daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
28,494 Commits
17 Branches
0 Tags
165 MiB
Commit Graph

1236 Commits (3f05703915e63c435494389d65c4a266b30c2bc5)

Author SHA1 Message Date
Dhiyaneshwaran c9a993f1a8
Merge pull request #6949 from j4vaovo/test 
fix php-backdoor
 2023-03-28 11:01:35 +05:30
MostInterestingBotInTheWorld 186745475b
dos2unix conversions (#6969) 
* Add description and enhance one where the UI failed to save properly.
dos2unix on a template

* Change cvedetails link to nvd

* make severities match

* Enhancement: cves/2015/CVE-2015-2863.yaml by md

* Enhancement: cves/2017/CVE-2017-14524.yaml by md

* Enhancement: cves/2017/CVE-2017-5638.yaml by md

* Enhancement: cves/2019/CVE-2019-16759.yaml by md

* Enhancement: cves/2021/CVE-2021-22986.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24155.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24347.yaml by md

* Enhancement: cves/2021/CVE-2021-25003.yaml by md

* Enhancement: cves/2021/CVE-2021-25296.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-25296.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-25298.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-28151.yaml by md

* Enhancement: cves/2021/CVE-2021-30128.yaml by md

* Enhancement: cves/2022/CVE-2022-0824.yaml by md

* Enhancement: cves/2022/CVE-2022-0824.yaml by md

* Enhancement: cves/2022/CVE-2022-0885.yaml by md

* Enhancement: cves/2022/CVE-2022-21587.yaml by md

* Enhancement: cves/2022/CVE-2022-2314.yaml by md

* Enhancement: cves/2022/CVE-2022-24816.yaml by md

* Enhancement: cves/2022/CVE-2022-31499.yaml by md

* Enhancement: cves/2022/CVE-2022-21587.yaml by md

* Enhancement: cves/2021/CVE-2021-24155.yaml by md

* Enhancement: cves/2017/CVE-2017-5638.yaml by md

* Enhancement: cves/2015/CVE-2015-2863.yaml by md

* Enhancement: cves/2022/CVE-2022-33901.yaml by md

* Enhancement: cves/2022/CVE-2022-2314.yaml by md

* Enhancement: cves/2022/CVE-2022-33901.yaml by md

* Enhancement: cves/2022/CVE-2022-34753.yaml by md

* Enhancement: cves/2022/CVE-2022-39952.yaml by md

* Enhancement: cves/2022/CVE-2022-4060.yaml by md

* Enhancement: cves/2022/CVE-2022-44877.yaml by md

* Enhancement: cves/2023/CVE-2023-0669.yaml by md

* Enhancement: cves/2023/CVE-2023-26255.yaml by md

* Enhancement: cves/2023/CVE-2023-26256.yaml by md

* Enhancement: exposures/files/salesforce-credentials.yaml by md

* Enhancement: misconfiguration/hadoop-unauth-rce.yaml by md

* Enhancement: misconfiguration/installer/nopcommerce-installer.yaml by md

* Enhancement: network/backdoor/backdoored-zte.yaml by md

* Enhancement: network/detection/ibm-d2b-database-server.yaml by md

* Enhancement: network/detection/ibm-d2b-database-server.yaml by md

* Enhancement: technologies/oracle/oracle-atg-commerce.yaml by md

* Enhancement: token-spray/api-abuseipdb.yaml by md

* Enhancement: token-spray/api-abuseipdb.yaml by md

* Enhancement: token-spray/api-dbt.yaml by md

* Enhancement: vulnerabilities/avaya/avaya-aura-rce.yaml by md

* Enhancement: vulnerabilities/avaya/avaya-aura-xss.yaml by md

* Enhancement: vulnerabilities/cisco/cisco-cloudcenter-suite-rce.yaml by md

* Enhancement: vulnerabilities/froxlor-xss.yaml by md

* Enhancement: vulnerabilities/jamf/jamf-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/mobileiron/mobileiron-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/jamf/jamf-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/opencpu/opencpu-rce.yaml by md

* Enhancement: vulnerabilities/other/academy-lms-xss.yaml by md

* Enhancement: vulnerabilities/other/caucho-resin-info-disclosure.yaml by md

* Enhancement: vulnerabilities/other/ckan-dom-based-xss.yaml by md

* Enhancement: vulnerabilities/other/couchdb-adminparty.yaml by md

* Enhancement: vulnerabilities/other/graylog-log4j.yaml by md

* Enhancement: vulnerabilities/mobileiron/mobileiron-log4j-jndi-rce.yaml by md

* Initial cleanups for syntax errors

* dashboard gremlins

* Add log4j back to name

* Enhancement: exposures/files/salesforce-credentials.yaml by cs

* Enhancement: misconfiguration/installer/nopcommerce-installer.yaml by cs

* Enhancement: network/backdoor/backdoored-zte.yaml by cs

* Enhancement: vulnerabilities/other/couchdb-adminparty.yaml by cs

* Sev and other info tweaks

* Merge conflict

* Run dos2unix against all templates

* too many newlines error

* Fix too many blank lines error

* Fix severity mismatches
Cleanup language on a new test

---------

Co-authored-by: sullo <sullo@cirt.net>
 2023-03-27 14:22:40 -04:00
MostInterestingBotInTheWorld 301fddaeb0
Dashboard Content Enhancements (#6965) 
* Add description and enhance one where the UI failed to save properly.
dos2unix on a template

* Change cvedetails link to nvd

* make severities match

* Enhancement: cves/2015/CVE-2015-2863.yaml by md

* Enhancement: cves/2017/CVE-2017-14524.yaml by md

* Enhancement: cves/2017/CVE-2017-5638.yaml by md

* Enhancement: cves/2019/CVE-2019-16759.yaml by md

* Enhancement: cves/2021/CVE-2021-22986.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24155.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24347.yaml by md

* Enhancement: cves/2021/CVE-2021-25003.yaml by md

* Enhancement: cves/2021/CVE-2021-25296.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-25296.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-25298.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-28151.yaml by md

* Enhancement: cves/2021/CVE-2021-30128.yaml by md

* Enhancement: cves/2022/CVE-2022-0824.yaml by md

* Enhancement: cves/2022/CVE-2022-0824.yaml by md

* Enhancement: cves/2022/CVE-2022-0885.yaml by md

* Enhancement: cves/2022/CVE-2022-21587.yaml by md

* Enhancement: cves/2022/CVE-2022-2314.yaml by md

* Enhancement: cves/2022/CVE-2022-24816.yaml by md

* Enhancement: cves/2022/CVE-2022-31499.yaml by md

* Enhancement: cves/2022/CVE-2022-21587.yaml by md

* Enhancement: cves/2021/CVE-2021-24155.yaml by md

* Enhancement: cves/2017/CVE-2017-5638.yaml by md

* Enhancement: cves/2015/CVE-2015-2863.yaml by md

* Enhancement: cves/2022/CVE-2022-33901.yaml by md

* Enhancement: cves/2022/CVE-2022-2314.yaml by md

* Enhancement: cves/2022/CVE-2022-33901.yaml by md

* Enhancement: cves/2022/CVE-2022-34753.yaml by md

* Enhancement: cves/2022/CVE-2022-39952.yaml by md

* Enhancement: cves/2022/CVE-2022-4060.yaml by md

* Enhancement: cves/2022/CVE-2022-44877.yaml by md

* Enhancement: cves/2023/CVE-2023-0669.yaml by md

* Enhancement: cves/2023/CVE-2023-26255.yaml by md

* Enhancement: cves/2023/CVE-2023-26256.yaml by md

* Enhancement: exposures/files/salesforce-credentials.yaml by md

* Enhancement: misconfiguration/hadoop-unauth-rce.yaml by md

* Enhancement: misconfiguration/installer/nopcommerce-installer.yaml by md

* Enhancement: network/backdoor/backdoored-zte.yaml by md

* Enhancement: network/detection/ibm-d2b-database-server.yaml by md

* Enhancement: network/detection/ibm-d2b-database-server.yaml by md

* Enhancement: technologies/oracle/oracle-atg-commerce.yaml by md

* Enhancement: token-spray/api-abuseipdb.yaml by md

* Enhancement: token-spray/api-abuseipdb.yaml by md

* Enhancement: token-spray/api-dbt.yaml by md

* Enhancement: vulnerabilities/avaya/avaya-aura-rce.yaml by md

* Enhancement: vulnerabilities/avaya/avaya-aura-xss.yaml by md

* Enhancement: vulnerabilities/cisco/cisco-cloudcenter-suite-rce.yaml by md

* Enhancement: vulnerabilities/froxlor-xss.yaml by md

* Enhancement: vulnerabilities/jamf/jamf-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/mobileiron/mobileiron-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/jamf/jamf-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/opencpu/opencpu-rce.yaml by md

* Enhancement: vulnerabilities/other/academy-lms-xss.yaml by md

* Enhancement: vulnerabilities/other/caucho-resin-info-disclosure.yaml by md

* Enhancement: vulnerabilities/other/ckan-dom-based-xss.yaml by md

* Enhancement: vulnerabilities/other/couchdb-adminparty.yaml by md

* Enhancement: vulnerabilities/other/graylog-log4j.yaml by md

* Enhancement: vulnerabilities/mobileiron/mobileiron-log4j-jndi-rce.yaml by md

* Initial cleanups for syntax errors

* dashboard gremlins

* Add log4j back to name

* Enhancement: exposures/files/salesforce-credentials.yaml by cs

* Enhancement: misconfiguration/installer/nopcommerce-installer.yaml by cs

* Enhancement: network/backdoor/backdoored-zte.yaml by cs

* Enhancement: vulnerabilities/other/couchdb-adminparty.yaml by cs

* Sev and other info tweaks

* Merge conflict

---------

Co-authored-by: sullo <sullo@cirt.net>
 2023-03-27 23:16:47 +05:30
Ritik Chaddha d6fd4c1c32
Update php-zerodium-backdoor-rce.yaml 2023-03-25 23:15:46 +05:30
j4vaovo 424b8c2c62 fix php-backdoor 2023-03-24 20:03:47 +08:00
Ritik Chaddha 2b5c3c48cc
Merge pull request #6823 from sullo/severity-matching 
Match severity with CVSS
 2023-03-15 20:48:33 +05:30
Dhiyaneshwaran 6d4a18a8d4
Merge pull request #5254 from Akokonunes/patch-179 
Create brightsign-dsdws-ssrf.yaml
 2023-03-14 23:17:34 +05:30
Prince Chaddha 923b16173d
Update brightsign-dsdws-ssrf.yaml 2023-03-10 20:10:06 +05:30
sullo 2a7b69bab3 Match severity with CVSS 2023-03-03 10:27:54 -05:00
Jorian Woltjer 06e9e06961 Add open-directed improvement to more templates 2023-03-01 19:22:21 +01:00
Jorian Woltjer 71fd3bf973 Reduce false-positives in open-redirect regexes 2023-03-01 09:39:14 +01:00
Dhiyaneshwaran b56027ff24
Create nextjs-redirect.yaml 2023-02-16 16:26:36 +05:30
Thibault Soubiran 8d26b3fea5 Improve Keycloak templates 2023-02-10 22:01:43 +01:00
brightio 8321b40726
Fix a typo in hashicorp-consul-rce.yaml 2023-02-10 11:24:24 +01:00
Dhiyaneshwaran c661f7c531
fix-false-positive-can-xss 2023-02-10 00:28:16 +05:30
MostInterestingBotInTheWorld 693e1e3daa
Dashboard Content Enhancements (#6613) 
Dashboard Content Enhancements
 2023-01-24 08:21:18 -08:00
GitHub Action 8fd50b3632 Auto Generated CVE annotations [Mon Jan 23 22:30:31 UTC 2023] 🤖 2023-01-23 22:30:31 +00:00
MostInterestingBotInTheWorld 0d6fbd237f
Dashboard Content Enhancements (#6598) 
Dashboard Content Enhancements
 2023-01-23 14:14:23 -08:00
GitHub Action 5addb51f6d Auto Generated CVE annotations [Mon Jan 23 10:36:01 UTC 2023] 🤖 2023-01-23 10:36:01 +00:00
Dhiyaneshwaran 2ccee035fb
Merge pull request #6586 from cryptoconman/patch-122 
Create slims-xss.yaml
 2023-01-23 15:57:03 +05:30
Ritik Chaddha 398bb21665
Merge pull request #6585 from cryptoconman/patch-121 
Create alms-xss
 2023-01-23 15:28:30 +05:30
Ritik Chaddha 095df8edcc
updated matchers 2023-01-23 15:24:33 +05:30
Ritik Chaddha f60dcf0f19
added text/html header 2023-01-23 15:17:20 +05:30
Dhiyaneshwaran 68861082fc
Merge pull request #6587 from cryptoconman/patch-123 
Create tikiwiki-xss.yaml
 2023-01-23 15:04:02 +05:30
GitHub Action f7da6d8b33 Auto Generated CVE annotations [Mon Jan 23 07:48:36 UTC 2023] 🤖 2023-01-23 07:48:36 +00:00
Ritik Chaddha 9aa77a4e09
updated matchers 2023-01-23 13:08:09 +05:30
Dhiyaneshwaran 243b12571c
matcher-update 
added additional data to keep the template uniform
 2023-01-23 10:57:54 +05:30
Dhiyaneshwaran 74b188e8e0
added-stop-first-match 2023-01-23 10:21:13 +05:30
Dhiyaneshwaran e39f508e51
fix-matcher 2023-01-23 10:20:26 +05:30
Dhiyaneshwaran ed200ecad8
fixed-formatting 2023-01-23 09:52:06 +05:30
Cryptoc0nman e0c253202e
Create sound4-disclosure.yaml 2023-01-23 01:54:11 +05:30
Cryptoc0nman 86c69575b3
Create tikiwiki-xss.yaml 2023-01-23 00:58:22 +05:30
Cryptoc0nman 7480a83529
Create slims-xss.yaml 2023-01-23 00:30:48 +05:30
Cryptoc0nman ea6e61448d
Create alms-xss 2023-01-23 00:02:57 +05:30
MostInterestingBotInTheWorld 643700ca28
Dashboard Content Enhancements (#6526) 
Dashboard Content Enhancements
 2023-01-16 12:41:15 -05:00
GitHub Action c3bc305f3f Auto Generated CVE annotations [Sun Jan 15 06:48:30 UTC 2023] 🤖 2023-01-15 06:48:30 +00:00
Dhiyaneshwaran 60ecd5c167
Update elasticsearch5-log4j-rce.yaml 2023-01-11 11:53:35 +05:30
Dhiyaneshwaran 8d0acc447a
Update digital-ocean-ssrf.yaml 2022-12-23 23:27:17 +05:30
Ritik Chaddha 916d86ecb5
Update digital-ocean-ssrf.yaml 2022-12-22 11:06:01 +05:30
Dhiyaneshwaran ab7f19491b
Create digital-ocean-ssrf.yaml 2022-12-20 10:51:20 +05:30
MostInterestingBotInTheWorld 03c2ef2391
Dashboard Content Enhancements (#6358) 
Dashboard Content Enhancements
 2022-12-13 15:36:48 -05:00
Dhiyaneshwaran e5a63cf26a
Merge pull request #6174 from pdelteil/patch-111 
Rename tikiwiki-json-rpc.yaml to kiwitcms-json-rpc.yaml
 2022-11-29 11:32:03 +05:30
Dhiyaneshwaran 0cc2b7b562
Merge pull request #6173 from pdelteil/patch-110 
Update nuuo-nvrmini2-rce.yaml
 2022-11-29 11:28:26 +05:30
Dhiyaneshwaran 8dfea46220
Merge pull request #6176 from pdelteil/patch-113 
Rename vulnerabilities/other/devalcms-xss.yaml to cves/2008/CVE-2008-…
 2022-11-29 11:25:35 +05:30
Dhiyaneshwaran 516f3fc0c0
Merge pull request #6172 from pdelteil/patch-109 
Rename icewarp-openredirects.yaml to icewarp-open-redirect.yaml
 2022-11-29 11:16:40 +05:30
Philippe Delteil 688b56b5df
Rename vulnerabilities/other/devalcms-xss.yaml to cves/2008/CVE-2008-6982.yaml 2022-11-29 00:38:16 -05:00
Philippe Delteil 8b4e280c02
Rename tikiwiki-json-rpc.yaml to kiwitcms-json-rpc.yaml 
- Incorrect file name (tikiwiki vs Kiwi TCMS). 
- Matching filename + id.
 2022-11-29 00:28:22 -05:00
Philippe Delteil 9c2c3d964b
Update nuuo-nvrmini2-rce.yaml 
filename + id matching
 2022-11-29 00:24:14 -05:00
Philippe Delteil 3458bcabd9
Rename icewarp-openredirects.yaml to icewarp-open-redirect.yaml 
id + filename matching
 2022-11-29 00:22:34 -05:00
Philippe Delteil 5bdb492bac
Update comtrend-password-exposure.yaml 
Corrected typo -> match id with filename.
 2022-11-29 00:16:28 -05:00