5833092a53
Auto Update README [Mon Jul 19 11:29:52 UTC 2021] 🤖
2021-07-19 11:29:52 +00:00
95aaa52891
Merge pull request #2089 from projectdiscovery/duplicate-template
...
Removed duplicate template
2021-07-19 16:59:35 +05:30
f56bfd81bf
Auto Update README [Mon Jul 19 11:28:26 UTC 2021] 🤖
2021-07-19 11:28:26 +00:00
ff900ebc07
Merge pull request #2084 from gy741/rule-add-v28
...
Create CVE-2020-28188.yaml
2021-07-19 16:58:07 +05:30
a88710e503
Removed duplicate template
2021-07-19 16:56:45 +05:30
384fb5c0f8
Auto Update README [Mon Jul 19 11:25:34 UTC 2021] 🤖
2021-07-19 11:25:34 +00:00
3a8ff1ee03
Merge pull request #2082 from skar4444/wp-xss
...
CVE-2021-24498 - Calendar Event Multi View < 1.4.01 - Unauthenticated Reflected XSS
2021-07-19 16:55:16 +05:30
eec253fdd8
minor update
2021-07-19 16:53:47 +05:30
7d9dbc4aad
Update CVE-2020-28188.yaml
2021-07-19 16:41:12 +05:30
924b9d7f5d
Create terramaster-login.yaml
...
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-07-19 15:36:42 +09:00
edabf1e7ca
Create CVE-2020-28188.yaml
...
Remote Command Execution (RCE) vulnerability in TerraMaster TOS <= 4.2.06 allow remote unauthenticated attackers to inject OS commands via /include/makecvs.php in Event parameter.
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-07-19 15:13:57 +09:00
77fd227376
Update CVE-2021-24498.yaml
2021-07-19 10:45:58 +05:30
556a94136b
Calendar Event Multi View < 1.4.01 - Unauthenticated Reflected Cross-Site Scripting (XSS)
2021-07-19 10:40:50 +05:30
0cb3c9d6b5
Auto Update README [Sun Jul 18 18:01:12 UTC 2021] 🤖
2021-07-18 18:01:12 +00:00
e21422a385
Merge pull request #2078 from gy741/rule-add-v28
...
Create mirai-unknown-rce.yaml
2021-07-18 23:30:54 +05:30
8d9b19651f
Auto Update README [Sun Jul 18 17:56:01 UTC 2021] 🤖
2021-07-18 17:56:01 +00:00
922555503b
Merge pull request #2073 from gy741/rule-add-v26
...
Create CVE-2020-27866.yaml
2021-07-18 23:25:43 +05:30
965e6fcc00
minor update
2021-07-18 23:24:55 +05:30
cd63b0d01f
Merge pull request #2075 from pdelteil/patch-23
...
Update exposed-gitignore.yaml
2021-07-18 23:19:03 +05:30
e975b6edac
Auto Update README [Sun Jul 18 17:48:01 UTC 2021] 🤖
2021-07-18 17:48:01 +00:00
f9c8314092
Merge pull request #2077 from gy741/rule-add-v27
...
Create Advantech R-SeeNet Multiple Reflected XSS vulnerabilities
2021-07-18 23:17:40 +05:30
c56680cef3
Additional matcher
2021-07-18 23:14:19 +05:30
27b8b08b42
Auto Update README [Sun Jul 18 17:13:47 UTC 2021] 🤖
2021-07-18 17:13:47 +00:00
07266a7e8c
Merge pull request #2079 from DhiyaneshGeek/master
...
Adobe Lucee Complete Chain , GiveWP 2.9.7 Reflected Cross-Site Scripting , Cortex XSOAR Login Panel
2021-07-18 22:43:26 +05:30
be655ffd69
No more manual updates with tags support
2021-07-18 22:41:13 +05:30
3088fb5431
Removing CVE-2021-24213
...
As per blog - https://bentl.ee/posts/cve-givewp/
> This vulnerability requires user interaction from an admin in order to be exploited.
2021-07-18 22:39:37 +05:30
76e95ac1e5
Minor improvements
2021-07-18 22:36:15 +05:30
22fa4de8d8
Update CVE-2021-21307.yaml
2021-07-18 19:33:28 +05:30
ce980acc50
Update CVE-2021-21307.yaml
2021-07-18 19:28:29 +05:30
e692d81999
Update CVE-2021-21307.yaml
2021-07-18 19:24:46 +05:30
c0ae7b8eda
Update lucee-workflow.yaml
2021-07-18 19:21:01 +05:30
0a8d2ffdcc
Create CVE-2021-21307.yaml
2021-07-18 19:19:19 +05:30
19fa522fec
Create mirai-unknown-rce.yaml
...
The unknown exploit targets the login CGI script, where a key parameter is not properly sanitized leading to a command injection.
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-07-18 22:44:29 +09:00
4414ff60db
Create Advantech R-SeeNet Multiple Reflected XSS vulnerabilities
...
This vulnerability is present in device_graph_page.php script, which is a part of the Advantech R-SeeNet web applications. A specially crafted URL by an attacker and visited by a victim can lead to arbitrary JavaScript code execution.
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-07-18 22:12:01 +09:00
ed9418961d
Create cortex-xsoar-login.yaml
2021-07-18 17:24:04 +05:30
0a01f0cd79
Create CVE-2021-24213.yaml
2021-07-18 16:44:57 +05:30
dd8f248892
Merge pull request #75 from projectdiscovery/master
...
Updation
2021-07-18 13:08:23 +05:30
aec3d87e72
Update exposed-gitignore.yaml
...
New conditions to avoid false positives.
2021-07-17 23:15:08 -04:00
fb22fd40c5
Create CVE-2020-27866.yaml
...
This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6020, R6080, R6120, R6220, R6260, R6700v2, R6800, R6900v2, R7450, JNR3210, WNR2020, Nighthawk AC2100, and Nighthawk AC2400 routers. Authentication is not required to exploit this vulnerability.
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-07-18 10:03:38 +09:00
24042afb39
Merge pull request #2069 from 0xPrial/master
...
Updated Heroku and Netlify takeover detection
2021-07-17 23:58:35 +05:30
d2970f3529
misc changes
2021-07-17 23:55:56 +05:30
14dac08171
Auto Update README [Sat Jul 17 18:23:29 UTC 2021] 🤖
2021-07-17 18:23:30 +00:00
a7a12fd6f3
Merge pull request #2072 from projectdiscovery/dell-emc-ecom-default-credentials
...
Added Dell EMC ECOM Default Credentials
2021-07-17 23:53:11 +05:30
9e85e024d3
Added IDEMIA BIOMetrics Default Credentials
2021-07-17 23:51:55 +05:30
78e7242792
Added Palo Alto Networks PAN-OS Default Credentials
2021-07-17 23:35:39 +05:30
8030b46355
Added HortonWorks SmartSense Default Credentials
2021-07-17 23:30:55 +05:30
0832491843
Added Dell EMC ECOM Default Credentials
2021-07-17 23:28:19 +05:30
f58d787724
Auto Update README [Sat Jul 17 17:53:56 UTC 2021] 🤖
2021-07-17 17:53:56 +00:00
34557c377b
Merge pull request #2071 from projectdiscovery/visionhub-default-credential
...
Added VisionHub Default Credentials
2021-07-17 23:23:41 +05:30
7ef332e9d0
Added VisionHub Default Credentials
2021-07-17 23:20:57 +05:30
GitHub Action
Sandeep Singh
GwanYeong Kim
Suman Kar
Suman Kar
Dhiyaneshwaran
Philippe Delteil