03c2ef2391
Dashboard Content Enhancements ( #6358 )
...
Dashboard Content Enhancements
2022-12-13 15:36:48 -05:00
4cfacf2028
Merge pull request #6337 from pect0ral/master
...
Added Profile header for additional WAP coverage on CJServer hosts
2022-12-12 23:16:01 +05:30
74eba669f3
Update qibocms-file-download.yaml
2022-12-12 22:48:05 +05:30
27a5c1b9c1
Update qibocms-file-download.yaml
2022-12-12 22:42:18 +05:30
e5398d06d1
Update qibocms-file-download.yaml
2022-12-12 22:40:15 +05:30
221b253406
Create qibocms-file-download.yaml
2022-12-12 21:06:09 +05:30
1574d7d589
VMware NSX Manager XStream Pre-authenticated RCE ( #6295 )
...
* Added CVE-2022-37042 Template
* misc updates
* Added vmware-nsx-stream-rce Template
* Update vmware-nsx-stream-rce.yaml
* misc update
* added fofa query
* Update and rename vulnerabilities/vmware/vmware-nsx-stream-rce.yaml to cves/2021/CVE-2021-39144.yaml
* Update CVE-2021-39144.yaml
* Update CVE-2021-39144.yaml
* Update and rename cves/2021/CVE-2021-39144.yaml to vulnerabilities/vmware/vmware-nsx-stream-rce.yaml
* Update vmware-nsx-stream-rce.yaml
* Update vmware-nsx-stream-rce.yaml
* format update
Co-authored-by: sandeep <sandeep@projectdiscovery.io>
Co-authored-by: Dhiyaneshwaran <leedhiyanesh@gmail.com>
Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>
2022-12-11 15:49:35 +05:30
2e9ba680a7
Added Profile header for additional WAP coverage on CJServer hosts
2022-12-10 17:42:58 -05:00
ec5168def8
fix: redirect template update ( #6329 )
2022-12-10 20:12:59 +05:30
e1965b05b2
Merge pull request #6258 from SleepingBag945/new-template-nps-auth-bypass
...
Added nps-auth-bypass
2022-12-09 14:35:35 +05:30
4de98de0c2
Update nps-auth-bypass.yaml
2022-12-09 14:33:49 +05:30
f29e0c8c4b
Merge pull request #6201 from pdelteil/patch-117
...
Update apache-solr-file-read.yaml
2022-12-08 14:53:37 +05:30
c5d280b359
Update apache-solr-file-read.yaml
2022-12-08 14:42:36 +05:30
e2429ca6a4
Merge pull request #6256 from c3l3si4n/master
...
added Reflected XSS for ZendFramework1
2022-12-07 23:02:48 +05:30
a033b96ceb
Update zend-v1-xss.yaml
2022-12-07 19:22:26 +05:30
f417ca8a2b
Update zend-v1-xss.yaml
2022-12-07 18:23:56 +05:30
972bafe93e
Auto Generated CVE annotations [Wed Dec 7 09:42:26 UTC 2022] 🤖
2022-12-07 09:42:26 +00:00
b48c05dc27
Added Template Checksum generator ( #6283 )
...
* Added Template Checksum generator
* fixed lint errors
2022-12-07 14:54:33 +05:30
4500d5e374
Rename wp-related-post-xss to wp-related-post-xss.yaml
2022-12-07 14:41:03 +05:30
948f05204c
Update nps-auth-bypass.yaml
2022-12-07 10:55:13 +05:30
9cfebe489b
Update nps-auth-bypass.yaml
2022-12-07 10:49:50 +05:30
b04feae9ca
Update zend-v1-xss.yaml
2022-12-06 14:31:05 +05:30
af11412622
Added nps-auth-bypass
2022-12-06 16:52:23 +08:00
84a48a61ad
added XSS for ZendFramework1
2022-12-06 05:13:46 -03:00
61d8f37cca
Update open-redirect.yaml
2022-12-02 13:03:13 +05:30
11b94a1f5a
Update apache-solr-file-read.yaml
2022-12-02 09:32:17 +05:30
fd270d85f6
Update apache-solr-file-read.yaml
2022-12-02 09:31:15 +05:30
c8b5033ccc
Update apache-solr-file-read.yaml
2022-12-02 09:21:51 +05:30
0384b0d51d
Update apache-solr-file-read.yaml
2022-12-02 09:13:23 +05:30
a37abb4401
Update apache-solr-file-read.yaml
2022-12-02 09:12:05 +05:30
843264155b
Update apache-solr-file-read.yaml
...
1. The added GET request triggers a file local read on Windows OS.
2. Matcher added to the Response trigger by 1.
3. Matcher for other cases (Errors, ie. not found path)
2022-12-01 18:51:21 -05:00
a7dfed84ef
Merge pull request #6159 from arafatansari/patch-112
...
Create wp-related-post-xss
2022-12-01 12:53:45 +05:30
46dcb9ee92
Update wp-related-post-xss
2022-11-29 19:09:35 +05:30
e5a63cf26a
Merge pull request #6174 from pdelteil/patch-111
...
Rename tikiwiki-json-rpc.yaml to kiwitcms-json-rpc.yaml
2022-11-29 11:32:03 +05:30
0cc2b7b562
Merge pull request #6173 from pdelteil/patch-110
...
Update nuuo-nvrmini2-rce.yaml
2022-11-29 11:28:26 +05:30
8dfea46220
Merge pull request #6176 from pdelteil/patch-113
...
Rename vulnerabilities/other/devalcms-xss.yaml to cves/2008/CVE-2008-…
2022-11-29 11:25:35 +05:30
516f3fc0c0
Merge pull request #6172 from pdelteil/patch-109
...
Rename icewarp-openredirects.yaml to icewarp-open-redirect.yaml
2022-11-29 11:16:40 +05:30
688b56b5df
Rename vulnerabilities/other/devalcms-xss.yaml to cves/2008/CVE-2008-6982.yaml
2022-11-29 00:38:16 -05:00
8b4e280c02
Rename tikiwiki-json-rpc.yaml to kiwitcms-json-rpc.yaml
...
- Incorrect file name (tikiwiki vs Kiwi TCMS).
- Matching filename + id.
2022-11-29 00:28:22 -05:00
9c2c3d964b
Update nuuo-nvrmini2-rce.yaml
...
filename + id matching
2022-11-29 00:24:14 -05:00
3458bcabd9
Rename icewarp-openredirects.yaml to icewarp-open-redirect.yaml
...
id + filename matching
2022-11-29 00:22:34 -05:00
5bdb492bac
Update comtrend-password-exposure.yaml
...
Corrected typo -> match id with filename.
2022-11-29 00:16:28 -05:00
9f60094d84
Auto Generated CVE annotations [Mon Nov 28 08:04:24 UTC 2022] 🤖
2022-11-28 08:04:24 +00:00
e93a5a87f6
Create wp-related-post-xss
2022-11-27 12:41:16 +05:30
335f78adc0
Merge pull request #6137 from projectdiscovery/wptouch-xss
...
Create wptouch-xss.yaml
2022-11-26 22:16:14 +05:30
2b411ebf9d
Merge pull request #4292 from ritikchaddha/patch-40
...
Create inspur-clusterengine-v4-sysshell-rce.yaml
2022-11-25 13:25:49 +05:30
66681f4dae
Update and rename inspur-clusterengine-v4-sysshell-rce.yaml to inspur-clusterengine-rce.yaml
2022-11-25 13:03:26 +05:30
e4d91857c9
Update wptouch-xss.yaml
2022-11-24 10:01:36 +05:30
2292877e42
Create wptouch-xss.yaml
2022-11-24 10:00:35 +05:30
8297d3d8b4
Auto Generated CVE annotations [Tue Nov 22 04:51:59 UTC 2022] 🤖
2022-11-22 04:51:59 +00:00
1028e0f889
Update crlf-injection.yaml
...
added hackerone report as reference.
2022-11-21 23:14:21 -05:00
b3500789fe
Update wuzhicms-sqli.yaml
2022-11-17 17:08:30 +05:30
a5af14982f
Update wuzhicms-sqli.yaml
2022-11-17 17:02:33 +05:30
478db30e9f
Update wuzhicms-sqli.yaml
...
fix bug
2022-11-17 14:25:13 +08:00
76f4201b95
Update vmware-hcx-log4j.yaml
2022-11-15 15:18:17 +05:30
331394d36c
Fix jenkin typos
2022-11-13 21:54:52 +01:00
ebe7268c3f
Added OpenCPU RCE Template
...
Co-Authored-By: wa1tf0r.me <92214233+euro-phd@users.noreply.github.com>
2022-11-13 21:36:32 +05:30
961ee225f5
Auto Generated CVE annotations [Fri Nov 11 16:43:11 UTC 2022] 🤖
2022-11-11 16:43:11 +00:00
3847203748
Merge pull request #5939 from projectdiscovery/generic-phpinfo-matchers
...
generic phpinfo matchers
2022-11-11 20:25:48 +05:30
942f8fc305
Dashboard Content Enhancements ( #5943 )
...
Dashboard Content Enhancements
2022-11-08 15:55:31 -05:00
f62d4f09aa
Update core-chuangtian-cloud-rce.yaml
2022-11-02 18:54:27 +05:30
69596d5341
Update seacms-rce.yaml
2022-11-02 18:52:01 +05:30
81123b89ea
Update seacms-rce.yaml
2022-11-02 18:50:37 +05:30
2a580638a3
Update thinkphp-501-rce.yaml
2022-11-02 18:47:41 +05:30
2496b86eea
Update thinkphp-509-information-disclosure.yaml
2022-11-02 18:39:28 +05:30
a3f01fc9a3
Delete ruijie-networks-rce.yaml
2022-11-01 18:55:12 +05:30
c0a00cde10
Update steve-xss.yaml
2022-10-28 19:44:06 +05:30
09a119584e
Rename steve-xss-noauth.yaml to steve-xss.yaml
2022-10-27 00:20:39 +05:30
f554be63b5
Update steve-xss-noauth.yaml
2022-10-26 22:29:39 +05:30
2a20e69976
Create steve-xss-noauth.yaml
2022-10-26 16:09:38 +00:00
2bc756b7e1
Auto Generated CVE annotations [Tue Oct 25 14:05:39 UTC 2022] 🤖
2022-10-25 14:05:39 +00:00
9ed84adaa6
fix-conflict
2022-10-25 19:10:49 +05:30
dc21ca4bce
Merge pull request #5494 from projectdiscovery/xenmobile-server-log4j
...
Create xenmobile-server-log4j.yaml
2022-10-21 16:12:02 +05:30
ef50a5c534
Auto Generated CVE annotations [Fri Oct 21 10:28:44 UTC 2022] 🤖
2022-10-21 10:28:44 +00:00
c586ccf80b
Merge pull request #5750 from shivampand3y/patch-1
...
Create aerocms-sqli.yaml
2022-10-21 15:39:50 +05:30
fd196d9159
Update xenmobile-server-log4j.yaml
2022-10-21 14:04:41 +05:30
b88af7cb01
Delete jamf-pro-log4j.yaml
2022-10-21 14:01:53 +05:30
db9c08e2d5
Rename vulnerabilities/log4j/jamf-pro-log4j-rce.yaml to vulnerabilities/apache/log4j/jamf-pro-log4j-rce.yaml
2022-10-21 14:01:23 +05:30
e6029be860
Create jamf-pro-log4j-rce.yaml
2022-10-21 13:59:33 +05:30
bb066bd79f
Merge pull request #5744 from projectdiscovery/fix-fp-vmware-siterecovery-log4j-rce
...
Update vmware-siterecovery-log4j-rce.yaml
2022-10-21 13:42:23 +05:30
f3021b97af
Merge pull request #5743 from projectdiscovery/fix-fp-vmware-operation-manager-log4j
...
Update vmware-operation-manager-log4j.yaml
2022-10-21 13:39:56 +05:30
a3c81d7df1
Merge pull request #5742 from projectdiscovery/fix-fp-graylog-log4j
...
Update graylog-log4j.yaml
2022-10-21 13:38:38 +05:30
47e2557bbd
Merge pull request #5741 from projectdiscovery/fix-fp-jamf-log4j-jndi-rce
...
Update jamf-log4j-jndi-rce.yaml
2022-10-21 13:36:55 +05:30
2cc6587ba9
Merge pull request #5740 from projectdiscovery/fix-fp-mobileiron-log4j-jndi-rce
...
Update mobileiron-log4j-jndi-rce.yaml
2022-10-21 13:35:31 +05:30
7d0ede17b3
Merge pull request #5739 from projectdiscovery/fix-fp-cisco-vmanage-log4j
...
Update cisco-vmanage-log4j.yaml
2022-10-21 13:31:13 +05:30
054f0c4872
Update aerocms-sqli.yaml
2022-10-20 12:59:46 +05:30
dced04fd39
Update aerocms-sqli.yaml
2022-10-20 12:45:34 +05:30
9fe5faac71
Create aerocms-sqli.yaml
2022-10-20 12:23:03 +05:30
fcc232c77d
Update vmware-siterecovery-log4j-rce.yaml
2022-10-20 03:13:37 +05:30
851ecc1685
Update vmware-operation-manager-log4j.yaml
2022-10-20 03:08:41 +05:30
3e72210539
Auto Generated CVE annotations [Wed Oct 19 21:30:41 UTC 2022] 🤖
2022-10-19 21:30:41 +00:00
8a8cc79de1
Update graylog-log4j.yaml
2022-10-20 02:59:52 +05:30
214d2c50ed
Update jamf-log4j-jndi-rce.yaml
2022-10-20 02:55:05 +05:30
0b1a79f39d
Dashboard Content Enhancements ( #5704 )
...
Dashboard Content Enhancements
2022-10-19 17:11:27 -04:00
4eff79955e
Update mobileiron-log4j-jndi-rce.yaml
2022-10-20 02:38:01 +05:30
00acbe2bbb
Update cisco-vmanage-log4j.yaml
2022-10-20 02:30:56 +05:30
2a411bef99
Merge pull request #5734 from projectdiscovery/fix-fp-rundeck-log4j
...
Update rundeck-log4j.yaml
2022-10-19 22:48:46 +05:30
1e62e0720b
Merge pull request #5733 from projectdiscovery/fix-fp-metabase-log4j
...
Update metabase-log4j.yaml
2022-10-19 22:44:00 +05:30
499432b36a
Update rundeck-log4j.yaml
2022-10-19 17:43:25 +05:30
0b345ce6c7
Update metabase-log4j.yaml
2022-10-19 16:44:22 +05:30
04846d28d2
Update vmware-nsx-log4j.yaml
2022-10-19 16:30:06 +05:30
6d591d01c4
Update vmware-nsx-log4j.yaml
2022-10-19 16:15:30 +05:30
86bb38b96d
Fix typo in unaunthenticated-jenkin.yaml ( #5724 )
...
* Fix typo in unaunthenticated-jenkin.yaml
* Rename unaunthenticated-jenkin.yaml to unauthenticated-jenkins.yaml
2022-10-19 03:54:33 +05:30
c6cc78bcf1
Delete omnia-mpx-lfi.yaml
2022-10-17 13:03:17 +05:30
75fdd023c5
Update flatpress-xss.yaml
2022-10-14 17:13:39 +05:30
2411426ed1
Update flatpress-xss.yaml
2022-10-14 11:41:59 +05:30
1878bae200
Update flatpress-xss.yaml
2022-10-13 16:26:36 +05:30
e4682184c2
Update flatpress-xss.yaml
2022-10-13 16:12:51 +05:30
ed83463ff3
Create flatpress-xss.yaml
2022-10-13 16:11:15 +05:30
3fba7301e0
Auto Generated CVE annotations [Wed Oct 12 10:44:42 UTC 2022] 🤖
2022-10-12 10:44:42 +00:00
fa56e9eca9
Update vmware-operation-manager-log4j.yaml
2022-10-12 15:01:48 +05:30
714813c445
Update vmware-hcx-log4j.yaml
2022-10-12 15:01:02 +05:30
8be5694398
Update jamf-pro-log4j.yaml
2022-10-12 15:00:26 +05:30
fe3921231f
Update graylog-log4j.yaml
2022-10-12 14:59:44 +05:30
9dccfb90ae
Update cisco-unified-communications-log4j.yaml
2022-10-12 14:59:13 +05:30
bf451ad15a
Update vmware-nsx-log4j.yaml
2022-10-12 14:58:33 +05:30
e0bf6d8e07
Update opennms-log4j-jndi-rce.yaml
2022-10-12 14:57:53 +05:30
a62dffe4bb
Update cisco-vmanage-log4j.yaml
2022-10-12 14:57:15 +05:30
847d2b9631
Update rundeck-log4j.yaml
2022-10-12 14:56:48 +05:30
386b4da10b
Update rundeck-log4j.yaml
2022-10-12 14:56:33 +05:30
cc897f6980
Update metabase-log4j.yaml
2022-10-12 14:55:31 +05:30
6ab6aa6aa3
Auto Generated CVE annotations [Mon Oct 10 20:06:39 UTC 2022] 🤖
2022-10-10 20:06:39 +00:00
bcd4ae950d
Standardize Log4j Entries ( #5634 )
...
* Standardize Log4j name and classification fields
Co-authored-by: sullo <sullo@cirt.net>
2022-10-10 15:51:42 -04:00
a8c023abc4
Auto Generated CVE annotations [Mon Oct 10 19:40:25 UTC 2022] 🤖
2022-10-10 19:40:25 +00:00
5892582899
Dashboard Content Enhancements ( #5582 )
...
Dashboard Content Enhancements
2022-10-10 15:22:59 -04:00
712264db7e
Using "host-redirects" instead of "redirects" to avoid scanning 3rd party / out of scope hosts. ( #5491 )
2022-10-08 02:57:25 +05:30
66059c01e2
Update unauthenticated-duplicator-disclosure.yaml
2022-10-01 20:59:50 +05:30
6f2f9abaa8
Update unauthenticated-duplicator-disclosure.yaml
2022-10-01 02:56:16 +05:30
d19b29dc55
Create unauthenticated-duplicator-disclosure.yaml
2022-09-30 17:06:18 -04:00
cc11df1ede
Auto Generated CVE annotations [Thu Sep 29 13:52:24 UTC 2022] 🤖
2022-09-29 13:52:24 +00:00
1fa47500e4
Dashboard Content Enhancements ( #5497 )
...
Dashboard Content Enhancements
2022-09-29 09:38:41 -04:00
fe3ba681b1
Create xenmobile-server-log4j.yaml
2022-09-29 12:14:52 +05:30
34234c7a14
Added Web Page Test - Server Side Request Forgery (SSRF) ( #5456 )
2022-09-24 19:17:03 +05:30
0851e093dc
Auto Generated CVE annotations [Fri Sep 23 18:06:19 UTC 2022] 🤖
2022-09-23 18:06:19 +00:00
529582c200
Dashboard Content Enhancements ( #5455 )
...
Dashboard Content Enhancements
2022-09-23 13:53:08 -04:00
daf007b79b
Auto Generated CVE annotations [Fri Sep 23 11:36:52 UTC 2022] 🤖
2022-09-23 11:36:52 +00:00
8ae53a1e66
Update age-gate-xss.yaml
2022-09-23 16:51:01 +05:30
0c79fc2594
Create age-gate-xss.yaml
2022-09-23 16:48:11 +05:30
34a9d5d4ee
fix [WRN] [cors-misconfig] unresolved variables found: path ( #5435 )
...
* fix [WRN] [cors-misconfig] Could not make http request for.. unresolved variables found: path
* Additional path fix
Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2022-09-22 11:40:37 +05:30
0920762894
Auto Generated CVE annotations [Wed Sep 21 21:56:03 UTC 2022] 🤖
2022-09-21 21:56:03 +00:00
1437dc1f59
Dashboard Content Enhancements ( #5436 )
...
Dashboard Content Enhancements
2022-09-21 17:42:27 -04:00
3bc2e26e40
Dashboard Content Enhancements ( #5372 )
...
Dashboard Content Enhancements
2022-09-16 15:50:10 -04:00
9addaee48f
Merge pull request #5365 from arafatansari/patch-89
...
Create hms-xss-2.yaml
2022-09-15 17:44:59 +05:30
d634588031
Merge pull request #5364 from arafatansari/patch-88
...
Create hms-xss.yaml
2022-09-15 17:43:14 +05:30
28d456386c
Merge pull request #5352 from For3stCo1d/wapples-firewall-lfi
...
Create wapples-firewall-lfi.yaml
2022-09-15 17:28:44 +05:30
abe1487a4d
Update and rename 3DPrint-arbitrary-file-upload.yaml to 3dprint-arbitrary-file-upload.yaml
2022-09-15 15:51:34 +05:30
84abeba9f8
Auto Generated CVE annotations [Thu Sep 15 09:30:23 UTC 2022] 🤖
2022-09-15 09:30:23 +00:00
aba55a3dd6
Merge pull request #5325 from projectdiscovery/3DPrint-arbitrary-file-upload
...
Create 3DPrint-arbitrary-file-upload.yaml
2022-09-15 14:51:59 +05:30
6e98f462f7
Update 3DPrint-arbitrary-file-upload.yaml
2022-09-15 14:50:10 +05:30
8c672ef591
Update and rename hms-xss-2.yaml to hospital-management-xss2.yaml
2022-09-15 14:02:02 +05:30
MostInterestingBotInTheWorld
Dhiyaneshwaran
Ritik Chaddha
Abhinav Gaur
M4rtin Hsu
Mike Piekarski
Sandeep Singh
GitHub Action
SleepingBag945
Celesian
Prince Chaddha
Philippe Delteil
Arafat Ansari
Y4er
Thibault Soubiran
sandeep
clem9669
Prince Chaddha
shivampand3y
Joshua Rogers
Arman
st0fm