Commit Graph

1055 Commits (1e0af9fab079b24cd1929ab79c3d38d1bb723b76)

Author SHA1 Message Date
Krzysztof Zając 7cc2da843f Using different URL as we don't know who evil.com is controlled by 2024-07-11 12:05:42 +02:00
GitHub Action fa919a7fca Auto Template Signing [Wed Jul 10 18:27:25 UTC 2024] 🤖 2024-07-10 18:27:26 +00:00
Ritik Chaddha cc94d242e6
Merge pull request #10245 from projectdiscovery/nextjs-rsc-cache
Next.js Cache Poisoning using RSC
2024-07-10 23:55:15 +05:30
GitHub Action 97779cf5d1 Auto Template Signing [Wed Jul 10 18:15:48 UTC 2024] 🤖 2024-07-10 18:15:48 +00:00
Ritik Chaddha becce06a33
Merge pull request #10244 from projectdiscovery/nextjs-middleware-cache
Next.js Cache Poisoning using X-Middleware-Prefetch
2024-07-10 23:43:31 +05:30
Ritik Chaddha 502fa6948c
added desc. 2024-07-10 23:42:57 +05:30
Ritik Chaddha 0f98f845dd
Update nextjs-middleware-cache.yaml 2024-07-10 23:41:00 +05:30
Ritik Chaddha e4b8efd1e1
Update nextjs-rsc-cache.yaml 2024-07-10 23:39:17 +05:30
GitHub Action 6e1546d1c6 Auto Template Signing [Wed Jul 10 12:51:33 UTC 2024] 🤖 2024-07-10 12:51:34 +00:00
pussycat0x bc9c99fc5a
Merge pull request #10239 from Kazgangap/enjoy
add enjoyrmis sqli
2024-07-10 18:19:08 +05:30
Dhiyaneshwaran e7fb3f4d4e
minor-update 2024-07-10 16:57:31 +05:30
Dhiyaneshwaran 090c620238
minor update 2024-07-10 16:00:05 +05:30
Dhiyaneshwaran f6b215570e
fix trail space 2024-07-10 15:57:30 +05:30
Dhiyaneshwaran 63b4038a91
Create nextjs-rsc-cache.yaml 2024-07-10 15:55:48 +05:30
Dhiyaneshwaran 69ea991d59
Next.js Cache Poisoning using X-Middleware-Prefetch 2024-07-10 15:53:43 +05:30
GitHub Action fc60f25889 Auto Template Signing [Wed Jul 10 06:10:27 UTC 2024] 🤖 2024-07-10 06:10:28 +00:00
Dhiyaneshwaran 3e79687943
Merge pull request #10228 from Kazgangap/h3c
add h3c campus arbitrary file upload
2024-07-10 11:33:42 +05:30
Dhiyaneshwaran 66ae99451d
Merge pull request #10229 from Kazgangap/hj-lfi
add hj-hcm-lfi
2024-07-10 11:33:24 +05:30
Dhiyaneshwaran 0e845b7e02
Merge pull request #10230 from Kazgangap/hj-sql
add hj-hcm-sqli
2024-07-10 11:33:16 +05:30
Dhiyaneshwaran 788fe5a175
Merge pull request #10231 from Kazgangap/hj-time-sqli
add hj time based sqli
2024-07-10 11:32:35 +05:30
Kazgangap 948844c407 add enjoyrmis sqli 2024-07-10 03:26:48 +03:00
Dhiyaneshwaran 9afd29887f
minor update 2024-07-09 16:26:47 +05:30
Dhiyaneshwaran ca18b039f7
Rename http/vulnerabilities/other/hjsoft/hjsoft-hcm-lfi.yaml to http/vulnerabilities/hjsoft/hjsoft-hcm-lfi.yaml 2024-07-09 16:19:04 +05:30
Dhiyaneshwaran 91e242bd35
minor update 2024-07-09 16:18:40 +05:30
Dhiyaneshwaran 1ab8504e08
minor update 2024-07-09 16:14:29 +05:30
Dhiyaneshwaran 2b6b00eba5
Update and rename hjsoft-hcm-tb-sqli.yaml to hjsoft-hcm-tb-sqli.yaml 2024-07-09 16:04:16 +05:30
Dhiyaneshwaran d5ad8ecd14
update severity 2024-07-09 15:54:07 +05:30
Dhiyaneshwaran cdd6abec83
minor update 2024-07-09 15:49:53 +05:30
Kazgangap 849b0a88b4 add pingsheng sqli 2024-07-09 02:11:54 +03:00
Kazgangap 5946223c52 add hj time based sqli 2024-07-09 02:05:52 +03:00
Kazgangap e78ff0c75d add hj-hcm-sqli 2024-07-09 02:01:27 +03:00
Kazgangap ddd5c47f6f fix-2 2024-07-09 01:58:28 +03:00
Kazgangap 0093196d07 fix 2024-07-09 01:57:13 +03:00
Kazgangap 81f5ace3e7 add hj-hcm-lfi 2024-07-09 01:54:45 +03:00
Kazgangap e184f76d61 add h3c campus arbitrary file upload 2024-07-09 01:51:11 +03:00
GitHub Action ecabfd698a Auto Template Signing [Thu Jul 4 12:24:54 UTC 2024] 🤖 2024-07-04 12:24:55 +00:00
Dhiyaneshwaran a9962f7d64
Merge pull request #10196 from projectdiscovery/pussycat0x-patch-10
Jinhe OA_C6_UploadFileDownLoadnew - Arbitrary File Read
2024-07-04 17:52:43 +05:30
Dhiyaneshwaran aa943497ed
Update and rename jinhe-oa-c6-lfi.yaml to jinhe-oa-c6-upload-lfi.yaml 2024-07-04 17:48:37 +05:30
GitHub Action fd36934b73 Auto Template Signing [Thu Jul 4 10:39:04 UTC 2024] 🤖 2024-07-04 10:39:04 +00:00
Dhiyaneshwaran 7fb04bafec
Merge pull request #10190 from projectdiscovery/pussycat0x-patch-7
Create crocus-lfi.yaml
2024-07-04 16:06:55 +05:30
Dhiyaneshwaran 017304cd42
minor update 2024-07-04 16:04:22 +05:30
pussycat0x d7c99d1749
Update jinhe-oa-c6-lfi.yaml 2024-07-04 15:55:14 +05:30
pussycat0x 172cd66c3a
Update jinhe-oa-c6-lfi.yaml 2024-07-04 15:52:49 +05:30
pussycat0x 84ed090da3
Create jinhe-oa-c6-lfi.yaml 2024-07-04 15:51:40 +05:30
GitHub Action 6743d86578 Auto Template Signing [Thu Jul 4 08:18:06 UTC 2024] 🤖 2024-07-04 08:18:06 +00:00
Ritik Chaddha c4e2b67da3
Update azon-dominator-sqli.yaml 2024-07-04 13:42:53 +05:30
pussycat0x 926fa8c1be
Create crocus-lfi.yaml 2024-07-04 13:20:45 +05:30
Dhiyaneshwaran c6ad0cd05e
minor-update 2024-07-04 12:44:02 +05:30
Kazgangap aa31bae34d add azon dominator sqli 2024-07-03 20:14:55 +03:00
GitHub Action da709ca266 Auto Template Signing [Wed Jul 3 12:07:08 UTC 2024] 🤖 2024-07-03 12:07:09 +00:00
Ritik Chaddha 6cee1b17f3
Update and rename sharp-multi-function-printers-local-file-disclosure.yaml to sharp-printers-lfi.yaml 2024-07-03 17:23:43 +05:30
Hiroki Matsue 704c1aa4b7 Update severity of polyfill-backdoor to high 2024-07-01 17:23:52 +09:00
GwanYeong Kim 2dd8e53621 Create sharp-multi-function-printers-local-file-disclosure.yaml
It was observed that Sharp printers are vulnerable to a local file inclusion without authentication. Any attacker can read any file located in the printer.

Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2024-06-30 15:36:37 +09:00
GitHub Action 4ac9c21951 Auto Template Signing [Thu Jun 27 15:59:00 UTC 2024] 🤖 2024-06-27 15:59:01 +00:00
pussycat0x 28078f3d61
Merge pull request #10097 from Kazgangap/bagisto
add bagisto csti vuln
2024-06-27 21:26:42 +05:30
GitHub Action 30e4a30800 Auto Template Signing [Thu Jun 27 15:52:45 UTC 2024] 🤖 2024-06-27 15:52:46 +00:00
pussycat0x 388ec66056
Merge pull request #10128 from kazet/polyfill-io
polyfill.io detection
2024-06-27 21:20:25 +05:30
GitHub Action 678946be1c Auto Template Signing [Thu Jun 27 15:15:09 UTC 2024] 🤖 2024-06-27 15:15:10 +00:00
Dhiyaneshwaran bf0d15c07b
Merge pull request #10120 from projectdiscovery/nextjs-cache-posioning
Create nextjs-cache-poisoning.yaml
2024-06-27 20:42:52 +05:30
Dhiyaneshwaran a6635feb73
Update and rename http/miscellaneous/polyfill-io.yaml to http/vulnerabilities/backdoor/polyfill-backdoor.yaml 2024-06-27 19:00:06 +05:30
Dhiyaneshwaran c7c7759329
minor update 2024-06-27 16:02:22 +05:30
Dhiyaneshwaran 24ec1c0b56
Update and rename http/cves/2023/CVE-2023-46298.yaml to http/vulnerabilities/next-js-cache-poisoning.yaml 2024-06-27 15:50:38 +05:30
GitHub Action 4b20e2f1b3 Auto Template Signing [Tue Jun 25 10:24:38 UTC 2024] 🤖 2024-06-25 10:24:38 +00:00
Prince Chaddha 3f169b2e88
Merge pull request #10095 from projectdiscovery/sqli_timeout_template_updates
Format update for SQLI templates with additional timeout
2024-06-25 14:22:29 +04:00
Kazgangap a5405d91f4 fix 2024-06-24 16:53:00 +03:00
Kazgangap 96e47552d1 add bagisto csti vuln 2024-06-24 16:51:36 +03:00
GitHub Action 00404d58f2 Auto Template Signing [Mon Jun 24 05:27:17 UTC 2024] 🤖 2024-06-24 05:27:17 +00:00
Dhiyaneshwaran 9f0f4329c4
minor update 2024-06-24 10:52:23 +05:30
pussycat0x 98d7958f10
Create fastadmin-lfi.yaml 2024-06-23 12:24:17 +05:30
sandeep a4c09b8719 updated template format for sqli templates with timeout 2024-06-22 22:19:54 -07:00
sandeep 1c64701b76 updated sqli templates with increased timeout 2024-06-22 22:19:02 -07:00
GitHub Action 906d2b890f Auto Template Signing [Tue Jun 18 10:47:51 UTC 2024] 🤖 2024-06-18 10:47:52 +00:00
Ritik Chaddha 6d308528b4
Merge pull request #10033 from projectdiscovery/CVE-2024-1561-3x
Create CVE-2024-1561-3x.yaml (Gradio 3.47 – 3.50.2 - Local File Inclusion)
2024-06-18 16:15:43 +05:30
GitHub Action 371b26f343 Auto Template Signing [Mon Jun 17 06:27:14 UTC 2024] 🤖 2024-06-17 06:27:14 +00:00
Ritik Chaddha 6bbbb0b2ac
lint fix 2024-06-17 11:45:42 +05:30
Ritik Chaddha e446518f77
Update nuxt-js-xss.yaml 2024-06-17 11:42:32 +05:30
我会啊D,明小子,御剑 c68fc3215f
Fix false positives 2024-06-16 22:31:29 +08:00
GitHub Action cc4d48f26a Auto Template Signing [Sun Jun 16 11:13:13 UTC 2024] 🤖 2024-06-16 11:13:14 +00:00
Ritik Chaddha 144c392e28
Update and rename CVE-2024-1561-3x.yaml to gradio-lfi.yaml 2024-06-16 16:36:32 +05:30
Ritik Chaddha 1aabe3e034
Update and rename CVE-2024-1561-3x-ssrf.yaml to gradio-ssrf.yaml 2024-06-16 16:29:13 +05:30
GitHub Action 1fb20f2676 Auto Template Signing [Wed Jun 12 17:23:57 UTC 2024] 🤖 2024-06-12 17:23:57 +00:00
Dhiyaneshwaran a1f03b6b89
Update bsphp-info.yaml 2024-06-12 17:50:42 +05:30
GitHub Action 3d255ddfdd Auto Template Signing [Sat Jun 8 16:02:16 UTC 2024] 🤖 2024-06-08 16:02:18 +00:00
GitHub Action f559aeaeb9 TemplateMan Update [Fri Jun 7 10:04:28 UTC 2024] 🤖 2024-06-07 10:04:29 +00:00
GitHub Action d7a9194e61 Auto Template Signing [Wed Jun 5 07:57:58 UTC 2024] 🤖 2024-06-05 07:57:59 +00:00
Dhiyaneshwaran f284d5654b
added internal: true 2024-06-05 13:20:02 +05:30
pussycat0x b1dff1a023
Update easycvr-info-leak.yaml 2024-06-05 10:24:27 +05:30
pussycat0x 48c2ad8167
Create easycvr-info-leak.yaml 2024-06-05 09:59:33 +05:30
GitHub Action 123bc0d0dd Auto Template Signing [Tue Jun 4 17:24:22 UTC 2024] 🤖 2024-06-04 17:24:22 +00:00
Dhiyaneshwaran 15a8248590
minor update 2024-06-04 11:52:19 +05:30
Kazgangap da776929c4 add aquatronica control system 2024-06-03 21:01:00 +03:00
GitHub Action 281cd62161 Auto Template Signing [Sat Jun 1 09:07:19 UTC 2024] 🤖 2024-06-01 09:07:19 +00:00
Ritik Chaddha 4c1a802a8b
Fix FP opensns-rce.yaml 2024-06-01 14:28:57 +05:30
GitHub Action 11e4ce2a0e Auto Template Signing [Fri May 31 17:40:57 UTC 2024] 🤖 2024-05-31 17:40:57 +00:00
Ritik Chaddha 95dc53c127
Fix FP open-redirect-generic.yaml 2024-05-31 22:36:15 +05:30
GitHub Action 1f26a2985e Auto Template Signing [Tue May 28 01:48:48 UTC 2024] 🤖 2024-05-28 01:48:49 +00:00
Dhiyaneshwaran 6a008862eb
Merge pull request #9864 from projectdiscovery/pussycat0x-patch-12
Create array-vpn-lfi.yaml
2024-05-28 07:16:33 +05:30
Dhiyaneshwaran fc1914cbbd
minor update 2024-05-28 07:11:44 +05:30
pussycat0x ef8901dc66
Update array-vpn-lfi.yaml 2024-05-27 22:06:07 +05:30
GitHub Action 187e4835d4 Auto Template Signing [Fri May 24 06:28:03 UTC 2024] 🤖 2024-05-24 06:28:04 +00:00