Commit Graph

2953 Commits (161b90353a69a478935323e6ecb087d95efde4e1)

Author SHA1 Message Date
pussycat0x e27cde97f6
protocol update 2023-05-09 21:46:34 +05:30
Ritik Chaddha b79431ad43
updated path and matchers 2023-05-09 21:45:10 +05:30
Parth Malhotra 777f1efbc1
Update CVE-2023-31059.yaml 2023-05-09 21:42:39 +05:30
Parth Malhotra 1baf108a3f
Update CVE-2023-31059.yaml 2023-05-09 21:38:13 +05:30
Parth Malhotra cdfe62741d
Create CVE-2023-31059.yaml 2023-05-09 21:35:10 +05:30
Parth Malhotra 6ef29cb29e
Create CVE-2023-31059.yaml 2023-05-09 21:30:06 +05:30
Ritik Chaddha 68b0734657
removed matcher condition 2023-05-09 19:36:13 +05:30
dabla bda2c2941a
Merge branch 'main' into add-sophos-mobile-xxe_cve-2022-3980 2023-05-09 15:43:27 +02:00
sandeep c59974226f strict dsl matcher with addition check 2023-05-09 18:40:00 +05:30
david-bla aede9461c4 fix indentation 2023-05-09 15:01:33 +02:00
Sandeep Singh 6addff3ac6
misc syntax fixes (#7201) 2023-05-09 18:13:13 +05:30
Parth Malhotra 0450d1224f
Create CVE-2023-25717.yaml 2023-05-09 18:05:28 +05:30
david-bla 5df70e5ddd add template for sophos mobile xxe ssrf (cve-2022-3980) 2023-05-09 13:58:36 +02:00
pussycat0x 68a1ea89e0
Update CVE-2023-26360.yaml 2023-05-09 16:51:33 +05:30
Dhiyaneshwaran 5c3ef6fa06 fix trail space 2023-05-09 15:07:07 +05:30
Dhiyaneshwaran cb9fce3f99
Create CVE-2023-26360.yaml 2023-05-09 15:03:18 +05:30
Parth 76758f23a1 fix trailing space 2023-05-09 04:26:37 +05:30
Dhiyaneshwaran 70a4c7180c
description added 2023-05-08 22:56:05 +05:30
Dhiyaneshwaran badb9b7945
Create CVE-2022-24716.yaml 2023-05-08 22:54:19 +05:30
Parth 6bbd3a0936 added cred template 2023-05-08 22:35:04 +05:30
chucklesb 68ec25d148
Fix Dell EMC ECOM Default Login credentials
It seems the default credentials were incorrectly defined.
2023-05-08 08:39:00 -06:00
Ritik Chaddha 49a845f496
added stop-at-first 2023-05-08 20:05:18 +05:30
Ritik Chaddha 72e1ffb177
Update and rename technologies/favicon-detect.yaml to http/technologies/favicon-detect.yaml 2023-05-08 20:03:48 +05:30
Dhiyaneshwaran 2cd9630abd
change to http attribute 2023-05-08 15:01:22 +05:30
Dhiyaneshwaran 064ccf7b80
Create nginx-shards.yaml 2023-05-08 15:00:15 +05:30
Dhiyaneshwaran 6a8446b887
Create platformio-ini.yaml 2023-05-08 13:38:14 +05:30
Dhiyaneshwaran 96dd98f8b7
Merge pull request #7188 from j3ssie/main
Path Traversal in Ghost CMS < 5.42.1
2023-05-08 13:13:42 +05:30
Ritik Chaddha a4f51aca8f
updated info 2023-05-08 13:08:31 +05:30
sandeep dd953b4706 Added spm + shodan query 2023-05-08 12:58:19 +05:30
Dhiyaneshwaran 25eee3c650
Merge pull request #7169 from projectdiscovery/red-lion-panel
Create red-lion-panel.yaml
2023-05-08 12:50:10 +05:30
Co5mos ed206e5c27 Update CVE-2023-2356 Template 2023-05-08 15:12:08 +08:00
j3ssie b89dee6aae Path Traversal in Ghost CMS < 5.42.1 2023-05-08 13:27:57 +07:00
Ritik Chaddha 7d521d0264
updated matcher 2023-05-08 11:36:48 +05:30
Dhiyaneshwaran df0d7dca53 added matcher-condition and 2023-05-08 11:07:36 +05:30
Ritik Chaddha f96e98052e payload update 2023-05-08 11:07:00 +05:30
Dhiyaneshwaran 5875abf833
Merge pull request #7182 from ViCrack/CVE-2020-14883
Updated CVE-2020-14883
2023-05-08 11:03:41 +05:30
Dhiyaneshwaran 5c457fab94
Merge pull request #7187 from Arrnitage/main
change to default password
2023-05-08 10:53:16 +05:30
GitHub Action dcffb39e7c Auto WordPress Plugins Update [Mon May 8 04:02:16 UTC 2023] 🤖 2023-05-08 04:02:16 +00:00
Arm!tage 9dbcf5b78a change to default password 2023-05-08 00:19:29 +08:00
ViCrack 5b88116b2e fix xstream 2023-05-07 00:36:32 +08:00
ViCrack 4e638c079f replace cat command with rand_int 2023-05-06 23:08:06 +08:00
Prince Chaddha 124b2230cf templates added 2023-05-06 17:42:20 +05:30
Ritik Chaddha 1732a81929
added shodan 2023-05-06 12:38:20 +05:30
Ritik Chaddha cb6ebb417b
updated variable and matcher 2023-05-06 12:29:32 +05:30
ViCrack df22dcc281 add support for Windows 2023-05-06 14:21:07 +08:00
Ritik Chaddha b17a5d1177
Merge branch 'main' into oracle-opera-login 2023-05-06 00:01:48 +05:30
Ritik Chaddha cc4a213613
Merge pull request #7158 from DhiyaneshGeek/sb-meetup
Sb meetup
2023-05-06 00:00:58 +05:30
Ritik Chaddha 1cb374b3a3
Update oracle-opera-login.yaml 2023-05-05 23:53:14 +05:30
pussycat0x 0e09e7c289
Merge pull request #7179 from dogasantos/CVE-2021-43798.yaml
fixed false positive produce by the old win.ini regex
2023-05-05 23:02:26 +05:30
pussycat0x 906a0a65e3
Update CVE-2021-43798.yaml 2023-05-05 22:56:15 +05:30
Dhiyaneshwaran 511a601dd6
Merge pull request #7175 from Co5mos/CVE-2022-40879
Updated CVE-2022-40879 Template
2023-05-05 22:52:41 +05:30
Dhiyaneshwaran c585da0abe
Merge pull request #7176 from Co5mos/CVE-2022-0678
Updated CVE-2022-0678 Template
2023-05-05 22:52:23 +05:30
pussycat0x 8bafd0510d
Merge branch 'main' into CVE-2021-43798.yaml 2023-05-05 22:51:45 +05:30
pussycat0x a82301ad7b
Merge pull request #7171 from Mys7ic/fix_CVE-2021-43798
fix regex for win.ini
2023-05-05 22:36:01 +05:30
sandeep 8c98270a8c typo update 2023-05-05 19:04:02 +05:30
pussycat0x 983915d4bc
Rename CVE-2020-11547.yaml to CVE-2020-11547.yaml 2023-05-05 19:02:53 +05:30
Dhiyaneshwaran 6ea44267d5
Merge branch 'main' into main 2023-05-05 18:35:06 +05:30
pussycat0x 4660c9abf3
lint -fix 2023-05-05 16:48:47 +05:30
Prince Chaddha 872a146a25
Create waf-fuzz.yaml 2023-05-05 15:45:38 +05:30
Prince Chaddha 9a11ae394b
Merge pull request #7046 from projectdiscovery/add-cpe-epss
Added CPE and EPSS Score to CVE Templates
2023-05-05 15:33:15 +05:30
mlec a6c3f4f9c1
fix(false-positive): Remove trailing space 🩹 2023-05-05 08:27:56 +02:00
mlec 8c792b2911
fix(false-positive): Add removed part after rebased 🩹
Refs:
- https://github.com/projectdiscovery/nuclei-templates/issues/5934
- https://github.com/projectdiscovery/nuclei-templates/pull/5939
2023-05-05 08:17:35 +02:00
pussycat0x 576c0d64d4
Merge pull request #7154 from j4vaovo/patch-33
Create CVE-2017-17731.yaml
2023-05-05 11:47:15 +05:30
pussycat0x 0649a8eec8
Update and rename http/cves/CVE-2017-17731.yaml to http/cves/2017/CVE-2017-17731.yaml 2023-05-05 11:43:29 +05:30
pussycat0x a7b52d98a9
Merge branch 'main' into main 2023-05-05 10:38:42 +05:30
pussycat0x 9e7fa915d9
protocol update 2023-05-05 10:35:38 +05:30
pussycat0x 9159fde669
Update and rename cves/2021/CVE-2021-40870.yaml to http/cves/2021/CVE-2021-40870.yaml 2023-05-05 10:35:10 +05:30
pussycat0x 8458967376
Rename cves/2020/CVE-2020-5847.yaml to http/cves/2020/CVE-2020-5847.yaml 2023-05-05 10:33:34 +05:30
GitHub Action adef8ce3a2 Auto WordPress Plugins Update [Fri May 5 04:02:08 UTC 2023] 🤖 2023-05-05 04:02:08 +00:00
Ritik Chaddha c6c2a0d413
Update CVE-2018-13379.yaml 2023-05-05 00:05:34 +05:30
Ritik Chaddha 9f85fbc113
Update CVE-2019-19908.yaml 2023-05-05 00:04:56 +05:30
Ritik Chaddha 561b42ebe7 Merge branch 'main' into add-cpe-epss 2023-05-05 00:00:13 +05:30
dogasantos dfadeb5774 fixed false positive produce by the old win.ini regex 2023-05-04 14:28:33 -03:00
Co5mos c6e1cabcfe Added CVE-2023-2356 Template 2023-05-04 20:59:25 +08:00
Co5mos c76b0a862a Updated CVE-2022-0678 Template 2023-05-04 20:37:18 +08:00
Co5mos 4565b0a6fe Updated CVE-2022-40879 Template 2023-05-04 20:34:45 +08:00
Prince Chaddha b08774126b
Merge pull request #7155 from projectdiscovery/add-max-request
Added `max-request` counter of each template
2023-05-04 17:55:42 +05:30
dm-ct f74e8bd714
Update unauth-ztp-ping.yaml
accidentally left a ?ref tag in a reference.
2023-05-04 10:54:09 +01:00
dm-ct 9ec854c91e
Create unauth-ztp-ping.yaml
Creates a template that can detect ZyXEL ZTP (Zero Touch Provisioning) interfaces that lack any authentication checks.
Authentication checks were added in the fixes for CVE-2023-28771
2023-05-04 10:14:16 +01:00
Ritik Chaddha 05eb753985
Update apache-ofbiz-log4j-rce.yaml 2023-05-04 11:05:06 +05:30
Ritik Chaddha 0c049e028e updated templates 2023-05-04 00:16:17 +05:30
Ritik Chaddha 109d452109 Merge branch 'update-log4j' of https://github.com/projectdiscovery/nuclei-templates into update-log4j 2023-05-03 23:51:59 +05:30
Ritik Chaddha 82a8526978 updated templates 2023-05-03 23:51:23 +05:30
Ritik Chaddha 8da408f77c
name update=id 2023-05-03 23:42:07 +05:30
Ritik Chaddha 89185ad7fe
fix 2023-05-03 23:31:55 +05:30
Ritik Chaddha b50e22b7da updated log4j 2023-05-03 23:21:44 +05:30
avisscr daa28f13fb eclipse-panel, CVE-2021-34427.yaml 2023-05-03 13:43:39 +00:00
myztique e5c97d8319 fix regex for win.ini 2023-05-03 15:00:00 +02:00
Ritik Chaddha 3cf8d0bd94
Update All Existing Log4j Templates 2023-05-03 17:21:48 +05:30
Ritik Chaddha c735ba6524
Create red-lion-panel.yaml 2023-05-03 17:13:12 +05:30
GitHub Action 72d74b4c25 Auto WordPress Plugins Update [Wed May 3 04:02:18 UTC 2023] 🤖 2023-05-03 04:02:18 +00:00
pussycat0x b5772b0b37
Merge pull request #7162 from projectdiscovery/wpml-xss
Added WPML XSS
2023-05-02 23:25:56 +05:30
Barthy f62fe3538e
Merge branch 'projectdiscovery:main' into umami_default_login 2023-05-02 17:02:54 +02:00
sandeep 2175d81329 removed duplicate key 2023-05-02 18:29:30 +05:30
sandeep ea116bde6b moving file around 2023-05-02 18:24:56 +05:30
sandeep e5ae45127e Merge remote-tracking branch 'origin' into add-cpe-epss 2023-05-02 18:21:24 +05:30
sandeep a470c2a150 Merge remote-tracking branch 'origin' into add-max-request 2023-05-02 17:52:27 +05:30
sandeep 4858f39e1e removed duplicate key 2023-05-02 17:51:59 +05:30
Dhiyaneshwaran 5d204637bd Update CVE-2017-17731.yaml 2023-05-02 16:39:12 +05:30
Dhiyaneshwaran 3a0ceae738 fix 2023-05-02 16:29:15 +05:30
Dhiyaneshwaran 547bc9ee0e
Merge pull request #7144 from j4vaovo/patch-31
Create apache-zeppelin-unauth.yaml
2023-05-02 14:33:52 +05:30
Dhiyaneshwaran e0190816e1 Merge branch 'patch-31' of https://github.com/j4vaovo/nuclei-templates into pr/7144 2023-05-02 14:31:07 +05:30
Dhiyaneshwaran 93ec538017 Update apache-zeppelin-unauth.yaml 2023-05-02 14:30:55 +05:30
Dhiyaneshwaran 70d2eecc92 fix matcher and header 2023-05-02 14:23:21 +05:30
sandeep a13b8eac7f lint fixes 2023-05-02 13:02:45 +05:30
Dhiyaneshwaran 1c1bc41ea2 added metadata 2023-05-02 11:03:28 +05:30
GitHub Action 88c25d4565 Auto WordPress Plugins Update [Tue May 2 04:02:19 UTC 2023] 🤖 2023-05-02 04:02:19 +00:00
Dhiyaneshwaran 8eb2083647
Create oracle-opera-login.yaml 2023-05-02 08:34:35 +05:30
Barthy 02948cb6a6
Create umami-default-login.yaml 2023-05-01 23:12:20 +02:00
Ritik Chaddha 23b6a05402
updated matcher 2023-05-01 23:15:58 +05:30
sandeep e762172422 Added WPML XSS 2023-05-01 21:18:57 +05:30
Prince Chaddha 59ac982c42
Create CVE-2019-3398.yaml 2023-05-01 17:54:05 +05:30
Prince Chaddha d6d8d9f4ae
Merge branch 'main' into patch-23 2023-05-01 09:07:54 +05:30
Prince Chaddha 966d37b02e
updated template path and protocol name 2023-05-01 09:07:12 +05:30
Dhiyaneshwaran 2c6d6cb3c0 Update postman-key.yaml 2023-04-30 17:49:29 +05:30
j4vaovo f5df1a74cb
Update vmware-siterecovery-log4j-rce.yaml (#7157) 2023-04-30 16:03:43 +05:30
Dhiyaneshwaran 9286f2174d
Create postman-key.yaml 2023-04-30 13:53:37 +05:30
Sandeep Singh 28f4302dcd
Merge branch 'main' into add-max-request 2023-04-29 13:32:16 +05:30
MostInterestingBotInTheWorld a34153eb9c
Dashboard Content Enhancements (#7149)
Dashboard Content Enhancements
2023-04-28 09:11:35 -04:00
Ritik Chaddha 392187b67e
Merge branch 'main' into CVE-2023-20864 2023-04-28 16:17:54 +05:30
Dhiyaneshwaran 27f30265bd
Merge pull request #7126 from projectdiscovery/CVE-2023-27350
PaperCut - Unauthenticated Remote Code Execution  CVE-2023-27350
2023-04-28 16:01:47 +05:30
Dhiyaneshwaran 77ee8acc56
change to http 2023-04-28 15:32:24 +05:30
Dhiyaneshwaran 00ef22599c
Rename cves/2023/CVE-2023-27350.yaml to http/cves/2023/CVE-2023-27350.yaml 2023-04-28 15:32:02 +05:30
Dhiyaneshwaran 0f573ef4dc
Merge pull request #7120 from For3stCo1d/minio-default-login
Update minio-default-login.yaml
2023-04-28 15:29:36 +05:30
Dhiyaneshwaran bb63a4aeab
Merge pull request #7116 from j4vaovo/patch-28
Create apache-druid-kafka-connect-rce.yaml
2023-04-28 15:27:30 +05:30
Dhiyaneshwaran 5136c8f23c
Rename vulnerabilities/apache/apache-druid-kafka-connect-rce.yaml to http/vulnerabilities/apache/apache-druid-kafka-connect-rce.yaml 2023-04-28 15:25:03 +05:30
Dhiyaneshwaran dde0ee23dc
Merge pull request #7103 from lu4nx/mail-archive
Add Mail-archive OSINT
2023-04-28 15:23:10 +05:30
Dhiyaneshwaran cbf186eb55
Update and rename osint/mail-archive.yaml to http/osint/mail-archive.yaml 2023-04-28 14:02:52 +05:30
Dhiyaneshwaran 1280b5b17b
Merge pull request #7142 from j4vaovo/patch-29
Create powerjob-default-login.yaml
2023-04-28 14:00:34 +05:30
sandeep 1f5b1f2c47 Added max request counter of each template 2023-04-28 13:41:21 +05:30
pussycat0x dd2b93a095
Merge pull request #7145 from projectdiscovery/CVE-2023-29489
Create CVE-2023-29489.yaml
2023-04-28 13:18:18 +05:30
pussycat0x 474f99f7c4
Rename CVE-2023-29489.yaml to CVE-2023-29489.yaml 2023-04-28 13:15:11 +05:30
pussycat0x d1aa1491e7
Merge branch 'main' into minio-default-login 2023-04-28 11:51:01 +05:30
pussycat0x 78f48036db
Update and rename default-logins/minio/minio-default-login.yaml to http/default-logins/minio/minio-default-login.yaml 2023-04-28 11:39:36 +05:30
Dhiyaneshwaran 4545b9082c
Rename http/cve/CVE-2023-29489.yaml to http/cve/2023/CVE-2023-29489.yaml 2023-04-28 10:55:44 +05:30
pussycat0x f04bd2658b
Merge pull request #7150 from Co5mos/CVE-2023-1671
Added CVE-2023-1671 Template
2023-04-28 10:40:31 +05:30
j4vaovo ca0b9665cd
Create CVE-2017-17731.yaml 2023-04-28 08:53:23 +08:00
Dhiyaneshwaran 658575fb02
Merge pull request #5520 from edoardottt/CVE-2020-27481
Add CVE-2020-27481
2023-04-27 23:10:11 +05:30
Dhiyaneshwaran 38514e4bd1
Update and rename cves/2020/CVE-2020-27481.yaml to http/cves/2020/CVE-2020-27481.yaml 2023-04-27 23:06:26 +05:30
Dhiyaneshwaran 2a363a80a2
Update and rename cves/2023/CVE-2023-1671.yaml to http/cves/2023/CVE-2023-1671.yaml 2023-04-27 22:45:45 +05:30
Sandeep Singh 4615f5ab9d
validate workflow fix (#7151)
* workflow fixes

* disable downloading template as we have it locally.
2023-04-27 22:04:16 +05:30
Ritik Chaddha 793b661255
Update and rename cves/2023/CVE-2023-20864.yaml to http/cves/2023/CVE-2023-20864.yaml 2023-04-27 21:14:42 +05:30
Dhiyaneshwaran b72996aa42
change of protocol attribute 2023-04-27 17:54:02 +05:30
Dhiyaneshwaran 10bd0df1a3
Rename CVE-2023-29489.yaml to CVE-2023-29489.yaml 2023-04-27 17:44:38 +05:30
pussycat0x 795999751e
Refactoring the directory structure based on protocols (#7146)
* Refactoring the directory structure based on protocols

* Update CVE-2021-30175.yaml

* lint fix

---------

Co-authored-by: Ritik Chaddha <44563978+ritikchaddha@users.noreply.github.com>
2023-04-27 17:01:53 +05:30
pussycat0x ada36e744f
Refactoring the directory structure based on protocols (#7147)
* @pussycat0x Refactoring the directory structure based on protocols

* Update CVE-2023-29922.yaml
2023-04-27 17:01:18 +05:30
pussycat0x 8d4c85bdc7
Description -update 2023-04-27 16:28:20 +05:30
savik 53191a877a
fix the path (#7148)
* fix the path

* lint fix

---------

Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>
2023-04-27 15:55:32 +05:30
pussycat0x caa647f61a
format -update 2023-04-27 15:26:28 +05:30
Dhiyaneshwaran a14e0b382e
Rename http/misconfiguration/apacheiapacheapacheapache-zeppelin-unauth.yaml to http/misconfiguration/apache/apache-zeppelin-unauth.yaml 2023-04-27 11:30:00 +05:30
Dhiyaneshwaran 4c73bc5869
Rename misconfiguration/apache-zeppelin-unauth.yaml to http/misconfiguration/apacheiapacheapacheapache-zeppelin-unauth.yaml 2023-04-27 11:29:33 +05:30
sandeep da52872ba2 moving files around 2023-04-27 10:21:55 +05:30
Prince Chaddha e0af666e1c
Refactoring the directory structure based on protocols (#7137)
* moving http templates

* updated cves.json

* moved network CVEs

* updated scripts

* updated workflows

* updated requests to http

* replaced network to tcp

---------

Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>
2023-04-27 09:58:59 +05:30