Commit Graph

359 Commits (3587e6ba1487ae65e74ef009cebdda05807f4bf7)

Author SHA1 Message Date
PD-Team 59574cc701
Revert "Create apache-spark-rce" 2021-03-26 00:16:29 +05:30
sandeep 28bf41830f Merge branch 'patch-104' of https://github.com/pikpikcu/nuclei-templates into pikpikcu-patch-104 2021-03-25 22:37:34 +05:30
Prince Chaddha 2aa7c97e40
Update apache-spark-rce.yaml 2021-03-25 21:25:59 +05:30
sandeep b5c4ed0e2e Update wordpress-rce-simplefilelist.yaml 2021-03-25 19:21:30 +05:30
Mzack9999 351167e91f removing redundant boolean check 2021-03-25 00:28:50 +01:00
Prince Chaddha 9a750ba944
Merge pull request #1136 from pikpikcu/patch-134
Create thinkcmf-arbitrary-code-execution.yaml
2021-03-24 17:22:58 +05:30
Prince Chaddha 915aeb93bb Update thinkcmf-arbitrary-code-execution.yaml 2021-03-24 17:21:31 +05:30
PikPikcU 356856a983
Create thinkcmf-arbitrary-code-execution.yaml 2021-03-24 01:10:20 +00:00
PikPikcU 568a795319
Update thinkcmf-lfi.yaml 2021-03-24 00:42:53 +00:00
PD-Team 1e541d324f
Merge pull request #1116 from pikpikcu/patch-127
Create tpshop-directory-traversal.yaml
2021-03-21 21:04:43 +05:30
sandeep 7af81a3ce8 Update tpshop-directory-traversal.yaml 2021-03-21 21:04:33 +05:30
PD-Team 0c20bbf8b5
Merge pull request #1119 from pikpikcu/patch-130
Create xdcms-sqli
2021-03-21 20:43:51 +05:30
sandeep 8fd55de534 Update error-based-sql-injection.yaml 2021-03-21 20:28:22 +05:30
PikPikcU 7674824c98
Create xdcms-sqli.yaml 2021-03-21 10:15:44 +00:00
PikPikcU ce51bfee06
Create tpshop-directory-traversal.yaml 2021-03-21 02:53:52 +00:00
Geeknik Labs a3d7047521
Update error-based-sql-injection.yaml
Reverting back to raw http request. Sending encoded requests using net/http were missing blatant SQL injections. 

Before:

[INF] Loading templates...
[INF] [error-based-sql-injection] Error based SQL injection (@geeknik) [high]
[INF] Loading workflows...
[INF] Using 1 rules (1 templates, 0 workflows)
[INF] No results found. Better luck next time!

After:

[INF] Loading templates...
[INF] [error-based-sql-injection] Error based SQL injection (@geeknik) [high]
[INF] Loading workflows...
[INF] Using 1 rules (1 templates, 0 workflows)
[2021-03-20 14:48:59] [error-based-sql-injection:MariaDB] [http] [high] https://REDACTED/') [check the manual that corresponds to your MariaDB server version]
2021-03-20 19:52:48 +00:00
Prince Chaddha c04d699985 wordpress-infinitewp-auth-bypass 2021-03-19 02:10:02 +05:30
PD-Team 75cd16f667
Merge pull request #1100 from geeknik/patch-51
Create error-based-sql-injection.yaml
2021-03-18 14:06:56 +05:30
sandeep 0c602a56e7 Update error-based-sql-injection.yaml 2021-03-18 14:05:19 +05:30
sandeep ad84ecb792 tag improvements 2021-03-18 13:24:36 +05:30
Geeknik Labs 988d0c75c9
Update error-based-sql-injection.yaml 2021-03-17 20:39:57 +00:00
Geeknik Labs 019a193aec
Update error-based-sql-injection.yaml 2021-03-17 19:31:08 +00:00
Geeknik Labs be020357e8
Update error-based-sql-injection.yaml 2021-03-17 19:25:02 +00:00
Geeknik Labs 99bb91c255
Update error-based-sql-injection.yaml 2021-03-17 19:19:27 +00:00
Geeknik Labs 8fe5f4e1ff
Create error-based-sql-injection.yaml
🎉  OMG 🎉 
Detect Error Based SQL Injection
Includes regex matchers + extractors for 29 Database Engines
💥 https://buymeacoffee.com/geeknik 💥
2021-03-17 17:30:53 +00:00
sandeep 3c8432686c Update viewlinc-crlf-injection.yaml 2021-03-16 14:05:20 +05:30
Geeknik Labs e951c75c59
Update viewlinc-crlf-injection.yaml 2021-03-15 20:04:37 +00:00
Geeknik Labs 0068d7ae0c
Create viewlinc-crlf-injection.yaml
This was discovered whilst participating in a private Hacker0x01 bug bounty program.
2021-03-15 20:00:56 +00:00
PD-Team fb65d9341b
Merge branch 'master' into patch-4 2021-03-15 00:30:30 +05:30
sandeep ffae74a6a8 Updated to openam-detection 2021-03-15 00:27:59 +05:30
PD-Team 47a7ea85e0
Merge pull request #1066 from r3naissance/master
Add teacherease-xss and parentlink-xss to /vulnerabilities/other/
2021-03-14 17:12:05 +05:30
sandeep e18b34cc64 few updates 2021-03-14 17:07:52 +05:30
Dhiyaneshwaran ed87cc42a8
Create pmb-local-file-disclosure.yaml 2021-03-12 22:42:45 +05:30
sandeep 9ff6adff73 Update wordpress-accessible-wpconfig.yaml 2021-03-12 17:58:35 +05:30
sandeep 28b0636f2d syntax update 2021-03-12 17:32:16 +05:30
PD-Team c35ed8a408
Merge branch 'master' into wordpress-cves 2021-03-12 17:25:27 +05:30
sandeep a0785510f5 Update apache-flink-unauth-rce.yaml 2021-03-12 12:42:17 +05:30
sandeep db18f137e6 linting updates 2021-03-12 12:40:16 +05:30
PD-Team bee7bbdac0
Merge pull request #1037 from PurushottamanR/master
Moodle jitsi plugin XSS detection
2021-03-12 01:13:37 +05:30
sandeep 830cc84899 Update moodle-jitsi-plugin-xss.yaml 2021-03-12 01:08:56 +05:30
sandeep 48dc97b6fe Update moodle-jitsi-plugin-xss.yaml 2021-03-12 01:06:37 +05:30
Chapman Schleiss 655308b864
Added reference 2021-03-11 09:50:26 -07:00
sandeep 86faa863f6 Added some reference 2021-03-11 20:33:36 +05:30
Chapman Schleiss 881cedaabc Adding teacherease-xss 2021-03-10 12:36:44 -07:00
Chapman Schleiss 8a015fe306 Adding parentlink-xss 2021-03-10 12:36:08 -07:00
sandeep ed91c0813e more typos 2021-03-10 19:45:41 +05:30
sandeep 06945d56a8 fixing typos 2021-03-10 19:33:49 +05:30
Prince Chaddha de3b1d27ea added templates 2021-03-10 17:06:11 +05:30
Prince Chaddha ce919375eb Create wordpress-auth-bypass-wptimecapsule.yaml 2021-03-10 12:29:08 +05:30
sandeep 79ebf9b5bd Update moodle-jitsi-plugin-xss.yaml 2021-03-07 14:28:07 +05:30