Commit Graph

2924 Commits (164387b9d39f6f4d544ffb127bb74cae9509d138)

Author SHA1 Message Date
Dhiyaneshwaran 9c7ef7c0ce
Merge pull request #7288 from projectdiscovery/pussycat0x-patch-6
IBM WebSphere application - Source File Exposure
2023-05-24 23:51:05 +05:30
Dhiyaneshwaran 9cbdb8fd04
Update ibm-websphere-xml.yaml 2023-05-24 23:47:38 +05:30
Dhiyaneshwaran 23ff7f9e95
Update and rename ibm-websphere-exposure.yaml to ibm-websphere-xml.yaml 2023-05-24 23:47:21 +05:30
Ritik Chaddha 83a7341f0a
lint fix 2023-05-24 23:42:07 +05:30
Ritik Chaddha 355f7a74b8
Create CVE-2023-29887.yaml 2023-05-24 23:38:59 +05:30
Ritik Chaddha 73553fddd1
Merge pull request #7258 from righettod/add_interact_tpl
Add interact template
2023-05-24 21:40:16 +05:30
pussycat0x 90dfc8c632
Baseurl - changes 2023-05-24 13:52:02 +05:30
Prince Chaddha 86cb6fddd2
Merge branch 'main' into fix-CVE-2018-1273 2023-05-24 10:56:09 +05:30
pussycat0x 0f18d04b40
Merge pull request #7286 from projectdiscovery/blazor-boot
Create blazor-boot.yaml
2023-05-24 10:53:29 +05:30
Prince Chaddha 9092752e51
Rename cves/2018/CVE-2018-1273.yaml to http/cves/2018/CVE-2018-1273.yaml 2023-05-24 10:51:06 +05:30
GitHub Action bdffea0e6e Auto WordPress Plugins Update [Wed May 24 04:02:07 UTC 2023] 🤖 2023-05-24 04:02:07 +00:00
pussycat0x 0668769234
IBM WebSphere application - Source File Exposure 2023-05-23 18:58:05 +05:30
Prince Chaddha 9b21697dcd
Merge pull request #7285 from projectdiscovery/princechaddha-patch-5
Updated wordpress-rce-simplefilelist
2023-05-23 16:46:23 +05:30
Dhiyaneshwaran f78f5a5c42
Fix False Positive 2023-05-23 15:52:39 +05:30
Dhiyaneshwaran 8b64c89438
fix lint 2023-05-23 15:36:55 +05:30
Dhiyaneshwaran 2abbdbd2b5
http protocol update 2023-05-23 15:33:26 +05:30
Dhiyaneshwaran d7a54b0b00
added reference 2023-05-23 15:32:28 +05:30
Dhiyaneshwaran 3f2623aaea
Create blazor-boot.yaml 2023-05-23 15:30:08 +05:30
Ritik Chaddha 86773c6ca6
info update 2023-05-23 14:02:09 +05:30
Dhiyaneshwaran 24d1465ec4
Merge pull request #7174 from dm-ct/patch-1
Create unauth-ztp-ping.yaml
2023-05-23 13:48:59 +05:30
Prince Chaddha 60348d2e4a
updated tags 2023-05-23 13:36:55 +05:30
Prince Chaddha 12862393b6
Update wordpress-rce-simplefilelist.yaml 2023-05-23 13:35:51 +05:30
Prince Chaddha 0b3b164b8f
Merge pull request #7266 from jub0bs/fix-issue-7265-drop-cors-checks-from-missing-security-headers-tmpl
Fix issue 7265
2023-05-23 13:22:09 +05:30
Prince Chaddha 9f339625c6
Merge pull request #7282 from waltersagehorn-praetorian/adds-missing-tags-fields
Adds missing 'tags' attributes to 3 templates
2023-05-23 13:14:17 +05:30
Dhiyaneshwaran 153659aa3a
Merge pull request #7280 from projectdiscovery/CVE-2023-2780
Added CVE-2023-2780
2023-05-23 12:03:54 +05:30
pussycat0x 717a7410d9
severity & name -updated 2023-05-23 12:02:34 +05:30
pussycat0x 591d8e8417
payload - update 2023-05-23 11:37:05 +05:30
pussycat0x afe04d410f
minor - update 2023-05-23 11:23:52 +05:30
Dhiyaneshwaran aa3ecd0726
removing missing header 2023-05-23 11:00:42 +05:30
Dhiyaneshwaran 081b0252f1
verified and fix template 2023-05-23 10:36:58 +05:30
Walter Sagehorn a1226428e6
Adds 'tags' attribute to deadbolt-ransomware.yaml 2023-05-22 14:10:53 -05:00
Walter Sagehorn 82aea3f8c4
Adds 'tags' attribute to robots-txt-endpoint.yaml 2023-05-22 14:10:19 -05:00
Walter Sagehorn 7a389cd845
Adds 'tags' attribute to valid-gmail-check.yaml 2023-05-22 14:09:24 -05:00
Brandon Hutchinson 6083fd22d6 Added http/cves/2019/CVE-2019-1943.yaml Template 2023-05-22 18:08:46 +00:00
pussycat0x f998a28e12
Update unauth-ztp-ping.yaml 2023-05-22 20:58:34 +05:30
Prince Chaddha 3a39ab47a4
Create CVE-2023-2780.yaml 2023-05-22 15:56:58 +05:30
Dhiyaneshwaran 67859eff2c
Create CVE-2022-2733.yaml 2023-05-22 15:49:45 +05:30
Ritik Chaddha 4a9898e836
updated matcher and info 2023-05-22 14:41:25 +05:30
Ritik Chaddha 7fb6ba5caf
Create aem-secrets.yaml 2023-05-22 14:28:47 +05:30
Muhammad Daffa 7df6dbdc31
feat: added CNVD-2023-12632.yaml 2023-05-22 12:25:07 +07:00
m4lwhere cddcf8c8c1 linting fixes 2023-05-21 16:19:27 -04:00
Joshua Rogers 9dad38eee7
Be more specific in identification of Lenovo Fap Controllers. (#7273)
lenovo-fp-panel.yaml would match on some extremely old Dell iDRAC
servers.
2023-05-22 01:40:24 +05:30
m4lwhere 5263ac918c Added templates to identify /.aws/credenitals and /.aws/config 2023-05-21 10:25:38 -04:00
jub0bs d53658c882
Fix issue 7265 2023-05-21 12:15:51 +02:00
Ritik Chaddha 1f716d93f3
Merge pull request #7264 from MillerMedia/main
Added extra check for React detection
2023-05-20 23:52:54 +05:30
pussycat0x 726d826284
Merge pull request #7212 from Zeyad-Azima/patch-1
Add template for CVE-2022-22733 Apache ShardingSphere ElasticJob-UI p…
2023-05-20 23:42:33 +05:30
Matt Miller 0af0d9d7ec
Added extra check for React detection 2023-05-20 01:55:05 -07:00
Ritik Chaddha b0423d9742
updated matcher 2023-05-19 23:23:25 +05:30
Ritik Chaddha c73d1953d3
updated matchers & info 2023-05-19 20:01:16 +05:30
For3stCo1d 602e6fc707
Create CVE-2023-29919.yaml 2023-05-19 19:50:08 +08:00
Dominique RIGHETTO b623ef7c6b
Update interactsoftware-interact.yaml 2023-05-19 09:24:09 +02:00
Dominique RIGHETTO 0335cc05c0
Add files via upload 2023-05-19 09:19:43 +02:00
Dhiyaneshwaran 2f2ca66aa9 fix duplicate template id 2023-05-19 02:06:30 +05:30
Dhiyaneshwaran d862b446ee fix regex compilation issue 2023-05-19 02:02:00 +05:30
Dhiyaneshwaran 1dad4cfd50 Token and File Based Templates 2023-05-19 01:53:21 +05:30
pussycat0x b3986bbbbc
Merge pull request #7253 from projectdiscovery/shardingsphere-panel
Create shardingsphere-panel.yaml
2023-05-18 23:12:09 +05:30
Ritik Chaddha 21386e045c
Update CVE-2019-7256.yaml 2023-05-18 21:22:33 +05:30
Dhiyaneshwaran ce1a476baf
trailspace fix 2023-05-18 21:05:15 +05:30
Dhiyaneshwaran 4939442773
re-wrote-template 2023-05-18 20:59:40 +05:30
Dhiyaneshwaran 1ef0ace632
Create shardingsphere-panel.yaml 2023-05-18 20:49:36 +05:30
Ritik Chaddha eb63d4e728
Merge pull request #7250 from PR05A1C/patch-1
Update umbraco-login.yaml
2023-05-18 20:03:49 +05:30
Ritik Chaddha 2ae00e6b22
updated redirect 2023-05-18 20:01:10 +05:30
Ritik Chaddha a1d8ba6e46
Merge pull request #7231 from projectdiscovery/sitecore-lfi
Create sitecore-lfi.yaml
2023-05-18 19:28:11 +05:30
Ritik Chaddha b2ea8de4ab
Merge pull request #7245 from projectdiscovery/CVE-2023-1434
Create CVE-2023-1434.yaml
2023-05-18 19:25:15 +05:30
Ritik Chaddha 541a434d4a
updated matchers 2023-05-18 19:24:58 +05:30
Ritik Chaddha b5d13559ad
updated weak matcher 2023-05-18 19:22:06 +05:30
Dhiyaneshwaran 5238ad2b92
Merge pull request #7252 from For3stCo1d/CVE-2023-29857
Create CVE-2023-29857.yaml
2023-05-18 16:18:00 +05:30
Dhiyaneshwaran 9a29b00f3f
update shodan query 2023-05-18 16:13:10 +05:30
Dhiyaneshwaran d36ec476e6
Merge pull request #7249 from projectdiscovery/jeecg-boot-swagger
Create jeecg-boot-swagger.yaml
2023-05-18 16:02:46 +05:30
Dhiyaneshwaran d8b8d90451
Merge pull request #7248 from projectdiscovery/CVE-2021-37304
Create CVE-2021-37304.yaml
2023-05-18 15:44:47 +05:30
Dhiyaneshwaran 024b570df5
fix comments 2023-05-18 15:33:57 +05:30
Ritik Chaddha 76a9dfce33
updated path & name 2023-05-18 14:38:41 +05:30
Ritik Chaddha b36fc6a71b
updated matcher and info 2023-05-18 12:51:30 +05:30
For3stCo1d 1f818669d9
Create CVE-2023-29857.yaml 2023-05-18 14:24:18 +08:00
PR05A1C 9395a64830
Update umbraco-login.yaml
I have observed several instances of Umbraco behind ISS web servers that require redirects and cookies to be applied for the Umbraco page to load correctly.
2023-05-18 10:11:19 +10:00
Ritik Chaddha 79f9d506d0
error fix 2023-05-18 01:05:27 +05:30
Ritik Chaddha f1b941e2fb
Create jeecg-boot-swagger.yaml 2023-05-18 01:02:35 +05:30
Ritik Chaddha 32d22ac48a
Create CVE-2021-37304.yaml 2023-05-18 01:00:13 +05:30
Ritik Chaddha 7f76b703b5
Create CVE-2021-37305.yaml 2023-05-18 00:58:05 +05:30
pussycat0x 6a16b9cbfe
rename, conditions -update 2023-05-18 00:33:29 +05:30
Dhiyaneshwaran 742d8ff8d1
Create odoo-panel.yaml 2023-05-17 10:59:53 +05:30
Dhiyaneshwaran c46ceae0c9
Create CVE-2023-1434.yaml 2023-05-17 10:55:25 +05:30
Dhiyaneshwaran 48ef52b582
Merge pull request #7237 from projectdiscovery/avtech-verification-bypass
Create avtech-verification-bypass.yaml
2023-05-17 10:43:23 +05:30
Dhiyaneshwaran 6643107c90
added default username and password 2023-05-17 10:40:43 +05:30
Dhiyaneshwaran 1d7fcc0835
Merge pull request #7229 from For3stCo1d/main
Create CVE-2023-29923.yaml
2023-05-17 02:02:02 +05:30
Dhiyaneshwaran ac582dee31
minor update 2023-05-17 01:59:24 +05:30
Dhiyaneshwaran 7d21e9fc51
Merge pull request #7233 from projectdiscovery/avtech-unauth-file-download
Create avtech-unauth-file-download.yaml
2023-05-17 01:54:44 +05:30
Dhiyaneshwaran d602862a19
Merge pull request #7236 from projectdiscovery/avtech-dvr-ssrf
Create avtech-dvr-ssrf.yaml
2023-05-17 01:53:08 +05:30
Dhiyaneshwaran 29a8d910d2
Merge pull request #7202 from parthmalhotra/cve
Create CVE-2023-25717.yaml
2023-05-17 01:48:30 +05:30
Dhiyaneshwaran 7e3a413c2f
Merge pull request #7230 from j4vaovo/patch-37
Create config-properties-exposure
2023-05-17 01:39:57 +05:30
Dhiyaneshwaran d280f157c2
added negative matcher 2023-05-17 01:37:28 +05:30
Dhiyaneshwaran a612bc4c8b
Merge pull request #7234 from projectdiscovery/avtech-auth-bypass
Create avtech-auth-bypass.yaml
2023-05-17 01:29:25 +05:30
Ritik Chaddha 04196e0eb3
Create ecology-mysql-config.yaml 2023-05-16 12:07:50 +05:30
Ritik Chaddha d9e2a77566
Create avtech-verification-bypass.yaml 2023-05-16 01:52:39 +05:30
Ritik Chaddha a13cafd50a
Create avtech-dvr-ssrf.yaml 2023-05-16 01:12:10 +05:30
pussycat0x f8bc85cf54
metadata -update 2023-05-16 00:12:48 +05:30
Ritik Chaddha a0a92bc170
Create avtech-auth-bypass.yaml 2023-05-15 23:33:12 +05:30
Ritik Chaddha a947db87a3
Create avtech-unauth-file-download.yaml 2023-05-15 23:31:22 +05:30
Dmitrii Vershinin 9c45bc49be
Update webflow-takeover.yaml 2023-05-15 10:18:18 +03:00
Dhiyaneshwaran eb322cc354
Create sitecore-lfi.yaml 2023-05-15 02:36:17 +05:30
Dhiyaneshwaran aeb0c0592a
minor update 2023-05-15 01:02:48 +05:30
Dhiyaneshwaran 7d793835cf
add new endpoint and reference 2023-05-15 01:02:22 +05:30
J4vaovo 7d99c36773
Update config-properties-exposure 2023-05-14 19:31:28 +08:00
J4vaovo b00f399e40
Create config-properties-exposure 2023-05-14 19:27:37 +08:00
For3stCo1d 952574402d
Create CVE-2023-29923.yaml 2023-05-14 11:14:15 +08:00
Ritik Chaddha 5aec69b5a6
added version extractor 2023-05-13 21:27:55 +05:30
Ritik Chaddha f8be87a46c
Create repetier-server-panel.yaml 2023-05-13 20:35:30 +05:30
Ritik Chaddha bffcfa759b
Merge branch 'main' into cve 2023-05-13 20:07:47 +05:30
GitHub Action 23853a6f58 Auto WordPress Plugins Update [Sat May 13 04:02:11 UTC 2023] 🤖 2023-05-13 04:02:11 +00:00
Ritik Chaddha 992cc24928
updated matchers & info 2023-05-12 23:59:05 +05:30
Ritik Chaddha 7ba454c962
updated matcher & info 2023-05-12 23:13:42 +05:30
j4vaovo a53ee9a122
Update CVE-2021-45046.yaml 2023-05-12 08:23:25 +08:00
Dhiyaneshwaran 8ae5c343ae
Merge pull request #7218 from projectdiscovery/princechaddha-patch-5
Update jedox-web-panel.yaml
2023-05-11 18:58:12 +05:30
GitHub Action 1c5197c6f7 Auto Generated CVE annotations [Thu May 11 13:27:36 UTC 2023] 🤖 2023-05-11 13:27:36 +00:00
Prince Chaddha 0a0d33e7e3
Update jedox-web-panel.yaml 2023-05-11 18:23:54 +05:30
sandeep 67c4fae6bb misc update 2023-05-11 18:10:12 +05:30
Prince Chaddha b95c43b7ce
updated reference 2023-05-11 17:47:48 +05:30
Prince Chaddha a2101d365e
Merge pull request #7133 from Mys7ic/Update-waf-detect
Update technologies/waf-detect.yaml
2023-05-11 17:44:47 +05:30
Dhiyaneshwaran 78a1a2143a
Merge pull request #7172 from avisscr/strobes
eclipse-panel and CVE-2021-34427.yaml
2023-05-11 16:53:28 +05:30
Ritik Chaddha 00ade5533c
Delete CVE-2021-34427.yaml 2023-05-11 16:48:47 +05:30
Ritik Chaddha 715223030e
Merge branch 'main' into dev 2023-05-11 16:33:12 +05:30
Ritik Chaddha 72c020e9fa
Create jedox-web-panel.yaml 2023-05-11 16:26:34 +05:30
Ritik Chaddha 281f036d10
Merge pull request #7190 from projectdiscovery/platformio-ini
Create platformio-ini.yaml
2023-05-11 15:35:26 +05:30
Ritik Chaddha 8bb49ad232
added google-query 2023-05-11 15:32:42 +05:30
Prince Chaddha 4bf57ffdd2
Merge branch 'main' into dev 2023-05-11 15:25:17 +05:30
Prince Chaddha c317a06dd4
fixing conflict 2023-05-11 15:24:10 +05:30
pussycat0x 480330df54
Merge pull request #7191 from projectdiscovery/nginx-shards
Create nginx-shards.yaml
2023-05-11 15:12:27 +05:30
pussycat0x 627b495a89
Merge pull request #7119 from kazet/generic-env-detector
Generic .env detector
2023-05-11 15:04:42 +05:30
pussycat0x 5ab6e7ec1b
Merge pull request #7106 from projectdiscovery/ssrf-via-proxy
Create ssrf-via-proxy.yaml
2023-05-11 14:51:15 +05:30
pussycat0x 128d1499a8
protocol -update 2023-05-11 14:49:23 +05:30
pussycat0x a454fd5325
protocol -update 2023-05-11 14:47:44 +05:30
Prince Chaddha 4390b5554d
updated protocol name 2023-05-11 14:34:45 +05:30
Prince Chaddha 0d8aa48c87
Create CVE-2020-1956.yaml 2023-05-11 14:33:44 +05:30
avisscr cc7ec996e1
Merge branch 'main' into strobes 2023-05-11 14:33:13 +05:30
Prince Chaddha c4410d5f23
Create CVE-2016-4437.yaml 2023-05-11 14:25:04 +05:30
Prince Chaddha 355d9ff724
Merge branch 'main' into princechaddha-patch-2 2023-05-11 14:04:17 +05:30
Ritik Chaddha 6f4b7a0ffe
lint fix 2023-05-11 13:52:19 +05:30
Ritik Chaddha c1522980c3
updated matchers,info,filename 2023-05-11 13:49:49 +05:30
Ritik Chaddha 6ee69d03a1 Merge branch 'main' into update-log4j 2023-05-11 13:08:41 +05:30
Zer0verflow 7b035ab1eb
Update CVE-2022-22733.yaml 2023-05-11 13:54:49 +08:00
Zer0verflow 749f2b5aa3
Update CVE-2022-22733.yaml 2023-05-11 13:50:07 +08:00
GitHub Action f06f67f38d Auto WordPress Plugins Update [Thu May 11 04:02:11 UTC 2023] 🤖 2023-05-11 04:02:11 +00:00
Zer0verflow 80d33d7741
Add template for CVE-2022-22733 Apache ShardingSphere ElasticJob-UI privilege escalation 2023-05-11 10:57:33 +08:00
Dhiyaneshwaran 0dcedab251
Merge pull request #7203 from david-bla/add-sophos-mobile-xxe_cve-2022-3980
add template for sophos mobile xxe ssrf (cve-2022-3980)
2023-05-11 07:36:04 +05:30
Dhiyaneshwaran 333b861ffc
shodan query update 2023-05-11 07:31:07 +05:30
Dhiyaneshwaran 00c8c71457
Merge pull request #7204 from projectdiscovery/parthmalhotra-cve
Create CVE-2023-31059.yaml
2023-05-11 07:28:37 +05:30
Dhiyaneshwaran c6a09150a3
fix false positive 2023-05-11 01:41:34 +05:30
Dhiyaneshwaran 5acbe618fe
Update and rename miscellaneous/crypto-mining-malware.yaml to http/miscellaneous/crypto-mining-malware.yaml 2023-05-11 01:14:44 +05:30
Dhiyaneshwaran 2c8da270ce
Merge pull request #7195 from chucklesb/patch-1
Fix Dell EMC ECOM Default Login credentials
2023-05-11 00:54:37 +05:30
pussycat0x 1cbcce382d
Merge pull request #7196 from projectdiscovery/CVE-2022-24716
CVE 2022 24716
2023-05-11 00:42:58 +05:30
Dhiyaneshwaran 2f84af20e0
Update CVE-2022-24716.yaml 2023-05-11 00:30:35 +05:30
Dhiyaneshwaran c5c5de1c72
Update favicon-detect.yaml 2023-05-11 00:27:01 +05:30
Dhiyaneshwaran cc88b320f9
added max-request 2023-05-11 00:21:03 +05:30
Dhiyaneshwaran 328c469772
Merge branch 'main' into main 2023-05-11 00:20:01 +05:30
Dhiyaneshwaran 4f1a7a690c
Merge pull request #7210 from daffainfo/patch-1
fix: fp on gemfury-takeover.yaml
2023-05-11 00:15:15 +05:30
Dhiyaneshwaran 3e349e166a
minor update 2023-05-11 00:14:51 +05:30
pussycat0x b4413bd369
Merge pull request #7205 from projectdiscovery/CVE-2023-25135
Create CVE-2023-25135.yaml
2023-05-10 20:47:40 +05:30
pussycat0x 34cbb997e0
Update CVE-2023-25135.yaml 2023-05-10 20:46:40 +05:30
pussycat0x 8de6c0cb81
Update CVE-2023-25135.yaml 2023-05-10 20:45:19 +05:30
pussycat0x 36819b63eb
minor -update 2023-05-10 20:43:56 +05:30
pussycat0x dc3180fd24
protocol -update 2023-05-10 19:14:55 +05:30
Dhiyaneshwaran cba7f8b5e5
changing from system to var_dump 2023-05-10 17:51:16 +05:30
Ritik Chaddha 2696334222
updated matcher 2023-05-10 17:42:58 +05:30
Dhiyaneshwaran d9af7418a6
Update and rename fuzzing/ssrf-via-proxy.yaml to http/fuzzing/ssrf-via-proxy.yaml 2023-05-10 16:58:06 +05:30
Dhiyaneshwaran 6cf79c00d5
Update and rename exposures/configs/env.yaml to http/vulnerabilities/generic/generic-env.yaml 2023-05-10 16:47:21 +05:30
Muhammad Daffa aaaee257b5
fix: fp on gemfury-takeover.yaml 2023-05-10 11:12:07 +07:00
Dhiyaneshwaran 68828dd492
Merge pull request #7183 from projectdiscovery/cve-templates1
CVE templates added
2023-05-10 01:09:21 +05:30
pussycat0x 58f7db754f
protocol-update 2023-05-10 01:00:43 +05:30
sandeep aa90fc9036 added additional matcher to make it strict 2023-05-09 22:50:55 +05:30
Dhiyaneshwaran b3dc6cf70a
change in query 2023-05-09 22:42:10 +05:30
Dhiyaneshwaran f2890ae2fa
Create CVE-2023-25135.yaml 2023-05-09 22:10:11 +05:30
pussycat0x e27cde97f6
protocol update 2023-05-09 21:46:34 +05:30
Ritik Chaddha b79431ad43
updated path and matchers 2023-05-09 21:45:10 +05:30
Parth Malhotra 777f1efbc1
Update CVE-2023-31059.yaml 2023-05-09 21:42:39 +05:30
Parth Malhotra 1baf108a3f
Update CVE-2023-31059.yaml 2023-05-09 21:38:13 +05:30
Parth Malhotra cdfe62741d
Create CVE-2023-31059.yaml 2023-05-09 21:35:10 +05:30
Parth Malhotra 6ef29cb29e
Create CVE-2023-31059.yaml 2023-05-09 21:30:06 +05:30
Ritik Chaddha 68b0734657
removed matcher condition 2023-05-09 19:36:13 +05:30
dabla bda2c2941a
Merge branch 'main' into add-sophos-mobile-xxe_cve-2022-3980 2023-05-09 15:43:27 +02:00
sandeep c59974226f strict dsl matcher with addition check 2023-05-09 18:40:00 +05:30
david-bla aede9461c4 fix indentation 2023-05-09 15:01:33 +02:00
Sandeep Singh 6addff3ac6
misc syntax fixes (#7201) 2023-05-09 18:13:13 +05:30
Parth Malhotra 0450d1224f
Create CVE-2023-25717.yaml 2023-05-09 18:05:28 +05:30
david-bla 5df70e5ddd add template for sophos mobile xxe ssrf (cve-2022-3980) 2023-05-09 13:58:36 +02:00
pussycat0x 68a1ea89e0
Update CVE-2023-26360.yaml 2023-05-09 16:51:33 +05:30
Dhiyaneshwaran 5c3ef6fa06 fix trail space 2023-05-09 15:07:07 +05:30
Dhiyaneshwaran cb9fce3f99
Create CVE-2023-26360.yaml 2023-05-09 15:03:18 +05:30
Parth 76758f23a1 fix trailing space 2023-05-09 04:26:37 +05:30
Dhiyaneshwaran 70a4c7180c
description added 2023-05-08 22:56:05 +05:30
Dhiyaneshwaran badb9b7945
Create CVE-2022-24716.yaml 2023-05-08 22:54:19 +05:30
Parth 6bbd3a0936 added cred template 2023-05-08 22:35:04 +05:30
chucklesb 68ec25d148
Fix Dell EMC ECOM Default Login credentials
It seems the default credentials were incorrectly defined.
2023-05-08 08:39:00 -06:00
Ritik Chaddha 49a845f496
added stop-at-first 2023-05-08 20:05:18 +05:30
Ritik Chaddha 72e1ffb177
Update and rename technologies/favicon-detect.yaml to http/technologies/favicon-detect.yaml 2023-05-08 20:03:48 +05:30
Dhiyaneshwaran 2cd9630abd
change to http attribute 2023-05-08 15:01:22 +05:30
Dhiyaneshwaran 064ccf7b80
Create nginx-shards.yaml 2023-05-08 15:00:15 +05:30
Dhiyaneshwaran 6a8446b887
Create platformio-ini.yaml 2023-05-08 13:38:14 +05:30
Dhiyaneshwaran 96dd98f8b7
Merge pull request #7188 from j3ssie/main
Path Traversal in Ghost CMS < 5.42.1
2023-05-08 13:13:42 +05:30
Ritik Chaddha a4f51aca8f
updated info 2023-05-08 13:08:31 +05:30
sandeep dd953b4706 Added spm + shodan query 2023-05-08 12:58:19 +05:30
Dhiyaneshwaran 25eee3c650
Merge pull request #7169 from projectdiscovery/red-lion-panel
Create red-lion-panel.yaml
2023-05-08 12:50:10 +05:30
Co5mos ed206e5c27 Update CVE-2023-2356 Template 2023-05-08 15:12:08 +08:00
j3ssie b89dee6aae Path Traversal in Ghost CMS < 5.42.1 2023-05-08 13:27:57 +07:00
Ritik Chaddha 7d521d0264
updated matcher 2023-05-08 11:36:48 +05:30
Dhiyaneshwaran df0d7dca53 added matcher-condition and 2023-05-08 11:07:36 +05:30
Ritik Chaddha f96e98052e payload update 2023-05-08 11:07:00 +05:30
Dhiyaneshwaran 5875abf833
Merge pull request #7182 from ViCrack/CVE-2020-14883
Updated CVE-2020-14883
2023-05-08 11:03:41 +05:30
Dhiyaneshwaran 5c457fab94
Merge pull request #7187 from Arrnitage/main
change to default password
2023-05-08 10:53:16 +05:30
GitHub Action dcffb39e7c Auto WordPress Plugins Update [Mon May 8 04:02:16 UTC 2023] 🤖 2023-05-08 04:02:16 +00:00
Arm!tage 9dbcf5b78a change to default password 2023-05-08 00:19:29 +08:00
ViCrack 5b88116b2e fix xstream 2023-05-07 00:36:32 +08:00
ViCrack 4e638c079f replace cat command with rand_int 2023-05-06 23:08:06 +08:00
Prince Chaddha 124b2230cf templates added 2023-05-06 17:42:20 +05:30
Ritik Chaddha 1732a81929
added shodan 2023-05-06 12:38:20 +05:30
Ritik Chaddha cb6ebb417b
updated variable and matcher 2023-05-06 12:29:32 +05:30
ViCrack df22dcc281 add support for Windows 2023-05-06 14:21:07 +08:00
Ritik Chaddha b17a5d1177
Merge branch 'main' into oracle-opera-login 2023-05-06 00:01:48 +05:30
Ritik Chaddha cc4a213613
Merge pull request #7158 from DhiyaneshGeek/sb-meetup
Sb meetup
2023-05-06 00:00:58 +05:30
Ritik Chaddha 1cb374b3a3
Update oracle-opera-login.yaml 2023-05-05 23:53:14 +05:30
pussycat0x 0e09e7c289
Merge pull request #7179 from dogasantos/CVE-2021-43798.yaml
fixed false positive produce by the old win.ini regex
2023-05-05 23:02:26 +05:30
pussycat0x 906a0a65e3
Update CVE-2021-43798.yaml 2023-05-05 22:56:15 +05:30
Dhiyaneshwaran 511a601dd6
Merge pull request #7175 from Co5mos/CVE-2022-40879
Updated CVE-2022-40879 Template
2023-05-05 22:52:41 +05:30
Dhiyaneshwaran c585da0abe
Merge pull request #7176 from Co5mos/CVE-2022-0678
Updated CVE-2022-0678 Template
2023-05-05 22:52:23 +05:30
pussycat0x 8bafd0510d
Merge branch 'main' into CVE-2021-43798.yaml 2023-05-05 22:51:45 +05:30
pussycat0x a82301ad7b
Merge pull request #7171 from Mys7ic/fix_CVE-2021-43798
fix regex for win.ini
2023-05-05 22:36:01 +05:30
sandeep 8c98270a8c typo update 2023-05-05 19:04:02 +05:30
pussycat0x 983915d4bc
Rename CVE-2020-11547.yaml to CVE-2020-11547.yaml 2023-05-05 19:02:53 +05:30
Dhiyaneshwaran 6ea44267d5
Merge branch 'main' into main 2023-05-05 18:35:06 +05:30
pussycat0x 4660c9abf3
lint -fix 2023-05-05 16:48:47 +05:30
Prince Chaddha 872a146a25
Create waf-fuzz.yaml 2023-05-05 15:45:38 +05:30
Prince Chaddha 9a11ae394b
Merge pull request #7046 from projectdiscovery/add-cpe-epss
Added CPE and EPSS Score to CVE Templates
2023-05-05 15:33:15 +05:30
mlec a6c3f4f9c1
fix(false-positive): Remove trailing space 🩹 2023-05-05 08:27:56 +02:00
mlec 8c792b2911
fix(false-positive): Add removed part after rebased 🩹
Refs:
- https://github.com/projectdiscovery/nuclei-templates/issues/5934
- https://github.com/projectdiscovery/nuclei-templates/pull/5939
2023-05-05 08:17:35 +02:00
pussycat0x 576c0d64d4
Merge pull request #7154 from j4vaovo/patch-33
Create CVE-2017-17731.yaml
2023-05-05 11:47:15 +05:30
pussycat0x 0649a8eec8
Update and rename http/cves/CVE-2017-17731.yaml to http/cves/2017/CVE-2017-17731.yaml 2023-05-05 11:43:29 +05:30
pussycat0x a7b52d98a9
Merge branch 'main' into main 2023-05-05 10:38:42 +05:30
pussycat0x 9e7fa915d9
protocol update 2023-05-05 10:35:38 +05:30
pussycat0x 9159fde669
Update and rename cves/2021/CVE-2021-40870.yaml to http/cves/2021/CVE-2021-40870.yaml 2023-05-05 10:35:10 +05:30
pussycat0x 8458967376
Rename cves/2020/CVE-2020-5847.yaml to http/cves/2020/CVE-2020-5847.yaml 2023-05-05 10:33:34 +05:30
GitHub Action adef8ce3a2 Auto WordPress Plugins Update [Fri May 5 04:02:08 UTC 2023] 🤖 2023-05-05 04:02:08 +00:00
Ritik Chaddha c6c2a0d413
Update CVE-2018-13379.yaml 2023-05-05 00:05:34 +05:30
Ritik Chaddha 9f85fbc113
Update CVE-2019-19908.yaml 2023-05-05 00:04:56 +05:30
Ritik Chaddha 561b42ebe7 Merge branch 'main' into add-cpe-epss 2023-05-05 00:00:13 +05:30
dogasantos dfadeb5774 fixed false positive produce by the old win.ini regex 2023-05-04 14:28:33 -03:00
Co5mos c6e1cabcfe Added CVE-2023-2356 Template 2023-05-04 20:59:25 +08:00
Co5mos c76b0a862a Updated CVE-2022-0678 Template 2023-05-04 20:37:18 +08:00
Co5mos 4565b0a6fe Updated CVE-2022-40879 Template 2023-05-04 20:34:45 +08:00
Prince Chaddha b08774126b
Merge pull request #7155 from projectdiscovery/add-max-request
Added `max-request` counter of each template
2023-05-04 17:55:42 +05:30
dm-ct f74e8bd714
Update unauth-ztp-ping.yaml
accidentally left a ?ref tag in a reference.
2023-05-04 10:54:09 +01:00
dm-ct 9ec854c91e
Create unauth-ztp-ping.yaml
Creates a template that can detect ZyXEL ZTP (Zero Touch Provisioning) interfaces that lack any authentication checks.
Authentication checks were added in the fixes for CVE-2023-28771
2023-05-04 10:14:16 +01:00
Ritik Chaddha 05eb753985
Update apache-ofbiz-log4j-rce.yaml 2023-05-04 11:05:06 +05:30
Ritik Chaddha 0c049e028e updated templates 2023-05-04 00:16:17 +05:30
Ritik Chaddha 109d452109 Merge branch 'update-log4j' of https://github.com/projectdiscovery/nuclei-templates into update-log4j 2023-05-03 23:51:59 +05:30
Ritik Chaddha 82a8526978 updated templates 2023-05-03 23:51:23 +05:30
Ritik Chaddha 8da408f77c
name update=id 2023-05-03 23:42:07 +05:30
Ritik Chaddha 89185ad7fe
fix 2023-05-03 23:31:55 +05:30
Ritik Chaddha b50e22b7da updated log4j 2023-05-03 23:21:44 +05:30
avisscr daa28f13fb eclipse-panel, CVE-2021-34427.yaml 2023-05-03 13:43:39 +00:00
myztique e5c97d8319 fix regex for win.ini 2023-05-03 15:00:00 +02:00
Ritik Chaddha 3cf8d0bd94
Update All Existing Log4j Templates 2023-05-03 17:21:48 +05:30
Ritik Chaddha c735ba6524
Create red-lion-panel.yaml 2023-05-03 17:13:12 +05:30
GitHub Action 72d74b4c25 Auto WordPress Plugins Update [Wed May 3 04:02:18 UTC 2023] 🤖 2023-05-03 04:02:18 +00:00
pussycat0x b5772b0b37
Merge pull request #7162 from projectdiscovery/wpml-xss
Added WPML XSS
2023-05-02 23:25:56 +05:30
Barthy f62fe3538e
Merge branch 'projectdiscovery:main' into umami_default_login 2023-05-02 17:02:54 +02:00
sandeep 2175d81329 removed duplicate key 2023-05-02 18:29:30 +05:30
sandeep ea116bde6b moving file around 2023-05-02 18:24:56 +05:30
sandeep e5ae45127e Merge remote-tracking branch 'origin' into add-cpe-epss 2023-05-02 18:21:24 +05:30
sandeep a470c2a150 Merge remote-tracking branch 'origin' into add-max-request 2023-05-02 17:52:27 +05:30
sandeep 4858f39e1e removed duplicate key 2023-05-02 17:51:59 +05:30
Dhiyaneshwaran 5d204637bd Update CVE-2017-17731.yaml 2023-05-02 16:39:12 +05:30
Dhiyaneshwaran 3a0ceae738 fix 2023-05-02 16:29:15 +05:30
Dhiyaneshwaran 547bc9ee0e
Merge pull request #7144 from j4vaovo/patch-31
Create apache-zeppelin-unauth.yaml
2023-05-02 14:33:52 +05:30
Dhiyaneshwaran e0190816e1 Merge branch 'patch-31' of https://github.com/j4vaovo/nuclei-templates into pr/7144 2023-05-02 14:31:07 +05:30
Dhiyaneshwaran 93ec538017 Update apache-zeppelin-unauth.yaml 2023-05-02 14:30:55 +05:30
Dhiyaneshwaran 70d2eecc92 fix matcher and header 2023-05-02 14:23:21 +05:30
sandeep a13b8eac7f lint fixes 2023-05-02 13:02:45 +05:30
Dhiyaneshwaran 1c1bc41ea2 added metadata 2023-05-02 11:03:28 +05:30
GitHub Action 88c25d4565 Auto WordPress Plugins Update [Tue May 2 04:02:19 UTC 2023] 🤖 2023-05-02 04:02:19 +00:00
Dhiyaneshwaran 8eb2083647
Create oracle-opera-login.yaml 2023-05-02 08:34:35 +05:30
Barthy 02948cb6a6
Create umami-default-login.yaml 2023-05-01 23:12:20 +02:00
Ritik Chaddha 23b6a05402
updated matcher 2023-05-01 23:15:58 +05:30
sandeep e762172422 Added WPML XSS 2023-05-01 21:18:57 +05:30
Prince Chaddha 59ac982c42
Create CVE-2019-3398.yaml 2023-05-01 17:54:05 +05:30
Prince Chaddha d6d8d9f4ae
Merge branch 'main' into patch-23 2023-05-01 09:07:54 +05:30
Prince Chaddha 966d37b02e
updated template path and protocol name 2023-05-01 09:07:12 +05:30
Dhiyaneshwaran 2c6d6cb3c0 Update postman-key.yaml 2023-04-30 17:49:29 +05:30
j4vaovo f5df1a74cb
Update vmware-siterecovery-log4j-rce.yaml (#7157) 2023-04-30 16:03:43 +05:30
Dhiyaneshwaran 9286f2174d
Create postman-key.yaml 2023-04-30 13:53:37 +05:30
Sandeep Singh 28f4302dcd
Merge branch 'main' into add-max-request 2023-04-29 13:32:16 +05:30
MostInterestingBotInTheWorld a34153eb9c
Dashboard Content Enhancements (#7149)
Dashboard Content Enhancements
2023-04-28 09:11:35 -04:00
Ritik Chaddha 392187b67e
Merge branch 'main' into CVE-2023-20864 2023-04-28 16:17:54 +05:30
Dhiyaneshwaran 27f30265bd
Merge pull request #7126 from projectdiscovery/CVE-2023-27350
PaperCut - Unauthenticated Remote Code Execution  CVE-2023-27350
2023-04-28 16:01:47 +05:30
Dhiyaneshwaran 77ee8acc56
change to http 2023-04-28 15:32:24 +05:30
Dhiyaneshwaran 00ef22599c
Rename cves/2023/CVE-2023-27350.yaml to http/cves/2023/CVE-2023-27350.yaml 2023-04-28 15:32:02 +05:30
Dhiyaneshwaran 0f573ef4dc
Merge pull request #7120 from For3stCo1d/minio-default-login
Update minio-default-login.yaml
2023-04-28 15:29:36 +05:30
Dhiyaneshwaran bb63a4aeab
Merge pull request #7116 from j4vaovo/patch-28
Create apache-druid-kafka-connect-rce.yaml
2023-04-28 15:27:30 +05:30
Dhiyaneshwaran 5136c8f23c
Rename vulnerabilities/apache/apache-druid-kafka-connect-rce.yaml to http/vulnerabilities/apache/apache-druid-kafka-connect-rce.yaml 2023-04-28 15:25:03 +05:30
Dhiyaneshwaran dde0ee23dc
Merge pull request #7103 from lu4nx/mail-archive
Add Mail-archive OSINT
2023-04-28 15:23:10 +05:30
Dhiyaneshwaran cbf186eb55
Update and rename osint/mail-archive.yaml to http/osint/mail-archive.yaml 2023-04-28 14:02:52 +05:30
Dhiyaneshwaran 1280b5b17b
Merge pull request #7142 from j4vaovo/patch-29
Create powerjob-default-login.yaml
2023-04-28 14:00:34 +05:30
sandeep 1f5b1f2c47 Added max request counter of each template 2023-04-28 13:41:21 +05:30
pussycat0x dd2b93a095
Merge pull request #7145 from projectdiscovery/CVE-2023-29489
Create CVE-2023-29489.yaml
2023-04-28 13:18:18 +05:30
pussycat0x 474f99f7c4
Rename CVE-2023-29489.yaml to CVE-2023-29489.yaml 2023-04-28 13:15:11 +05:30
pussycat0x d1aa1491e7
Merge branch 'main' into minio-default-login 2023-04-28 11:51:01 +05:30
pussycat0x 78f48036db
Update and rename default-logins/minio/minio-default-login.yaml to http/default-logins/minio/minio-default-login.yaml 2023-04-28 11:39:36 +05:30
Dhiyaneshwaran 4545b9082c
Rename http/cve/CVE-2023-29489.yaml to http/cve/2023/CVE-2023-29489.yaml 2023-04-28 10:55:44 +05:30
pussycat0x f04bd2658b
Merge pull request #7150 from Co5mos/CVE-2023-1671
Added CVE-2023-1671 Template
2023-04-28 10:40:31 +05:30
j4vaovo ca0b9665cd
Create CVE-2017-17731.yaml 2023-04-28 08:53:23 +08:00
Dhiyaneshwaran 658575fb02
Merge pull request #5520 from edoardottt/CVE-2020-27481
Add CVE-2020-27481
2023-04-27 23:10:11 +05:30
Dhiyaneshwaran 38514e4bd1
Update and rename cves/2020/CVE-2020-27481.yaml to http/cves/2020/CVE-2020-27481.yaml 2023-04-27 23:06:26 +05:30
Dhiyaneshwaran 2a363a80a2
Update and rename cves/2023/CVE-2023-1671.yaml to http/cves/2023/CVE-2023-1671.yaml 2023-04-27 22:45:45 +05:30
Sandeep Singh 4615f5ab9d
validate workflow fix (#7151)
* workflow fixes

* disable downloading template as we have it locally.
2023-04-27 22:04:16 +05:30
Ritik Chaddha 793b661255
Update and rename cves/2023/CVE-2023-20864.yaml to http/cves/2023/CVE-2023-20864.yaml 2023-04-27 21:14:42 +05:30
Dhiyaneshwaran b72996aa42
change of protocol attribute 2023-04-27 17:54:02 +05:30
Dhiyaneshwaran 10bd0df1a3
Rename CVE-2023-29489.yaml to CVE-2023-29489.yaml 2023-04-27 17:44:38 +05:30
pussycat0x 795999751e
Refactoring the directory structure based on protocols (#7146)
* Refactoring the directory structure based on protocols

* Update CVE-2021-30175.yaml

* lint fix

---------

Co-authored-by: Ritik Chaddha <44563978+ritikchaddha@users.noreply.github.com>
2023-04-27 17:01:53 +05:30
pussycat0x ada36e744f
Refactoring the directory structure based on protocols (#7147)
* @pussycat0x Refactoring the directory structure based on protocols

* Update CVE-2023-29922.yaml
2023-04-27 17:01:18 +05:30
pussycat0x 8d4c85bdc7
Description -update 2023-04-27 16:28:20 +05:30
savik 53191a877a
fix the path (#7148)
* fix the path

* lint fix

---------

Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>
2023-04-27 15:55:32 +05:30
pussycat0x caa647f61a
format -update 2023-04-27 15:26:28 +05:30
Dhiyaneshwaran a14e0b382e
Rename http/misconfiguration/apacheiapacheapacheapache-zeppelin-unauth.yaml to http/misconfiguration/apache/apache-zeppelin-unauth.yaml 2023-04-27 11:30:00 +05:30
Dhiyaneshwaran 4c73bc5869
Rename misconfiguration/apache-zeppelin-unauth.yaml to http/misconfiguration/apacheiapacheapacheapache-zeppelin-unauth.yaml 2023-04-27 11:29:33 +05:30
sandeep da52872ba2 moving files around 2023-04-27 10:21:55 +05:30
Prince Chaddha e0af666e1c
Refactoring the directory structure based on protocols (#7137)
* moving http templates

* updated cves.json

* moved network CVEs

* updated scripts

* updated workflows

* updated requests to http

* replaced network to tcp

---------

Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>
2023-04-27 09:58:59 +05:30