves/2018/CVE-2018-13379.yaml by mp

* Enhancement: cves/2018/CVE-2018-14916.yaml by mp

* Enhancement: cves/2018/CVE-2018-16167.yaml by mp

* Enhancement: cves/2018/CVE-2018-16763.yaml by mp

* Cleanup and spacing

* Remove blank cve-id lines

* Enhancement: cves/2018/CVE-2018-16836.yaml by mp

* Enhancement: cves/2018/CVE-2018-17246.yaml by mp

* Enhancement: cves/2018/CVE-2018-17431.yaml by mp

* Enhancement: cves/2018/CVE-2018-18925.yaml by mp

* Enhancement: cves/2018/CVE-2018-20985.yaml by mp

* Enhancement: cves/2018/CVE-2018-2894.yaml by mp

* Enhancement: cves/2018/CVE-2018-3810.yaml by mp

* Enhancement: cves/2018/CVE-2018-7600.yaml by mp

* Enhancement: cves/2018/CVE-2018-7600.yaml by mp

* Enhancement: cves/2018/CVE-2018-7602.yaml by mp

* Enhancement: cves/2018/CVE-2018-9161.yaml by mp

* Enhancement: cves/2018/CVE-2018-16836.yaml by mp

* Enhancement: cves/2018/CVE-2018-17431.yaml by mp

* Many title clean-ups for more standardization.
Some vendor name clean-up

* Enhancement: cves/2018/CVE-2018-20985.yaml by mp

* Enhancement: cves/2018/CVE-2018-3810.yaml by mp

* Spacing issues

* Remove 2 blank newlines

* Enhancement: vulnerabilities/other/tamronos-rce.yaml by cs

* Enhancement: cves/2018/CVE-2018-9845.yaml by mp

* Enhancement: cves/2018/CVE-2018-9995.yaml by mp

* Enhancement: cves/2019/CVE-2019-0230.yaml by mp

* Enhancement: cves/2019/CVE-2019-16920.yaml by mp

* Enhancement: cves/2019/CVE-2019-17270.yaml by mp

* Enhancement: cves/2019/CVE-2019-17382.yaml by mp

* Enhancement: cves/2019/CVE-2019-17444.yaml by mp

* Enhancement: cves/2019/CVE-2019-17506.yaml by mp

* Enhancement: cves/2020/CVE-2020-10148.yaml by mp

* Enhancement: cves/2020/CVE-2020-11710.yaml by mp

* Enhancement: cves/2020/CVE-2020-11854.yaml by mp

* Enhancement: cves/2020/CVE-2020-12800.yaml by mp

* Enhancement: cves/2020/CVE-2020-13117.yaml by mp

* Enhancement: cves/2020/CVE-2020-13167.yaml by mp

* Enhancement: cves/2020/CVE-2020-13927.yaml by mp

* Enhancement: cves/2020/CVE-2020-13942.yaml by mp

* Spacing, syntax error

* Spacing, correct this time.

* Enhancement: cves/2020/CVE-2020-15920.yaml by mp

* Enhancement: cves/2020/CVE-2020-29227.yaml by mp

* Enhancement: cves/2021/CVE-2021-24499.yaml by mp

* Enhancement: cves/2021/CVE-2021-24762.yaml by mp

* Enhancement: cves/2018/CVE-2018-9995.yaml by mp

* Enhancement: cves/2019/CVE-2019-0230.yaml by mp

* Enhancement: cves/2019/CVE-2019-17444.yaml by mp

* Enhancement: cves/2020/CVE-2020-10148.yaml by mp

* Enhancement: cves/2020/CVE-2020-11854.yaml by mp

* Enhancement: cves/2020/CVE-2020-13167.yaml by mp

* Enhancement: cves/2020/CVE-2020-13927.yaml by mp

* Enhancement: cves/2020/CVE-2020-15920.yaml by mp

* Enhancement: cves/2021/CVE-2021-24499.yaml by mp

* Extra newlines and one sp;acing issue

* Update CVE-2018-9995.yaml

* Update CVE-2019-0230.yaml

* Update CVE-2019-16920.yaml

* Update CVE-2019-17270.yaml

* Update CVE-2019-17382.yaml

* Update CVE-2019-17444.yaml

* Update CVE-2019-17506.yaml

* Update CVE-2020-10148.yaml

* Update CVE-2020-11710.yaml

* Update CVE-2020-11854.yaml

* Update CVE-2020-12800.yaml

* Update CVE-2020-13167.yaml

* Update CVE-2020-13927.yaml

* Update CVE-2020-13942.yaml

* Update CVE-2020-15920.yaml

* Update CVE-2020-29227.yaml

* Update CVE-2021-24499.yaml

* Update CVE-2021-24762.yaml

Co-authored-by: sullo <sullo@cirt.net>
Co-authored-by: Prince Chaddha <prince@projectdiscovery.io>
2022-05-17 14:41:26 +05:30
GitHub Action 085f41d506 Auto Generated New Template Addition List [Tue May 17 09:01:51 UTC 2022] 🤖 2022-05-17 09:01:51 +00:00
Prince Chaddha 334a4d03f4
Update cache-poisoning.yaml (#4418)
* Update cache-poisoning.yaml

* added identifier to headers

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2022-05-17 14:31:33 +05:30
Prince Chaddha 7c7b0a7479
Update xss-deprecated-header.yaml 2022-05-17 13:36:53 +05:30
GitHub Action 189d2371c2 Auto Generated New Template Addition List [Tue May 17 07:57:16 UTC 2022] 🤖 2022-05-17 07:57:16 +00:00
GitHub Action b91deec640 Auto Generated New Template Addition List [Tue May 17 07:57:00 UTC 2022] 🤖 2022-05-17 07:57:01 +00:00
Prince Chaddha 565b183905
false negative
The current template will result in false negatives for this CVE, so we need to create a headless template
2022-05-17 13:26:59 +05:30
Prince Chaddha 7cad7233d2
Merge pull request #4417 from daffainfo/patch-27
Create CVE-2018-17422.yaml
2022-05-17 13:26:41 +05:30
Prince Chaddha dc21cfa947
Update CVE-2018-17422.yaml 2022-05-17 13:24:44 +05:30
Prince Chaddha 470e9fd6ff
Update CVE-2018-17422.yaml 2022-05-17 13:24:20 +05:30
Muhammad Daffa 9a3ad1f320
Create CVE-2018-17422.yaml 2022-05-17 14:45:41 +07:00
GitHub Action b2d6f3dd43 Auto Generated New Template Addition List [Tue May 17 07:27:37 UTC 2022] 🤖 2022-05-17 07:27:38 +00:00
Prince Chaddha ca1d4a68c2
Merge pull request #4410 from daffainfo/patch-25
Update CVE-2022-23808.yaml
2022-05-17 12:57:11 +05:30
Prince Chaddha ec8cba063e
Update CVE-2022-23808.yaml 2022-05-17 12:55:00 +05:30
Prince Chaddha b5a646e2a4
Update CVE-2022-23808.yaml 2022-05-17 12:36:09 +05:30
GitHub Action 41ad8a4f36 Auto Generated New Template Addition List [Tue May 17 07:05:16 UTC 2022] 🤖 2022-05-17 07:05:16 +00:00
Prince Chaddha 0deea2ce88
Merge pull request #4408 from daffainfo/patch-23
Update CVE-2021-27330
2022-05-17 12:34:56 +05:30
Prince Chaddha e5ef699566
Update CVE-2021-27330.yaml 2022-05-17 12:31:28 +05:30
GitHub Action 5f01e8de34 Auto Generated New Template Addition List [Tue May 17 06:58:58 UTC 2022] 🤖 2022-05-17 06:58:58 +00:00
Prince Chaddha 8e507feb65
Merge pull request #4412 from daffainfo/patch-26
Update CVE-2018-1000129.yaml
2022-05-17 12:28:40 +05:30
Prince Chaddha deb51c0d22
Update CVE-2018-1000129.yaml 2022-05-17 12:26:18 +05:30
Prince Chaddha 143262021a
Update CVE-2018-1000129.yaml 2022-05-17 12:25:30 +05:30
GitHub Action abb57403f5 Auto Generated New Template Addition List [Tue May 17 06:46:45 UTC 2022] 🤖 2022-05-17 06:46:45 +00:00
Prince Chaddha 00b9209098
Merge pull request #4404 from projectdiscovery/octobercms-default-login
Create octobercms-default-login.yaml
2022-05-17 12:16:29 +05:30
GitHub Action a239756772 Auto Generated New Template Addition List [Tue May 17 06:19:44 UTC 2022] 🤖 2022-05-17 06:19:44 +00:00
Prince Chaddha d7575ac113
Merge pull request #4416 from gy741/rule-add-v110
Create CVE-2021-46424.yaml
2022-05-17 11:49:28 +05:30
Prince Chaddha 49926e3358
Update octobercms-default-login.yaml 2022-05-17 11:49:23 +05:30
Prince Chaddha 2010c97355
Update CVE-2021-46424.yaml 2022-05-17 11:47:22 +05:30
GitHub Action fdb7df10cf Auto Generated New Template Addition List [Tue May 17 06:03:51 UTC 2022] 🤖 2022-05-17 06:03:51 +00:00
Prince Chaddha d8a71e5e03
Create tlr-2005ksh-login.yaml 2022-05-17 11:33:34 +05:30
GwanYeong Kim f06f02b0c1 Create CVE-2021-46424.yaml
Telesquare TLR-2005KSH 1.0.0 is affected by an arbitrary file deletion vulnerability that allows a remote attacker to delete any file, even system internal files, via a DELETE request.

Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2022-05-17 14:35:45 +09:00
Muhammad Daffa 023ef3a17f
Update CVE-2018-1000129.yaml 2022-05-17 06:31:59 +07:00
Josh Larsen b1833adc69 remove extra line 2022-05-16 15:02:43 -04:00
GitHub Action a6ff03b8a4 Auto Generated New Template Addition List [Mon May 16 18:05:49 UTC 2022] 🤖 2022-05-16 18:05:49 +00:00
Sandeep Singh 4fbdb224a0
Typo update 2022-05-16 23:35:31 +05:30
Muhammad Daffa 71b5cab63f
Update CVE-2022-23808.yaml 2022-05-17 01:03:46 +07:00
Muhammad Daffa 262d638222
Adding google dork, fix path, adding some matchers 2022-05-17 00:16:14 +07:00
Josh Larsen 3c828b8ac0 detect deprecated XSS Protection headers 2022-05-16 12:12:06 -04:00
GitHub Action da29938404 Auto Generated New Template Addition List [Mon May 16 16:07:14 UTC 2022] 🤖 2022-05-16 16:07:14 +00:00
Josh Larsen 504d6343cc
Detect more Kong headers (#4406)
* Detect more Kong headers

* simplified template with case-insensitive word matchers

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2022-05-16 21:36:55 +05:30
GitHub Action 146f0bac38 Auto Generated New Template Addition List [Mon May 16 13:23:36 UTC 2022] 🤖 2022-05-16 13:23:36 +00:00
Prince Chaddha c8d6c7e9df
Merge pull request #4405 from projectdiscovery/oracle-ebusiness-registration-enabled
Update oracle-ebusiness-registration-enabled.yaml
2022-05-16 18:53:08 +05:30
Prince Chaddha 3f9ce9fb44
Update oracle-ebusiness-registration-enabled.yaml 2022-05-16 18:50:40 +05:30
GitHub Action 65feafc4a5 Auto Generated New Template Addition List [Mon May 16 12:13:22 UTC 2022] 🤖 2022-05-16 12:13:22 +00:00
Prince Chaddha 0a49492f2a
Update CVE-2022-1392.yaml 2022-05-16 17:43:06 +05:30
GitHub Action 4628a315f9 Auto Generated New Template Addition List [Mon May 16 12:08:09 UTC 2022] 🤖 2022-05-16 12:08:10 +00:00