3f803deb28
more updates
2021-08-20 02:14:42 +05:30
2510c01fac
Merge pull request #2419 from dwisiswant0/add/CVE-2021-38751
...
Add CVE-2021-38751
2021-08-19 20:09:48 +05:30
33ec4eddbf
Update regEx matcher
2021-08-19 06:39:09 +07:00
09cf9f35eb
Update matcher using regex instead
2021-08-18 20:54:49 +07:00
f021817d65
Update CVE-2021-38702.yaml
2021-08-17 22:06:37 +05:30
888c9a4573
Create CVE-2021-38702.yaml
2021-08-17 08:11:02 -05:00
7bb40042a3
Update CVE-2021-38751.yaml
2021-08-17 17:13:45 +05:30
ec9b83bd1f
Update CVE-2021-38751.yaml
2021-08-17 17:12:51 +05:30
beb11d77e3
Update CVE-2021-32030.yaml
2021-08-17 17:05:12 +05:30
8fa76f68f6
Add CVE-2021-38751
2021-08-17 02:18:49 +07:00
c11328da0b
Create CVE-2021-32030.yaml
...
The administrator application on ASUS GT-AC2900 devices before 3.0.0.4.386.42643 allows authentication bypass when processing remote input from an unauthenticated user, leading to unauthorized access to the administrator interface. This relates to handle_request in router/httpd/httpd.c and auth_check in web_hook.o. An attacker-supplied value of '\0' matches the device's default value of '\0' in some situations.
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-08-16 20:13:22 +09:00
272dec095d
Update CVE-2021-33807.yaml
2021-08-16 13:55:31 +05:30
b426441cf4
Update CVE-2021-33807.yaml
2021-08-16 06:47:56 +07:00
fa8c120f90
Create CVE-2021-33807.yaml
2021-08-16 06:47:24 +07:00
e9e84a4b36
minor update
2021-08-15 00:57:33 +05:30
b15ed3324c
Include path for unpatched old versions
2021-08-14 19:18:15 +00:00
5d3d6ca911
Maintain matcher and extractor consistency
2021-08-14 18:56:37 +00:00
c9fa891245
Improve template metadata
2021-08-14 16:34:59 +00:00
180219cc63
Add CVE-2021-37704 template
2021-08-14 16:22:35 +00:00
09e48ac8b4
Merge pull request #2396 from geeknik/patch-18
...
Create CVE-2021-37573.yaml
2021-08-14 14:43:11 +05:30
b5123f5abe
Update CVE-2021-37573.yaml
2021-08-14 14:40:52 +05:30
4c811a4dc2
Update CVE-2021-3017.yaml
2021-08-14 14:03:43 +05:30
09284afb09
Update CVE-2021-3017.yaml
2021-08-14 13:58:04 +05:30
916d421b98
Update CVE-2021-3017.yaml
2021-08-14 13:56:56 +05:30
29e8c790fc
Create CVE-2021-3017.yaml
2021-08-14 13:32:59 +07:00
344fba3089
Update CVE-2021-37573.yaml
2021-08-13 17:17:35 -05:00
eed8e2e573
Update CVE-2021-37573.yaml
2021-08-13 17:17:18 -05:00
1ea3dfe3b7
Create CVE-2021-37573.yaml
2021-08-13 17:14:13 -05:00
035ee06740
Update CVE-2021-35464.yaml
2021-08-13 16:22:36 +05:30
c537e2ccd4
minor update
2021-08-12 22:09:42 +05:30
a0275a9aeb
Merge pull request #2370 from evait-security/master
...
add ProxyShell detection template
2021-08-12 22:08:59 +05:30
b69cd23cf4
minor updates
2021-08-12 21:24:09 +05:30
a69a8718c7
removing extra headers
2021-08-12 14:11:49 +05:30
7c076d7e0e
Added CVE-2021-20092
2021-08-11 18:28:37 +05:30
b64f472b91
Added CVE-2021-20091
2021-08-11 17:58:20 +05:30
76d184331c
minor update
2021-08-11 17:57:58 +05:30
74a17976a8
Update CVE-2021-20090.yaml
2021-08-10 22:23:57 +05:30
d84eb0fd7e
Added CVE-2021-20090
2021-08-10 22:21:46 +05:30
36e43b66ec
follow redirect, compare body instead of status code, eliminate false positives
2021-08-10 10:53:58 +02:00
ff558bd94e
add second url for more stable detection
2021-08-10 10:17:37 +02:00
99d41391e7
add ProxyShell detection template
2021-08-10 09:59:06 +02:00
8c48ca97d2
matcher + payload + regex updates
2021-08-09 21:58:28 +05:30
28f1036194
minor update
2021-08-08 22:57:07 +05:30
b59341b273
minor update
2021-08-06 21:23:46 +05:30
34f905286a
moving files around
2021-08-05 12:52:50 +05:30
40f3693456
Added page specific matcher
2021-08-04 21:32:50 +05:30
c7871dc7a6
Merge pull request #2021 from daffainfo/patch-59
...
Create CVE-2021-24235.yaml
2021-08-04 20:02:01 +05:30
98e5c69560
Update CVE-2021-24235.yaml
2021-08-04 20:00:11 +05:30
515d469506
strict matchers
2021-08-04 12:10:24 +05:30
5965a3e44c
Merge pull request #2319 from dwisiswant0/add/CVE-2021-37216
...
Add CVE-2021-37216
2021-08-03 20:40:52 +05:30
sandeep
Dwi Siswanto
Prince Chaddha
Geeknik Labs
Prince Chaddha
GwanYeong Kim
Muhammad Daffa
pajoda
PikPikcU
SaN ThosH
Paul Werther