Prince Chaddha
146085a0b8
Update CVE-2016-1000129.yaml
2021-07-17 10:05:56 +05:30
Prince Chaddha
2de24cfb1c
Merge pull request #2055 from daffainfo/patch-80
...
Create CVE-2009-1558.yaml
2021-07-17 10:04:49 +05:30
Prince Chaddha
d49585b993
Merge pull request #2056 from daffainfo/patch-81
...
Create CVE-2016-1000128.yaml
2021-07-17 10:04:40 +05:30
Prince Chaddha
dd16d1349a
Update CVE-2009-1558.yaml
2021-07-17 10:02:09 +05:30
Prince Chaddha
b8e3840ad6
Update CVE-2007-0885.yaml
2021-07-17 09:59:54 +05:30
sandeep
048cdff225
Additional matcher
2021-07-17 02:07:26 +05:30
Muhammad Daffa
3fee8f6145
Create CVE-2016-1000135.yaml
2021-07-17 01:09:08 +07:00
Muhammad Daffa
89cd375576
Create CVE-2016-1000134.yaml
2021-07-17 01:07:53 +07:00
Muhammad Daffa
977b588c3c
Create CVE-2016-1000133.yaml
2021-07-17 01:06:22 +07:00
Muhammad Daffa
e6cdaee59f
Create CVE-2016-1000132.yaml
2021-07-17 01:01:11 +07:00
sandeep
e848640e9d
Added CVE-2019-12616
2021-07-16 23:27:01 +05:30
Muhammad Daffa
4886bc48fd
Create CVE-2016-1000131.yaml
2021-07-17 00:55:47 +07:00
Muhammad Daffa
63d2932eac
Create CVE-2016-1000130.yaml
2021-07-17 00:52:56 +07:00
Muhammad Daffa
6ee439eda2
Create CVE-2016-1000129.yaml
2021-07-17 00:50:57 +07:00
Muhammad Daffa
3830a7805a
Create CVE-2016-1000128.yaml
2021-07-17 00:49:06 +07:00
Muhammad Daffa
141993dafd
Create CVE-2009-1558.yaml
2021-07-17 00:40:24 +07:00
Muhammad Daffa
4eb74ebcae
Update CVE-2010-2307.yaml
2021-07-17 00:38:35 +07:00
Geeknik Labs
9756a893f0
Create CVE-2007-0885.yaml
2021-07-16 12:34:42 -05:00
Muhammad Daffa
b2c5fd9f0a
Create CVE-2010-2307.yaml
2021-07-17 00:32:16 +07:00
Muhammad Daffa
60c60f8955
Create CVE-2010-4231.yaml
2021-07-17 00:29:30 +07:00
Prince Chaddha
28a0197945
Merge pull request #2048 from projectdiscovery/princechaddha-patch-1
...
Update CVE-2018-12031.yaml
2021-07-16 20:18:06 +05:30
Muhammad Daffa
72de5ba106
Create CVE-2016-1000127.yaml
2021-07-16 20:46:42 +07:00
Muhammad Daffa
0b9c6a3520
Create CVE-2016-1000126.yaml
2021-07-16 20:43:22 +07:00
Prince Chaddha
33a0ede229
Merge pull request #2009 from gy741/rule-add-v24
...
Create CVE-2020-26919, CVE-2020-25506, OptiLink ONT1GEW GPON RCE, CVE-2021-31755
2021-07-16 18:04:52 +05:30
Prince Chaddha
5d88f85f44
Merge pull request #2003 from daffainfo/patch-48
...
Create CVE-2012-1835.yaml
2021-07-16 18:00:24 +05:30
Prince Chaddha
015a073d38
Merge pull request #2049 from daffainfo/patch-75
...
Create CVE-2019-20085.yaml
2021-07-16 17:59:46 +05:30
Prince Chaddha
829507fd1e
Update CVE-2019-20085.yaml
2021-07-16 17:58:51 +05:30
Prince Chaddha
379345fc05
Update CVE-2019-20085.yaml
2021-07-16 17:57:49 +05:30
Prince Chaddha
a599daf014
Merge pull request #2010 from daffainfo/patch-54
...
Create CVE-2016-10960.yaml
2021-07-16 17:56:25 +05:30
Prince Chaddha
eaba7dc5de
Update CVE-2016-10960.yaml
2021-07-16 17:54:37 +05:30
Muhammad Daffa
f857247e84
Create CVE-2019-20085.yaml
2021-07-16 19:17:49 +07:00
Prince Chaddha
429bb01311
Update CVE-2016-10960.yaml
2021-07-16 17:46:33 +05:30
Prince Chaddha
833306ad86
Merge pull request #2025 from daffainfo/patch-63
...
Create CVE-2019-16525.yaml
2021-07-16 17:44:09 +05:30
Prince Chaddha
9ab9617b95
Update CVE-2019-16525.yaml
2021-07-16 17:42:41 +05:30
Prince Chaddha
304ab07b28
Update CVE-2018-12031.yaml
2021-07-16 17:42:00 +05:30
Prince Chaddha
110a989ff1
Update CVE-2018-12031.yaml
2021-07-16 17:36:12 +05:30
Prince Chaddha
6686b39b75
Merge pull request #2047 from daffainfo/patch-74
...
Create CVE-2018-12031.yaml
2021-07-16 17:33:54 +05:30
Prince Chaddha
4238febae3
Update CVE-2018-12031.yaml
2021-07-16 17:33:02 +05:30
Prince Chaddha
4da4ebf224
Merge pull request #2020 from gy741/rule-add-v25
...
Create CVE-2020-35713.yaml
2021-07-16 17:31:26 +05:30
Prince Chaddha
f4f05394e1
Update CVE-2020-35713.yaml
2021-07-16 17:30:35 +05:30
Muhammad Daffa
134031c9aa
Update and rename cves/2020/CVE-2020-14461.yaml to cves/2018/CVE-2018-12031.yaml
2021-07-16 18:56:28 +07:00
Muhammad Daffa
90776cea1c
Create CVE-2020-14461.yaml
2021-07-16 18:52:12 +07:00
Regala
6aef970258
Update CVE-2020-17362.yaml
...
Added "nova-lite" matcher; massively reduce false positives.
2021-07-16 12:19:30 +01:00
Prince Chaddha
0c4a223fa0
Update CVE-2016-10960.yaml
2021-07-16 11:13:17 +05:30
Prince Chaddha
900347eeb4
Merge pull request #2044 from daffainfo/patch-72
...
Create CVE-2017-17043.yaml
2021-07-16 11:07:52 +05:30
Prince Chaddha
84223eb0b8
Merge pull request #2033 from daffainfo/patch-67
...
Create CVE-2018-11709.yaml
2021-07-16 11:07:42 +05:30
Prince Chaddha
247c964e78
Merge pull request #2034 from daffainfo/patch-68
...
Create CVE-2018-5316.yaml
2021-07-16 11:07:32 +05:30
Prince Chaddha
f977df559c
Update CVE-2018-11709.yaml
2021-07-16 11:05:11 +05:30
Prince Chaddha
cbd0d293bd
Merge pull request #2031 from daffainfo/patch-65
...
Create CVE-2019-15713.yaml
2021-07-16 11:02:45 +05:30
Prince Chaddha
19820c14d9
Merge pull request #2032 from daffainfo/patch-66
...
Create CVE-2018-20462.yaml
2021-07-16 11:02:35 +05:30
Prince Chaddha
da4b0d4da7
Update CVE-2018-20462.yaml
2021-07-16 11:01:29 +05:30
Prince Chaddha
39dbf2a36c
Merge pull request #2030 from daffainfo/patch-64
...
Create CVE-2019-16332.yaml
2021-07-16 11:00:34 +05:30
Prince Chaddha
a08eed7ce8
Update CVE-2019-15713.yaml
2021-07-16 11:00:01 +05:30
Prince Chaddha
a78e6caafc
Update CVE-2019-16332.yaml
2021-07-16 10:57:50 +05:30
Prince Chaddha
a047cd77ff
Update CVE-2017-17043.yaml
2021-07-16 10:50:55 +05:30
Prince Chaddha
ffb5edffd8
Merge pull request #2042 from daffainfo/patch-70
...
Create CVE-2017-17451.yaml
2021-07-16 10:49:33 +05:30
Prince Chaddha
c7d0efa420
Merge pull request #2043 from daffainfo/patch-71
...
Create CVE-2017-17059.yaml
2021-07-16 10:49:20 +05:30
Prince Chaddha
be7247bc77
Update CVE-2017-17059.yaml
2021-07-16 10:44:57 +05:30
Prince Chaddha
7ae1641822
Merge pull request #2041 from daffainfo/patch-69
...
Create CVE-2017-18536.yaml
2021-07-16 10:43:08 +05:30
Prince Chaddha
f0d1da0d2e
Update CVE-2017-17451.yaml
2021-07-16 10:43:04 +05:30
Prince Chaddha
a7f2472922
Update CVE-2017-18536.yaml
2021-07-16 10:41:33 +05:30
Prince Chaddha
4287359c29
Update CVE-2017-9288.yaml
2021-07-16 10:30:43 +05:30
Muhammad Daffa
03698a57ee
Create CVE-2017-9288.yaml
2021-07-16 11:28:40 +07:00
Muhammad Daffa
5be858f2d6
Create CVE-2017-17043.yaml
2021-07-16 11:27:01 +07:00
Muhammad Daffa
2a76b19a36
Create CVE-2017-17059.yaml
2021-07-16 11:25:24 +07:00
Muhammad Daffa
d07faf8034
Create CVE-2017-17451.yaml
2021-07-16 11:22:53 +07:00
Muhammad Daffa
e89607941c
Create CVE-2017-18536.yaml
2021-07-16 11:20:28 +07:00
sandeep
94ae6ea0bf
Added tag
2021-07-15 23:47:05 +05:30
sandeep
97dfd43f1e
Added tag and removed unsafe
2021-07-15 23:46:08 +05:30
Muhammad Daffa
5bee8dd716
Create CVE-2018-5316.yaml
2021-07-16 00:16:27 +07:00
Muhammad Daffa
9d84281202
Create CVE-2018-11709.yaml
2021-07-16 00:14:42 +07:00
Muhammad Daffa
367f5d225d
Create CVE-2018-20462.yaml
2021-07-16 00:12:52 +07:00
Muhammad Daffa
bf68e5060d
Create CVE-2019-15713.yaml
2021-07-16 00:09:33 +07:00
Muhammad Daffa
28278b45a2
Create CVE-2019-16332.yaml
2021-07-16 00:06:33 +07:00
Muhammad Daffa
8a28dc1935
Create CVE-2019-16525.yaml
2021-07-15 19:30:44 +07:00
Prince Chaddha
56d5386c77
Merge pull request #1939 from daffainfo/patch-22
...
Create CVE-2012-4768.yaml
2021-07-15 17:45:48 +05:30
Prince Chaddha
05be6d517c
Merge pull request #2019 from Akokonunes/patch-22
...
Create CVE-2018-9118.yaml
2021-07-15 17:42:39 +05:30
Prince Chaddha
f13d61c128
Update CVE-2018-9118.yaml
2021-07-15 17:41:16 +05:30
Prince Chaddha
42fd30dfd8
Update and rename CVE-2018-9118.yaml to cves/2018/CVE-2018-9118.yaml
2021-07-15 17:40:37 +05:30
Prince Chaddha
2081c6d259
Merge pull request #2024 from daffainfo/patch-62
...
Create CVE-2019-19134.yaml
2021-07-15 17:30:28 +05:30
Prince Chaddha
b7d2ac2843
Merge pull request #2023 from daffainfo/patch-61
...
Create CVE-2020-12054.yaml
2021-07-15 17:27:05 +05:30
Prince Chaddha
22a16b4b17
Update CVE-2019-19134.yaml
2021-07-15 17:26:55 +05:30
Prince Chaddha
89112a18d6
Update CVE-2020-12054.yaml
2021-07-15 17:25:22 +05:30
Prince Chaddha
93293c986a
Update CVE-2020-17362.yaml
2021-07-15 17:22:49 +05:30
Muhammad Daffa
f816c58bac
Create CVE-2019-19134.yaml
2021-07-15 18:40:17 +07:00
Muhammad Daffa
cb364b16c5
Update CVE-2020-12054.yaml
2021-07-15 18:30:38 +07:00
Muhammad Daffa
dc2cf528bd
Create CVE-2020-12054.yaml
2021-07-15 18:27:45 +07:00
Muhammad Daffa
6d3e02ddc1
Create CVE-2020-17362.yaml
2021-07-15 18:14:59 +07:00
Muhammad Daffa
9360b48a90
Create CVE-2021-24235.yaml
2021-07-15 18:03:53 +07:00
Prince Chaddha
ee1719ee26
Update CVE-2012-1835.yaml
2021-07-15 15:07:53 +05:30
Prince Chaddha
321fcfdac1
Update CVE-2012-1835.yaml
2021-07-15 15:05:55 +05:30
Prince Chaddha
217ae33414
Merge pull request #1999 from daffainfo/patch-46
...
Create CVE-2015-9480.yaml
2021-07-15 15:04:45 +05:30
Prince Chaddha
36e366f0e7
Merge pull request #2002 from daffainfo/patch-47
...
Create CVE-2011-5106.yaml
2021-07-15 15:04:17 +05:30
Prince Chaddha
a13090dd4b
Update CVE-2012-1835.yaml
2021-07-15 15:01:21 +05:30
Prince Chaddha
6ba8600282
Update CVE-2011-5106.yaml
2021-07-15 14:54:35 +05:30
Prince Chaddha
7e9ba472a0
Merge pull request #2012 from daffainfo/patch-56
...
Create CVE-2011-1669.yaml
2021-07-15 14:53:20 +05:30
Prince Chaddha
456f5d6b15
Merge pull request #2014 from daffainfo/patch-57
...
Create CVE-2021-24320.yaml
2021-07-15 14:51:34 +05:30
Prince Chaddha
d00d4f37f5
Update CVE-2021-24320.yaml
2021-07-15 14:43:35 +05:30
GwanYeong Kim
f8f9f539ea
Create CVE-2020-35713.yaml
...
Belkin LINKSYS RE6500 devices before 1.0.012.001 allow remote attackers to execute arbitrary commands or set a new password via shell metacharacters to the goform/setSysAdm page.
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-07-15 18:10:11 +09:00
Prince Chaddha
39def9b6e1
Merge pull request #2008 from daffainfo/patch-53
...
Create CVE-2021-24335.yaml
2021-07-15 14:35:27 +05:30
Prince Chaddha
e79277cef1
Merge pull request #2005 from daffainfo/patch-50
...
Create CVE-2012-4273.yaml
2021-07-15 14:35:12 +05:30
Prince Chaddha
96e8a1fb0a
Merge pull request #2011 from daffainfo/patch-55
...
Create CVE-2019-9618.yaml
2021-07-15 14:33:33 +05:30
Prince Chaddha
9e3fe02a38
Merge pull request #2007 from daffainfo/patch-52
...
Create CVE-2014-4513.yaml
2021-07-15 14:33:16 +05:30
Prince Chaddha
d73599eb3c
Merge pull request #2006 from daffainfo/patch-51
...
Create CVE-2021-24389.yaml
2021-07-15 14:32:09 +05:30
Prince Chaddha
a7b69d34f5
Update CVE-2012-4273.yaml
2021-07-15 14:31:25 +05:30
Prince Chaddha
799e7109c3
Update CVE-2021-24389.yaml
2021-07-15 14:30:23 +05:30
Prince Chaddha
75c7fa04e3
Update CVE-2014-4513.yaml
2021-07-15 14:28:58 +05:30
Prince Chaddha
7a1e276d7b
Update CVE-2021-24335.yaml
2021-07-15 14:27:55 +05:30
Prince Chaddha
fb1f67ce26
Rename CVE-2016-10960.yaml to cves/2016/CVE-2016-10960.yaml
2021-07-15 14:21:17 +05:30
Prince Chaddha
c20a208c4a
Update CVE-2019-9618.yaml
2021-07-15 14:20:42 +05:30
Prince Chaddha
5cab7d67e4
Update CVE-2011-1669.yaml
2021-07-15 14:20:03 +05:30
Prince Chaddha
caa5ceecca
Update CVE-2015-9480.yaml
2021-07-15 14:16:52 +05:30
Prince Chaddha
2f41c4de62
Update CVE-2021-24298.yaml
2021-07-15 14:15:49 +05:30
GwanYeong Kim
1c729ab1ea
Create CVE-2021-31755.yaml
...
Vulnerabilities in the web-based management interface of enda Router AC11 could allow an unauthenticated, remote attacker to perform command injection attacks against an affected device.
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-07-15 15:09:26 +09:00
GwanYeong Kim
a3699d912a
Create CVE-2020-25506.yaml
...
The exploit targets a command injection vulnerability in a system_mgr.cgi component. The component does not successfully sanitize the value of the HTTP parameters f_ntp_server, which in turn leads to arbitrary command execution.
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-07-15 14:28:14 +09:00
Muhammad Daffa
031cd24480
Create CVE-2021-24298.yaml
2021-07-15 10:52:21 +07:00
Muhammad Daffa
ca75afe52c
Create CVE-2021-24320.yaml
2021-07-15 10:38:35 +07:00
Muhammad Daffa
3c2a1cd727
Create CVE-2011-1669.yaml
2021-07-15 10:01:50 +07:00
Muhammad Daffa
3fa2bf156a
Create CVE-2019-9618.yaml
2021-07-15 09:48:59 +07:00
GwanYeong Kim
67ae44be04
Create CVE-2020-26919.yaml
...
it was found that every section of the web could be used as a valid endpoint to submit POST requests being the action defined by the submitId argument. The problem was located in the login.html webpage, that has to be publicly available to perform login requests but does not implement any restriction for executing debug actions. This will allow users execute system commands.
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-07-15 10:54:56 +09:00
Muhammad Daffa
e34ec6c05c
Create CVE-2021-24335.yaml
2021-07-15 07:06:50 +07:00
Muhammad Daffa
1dedb2aee5
Create CVE-2014-4513.yaml
2021-07-15 06:59:13 +07:00
Muhammad Daffa
6a0d2d2b90
Create CVE-2021-24389.yaml
2021-07-15 06:54:35 +07:00
Muhammad Daffa
ad69ef25cb
Create CVE-2012-4273.yaml
2021-07-15 06:51:46 +07:00
Muhammad Daffa
b3766162cc
Create CVE-2012-1835.yaml
2021-07-15 06:19:57 +07:00
Muhammad Daffa
65166046e7
Create CVE-2011-5106.yaml
2021-07-15 06:17:43 +07:00
Muhammad Daffa
e43c3befdf
Create CVE-2015-9480.yaml
2021-07-14 21:13:26 +07:00
Prince Chaddha
f218ea12ee
Update CVE-2012-4768.yaml
2021-07-14 19:28:30 +05:30
Prince Chaddha
85a6271c20
Merge pull request #1996 from daffainfo/patch-45
...
Create CVE-2015-1000012.yaml
2021-07-14 19:27:29 +05:30
Prince Chaddha
e904f97937
Update CVE-2015-1000012.yaml
2021-07-14 19:26:20 +05:30
Prince Chaddha
6559a49a8e
Merge pull request #1972 from daffainfo/patch-33
...
Create CVE-2013-4625.yaml
2021-07-14 19:24:05 +05:30
Prince Chaddha
127b66c546
Merge pull request #1995 from daffainfo/patch-44
...
Create CVE-2016-10956.yaml
2021-07-14 19:23:54 +05:30
Prince Chaddha
ecdb1b3204
Merge pull request #1977 from daffainfo/patch-36
...
Create CVE-2011-4618.yaml
2021-07-14 19:22:35 +05:30
Prince Chaddha
336ea26181
Update CVE-2013-4625.yaml
2021-07-14 19:22:11 +05:30
Prince Chaddha
57e03632d0
Merge pull request #1971 from daffainfo/patch-32
...
Create CVE-2013-4117.yaml
2021-07-14 19:15:55 +05:30
Prince Chaddha
3f5a32b61c
Update CVE-2013-4117.yaml
2021-07-14 19:14:56 +05:30
Prince Chaddha
f76c9151e9
Merge pull request #1984 from daffainfo/patch-43
...
Create CVE-2012-5913.yaml
2021-07-14 19:09:47 +05:30
Prince Chaddha
6981caf971
Merge pull request #1983 from daffainfo/patch-42
...
Create CVE-2012-2371.yaml
2021-07-14 19:08:24 +05:30
Prince Chaddha
0af70752fc
Update CVE-2012-5913.yaml
2021-07-14 19:08:13 +05:30
Prince Chaddha
0767a5b9f3
Update CVE-2012-2371.yaml
2021-07-14 19:07:09 +05:30
Prince Chaddha
6e7d5ad05f
Merge pull request #1982 from daffainfo/patch-41
...
Create CVE-2012-0901.yaml
2021-07-14 19:06:28 +05:30
Prince Chaddha
4abd3903e7
Merge pull request #1981 from daffainfo/patch-40
...
Create CVE-2011-5265.yaml
2021-07-14 18:48:13 +05:30
Prince Chaddha
4f92a44481
Update CVE-2012-0901.yaml
2021-07-14 18:48:09 +05:30
Prince Chaddha
79881e5a53
Update CVE-2011-5265.yaml
2021-07-14 18:47:04 +05:30
Prince Chaddha
81186887f0
Merge pull request #1980 from daffainfo/patch-39
...
Create CVE-2011-5181.yaml
2021-07-14 18:45:58 +05:30
Prince Chaddha
7f210b692a
Update CVE-2011-5265.yaml
2021-07-14 18:45:47 +05:30
Prince Chaddha
aedb24576f
Merge pull request #1979 from daffainfo/patch-38
...
Create CVE-2011-5179.yaml
2021-07-14 18:40:12 +05:30
Prince Chaddha
42395f3cf0
Update CVE-2011-5181.yaml
2021-07-14 18:40:07 +05:30
Prince Chaddha
0dc763a5e2
Merge pull request #1978 from daffainfo/patch-37
...
Create CVE-2011-5107.yaml
2021-07-14 18:39:18 +05:30
Prince Chaddha
31c69d6a53
Update CVE-2011-5179.yaml
2021-07-14 18:39:10 +05:30
Prince Chaddha
b24958c966
Update CVE-2011-5107.yaml
2021-07-14 18:38:27 +05:30
Prince Chaddha
49b8f5dced
Merge pull request #1976 from daffainfo/patch-35
...
Create CVE-2011-4926.yaml
2021-07-14 18:37:31 +05:30
Prince Chaddha
4530f816e7
Update CVE-2011-4618.yaml
2021-07-14 18:37:19 +05:30
Prince Chaddha
aa49f5249c
Merge pull request #1975 from daffainfo/patch-34
...
Create CVE-2011-4624.yaml
2021-07-14 18:36:28 +05:30
Prince Chaddha
2f3470ca1f
Update CVE-2011-4926.yaml
2021-07-14 18:36:19 +05:30
Muhammad Daffa
f63f825283
Create CVE-2015-1000012.yaml
2021-07-14 18:10:41 +07:00
Muhammad Daffa
08e3f1af84
Create CVE-2016-10956.yaml
2021-07-14 18:03:54 +07:00
Prince Chaddha
74c4f507b5
Update CVE-2011-4624.yaml
2021-07-14 16:20:22 +05:30
sandeep
f7259df034
typo update
2021-07-14 15:38:56 +05:30
Geeknik Labs
fc35b4c56d
Update CVE-2017-5487.yaml
...
Fixes #1985
2021-07-13 18:58:52 +00:00
Muhammad Daffa
e2221a68f6
Create CVE-2012-5913.yaml
2021-07-14 00:15:23 +07:00
Muhammad Daffa
660d2341fb
Create CVE-2012-2371.yaml
2021-07-14 00:14:36 +07:00
Muhammad Daffa
a64856f005
Create CVE-2012-0901.yaml
2021-07-14 00:13:20 +07:00
Muhammad Daffa
52712e1738
Create CVE-2011-5265.yaml
2021-07-14 00:12:07 +07:00
Muhammad Daffa
2171814982
Update CVE-2011-5181.yaml
2021-07-14 00:10:26 +07:00
Muhammad Daffa
cdc64106ad
Create CVE-2011-5181.yaml
2021-07-14 00:08:59 +07:00
Muhammad Daffa
a6ec5edc8d
Create CVE-2011-5179.yaml
2021-07-14 00:07:06 +07:00
Muhammad Daffa
206ed76058
Create CVE-2011-5107.yaml
2021-07-14 00:05:34 +07:00
Muhammad Daffa
7b1fb46547
Create CVE-2011-4618.yaml
2021-07-14 00:03:30 +07:00
Muhammad Daffa
a165adadae
Create CVE-2011-4926.yaml
2021-07-13 23:44:37 +07:00
Muhammad Daffa
4946a5d8a7
Create CVE-2011-4624.yaml
2021-07-13 23:42:57 +07:00
sandeep
b6ec1c2abb
Added reference
2021-07-13 19:22:59 +05:30
Sandeep Singh
b4e21feadd
Rename cve-2021-24472.yaml to CVE-2021-24472.yaml
2021-07-13 19:21:21 +05:30
sandeep
6d6b30e9cf
matcher update
2021-07-13 19:20:10 +05:30
Muhammad Daffa
0871ccb042
Create CVE-2013-4625.yaml
2021-07-13 20:48:19 +07:00
Muhammad Daffa
f29b55b6cc
Create CVE-2013-4117.yaml
2021-07-13 20:45:32 +07:00
Suman Kar
9aeac41fbc
Onair2 < 3.9.9.2 & KenthaRadio < 2.0.2 - Unauthenticated RFI and SSRF
2021-07-13 18:42:05 +05:30
Sandeep Singh
51834499f8
Merge pull request #1944 from daffainfo/patch-23
...
Create CVE-2012-4242.yaml
2021-07-13 16:45:39 +05:30
Sandeep Singh
858a6b48de
Merge pull request #1946 from daffainfo/patch-25
...
Create CVE-2013-2287.yaml
2021-07-13 16:43:05 +05:30
Sandeep Singh
9a09d52520
Merge pull request #1951 from gy741/rule-add-v22
...
Create CVE-2021-33544.yaml
2021-07-13 16:30:44 +05:30
Sandeep Singh
43d4644164
Update CVE-2021-33544.yaml
2021-07-13 16:29:55 +05:30
Sandeep Singh
bb53177a74
Update CVE-2021-33544.yaml
2021-07-13 16:26:33 +05:30
Sandeep Singh
8c4f1dfe43
Merge pull request #1954 from Akokonunes/patch-18
...
Create CVE-2015-7823
2021-07-13 15:06:48 +05:30
sandeep
dfd9a2592b
moving files around
2021-07-13 15:04:42 +05:30
Sandeep Singh
89e1a8da93
Merge pull request #1962 from dwisiswant0/hotfix/CVE-2020-24148
2021-07-13 05:01:01 +05:30
Dwi Siswanto
a91516cbb5
Misplaced of CVE-2020-24148
2021-07-13 05:24:03 +07:00
Sandeep Singh
e23f378fe8
Merge pull request #1943 from gy741/rule-add-v21
...
Create CVE-2021-30497.yaml
2021-07-13 01:00:59 +05:30
Sandeep Singh
dec41b5631
Merge pull request #1950 from dwisiswant0/add/CVE-2020-24148
...
Add CVE-2020-24148
2021-07-13 00:52:08 +05:30
GwanYeong Kim
0e1e727bb1
Create CVE-2021-33544.yaml
...
Multiple vulnerabilities in the web-based management interface of Geutebruck could allow an unauthenticated, remote attacker to perform command injection attacks against an affected device.
CVE-2021-33543 : Authentication Bypass
CVE-2021-33544 : Command injection multiple parameters
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-07-12 13:10:31 +09:00
Dwi Siswanto
4ea2c71a3d
Add CVE-2020-24148
2021-07-12 09:24:50 +07:00
Muhammad Daffa
9788955ebd
Create CVE-2013-2287.yaml
2021-07-11 17:18:20 +07:00
Muhammad Daffa
21195f9f0e
Create CVE-2012-4242.yaml
2021-07-11 17:06:48 +07:00
GwanYeong Kim
c0f5105dcf
Create CVE-2021-30497.yaml
...
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-07-11 18:31:18 +09:00
sandeep
25dcb930ad
Added CVE-2021-29156
2021-07-11 14:39:41 +05:30
sandeep
3bbcb23cd0
Severity update as this directly doesn't pose any risk.
2021-07-11 13:39:21 +05:30
Muhammad Daffa
f1690ec51b
Create CVE-2012-4768.yaml
2021-07-11 13:33:29 +07:00
Prince Chaddha
aa63d1afb7
Merge pull request #1925 from daffainfo/patch-10
...
Create CVE-2020-29395.yaml
2021-07-11 10:25:06 +05:30
Prince Chaddha
bca05d61d6
Merge pull request #1926 from daffainfo/patch-11
...
Create CVE-2019-14470.yaml
2021-07-11 10:15:11 +05:30
Prince Chaddha
7f0f8beff2
Update CVE-2020-29395.yaml
2021-07-11 10:14:56 +05:30
Prince Chaddha
7c19ca873d
Update CVE-2019-14470.yaml
2021-07-11 10:12:41 +05:30
Prince Chaddha
7c0c5033e9
Update CVE-2019-14470.yaml
2021-07-11 10:11:11 +05:30
Prince Chaddha
a3c2fdee36
Merge pull request #1928 from daffainfo/patch-13
...
Create CVE-2019-15889.yaml
2021-07-11 10:09:58 +05:30
Prince Chaddha
0bae5e975e
Update CVE-2019-15889.yaml
2021-07-11 10:09:51 +05:30
Prince Chaddha
70930af523
Merge pull request #1929 from daffainfo/patch-14
...
Create CVE-2014-9094.yaml
2021-07-11 10:09:00 +05:30
Prince Chaddha
a04341ae20
Update CVE-2014-9094.yaml
2021-07-11 10:08:53 +05:30
Prince Chaddha
92e1a5feeb
Update CVE-2013-3526.yaml
2021-07-11 10:05:10 +05:30
Muhammad Daffa
53c2c47099
Create CVE-2013-3526.yaml
2021-07-11 09:00:15 +07:00
Muhammad Daffa
4773149878
Create CVE-2014-9094.yaml
2021-07-11 08:43:01 +07:00
Muhammad Daffa
009e68c627
Create CVE-2019-15889.yaml
2021-07-11 08:20:03 +07:00
Muhammad Daffa
4889efb117
Create CVE-2019-14470.yaml
2021-07-11 08:06:14 +07:00
Muhammad Daffa
da45bdf0ef
Create CVE-2020-29395.yaml
2021-07-11 07:58:31 +07:00
sandeep
01ae482fe8
Added CVE-2021-34621
2021-07-10 22:31:08 +05:30
Sandeep Singh
97023903a0
Merge pull request #1918 from gy741/rule-add-v19
...
Create Hongdian Vulnerability
2021-07-10 21:24:56 +05:30
Sandeep Singh
5ca472b43e
Merge pull request #1880 from gy741/rule-add-v13
...
Create CVE-2021-1497.yaml
2021-07-10 20:55:14 +05:30
sandeep
1cd29628aa
more reference
2021-07-10 20:54:04 +05:30
sandeep
7f37050361
Added HTTP check
2021-07-10 20:53:23 +05:30
sandeep
dd9e85a29c
Added missing condition
2021-07-10 20:47:20 +05:30
sandeep
1e8aa5288f
Update CVE-2021-1497.yaml
2021-07-10 20:45:00 +05:30
sandeep
767f173f88
minor updates
2021-07-10 18:45:09 +05:30
GwanYeong Kim
3bf1c929ed
Create Hongdian Vulnerability
...
CVE-2021-28149 : Hongdian H8922 3.0.5 devices allow Directory Traversal. The /log_download.cgi log export handler does not validate user input and allows a remote attacker with minimal privileges to download any file from the device by substituting ../ (e.g., ../../etc/passwd) This can be carried out with a web browser by changing the file name accordingly. Upon visiting log_download.cgi?type=../../etc/passwd and logging in, the web server will allow a download of the contents of the /etc/passwd file.
CVE-2021-28150 : Hongdian H8922 3.0.5 devices allow the unprivileged guest user to read cli.conf (with the administrator password and other sensitive data) via /backup2.cgi.
CVE-2021-28151 : Hongdian H8922 3.0.5 devices allow OS command injection via shell metacharacters into the ip-address (aka Destination) field to the tools.cgi ping command, which is accessible with the username guest and password guest.
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-07-10 21:16:35 +09:00
sandeep
c2f87a94c6
Added complete RCE chain
2021-07-10 13:42:09 +05:30
Prince Chaddha
491b6f8e2b
Update CVE-2018-2392.yaml
2021-07-08 14:41:02 +05:30
Sandeep Singh
bff63b673d
Merge pull request #1896 from geeknik/patch-109
...
Create CVE-2017-16806.yaml
2021-07-07 18:40:15 +05:30
Sandeep Singh
5d034716ac
Merge pull request #1895 from geeknik/patch-108
...
Create CVE-2015-6477.yaml
2021-07-07 18:37:48 +05:30
Sandeep Singh
6963c0d669
Update CVE-2015-6477.yaml
2021-07-07 18:37:21 +05:30
Sandeep Singh
36a13094ef
Merge pull request #1894 from geeknik/patch-105
...
Create CVE-2009-4223.yaml
2021-07-07 18:35:27 +05:30
Geeknik Labs
d5cbcec079
Update CVE-2021-22214.yaml
...
dns interaction doesn't prove exploitability
2021-07-07 03:50:13 +00:00
Geeknik Labs
c8ba8e13ce
Create CVE-2017-16806.yaml
2021-07-06 19:50:32 +00:00
Geeknik Labs
6874823632
Create CVE-2015-6477.yaml
2021-07-06 19:47:44 +00:00
Geeknik Labs
1fba6ae882
Create CVE-2009-4223.yaml
2021-07-06 19:44:02 +00:00
Sandeep Singh
deab6ba62c
Merge pull request #1887 from skar4444/nrouter
...
CVE-2016-5649 - Netgear Router - Admin Password Disclosure
2021-07-06 21:36:01 +05:30
sandeep
5a818f62b8
name and template update
2021-07-06 21:34:28 +05:30
Sandeep Singh
2aa91bbf24
Rename cve-2021-24387.yaml to CVE-2021-24387.yaml
2021-07-06 20:29:47 +05:30
Suman Kar
78617f6012
Real Estate 7 WordPress Theme < 3.1.1 - Unauthenticated Reflected XSS
2021-07-06 19:51:53 +05:30
sandeep
6dd96ede94
Added additional reference
2021-07-06 12:12:09 +05:30
sandeep
fc68a95803
Template Name/ID update as per assigned CVE
2021-07-06 12:07:53 +05:30
GwanYeong Kim
71dd0de29d
Create CVE-2021-1497.yaml
...
Multiple vulnerabilities in the web-based management interface of Cisco HyperFlex HX could allow an unauthenticated, remote attacker to perform command injection attacks against an affected device.
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-07-06 09:30:13 +09:00
Ivanov Vladimir
8938010a7a
Add CVE-2020-6207.yaml
2021-07-05 20:36:55 +03:00
Ivanov Vladimir
05b2837a0a
Add CVE-2018-2392.yaml
2021-07-05 19:40:37 +03:00
sandeep
36a0918092
fixes
2021-07-04 16:02:51 +05:30
sandeep
13a5215bda
Update CVE-2017-9841.yaml
2021-07-04 15:50:15 +05:30
sandeep
35a8d999cb
strict matchers
2021-07-04 01:05:05 +05:30
sandeep
b137eb57d3
More edge cases
...
Only looking for DNS interaction is not reliable as few servers make DNS requests for host included in path or query parameter.
2021-07-04 00:41:57 +05:30
sandeep
acebe227a1
Update CVE-2019-13101.yaml
2021-07-04 00:12:01 +05:30
sandeep
9e9954cbab
strict matchers
2021-07-04 00:07:30 +05:30
Suman Kar
f249af535a
Update CVE-2019-13101.yaml
...
iot tag added
2021-07-03 17:55:11 +05:30
sandeep
f21b239853
misc changes
2021-07-03 15:23:28 +05:30
Suman Kar
e20298b4d3
D-Link DIR-600M Router - Authentication Bypass
2021-07-03 05:50:40 +05:30
Sandeep Singh
52e0c861a1
Merge pull request #1733 from milo2012/master
...
Added CVE-2018-1000130/ CVE-2018-2628/ CVE-2018-2628/ CVE-2019-3401/ CVE-2020-1938/ oracle-bi-default-login/ jolokia-heap-disclosure
2021-07-02 18:27:45 +05:30
sandeep
e2a0f93f79
misc updates
2021-07-02 18:24:31 +05:30
sandeep
16da6c9980
strict matchers
2021-07-02 18:20:58 +05:30
Prince Chaddha
56ccb9f3a4
Merge pull request #1822 from Akokonunes/patch-13
...
Create CVE-2021-24210.yaml
2021-07-01 00:00:03 +05:30
Prince Chaddha
f44c3e597f
Update and rename CVE-2021-24210.yaml to cves/2021/CVE-2021-24210.yaml
2021-06-30 23:45:27 +05:30
Prince Chaddha
87a1d1acce
Merge pull request #1823 from Akokonunes/patch-14
...
Create CVE-2021-24406.yaml
2021-06-30 23:44:03 +05:30
Prince Chaddha
6a6607c282
Update and rename CVE-2021-24406.yaml to cves/2021/CVE-2021-24406.yaml
2021-06-30 23:43:06 +05:30
Prince Chaddha
3802723219
Update CVE-2013-3827.yaml
2021-06-30 23:39:47 +05:30
Sandeep Singh
dbcdbe907e
Merge pull request #1797 from Mad-robot/patch-2
...
Create CVE-2021-29203.yaml
2021-06-30 21:27:35 +05:30
sandeep
2d63ddfa20
minor update
2021-06-30 21:27:06 +05:30
Sandeep Singh
3602eebf6c
Merge pull request #1780 from wwilson83H3/master
...
The default request never flagged druid in my env. Replaced with MSF …
2021-06-30 20:32:14 +05:30
Sandeep Singh
d1f47657a9
Update CVE-2021-25646.yaml
2021-06-30 20:31:15 +05:30
Sandeep Singh
cfcb739fbc
more changes
2021-06-30 20:28:41 +05:30
Sandeep Singh
cc56986b92
Merge pull request #1820 from pikpikcu/patch-190
...
Update CVE-2018-13380.yaml
2021-06-30 19:52:53 +05:30
Keith
8490fe60ca
Add CVE-2017-9822.yaml - DotNetNuke Cookie Deserialization Remote Code Execution (RCE)
2021-06-30 19:35:01 +08:00
Keith
b7d1d4771b
Merge branch 'master' of https://github.com/milo2012/nuclei-templates into master
2021-06-30 19:33:31 +08:00
Keith
f78452e808
Add CVE-2017-9822.yaml - DotNetNuke Cookie Deserialization Remote Code Execution (RCE)
2021-06-30 19:32:59 +08:00
Robbie
9d8f8f8589
Create CVE-2013-3827.yaml
2021-06-30 11:50:41 +01:00
Prince Chaddha
b3c580d290
Update CVE-2018-8715.yaml
2021-06-30 15:34:58 +05:30
Keith
1afa102620
Add CVE-2018-8715.yaml - AppWeb authentication bypass
2021-06-30 16:30:56 +08:00
sandeep
96fc7bb341
more strict matchers
2021-06-30 03:26:01 +05:30
sandeep
498586e854
Added additional matcher and full exploit chain details
2021-06-30 03:01:13 +05:30
SaN ThosH
8b0b2a169d
Update CVE-2021-35464.yaml
2021-06-29 18:02:33 +05:30
SaN ThosH
2d4c8cb434
Create CVE-2021-35464.yaml
2021-06-29 17:26:37 +05:30
Sandeep Singh
2d826f3391
More edge cases
2021-06-29 12:41:19 +05:30
Prince Chaddha
8ae56492d8
Update CVE-2021-29203.yaml
2021-06-29 10:13:41 +05:30
Prince Chaddha
dcbaaf31ac
Merge pull request #1775 from pikpikcu/patch-186
...
Create CVE-2017-12794.yaml
2021-06-29 10:08:13 +05:30
Prince Chaddha
b46dc119e7
Update CVE-2017-12794.yaml
2021-06-29 10:07:07 +05:30
PikPikcU
54f40d8f2c
Update CVE-2018-13380.yaml
2021-06-29 02:17:42 +00:00
Sandeep Singh
40bb93faff
Merge pull request #1773 from pikpikcu/patch-184
...
Create CVE-2020-3580.yaml
2021-06-28 21:44:36 +05:30
Sandeep Singh
40782db039
Merge pull request #1771 from gy741/rule-add-v7
...
Create CVE-2021-3223.yaml
2021-06-28 21:43:59 +05:30
sandeep
b97811a143
Update CVE-2021-3223.yaml
2021-06-28 21:43:04 +05:30
sandeep
bce647b441
Added CVE-2015-8813
2021-06-28 17:14:03 +05:30
SaN ThosH
cb5c53aef3
Create CVE-2021-29203.yaml
2021-06-26 13:40:30 +05:30
Prince Chaddha
bae4998f81
Merge pull request #1766 from gy741/rule-add-v6
...
Create CVE-2021-21234.yaml
2021-06-25 16:50:36 +05:30
Prince Chaddha
2d40d90715
Update CVE-2021-21234.yaml
2021-06-25 12:53:22 +05:30
Prince Chaddha
dd98451110
Update CVE-2018-16299.yaml
2021-06-25 12:45:04 +05:30
Prince Chaddha
fca70dd2c7
Update and rename CVE-2018-16299.yaml to cves/2018/CVE-2018-16299.yaml
2021-06-25 12:43:55 +05:30
sandeep
d1e4b5c510
minor updates
2021-06-25 10:51:00 +05:30
Keith
95b34330ed
Add CVE-2018-2893.yaml - Oracle WebLogic Server Deserialization RCE
2021-06-25 03:41:02 +08:00
Keith
4e888bf3e2
Add CVE-2018-2893.yaml - Oracle WebLogic Server Deserialization RCE
2021-06-25 03:38:53 +08:00
sandeep
7db13c6bce
Duplicate template
2021-06-25 00:08:05 +05:30
sandeep
426abedcfa
severity updates as per CVE database
2021-06-25 00:05:59 +05:30
Sandeep Singh
e4e8e6e148
Merge pull request #1776 from pikpikcu/patch-187
...
Create CVE-2021-28169.yaml
2021-06-25 00:02:51 +05:30
sandeep
a736120dc0
minor updates
2021-06-25 00:02:05 +05:30
Sandeep Singh
e84c784fa2
Merge pull request #1689 from nrathaus/master
...
CVE-2021-28164 and some fixes
2021-06-24 23:58:29 +05:30
sandeep
a9a161f8c6
Update CVE-2021-28164.yaml
2021-06-24 23:56:33 +05:30
sandeep
809668943f
minor changes
2021-06-24 23:54:29 +05:30
wyatt
16e5ad7fad
The default request never flagged druid in my env. Replaced with MSF request and it flags everytime now
2021-06-24 13:37:45 -04:00
PikPikcU
b97d012636
Create CVE-2021-28169.yaml
2021-06-24 16:00:02 +00:00
PikPikcU
9cc9a52db2
Create CVE-2017-12794.yaml
2021-06-24 15:49:12 +00:00
PikPikcU
19d80d9d0a
Create CVE-2020-3580.yaml
2021-06-24 15:34:19 +00:00
GwanYeong Kim
e7bb4bff23
Create CVE-2021-3223.yaml
...
Node-RED-Dashboard before 2.26.2 allows ui_base/js/..%2f directory traversal to read files.
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-06-24 21:07:17 +09:00
Prince Chaddha
37261f7a2f
Update and rename vulnerabilities/jira/jira-unauthenticated-popular-filters.yaml to cves/2019/CVE-2019-3401.yaml
2021-06-24 16:52:04 +05:30
Prince Chaddha
f7563d9718
Update CVE-2019-3401.yaml
2021-06-24 16:45:07 +05:30
GwanYeong Kim
cc0dd04ac2
Create CVE-2021-21234.yaml
...
spring-boot-actuator-logview in a library that adds a simple logfile viewer as spring boot actuator endpoint. It is maven package "eu.hinsch:spring-boot-actuator-logview". In spring-boot-actuator-logview before version 0.2.13 there is a directory traversal vulnerability. The nature of this library is to expose a log file directory via admin (spring boot actuator) HTTP endpoints. Both the filename to view and a base folder (relative to the logging folder root) can be specified via request parameters. While the filename parameter was checked to prevent directory traversal exploits (so that `filename=../somefile` would not work), the base folder parameter was not sufficiently checked, so that `filename=somefile&base=../` could access a file outside the logging base directory). The vulnerability has been patched in release 0.2.13. Any users of 0.2.12 should be able to update without any issues as there are no other changes in that release. There is no workaround to fix the vulnerability other than updating or removing the dependency. However, removing read access of the user the application is run with to any directory not required for running the application can limit the impact. Additionally, access to the logview endpoint can be limited by deploying the application behind a reverse proxy.
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-06-24 14:36:45 +09:00
Prince Chaddha
35cf8d1378
Merge pull request #1221 from projectdiscovery/princechaddha-patch-6
...
Create CVE-2018-9995.yaml
2021-06-24 02:33:20 +05:30
Prince Chaddha
0fbbfdd364
Update CVE-2018-9995.yaml
2021-06-24 02:32:23 +05:30
Sandeep Singh
9479826132
Merge pull request #1747 from Udyz/patch-3
...
Create CVE-2021-21389
2021-06-24 02:26:23 +05:30
sandeep
416bafe2fa
misc changes
2021-06-24 02:24:58 +05:30
sandeep
9386111906
making status check generic both case
2021-06-24 00:13:58 +05:30
sandeep
459dd6b84b
misc changes
2021-06-23 23:48:34 +05:30
Wyatt Dahlenburg
67c4713f13
Added status to CVE-2012-3153
2021-06-23 08:26:37 -05:00
Keith
916ea5ff72
Add CVE-2019-3401 - Atlassian JIRA Information Exposure (CVE-2019-3401)
2021-06-23 01:29:08 +08:00
Keith
6e139881ee
fix or operator
2021-06-23 00:33:06 +08:00
Prince Chaddha
6b358f38a9
Merge pull request #1751 from realistic-security/master
...
Create two "Oracle Forms & Reports" Vulnerabilities
2021-06-22 19:43:04 +05:30
Sidahmed
672acb880e
Updated Oracle Forms & Reports CVE-2012-3153
2021-06-22 14:53:26 +01:00
Keith
139aaf2ecf
Add CVE-2018-1000130.yaml - fix spaces
2021-06-22 20:35:17 +08:00
Keith
e84dc0e94c
Add CVE-2018-1000130.yaml - Jolokia Agent Proxy JNDI Code Injection
2021-06-22 20:32:30 +08:00
lulz
04a7fda94a
Update CVE-2021-21389.yaml
2021-06-22 19:12:35 +07:00
lulz
014ca91e15
hmm just simple check...
...
sorry i just know little bit english...
2021-06-22 19:07:00 +07:00
Prince Chaddha
1c4a2a56a7
Merge pull request #1734 from darrenmartyn/patch-1
...
Create CVE-2019-4781.yaml
2021-06-22 13:21:04 +05:30
Prince Chaddha
2539c830ac
Update CVE-2019-7481.yaml
2021-06-22 13:20:06 +05:30
Prince Chaddha
c87238c37a
Update CVE-2019-7481.yaml
2021-06-22 13:18:51 +05:30
Sandeep Singh
dcaef6a836
Rename CVE-2021-21389 to CVE-2021-21389.yaml
2021-06-22 04:05:42 +05:30
sandeep
3844df9fc8
misc changes
2021-06-21 18:09:16 +05:30
Prince Chaddha
592b2e7222
Update CVE-2020-1938.yaml
2021-06-21 14:28:51 +05:30
Prince Chaddha
be89aed331
Update CVE-2018-2628.yaml
2021-06-21 14:26:53 +05:30
Prince Chaddha
cb4d12cc8c
Moved to cves/2018
2021-06-21 14:20:20 +05:30
Sidahmed
ec835a0bc5
Create CVE-2012-3152, CVE-2012-3153
2021-06-21 09:48:42 +01:00
Dhiyaneshwaran
8b43919211
Update CVE-2020-11930.yaml
2021-06-21 14:15:45 +05:30
Dhiyaneshwaran
216b484aec
Update CVE-2020-11930.yaml
2021-06-21 14:15:09 +05:30
Dhiyaneshwaran
ebc202adcb
Create CVE-2020-11930.yaml
2021-06-21 14:11:20 +05:30
lulz
0d5a57bc23
Create CVE-2021-21389
2021-06-21 12:33:14 +07:00
Keith
55b89115aa
add CVE-2018-2628 - Oracle WebLogic Server Deserialization RCE
2021-06-21 06:24:33 +08:00
sandeep
c7a11cd1b1
Added CVE-2020-11110
2021-06-20 20:00:19 +05:30
Prince Chaddha
1465ad8c76
Merge pull request #1740 from Akokonunes/patch-9
...
Create CVE-2018-18775.yaml
2021-06-20 16:51:09 +05:30
Prince Chaddha
a2623f5e9d
Update CVE-2018-18775.yaml
2021-06-20 16:49:24 +05:30
Prince Chaddha
b874963894
moved to cves
2021-06-20 16:47:21 +05:30
Prince Chaddha
00ad7ee3db
Moved to cves
2021-06-20 16:43:44 +05:30
Noam Rathaus
bb6fa66dd9
Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates
2021-06-20 13:56:54 +03:00
darrenmartyn
80d159c277
Update CVE-2019-7481.yaml
2021-06-19 22:44:05 +01:00
darrenmartyn
7c65c33396
Update CVE-2019-7481.yaml
...
maybe yaml lint thing doesn't hate me now
2021-06-19 22:42:10 +01:00
darrenmartyn
722a2bd60c
Update and rename CVE-2019-4781.yaml to CVE-2019-7481.yaml
2021-06-19 21:39:08 +01:00
darrenmartyn
a26c0d9c3a
Create CVE-2019-4781.yaml
...
Need some feedback on this, tested it out and it works just fine.
2021-06-19 21:17:40 +01:00
Keith
e8e5dd5c83
add CVE-2020-1938.yaml - Ghostcat - Apache Tomcat AJP File Read/Inclusion Vulnerability
2021-06-19 21:59:42 +08:00
Geeknik Labs
988726f5c8
Create CVE-2017-15944.yaml
...
This fixes #1091 . I changed line 20 from `part: body` to `part: header`.
2021-06-18 20:45:44 +00:00
Prince Chaddha
55c1984a52
Template Moved to cves
2021-06-19 01:58:02 +05:30
Prince Chaddha
112113437c
Moved template to cves folder
2021-06-18 16:58:27 +05:30
Sandeep Singh
9200ac068a
Merge pull request #1714 from skar4444/unauthenticated-CI-lint-API
...
CVE 2021-22214 - Unauthenticated Gitlab SSRF - CI Lint API
2021-06-18 15:08:33 +05:30
sandeep
b301c830a3
final improvements
2021-06-18 15:02:17 +05:30
sandeep
27d67855e8
misc changes
2021-06-18 14:42:13 +05:30
Sandeep Singh
4f0bfc9362
Merge pull request #1705 from projectdiscovery/CVE-2021-28854
...
Added CVE-2021-28854
2021-06-18 12:52:42 +05:30
Sandeep Singh
44a53f7090
Merge pull request #1636 from pdelteil/patch-6
...
Update CVE-2018-18069.yaml
2021-06-18 10:01:04 +05:30
Prince Chaddha
bfa70bacf5
Update CVE-2021-21975.yaml
2021-06-17 22:55:10 +05:30
Prince Chaddha
0f590a867b
Update CVE-2018-18069.yaml
2021-06-17 22:20:02 +05:30
Prince Chaddha
eeb88e4bd1
Update CVE-2018-18069.yaml
2021-06-17 22:13:32 +05:30
Prince Chaddha
36bb1fff95
Update CVE-2018-18069.yaml
2021-06-17 22:11:00 +05:30
Noam Rathaus
01b77a7ed2
Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates
2021-06-17 16:54:18 +03:00
Dwi Siswanto
8a1d7bd7d2
Hotfix FP of CVE-2021-24146
2021-06-17 08:16:54 +07:00
Sandeep Singh
5c2a07d65e
Merge pull request #1684 from geeknik/patch-107
...
Create CVE-2018-16670.yaml
2021-06-16 02:01:36 +05:30
Sandeep Singh
dbee289627
Merge pull request #1683 from geeknik/patch-106
...
Create CVE-2018-16668.yaml
2021-06-16 01:59:47 +05:30
Sandeep Singh
6c48452767
Merge pull request #1682 from geeknik/patch-105
...
Create CVE-2018-16671.yaml
2021-06-16 01:58:32 +05:30
Sandeep Singh
bfbd3ccdac
Merge pull request #1656 from Akokonunes/patch-4
...
Create CVE-2021-24237.yaml
2021-06-16 01:56:39 +05:30
Sandeep Singh
074b15b081
Merge pull request #1655 from Akokonunes/patch-3
...
Create CVE-2013-2248.yaml
2021-06-16 01:46:45 +05:30
sandeep
92d35b4710
minor update
2021-06-16 01:45:31 +05:30
sandeep
5cff973564
Added tags
2021-06-16 01:02:21 +05:30
sandeep
c36419c94c
Added CVE-2021-28854
2021-06-16 01:01:01 +05:30
Prince Chaddha
8cf0d5e8ac
Merge pull request #1680 from Alex-null/master
...
Update CVE-2013-2251.yaml
2021-06-15 16:42:14 +05:30
Prince Chaddha
ccac0e26e5
Update CVE-2013-2251.yaml
2021-06-15 16:41:14 +05:30
Prince Chaddha
edf4a45ee4
Update CVE-2018-1000533.yaml
2021-06-15 16:38:28 +05:30
Prince Chaddha
72d9357cf6
Update CVE-2018-1000533.yaml
2021-06-15 16:23:59 +05:30
Prince Chaddha
3cfc921b71
Update CVE-2018-1000533.yaml
2021-06-15 15:31:36 +05:30
PikPikcU
e970a09c53
Create CVE-2018-1000533.yaml
2021-06-15 07:28:10 +00:00
Philippe Delteil
d25869d764
Update CVE-2020-36289.yaml
2021-06-14 11:50:25 -04:00
Noam Rathaus
a91ee941ff
Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates
2021-06-14 14:59:58 +03:00
Prince Chaddha
8df5f982f3
Moved template to cves
2021-06-13 21:01:21 +05:30
Noam Rathaus
b5bdac494b
Merge branch 'master' of https://github.com/nrathaus/nuclei-templates
2021-06-13 09:54:52 +03:00
Prince Chaddha
eb1a3b678a
Update CVE-2014-2383.yaml
2021-06-12 16:42:57 +05:30
Geeknik Labs
e83ba1b5ec
Create CVE-2018-16670.yaml
2021-06-11 12:11:36 +00:00
Geeknik Labs
c451137ffc
Create CVE-2018-16668.yaml
2021-06-11 12:10:29 +00:00
Geeknik Labs
210465a658
Create CVE-2018-16671.yaml
2021-06-11 12:09:29 +00:00
Prince Chaddha
3779eb70e0
Moved template to cves folder
2021-06-11 16:48:05 +05:30
Sandeep Singh
b17196ee18
Merge pull request #1679 from Mad-robot/master
...
Update CVE-2018-3167.yaml
2021-06-11 16:25:07 +05:30
Prince Chaddha
710d2345ba
Merge pull request #1671 from Akokonunes/patch-6
...
Create CVE-2018-16836.yaml
2021-06-11 15:59:49 +05:30
Prince Chaddha
bc4a0d37b1
Moving template to cves folder
2021-06-11 15:58:02 +05:30
Prince Chaddha
3ef83889b4
Update CVE-2014-2383.yaml
2021-06-11 15:22:14 +05:30
Alex-null
161b2f5008
Update CVE-2013-2251.yaml
...
Add new payload. Test it on this environment-https://github.com/vulhub/vulhub/tree/master/struts2/s2-016
2021-06-11 17:50:50 +08:00
Prince Chaddha
658cd17d4f
Merge pull request #1670 from Akokonunes/patch-5
...
Create CVE-2014-2383.yaml
2021-06-11 15:04:17 +05:30
Prince Chaddha
afb2f15dbd
Added more paths
2021-06-11 14:47:02 +05:30
Prince Chaddha
d4db18c218
Update CVE-2014-2383.yaml
2021-06-11 14:33:43 +05:30
Prince Chaddha
583f4e6778
Template moved to CVE folder
2021-06-11 14:19:36 +05:30
SaN ThosH
a2e740148f
Update CVE-2018-3167.yaml
2021-06-11 13:21:20 +05:30
SaN ThosH
bfed8d5200
Update CVE-2018-3167.yaml
2021-06-11 13:19:46 +05:30
SaN ThosH
84341549c0
Update CVE-2018-3167.yaml
2021-06-11 13:18:36 +05:30
SaN ThosH
42ec1d5636
Update CVE-2018-3167.yaml
2021-06-11 13:14:15 +05:30
sandeep
69ded42e3a
Template rename / update
2021-06-10 21:57:07 +05:30
sandeep
3de46aa21b
misc changes
2021-06-10 00:01:38 +05:30
sandeep
ea26842383
Added CVE-2019-2616
2021-06-09 23:56:42 +05:30
Sandeep Singh
4e17331f30
Merge pull request #1657 from DhiyaneshGeek/master
...
CVE-2017-9140: Telerik ReportViewer XSS
2021-06-09 21:40:40 +05:30
sandeep
8fa1dbc604
Minor updates
2021-06-09 21:37:22 +05:30
sandeep
5c80980915
Added CVE-2020-36289
2021-06-09 21:13:52 +05:30
Dhiyaneshwaran
6c79bfa14d
Create CVE-2017-9140.yaml
2021-06-09 18:40:47 +05:30
Prince Chaddha
83ce809e8d
Updated author names
2021-06-09 17:50:56 +05:30
Prince Chaddha
769de2a231
Create CVE-2013-2248.yaml
2021-06-09 15:32:42 +05:30
sandeep
ccdb667d3b
YML to YAML
2021-06-09 14:42:14 +05:30
sandeep
1299ae621f
Update CVE-2021-28164.yml
2021-06-09 14:39:19 +05:30
sandeep
eef5158207
Update CVE-2021-28164.yml
2021-06-09 14:38:12 +05:30
sandeep
23cb4c4d9f
moving files around
2021-06-09 14:37:40 +05:30
Sandeep Singh
9d7ab618b8
Merge pull request #1654 from Mad-robot/master
...
Update CVE-2017-9506.yaml
2021-06-09 14:25:30 +05:30
sandeep
9045f0bb2a
misc changes
2021-06-09 14:23:32 +05:30
Prince Chaddha
0013f94807
Merge pull request #1631 from projectdiscovery/sap_update
...
SAP NetWeaver update
2021-06-09 14:17:51 +05:30
SaN ThosH
c5d4e5e400
Update CVE-2017-9506.yaml
2021-06-09 13:11:39 +05:30
sandeep
0cdfd0468f
Update CVE-2021-24285.yaml
2021-06-09 04:01:21 +05:30
sandeep
2953942c3c
Added CVE-2021-24285
2021-06-09 03:13:23 +05:30
sandeep
68642e226b
CVE-2018-1247 fix
2021-06-09 01:40:02 +05:30
sandeep
799af2e5fb
minor update
2021-06-09 01:23:13 +05:30
SaN ThosH
aca824b910
Update CVE-2019-2767.yaml
2021-06-08 21:59:59 +05:30
SaN ThosH
ff9b9a871c
Update CVE-2019-2767.yaml
2021-06-08 21:53:28 +05:30
SaN ThosH
41784d5261
Update CVE-2019-2767.yaml
2021-06-08 21:52:58 +05:30
SaN ThosH
169d64a3ff
Create CVE-2019-2767.yaml
2021-06-08 21:49:35 +05:30
Philippe Delteil
39555505db
Update CVE-2018-18069.yaml
...
The matching condition are not enough. The payload input is not checked for reflection. This creates false positives like this one
nuclei -debug -t nuclei-templates/cves/2018/CVE-2018-18069.yaml -u https://empleo.gbtspain.com
2021-06-05 14:12:50 -04:00
sandeep
14fa085d1b
more improvements
2021-06-05 12:15:32 +05:30
sandeep
55c0e1b103
Improved matchers for CVE-2020-6287
2021-06-05 10:29:59 +05:30
Sandeep Singh
c0103e0b8a
Merge pull request #1608 from Mad-robot/master
...
Create CVE-2020-6308.yaml
2021-06-05 00:04:56 +05:30
sandeep
83d359f6cf
updating tags
2021-06-05 00:02:33 +05:30
sandeep
11cb8b3106
Update CVE-2020-6308.yaml
2021-06-05 00:00:50 +05:30
sandeep
8e13733d34
moving files around
2021-06-04 16:30:31 +05:30
sandeep
0e3ed049ae
misc changes
2021-06-03 23:00:47 +05:30
sandeep
bdc803fd4b
Added CVE-2020-13927
2021-06-03 14:23:34 +05:30
sandeep
4a0e83037d
Update CVE-2020-11978.yaml
2021-06-03 13:58:41 +05:30
sandeep
6652b2ddb6
Added CVE-2020-11978
2021-06-03 13:57:09 +05:30
Prince Chaddha
d92568cd03
Merge pull request #1604 from Sicks3c/sicks3c
...
Added new path for CVE-2021-22122.yaml
2021-06-02 13:18:12 +05:30
Prince Chaddha
5269cc1c87
Update CVE-2021-22122.yaml
2021-06-02 13:17:00 +05:30
Noam Rathaus
e3f42066bf
Spelling
2021-06-02 09:39:35 +03:00
SaN ThosH
f28fdf610b
Create CVE-2020-6308.yaml
2021-06-02 11:39:27 +05:30
root
2678721174
Added new path for CVE-2021-22122.yaml
2021-06-02 00:06:20 +01:00
Sandeep Singh
23a59704e9
Merge pull request #1585 from pikpikcu/patch-171
...
Add CVE-2017-14535
2021-06-01 11:07:56 +05:30
sandeep
b021a0cf49
Misc changes
2021-06-01 11:06:13 +05:30
Geeknik Labs
fe1ab8385d
Update and rename exposures/logs/circarlife-system-log.yaml to cves/2018/CVE-2018-12634.yaml
2021-05-31 11:31:04 -05:00
sandeep
19b73df6be
Update CVE-2021-21985.yaml
2021-05-31 19:44:44 +05:30
sandeep
633644b159
Added CVE-2021-21985
2021-05-31 19:20:59 +05:30
sandeep
2cc30c771a
misc updates
2021-05-31 16:53:36 +05:30
PikPikcU
b0eca52c4b
Create CVE-2017-14535.yaml
2021-05-31 09:46:53 +00:00
sandeep
a39f71eeff
Fixing CVE-2018-0296
2021-05-31 09:28:47 +05:30
0xsapra
0d8c5607cb
CVE-2021-33564.yaml
2021-05-29 02:33:38 +05:30
Sandeep Singh
707d6720d1
Merge pull request #1543 from Morn98/CVE-2017-1000486
...
Add detection for JavaServer Faces and detection for vulnerable PrimeFaces 5.x EL Injection (CVE 2017 1000486)
2021-05-28 14:05:01 +05:30
sandeep
b7d103a740
Update CVE-2017-1000486.yaml
2021-05-28 10:27:21 +05:30
sandeep
450cf76976
Improved template
2021-05-28 10:25:48 +05:30
sandeep
01995c82ab
misc changes
2021-05-28 09:26:30 +05:30
PikPikcU
830a187e0d
Update CVE-2020-35736.yaml
2021-05-27 15:02:32 +00:00
PikPikcU
ddf6bcb7ca
Update CVE-2020-35736.yaml
2021-05-27 14:51:03 +00:00
PikPikcU
f981074e3f
Update CVE-2020-35736.yaml
2021-05-27 13:03:59 +00:00
PikPikcU
b7d8536a01
Create CVE-2020-35736.yaml
2021-05-27 12:56:22 +00:00
Moritz
0c0eaf114c
Update CVE-2017-1000486.yaml file to pass Checks
2021-05-27 11:38:23 +02:00
Moritz
24bcb23857
Add Detection for PrimeFaces 5.x EL Injection (CVE-2017-1000486)
2021-05-27 10:17:31 +02:00
Dhiyaneshwaran
633b9c39ee
Update CVE-2020-19625.yaml
2021-05-26 16:39:57 +05:30
sandeep
e36fd816da
Removing unused matcher
2021-05-25 05:21:23 +05:30
sandeep
cad836d34e
Added CVE-2020-15227
2021-05-22 17:22:45 +05:30
sandeep
26fc5c2dfa
Added CVE-2021-27850
2021-05-21 09:04:16 +05:30
Sandeep Singh
20eb4b5084
Merge pull request #1510 from geeknik/patch-96
...
Create CVE-2021-29622.yaml
2021-05-20 22:17:13 +05:30
Sandeep Singh
a320fd7720
Merge pull request #1494 from Techbrunch/magento-stuff
...
Security Checks for Magento - Templates and workflow
2021-05-20 20:04:25 +05:30
Geeknik Labs
67bf4fab3c
Update CVE-2021-29622.yaml
2021-05-20 13:14:28 +00:00
Geeknik Labs
dde1e5e736
Create CVE-2021-29622.yaml
2021-05-20 13:13:18 +00:00
Geeknik Labs
788fe276ed
Update CVE-2009-0545.yaml
2021-05-19 14:53:06 +00:00
Geeknik Labs
c55b2c58db
Create CVE-2009-0545.yaml
2021-05-19 14:40:37 +00:00
sandeep
74449f98ed
Removing additional requests
2021-05-19 06:50:49 +05:30
Geeknik Labs
0c6a3051e8
Create CVE-2020-36112.yaml
2021-05-18 22:56:54 +00:00
Techbrunch
776776621a
Added a few Magento related templates
2021-05-18 15:53:10 +02:00
Sandeep Singh
78abf0d8a2
Merge pull request #1480 from nrathaus/master
...
Changes to reference and description
2021-05-17 21:54:41 +05:30
sandeep
ce200510a6
changed for testing locally, reverting it back
2021-05-17 21:45:53 +05:30
sandeep
fa73765221
regex update
2021-05-17 21:42:41 +05:30
sandeep
cd9321d4cb
minor update
2021-05-17 19:32:49 +05:30
Geeknik Labs
0cf6e5507e
Update and rename cves/2021/CVE-2021-31800.yaml to cves/2014/CVE-2014-3744.yaml
2021-05-17 13:18:10 +00:00
Sandeep Singh
c0d13a6def
Merge pull request #1475 from Ganofins/patch-3
...
Create CVE-2021-24176.yaml
2021-05-16 22:15:39 +05:30
sandeep
1d9cdf949b
Update CVE-2021-24176.yaml
2021-05-16 22:12:33 +05:30
Noam Rathaus
ae6b2b42bf
Shorter check
2021-05-16 16:12:59 +03:00
Noam Rathaus
dbdf6e8b6e
Better description
2021-05-16 15:53:51 +03:00
Noam Rathaus
0d836a40f8
Much better description
2021-05-16 15:50:33 +03:00
Noam Rathaus
14a612623a
Some dots make it easier to ready
2021-05-16 15:49:02 +03:00
Noam Rathaus
6df4482c23
Make description more managable
2021-05-16 15:46:17 +03:00
Noam Rathaus
f659e820b7
Much better description and references
2021-05-16 15:44:54 +03:00
sandeep
e46fcb9e9a
Adding CVE-2021-27651
2021-05-16 15:10:08 +05:30
Ganesh Bagaria
4170b2d3e3
Create CVE-2021-24176.yaml
2021-05-16 12:59:32 +05:30
Prince Chaddha
5e2eaaf7a7
Update CVE-2021-31800.yaml
2021-05-16 02:16:34 +05:30
Geeknik Labs
4e1c4986f8
Create CVE-2021-31800.yaml
2021-05-15 18:56:07 +00:00
sandeep
fdec804118
Template fix
2021-05-15 19:25:57 +05:30
sandeep
7b4d736b94
Adding additional matcher
2021-05-14 22:15:50 +05:30
Geeknik Labs
77b95af240
Update CVE-2021-31537.yaml
2021-05-12 20:27:33 +00:00
Geeknik Labs
8365697de4
Update CVE-2021-31537.yaml
2021-05-12 20:25:22 +00:00
Geeknik Labs
7dcfccff74
Create CVE-2021-31537.yaml
2021-05-12 20:23:19 +00:00
sandeep
d63b9e1cb8
Adding missing tags
2021-05-13 00:54:59 +05:30
sandeep
ff93978e09
Removing status matcher to avoid missing true positives results.
2021-05-12 02:04:56 +05:30
sandeep
20eae78810
improved matcher
2021-05-12 00:32:16 +05:30
sandeep
ce680a546c
Improved matcher
2021-05-12 00:25:14 +05:30
sandeep
de70b699bc
More references
2021-05-11 23:47:49 +05:30
sandeep
1c04ba5abc
Additional matchers
2021-05-11 23:47:09 +05:30
Pina
79962222c5
cve-2017-12149 jboss deserialization rce
2021-05-11 12:07:05 +01:00
sandeep
682b9fbbc3
Adding status matcher
2021-05-11 02:48:45 +05:30
sandeep
bfddeccb31
path update
2021-05-11 02:42:34 +05:30
sandeep
1913076aef
Update CVE-2017-7269.yaml
2021-05-09 22:50:07 +05:30
Geeknik Labs
ce63f8ebea
Update CVE-2017-7269.yaml
2021-05-09 15:43:32 +00:00
Geeknik Labs
f6dc6a1376
Update CVE-2017-7269.yaml
2021-05-09 15:16:07 +00:00
sandeep
c0f5cf03ab
tags update
2021-05-09 20:41:52 +05:30
sandeep
f18a611286
Delete CVE-2018-0101.yaml
...
Temporarily removing as current matcher is not sufficient to match this accurately.
2021-05-09 17:12:50 +05:30
sandeep
988d09e2de
Added CVE-2021-28073
2021-05-07 20:30:23 +05:30
sandeep
5fca66c2a5
Added CVE-2020-9490
2021-05-07 19:24:44 +05:30
sandeep
c56111663f
Added CVE-2021-30461
2021-05-07 18:00:10 +05:30
Sandeep Singh
cee291e366
Merge pull request #1419 from dwisiswant0/add/GHSL-2020-325
...
Hotfix: Update operator
2021-05-07 16:46:43 +05:30
Dwi Siswanto
1f5cbe507c
Update operator
2021-05-06 16:24:08 +07:00
Sandeep Singh
1198c7e724
Merge pull request #1382 from dwisiswant0/add/GHSL-2020-325
...
Add CVE-2021-29441
2021-05-05 18:26:10 +05:30
sandeep
22f123ff79
template update
2021-05-05 18:23:07 +05:30
sandeep
a14c1ce233
Added strict matcher
2021-05-05 17:26:14 +05:30
sandeep
931f8833bf
removing weak matcher
2021-05-05 17:13:51 +05:30
sandeep
1d2a7b370f
Adding strict matcher
2021-05-05 17:04:46 +05:30
sandeep
c2c381787f
updating condition
2021-05-05 16:58:40 +05:30
Sandeep Singh
68a9a5f954
Merge pull request #1302 from projectdiscovery/CVE-2020-7247
...
Adding CVE-2020-7247 🔥 🔥
2021-05-05 00:02:23 +05:30
Sandeep Singh
f8ebcb9239
Merge pull request #1303 from projectdiscovery/oob-templates-update
...
OOB Template updates (WIP)
2021-05-05 00:01:55 +05:30
Sandeep Singh
81c7aac3ab
Merge pull request #1372 from projectdiscovery/CVE-2017-3506
...
Added CVE-2017-3506
2021-05-05 00:01:18 +05:30
Sandeep Singh
2080bfdab3
Merge pull request #1380 from projectdiscovery/cves/CVE-2017-12629
...
Added CVE-2017-12629
2021-05-05 00:00:43 +05:30
Dwi Siswanto
d2ea9d2da0
Using Get configurations open API endpoint
2021-05-04 13:18:55 +07:00
sandeep
a3c73e6aa3
updated workflow
2021-05-03 15:37:05 +05:30
sandeep
b2ffaa1c5b
Update CVE-2018-10141.yaml
2021-05-03 15:16:29 +05:30
sandeep
e94b507722
moving files around
2021-05-03 15:16:08 +05:30
Dhiyaneshwaran
15c7472891
Update CVE-2019-8446.yaml
2021-05-03 01:32:15 +05:30
Dhiyaneshwaran
cf8f9ac094
Update CVE-2019-8446.yaml
2021-05-03 01:23:15 +05:30
Dhiyaneshwaran
e7caffd3e7
Create CVE-2019-8446.yaml
2021-05-03 01:20:57 +05:30
sandeep
641e125c79
improved payload
2021-05-02 18:51:04 +05:30
Sandeep Singh
f838747ec1
Merge pull request #1393 from DhiyaneshGeek/master
...
ZyXEL NAS RCE,Oracle iPlanet Improper Authorization,NetScalar AAA Login Panel,ShareCenter Login Page
2021-05-02 17:18:15 +05:30
sandeep
534fcc8964
Update CVE-2020-9315.yaml
2021-05-02 17:14:03 +05:30
sandeep
837ca10f23
minor updates
2021-05-02 17:07:30 +05:30
Noam Rathaus
e76d10a3c7
Make reference visible
2021-05-02 08:51:18 +03:00
sandeep
a6b8fd6e67
Adding CVE-2019-13462
2021-05-02 00:24:21 +05:30
Dhiyaneshwaran
3ec1a82d82
Create CVE-2020-9315.yaml
2021-05-01 16:38:36 +05:30
Dhiyaneshwaran
3012822716
Create CVE-2020-9054.yaml
2021-05-01 16:15:03 +05:30
Noam Rathaus
bfc959a5a6
Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates
2021-04-30 20:11:38 +03:00
sandeep
dad40cadfc
Temporarily moving to branch
2021-04-30 21:45:18 +05:30
Noam Rathaus
2860cdfb4a
Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates
2021-04-29 08:38:11 +03:00
Dwi Siswanto
3a51f45be5
Update description
2021-04-28 21:01:25 +07:00
Prince Chaddha
56d09dda92
Update CVE-2021-29442.yaml
2021-04-28 18:30:55 +05:30
Dwi Siswanto
64a45f2439
Add CVE-2021-29442
2021-04-28 12:01:34 +07:00
Dwi Siswanto
486103e0d4
Add CVE-2021-29441
2021-04-28 11:54:36 +07:00
Noam Rathaus
1f2b2d05c1
False positive in the matcher, the content of the file has: "= 5.3.1 =" in it, not just a number on its own in addition, it has "1. ... something" in it causing FP
2021-04-27 16:09:27 +03:00
sandeep
daff7a614c
RAW requests
2021-04-27 16:55:09 +05:30
sandeep
7a2edf0085
Moving files around
2021-04-27 16:38:12 +05:30
sandeep
e9621ed0a0
Payload and matcher update
2021-04-27 16:37:02 +05:30
sandeep
68b06c50a4
Update CVE-2017-3506.yaml
2021-04-26 21:16:27 +05:30
sandeep
b6c1ab4ac8
Update CVE-2019-17382.yaml
2021-04-26 20:05:45 +05:30
Sandeep Singh
e257a691f3
Merge pull request #1359 from Open-Sec/patch-1
...
Update CVE-2019-17382.yaml
2021-04-26 20:04:03 +05:30
sandeep
73e17259fd
Added more payloads
2021-04-26 20:01:51 +05:30
sandeep
8ca815d191
Update CVE-2017-3506.yaml
2021-04-26 15:20:04 +05:30
sandeep
6eae4191d6
Added CVE-2017-3506
2021-04-26 15:18:57 +05:30
sandeep
8b7fbeb786
Added hostname
2021-04-25 13:02:41 +05:30
sandeep
564c7635ec
In template payload input and fixes
2021-04-24 09:29:34 +05:30
Open Sec
d6c0dfa5c5
Update CVE-2019-17382.yaml
...
Sometimes dashboards get deleted and asking just for an specific numbre will give a false negative
2021-04-23 16:15:16 -05:00
Sandeep Singh
4d3a55cfca
Merge pull request #1353 from geeknik/patch-75
...
Create CVE-2014-2321.yaml
2021-04-23 22:14:45 +05:30
sandeep
34d8d2a2c9
Update CVE-2014-2321.yaml
2021-04-23 22:12:45 +05:30
Sandeep Singh
7d9cb28f33
Merge pull request #1355 from geeknik/patch-77
...
Create CVE-2019-15859.yaml
2021-04-23 22:05:43 +05:30
Sandeep Singh
627448a876
Merge pull request #1354 from geeknik/patch-76
...
Create CVE-2017-15715.yaml
2021-04-23 22:03:42 +05:30
sandeep
c3379618ab
matching against uploaded string in file
2021-04-23 22:02:27 +05:30
sandeep
d9f32d0312
Update CVE-2017-15715.yaml
2021-04-23 21:48:57 +05:30
sandeep
f596d64a47
Update CVE-2014-4210.yaml
2021-04-23 19:41:38 +05:30
sandeep
6c3634a162
Update CVE-2017-15715.yaml
2021-04-23 19:27:38 +05:30
sandeep
7d0fea2bab
making it unique for every new scans
2021-04-23 19:22:23 +05:30
Geeknik Labs
b75885491f
Create CVE-2019-15859.yaml
2021-04-23 13:38:16 +00:00
Geeknik Labs
8fc4e54a36
Create CVE-2017-15715.yaml
2021-04-23 13:34:52 +00:00
Geeknik Labs
debd9dd2bc
Create CVE-2014-2321.yaml
2021-04-23 13:32:38 +00:00
sandeep
7203040e96
minor update
2021-04-23 18:51:52 +05:30
sandeep
ee74145a98
template update
2021-04-23 15:38:41 +05:30
Sandeep Singh
8a9c25f21c
Merge pull request #1329 from davidmckennirey/kentico-cms-deser-vuln
...
Add Kentico CMS Deserialization RCE (CVE-2019-10068)
2021-04-23 14:41:21 +05:30
sandeep
bfe1b00af3
Update CVE-2019-10068.yaml
2021-04-23 14:38:40 +05:30
sandeep
3608b6c162
Update CVE-2019-10068.yaml
2021-04-23 14:36:58 +05:30
sandeep
28e1900715
minor updates
2021-04-23 14:29:22 +05:30
sandeep
76c08284ce
Adding more references
2021-04-23 14:21:15 +05:30
sandeep
c539514cdd
Update CVE-2021-27905.yaml
2021-04-23 14:18:51 +05:30
sandeep
33c9b30143
Template fix and minor updates
2021-04-23 14:14:49 +05:30
Dhiyaneshwaran
6ca4f1c5d2
Create CVE-2021-27905
2021-04-23 12:53:49 +05:30
sandeep
5af8fe5e34
Moving into draft for better matching
2021-04-23 12:45:49 +05:30
sandeep
2f434d0440
Update CVE-2021-24146.yaml
2021-04-23 08:50:02 +05:30
sandeep
6cd5b9d35c
CVE update
2021-04-23 08:47:52 +05:30
sandeep
5ce3ebc7f7
Update CVE-2019-10068.yaml
2021-04-22 21:29:09 +05:30
Noam Rathaus
622748c6f6
Description and references
2021-04-22 12:06:27 +03:00
Noam Rathaus
71645c8c5c
Description and references
2021-04-22 12:04:36 +03:00
Noam Rathaus
7bd3bc65b8
Description and references
2021-04-22 12:02:19 +03:00
Noam Rathaus
4c048c4de1
Description and reference
2021-04-22 11:59:05 +03:00
sandeep
65b6c57e9f
Temporarily removing this template
2021-04-22 09:46:29 +05:30
David McKennirey
2c8fca0c1d
remove trailing spaces
2021-04-21 23:06:29 -04:00
David McKennirey
1a01c80dd8
Add Kentico CMS Deserialization RCE (CVE-2019-10068)
2021-04-21 22:57:28 -04:00
Prince Chaddha
ced9938646
Merge pull request #1215 from projectdiscovery/princechaddha-patch-3
...
Create CVE-2015-8399.yaml
2021-04-21 23:57:24 +05:30
Prince Chaddha
98dbbe4d0f
Merge pull request #1225 from projectdiscovery/princechaddha-patch-8
...
Create CVE-2017-8917.yaml
2021-04-21 23:57:11 +05:30
Prince Chaddha
a6c178bd90
Merge pull request #1226 from projectdiscovery/princechaddha-patch-9
...
Create CVE-2015-7297.yaml
2021-04-21 23:56:56 +05:30
Prince Chaddha
b5d16381de
Merge pull request #1220 from projectdiscovery/princechaddha-patch-5
...
Create CVE-2014-3704.yaml
2021-04-21 23:55:51 +05:30
Prince Chaddha
51ae3a6d1f
Update CVE-2015-8399.yaml
2021-04-21 23:55:23 +05:30
Prince Chaddha
fb4020a894
Merge pull request #1245 from projectdiscovery/princechaddha-patch-13
...
Create CVE-2018-8770.yaml
2021-04-21 23:53:08 +05:30
Prince Chaddha
bc4e678ed1
Merge pull request #1235 from projectdiscovery/princechaddha-patch-10
...
Create CVE-2018-17246.yaml
2021-04-21 23:43:01 +05:30
Prince Chaddha
2681015072
Merge pull request #1278 from projectdiscovery/princechaddha-patch-15
...
Create CVE-2017-5521.yaml
2021-04-21 23:42:18 +05:30
sandeep
0e2a270a11
minor update
2021-04-21 22:08:46 +05:30
jeyaseelan8
5b598fb291
Add files via upload
2021-04-21 21:05:47 +05:30
Sandeep Singh
ba47278ff6
Merge pull request #1319 from Al-AizHashim/master
...
CVE-2018-13379 traversal path is corrected
2021-04-21 12:59:33 +05:30
sandeep
6cb0b89738
minor update
2021-04-21 12:46:44 +05:30
SaN ThosH
f91c579fb3
Update CVE-2021-28480.yaml
2021-04-21 12:24:19 +05:30
Al-AizHashim
c2a990a0d9
CVE-2018-13379 traversal path is corrected
2021-04-21 02:15:12 +03:00