e79277cef1
Merge pull request #2005 from daffainfo/patch-50
...
Create CVE-2012-4273.yaml
2021-07-15 14:35:12 +05:30
96e8a1fb0a
Merge pull request #2011 from daffainfo/patch-55
...
Create CVE-2019-9618.yaml
2021-07-15 14:33:33 +05:30
9e3fe02a38
Merge pull request #2007 from daffainfo/patch-52
...
Create CVE-2014-4513.yaml
2021-07-15 14:33:16 +05:30
d73599eb3c
Merge pull request #2006 from daffainfo/patch-51
...
Create CVE-2021-24389.yaml
2021-07-15 14:32:09 +05:30
a7b69d34f5
Update CVE-2012-4273.yaml
2021-07-15 14:31:25 +05:30
799e7109c3
Update CVE-2021-24389.yaml
2021-07-15 14:30:23 +05:30
75c7fa04e3
Update CVE-2014-4513.yaml
2021-07-15 14:28:58 +05:30
7a1e276d7b
Update CVE-2021-24335.yaml
2021-07-15 14:27:55 +05:30
fb1f67ce26
Rename CVE-2016-10960.yaml to cves/2016/CVE-2016-10960.yaml
2021-07-15 14:21:17 +05:30
c20a208c4a
Update CVE-2019-9618.yaml
2021-07-15 14:20:42 +05:30
5cab7d67e4
Update CVE-2011-1669.yaml
2021-07-15 14:20:03 +05:30
caa5ceecca
Update CVE-2015-9480.yaml
2021-07-15 14:16:52 +05:30
2f41c4de62
Update CVE-2021-24298.yaml
2021-07-15 14:15:49 +05:30
1c729ab1ea
Create CVE-2021-31755.yaml
...
Vulnerabilities in the web-based management interface of enda Router AC11 could allow an unauthenticated, remote attacker to perform command injection attacks against an affected device.
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-07-15 15:09:26 +09:00
a3699d912a
Create CVE-2020-25506.yaml
...
The exploit targets a command injection vulnerability in a system_mgr.cgi component. The component does not successfully sanitize the value of the HTTP parameters f_ntp_server, which in turn leads to arbitrary command execution.
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-07-15 14:28:14 +09:00
031cd24480
Create CVE-2021-24298.yaml
2021-07-15 10:52:21 +07:00
ca75afe52c
Create CVE-2021-24320.yaml
2021-07-15 10:38:35 +07:00
3c2a1cd727
Create CVE-2011-1669.yaml
2021-07-15 10:01:50 +07:00
3fa2bf156a
Create CVE-2019-9618.yaml
2021-07-15 09:48:59 +07:00
67ae44be04
Create CVE-2020-26919.yaml
...
it was found that every section of the web could be used as a valid endpoint to submit POST requests being the action defined by the submitId argument. The problem was located in the login.html webpage, that has to be publicly available to perform login requests but does not implement any restriction for executing debug actions. This will allow users execute system commands.
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-07-15 10:54:56 +09:00
e34ec6c05c
Create CVE-2021-24335.yaml
2021-07-15 07:06:50 +07:00
1dedb2aee5
Create CVE-2014-4513.yaml
2021-07-15 06:59:13 +07:00
6a0d2d2b90
Create CVE-2021-24389.yaml
2021-07-15 06:54:35 +07:00
ad69ef25cb
Create CVE-2012-4273.yaml
2021-07-15 06:51:46 +07:00
b3766162cc
Create CVE-2012-1835.yaml
2021-07-15 06:19:57 +07:00
65166046e7
Create CVE-2011-5106.yaml
2021-07-15 06:17:43 +07:00
e43c3befdf
Create CVE-2015-9480.yaml
2021-07-14 21:13:26 +07:00
f218ea12ee
Update CVE-2012-4768.yaml
2021-07-14 19:28:30 +05:30
85a6271c20
Merge pull request #1996 from daffainfo/patch-45
...
Create CVE-2015-1000012.yaml
2021-07-14 19:27:29 +05:30
e904f97937
Update CVE-2015-1000012.yaml
2021-07-14 19:26:20 +05:30
6559a49a8e
Merge pull request #1972 from daffainfo/patch-33
...
Create CVE-2013-4625.yaml
2021-07-14 19:24:05 +05:30
127b66c546
Merge pull request #1995 from daffainfo/patch-44
...
Create CVE-2016-10956.yaml
2021-07-14 19:23:54 +05:30
ecdb1b3204
Merge pull request #1977 from daffainfo/patch-36
...
Create CVE-2011-4618.yaml
2021-07-14 19:22:35 +05:30
336ea26181
Update CVE-2013-4625.yaml
2021-07-14 19:22:11 +05:30
57e03632d0
Merge pull request #1971 from daffainfo/patch-32
...
Create CVE-2013-4117.yaml
2021-07-14 19:15:55 +05:30
3f5a32b61c
Update CVE-2013-4117.yaml
2021-07-14 19:14:56 +05:30
f76c9151e9
Merge pull request #1984 from daffainfo/patch-43
...
Create CVE-2012-5913.yaml
2021-07-14 19:09:47 +05:30
6981caf971
Merge pull request #1983 from daffainfo/patch-42
...
Create CVE-2012-2371.yaml
2021-07-14 19:08:24 +05:30
0af70752fc
Update CVE-2012-5913.yaml
2021-07-14 19:08:13 +05:30
0767a5b9f3
Update CVE-2012-2371.yaml
2021-07-14 19:07:09 +05:30
6e7d5ad05f
Merge pull request #1982 from daffainfo/patch-41
...
Create CVE-2012-0901.yaml
2021-07-14 19:06:28 +05:30
4abd3903e7
Merge pull request #1981 from daffainfo/patch-40
...
Create CVE-2011-5265.yaml
2021-07-14 18:48:13 +05:30
4f92a44481
Update CVE-2012-0901.yaml
2021-07-14 18:48:09 +05:30
79881e5a53
Update CVE-2011-5265.yaml
2021-07-14 18:47:04 +05:30
81186887f0
Merge pull request #1980 from daffainfo/patch-39
...
Create CVE-2011-5181.yaml
2021-07-14 18:45:58 +05:30
7f210b692a
Update CVE-2011-5265.yaml
2021-07-14 18:45:47 +05:30
aedb24576f
Merge pull request #1979 from daffainfo/patch-38
...
Create CVE-2011-5179.yaml
2021-07-14 18:40:12 +05:30
42395f3cf0
Update CVE-2011-5181.yaml
2021-07-14 18:40:07 +05:30
0dc763a5e2
Merge pull request #1978 from daffainfo/patch-37
...
Create CVE-2011-5107.yaml
2021-07-14 18:39:18 +05:30
31c69d6a53
Update CVE-2011-5179.yaml
2021-07-14 18:39:10 +05:30
b24958c966
Update CVE-2011-5107.yaml
2021-07-14 18:38:27 +05:30
49b8f5dced
Merge pull request #1976 from daffainfo/patch-35
...
Create CVE-2011-4926.yaml
2021-07-14 18:37:31 +05:30
4530f816e7
Update CVE-2011-4618.yaml
2021-07-14 18:37:19 +05:30
aa49f5249c
Merge pull request #1975 from daffainfo/patch-34
...
Create CVE-2011-4624.yaml
2021-07-14 18:36:28 +05:30
2f3470ca1f
Update CVE-2011-4926.yaml
2021-07-14 18:36:19 +05:30
f63f825283
Create CVE-2015-1000012.yaml
2021-07-14 18:10:41 +07:00
08e3f1af84
Create CVE-2016-10956.yaml
2021-07-14 18:03:54 +07:00
74c4f507b5
Update CVE-2011-4624.yaml
2021-07-14 16:20:22 +05:30
f7259df034
typo update
2021-07-14 15:38:56 +05:30
fc35b4c56d
Update CVE-2017-5487.yaml
...
Fixes #1985
2021-07-13 18:58:52 +00:00
e2221a68f6
Create CVE-2012-5913.yaml
2021-07-14 00:15:23 +07:00
660d2341fb
Create CVE-2012-2371.yaml
2021-07-14 00:14:36 +07:00
a64856f005
Create CVE-2012-0901.yaml
2021-07-14 00:13:20 +07:00
52712e1738
Create CVE-2011-5265.yaml
2021-07-14 00:12:07 +07:00
2171814982
Update CVE-2011-5181.yaml
2021-07-14 00:10:26 +07:00
cdc64106ad
Create CVE-2011-5181.yaml
2021-07-14 00:08:59 +07:00
a6ec5edc8d
Create CVE-2011-5179.yaml
2021-07-14 00:07:06 +07:00
206ed76058
Create CVE-2011-5107.yaml
2021-07-14 00:05:34 +07:00
7b1fb46547
Create CVE-2011-4618.yaml
2021-07-14 00:03:30 +07:00
a165adadae
Create CVE-2011-4926.yaml
2021-07-13 23:44:37 +07:00
4946a5d8a7
Create CVE-2011-4624.yaml
2021-07-13 23:42:57 +07:00
b6ec1c2abb
Added reference
2021-07-13 19:22:59 +05:30
b4e21feadd
Rename cve-2021-24472.yaml to CVE-2021-24472.yaml
2021-07-13 19:21:21 +05:30
6d6b30e9cf
matcher update
2021-07-13 19:20:10 +05:30
0871ccb042
Create CVE-2013-4625.yaml
2021-07-13 20:48:19 +07:00
f29b55b6cc
Create CVE-2013-4117.yaml
2021-07-13 20:45:32 +07:00
9aeac41fbc
Onair2 < 3.9.9.2 & KenthaRadio < 2.0.2 - Unauthenticated RFI and SSRF
2021-07-13 18:42:05 +05:30
51834499f8
Merge pull request #1944 from daffainfo/patch-23
...
Create CVE-2012-4242.yaml
2021-07-13 16:45:39 +05:30
858a6b48de
Merge pull request #1946 from daffainfo/patch-25
...
Create CVE-2013-2287.yaml
2021-07-13 16:43:05 +05:30
9a09d52520
Merge pull request #1951 from gy741/rule-add-v22
...
Create CVE-2021-33544.yaml
2021-07-13 16:30:44 +05:30
43d4644164
Update CVE-2021-33544.yaml
2021-07-13 16:29:55 +05:30
bb53177a74
Update CVE-2021-33544.yaml
2021-07-13 16:26:33 +05:30
8c4f1dfe43
Merge pull request #1954 from Akokonunes/patch-18
...
Create CVE-2015-7823
2021-07-13 15:06:48 +05:30
dfd9a2592b
moving files around
2021-07-13 15:04:42 +05:30
89e1a8da93
Merge pull request #1962 from dwisiswant0/hotfix/CVE-2020-24148
2021-07-13 05:01:01 +05:30
a91516cbb5
Misplaced of CVE-2020-24148
2021-07-13 05:24:03 +07:00
e23f378fe8
Merge pull request #1943 from gy741/rule-add-v21
...
Create CVE-2021-30497.yaml
2021-07-13 01:00:59 +05:30
dec41b5631
Merge pull request #1950 from dwisiswant0/add/CVE-2020-24148
...
Add CVE-2020-24148
2021-07-13 00:52:08 +05:30
0e1e727bb1
Create CVE-2021-33544.yaml
...
Multiple vulnerabilities in the web-based management interface of Geutebruck could allow an unauthenticated, remote attacker to perform command injection attacks against an affected device.
CVE-2021-33543 : Authentication Bypass
CVE-2021-33544 : Command injection multiple parameters
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-07-12 13:10:31 +09:00
4ea2c71a3d
Add CVE-2020-24148
2021-07-12 09:24:50 +07:00
9788955ebd
Create CVE-2013-2287.yaml
2021-07-11 17:18:20 +07:00
21195f9f0e
Create CVE-2012-4242.yaml
2021-07-11 17:06:48 +07:00
c0f5105dcf
Create CVE-2021-30497.yaml
...
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-07-11 18:31:18 +09:00
25dcb930ad
Added CVE-2021-29156
2021-07-11 14:39:41 +05:30
3bbcb23cd0
Severity update as this directly doesn't pose any risk.
2021-07-11 13:39:21 +05:30
f1690ec51b
Create CVE-2012-4768.yaml
2021-07-11 13:33:29 +07:00
aa63d1afb7
Merge pull request #1925 from daffainfo/patch-10
...
Create CVE-2020-29395.yaml
2021-07-11 10:25:06 +05:30
bca05d61d6
Merge pull request #1926 from daffainfo/patch-11
...
Create CVE-2019-14470.yaml
2021-07-11 10:15:11 +05:30
7f0f8beff2
Update CVE-2020-29395.yaml
2021-07-11 10:14:56 +05:30
7c19ca873d
Update CVE-2019-14470.yaml
2021-07-11 10:12:41 +05:30
7c0c5033e9
Update CVE-2019-14470.yaml
2021-07-11 10:11:11 +05:30
a3c2fdee36
Merge pull request #1928 from daffainfo/patch-13
...
Create CVE-2019-15889.yaml
2021-07-11 10:09:58 +05:30
0bae5e975e
Update CVE-2019-15889.yaml
2021-07-11 10:09:51 +05:30
70930af523
Merge pull request #1929 from daffainfo/patch-14
...
Create CVE-2014-9094.yaml
2021-07-11 10:09:00 +05:30
a04341ae20
Update CVE-2014-9094.yaml
2021-07-11 10:08:53 +05:30
92e1a5feeb
Update CVE-2013-3526.yaml
2021-07-11 10:05:10 +05:30
53c2c47099
Create CVE-2013-3526.yaml
2021-07-11 09:00:15 +07:00
4773149878
Create CVE-2014-9094.yaml
2021-07-11 08:43:01 +07:00
009e68c627
Create CVE-2019-15889.yaml
2021-07-11 08:20:03 +07:00
4889efb117
Create CVE-2019-14470.yaml
2021-07-11 08:06:14 +07:00
da45bdf0ef
Create CVE-2020-29395.yaml
2021-07-11 07:58:31 +07:00
01ae482fe8
Added CVE-2021-34621
2021-07-10 22:31:08 +05:30
97023903a0
Merge pull request #1918 from gy741/rule-add-v19
...
Create Hongdian Vulnerability
2021-07-10 21:24:56 +05:30
5ca472b43e
Merge pull request #1880 from gy741/rule-add-v13
...
Create CVE-2021-1497.yaml
2021-07-10 20:55:14 +05:30
1cd29628aa
more reference
2021-07-10 20:54:04 +05:30
7f37050361
Added HTTP check
2021-07-10 20:53:23 +05:30
dd9e85a29c
Added missing condition
2021-07-10 20:47:20 +05:30
1e8aa5288f
Update CVE-2021-1497.yaml
2021-07-10 20:45:00 +05:30
767f173f88
minor updates
2021-07-10 18:45:09 +05:30
3bf1c929ed
Create Hongdian Vulnerability
...
CVE-2021-28149 : Hongdian H8922 3.0.5 devices allow Directory Traversal. The /log_download.cgi log export handler does not validate user input and allows a remote attacker with minimal privileges to download any file from the device by substituting ../ (e.g., ../../etc/passwd) This can be carried out with a web browser by changing the file name accordingly. Upon visiting log_download.cgi?type=../../etc/passwd and logging in, the web server will allow a download of the contents of the /etc/passwd file.
CVE-2021-28150 : Hongdian H8922 3.0.5 devices allow the unprivileged guest user to read cli.conf (with the administrator password and other sensitive data) via /backup2.cgi.
CVE-2021-28151 : Hongdian H8922 3.0.5 devices allow OS command injection via shell metacharacters into the ip-address (aka Destination) field to the tools.cgi ping command, which is accessible with the username guest and password guest.
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-07-10 21:16:35 +09:00
c2f87a94c6
Added complete RCE chain
2021-07-10 13:42:09 +05:30
491b6f8e2b
Update CVE-2018-2392.yaml
2021-07-08 14:41:02 +05:30
bff63b673d
Merge pull request #1896 from geeknik/patch-109
...
Create CVE-2017-16806.yaml
2021-07-07 18:40:15 +05:30
5d034716ac
Merge pull request #1895 from geeknik/patch-108
...
Create CVE-2015-6477.yaml
2021-07-07 18:37:48 +05:30
6963c0d669
Update CVE-2015-6477.yaml
2021-07-07 18:37:21 +05:30
36a13094ef
Merge pull request #1894 from geeknik/patch-105
...
Create CVE-2009-4223.yaml
2021-07-07 18:35:27 +05:30
d5cbcec079
Update CVE-2021-22214.yaml
...
dns interaction doesn't prove exploitability
2021-07-07 03:50:13 +00:00
c8ba8e13ce
Create CVE-2017-16806.yaml
2021-07-06 19:50:32 +00:00
6874823632
Create CVE-2015-6477.yaml
2021-07-06 19:47:44 +00:00
1fba6ae882
Create CVE-2009-4223.yaml
2021-07-06 19:44:02 +00:00
deab6ba62c
Merge pull request #1887 from skar4444/nrouter
...
CVE-2016-5649 - Netgear Router - Admin Password Disclosure
2021-07-06 21:36:01 +05:30
5a818f62b8
name and template update
2021-07-06 21:34:28 +05:30
2aa91bbf24
Rename cve-2021-24387.yaml to CVE-2021-24387.yaml
2021-07-06 20:29:47 +05:30
78617f6012
Real Estate 7 WordPress Theme < 3.1.1 - Unauthenticated Reflected XSS
2021-07-06 19:51:53 +05:30
6dd96ede94
Added additional reference
2021-07-06 12:12:09 +05:30
fc68a95803
Template Name/ID update as per assigned CVE
2021-07-06 12:07:53 +05:30
71dd0de29d
Create CVE-2021-1497.yaml
...
Multiple vulnerabilities in the web-based management interface of Cisco HyperFlex HX could allow an unauthenticated, remote attacker to perform command injection attacks against an affected device.
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-07-06 09:30:13 +09:00
8938010a7a
Add CVE-2020-6207.yaml
2021-07-05 20:36:55 +03:00
05b2837a0a
Add CVE-2018-2392.yaml
2021-07-05 19:40:37 +03:00
36a0918092
fixes
2021-07-04 16:02:51 +05:30
13a5215bda
Update CVE-2017-9841.yaml
2021-07-04 15:50:15 +05:30
35a8d999cb
strict matchers
2021-07-04 01:05:05 +05:30
b137eb57d3
More edge cases
...
Only looking for DNS interaction is not reliable as few servers make DNS requests for host included in path or query parameter.
2021-07-04 00:41:57 +05:30
acebe227a1
Update CVE-2019-13101.yaml
2021-07-04 00:12:01 +05:30
9e9954cbab
strict matchers
2021-07-04 00:07:30 +05:30
f249af535a
Update CVE-2019-13101.yaml
...
iot tag added
2021-07-03 17:55:11 +05:30
f21b239853
misc changes
2021-07-03 15:23:28 +05:30
e20298b4d3
D-Link DIR-600M Router - Authentication Bypass
2021-07-03 05:50:40 +05:30
52e0c861a1
Merge pull request #1733 from milo2012/master
...
Added CVE-2018-1000130/ CVE-2018-2628/ CVE-2018-2628/ CVE-2019-3401/ CVE-2020-1938/ oracle-bi-default-login/ jolokia-heap-disclosure
2021-07-02 18:27:45 +05:30
e2a0f93f79
misc updates
2021-07-02 18:24:31 +05:30
16da6c9980
strict matchers
2021-07-02 18:20:58 +05:30
56ccb9f3a4
Merge pull request #1822 from Akokonunes/patch-13
...
Create CVE-2021-24210.yaml
2021-07-01 00:00:03 +05:30
f44c3e597f
Update and rename CVE-2021-24210.yaml to cves/2021/CVE-2021-24210.yaml
2021-06-30 23:45:27 +05:30
87a1d1acce
Merge pull request #1823 from Akokonunes/patch-14
...
Create CVE-2021-24406.yaml
2021-06-30 23:44:03 +05:30
6a6607c282
Update and rename CVE-2021-24406.yaml to cves/2021/CVE-2021-24406.yaml
2021-06-30 23:43:06 +05:30
3802723219
Update CVE-2013-3827.yaml
2021-06-30 23:39:47 +05:30
dbcdbe907e
Merge pull request #1797 from Mad-robot/patch-2
...
Create CVE-2021-29203.yaml
2021-06-30 21:27:35 +05:30
2d63ddfa20
minor update
2021-06-30 21:27:06 +05:30
3602eebf6c
Merge pull request #1780 from wwilson83H3/master
...
The default request never flagged druid in my env. Replaced with MSF …
2021-06-30 20:32:14 +05:30
d1f47657a9
Update CVE-2021-25646.yaml
2021-06-30 20:31:15 +05:30
cfcb739fbc
more changes
2021-06-30 20:28:41 +05:30
cc56986b92
Merge pull request #1820 from pikpikcu/patch-190
...
Update CVE-2018-13380.yaml
2021-06-30 19:52:53 +05:30
8490fe60ca
Add CVE-2017-9822.yaml - DotNetNuke Cookie Deserialization Remote Code Execution (RCE)
2021-06-30 19:35:01 +08:00
b7d1d4771b
Merge branch 'master' of https://github.com/milo2012/nuclei-templates into master
2021-06-30 19:33:31 +08:00
f78452e808
Add CVE-2017-9822.yaml - DotNetNuke Cookie Deserialization Remote Code Execution (RCE)
2021-06-30 19:32:59 +08:00
9d8f8f8589
Create CVE-2013-3827.yaml
2021-06-30 11:50:41 +01:00
b3c580d290
Update CVE-2018-8715.yaml
2021-06-30 15:34:58 +05:30
1afa102620
Add CVE-2018-8715.yaml - AppWeb authentication bypass
2021-06-30 16:30:56 +08:00
96fc7bb341
more strict matchers
2021-06-30 03:26:01 +05:30
498586e854
Added additional matcher and full exploit chain details
2021-06-30 03:01:13 +05:30
8b0b2a169d
Update CVE-2021-35464.yaml
2021-06-29 18:02:33 +05:30
2d4c8cb434
Create CVE-2021-35464.yaml
2021-06-29 17:26:37 +05:30
2d826f3391
More edge cases
2021-06-29 12:41:19 +05:30
8ae56492d8
Update CVE-2021-29203.yaml
2021-06-29 10:13:41 +05:30
dcbaaf31ac
Merge pull request #1775 from pikpikcu/patch-186
...
Create CVE-2017-12794.yaml
2021-06-29 10:08:13 +05:30
b46dc119e7
Update CVE-2017-12794.yaml
2021-06-29 10:07:07 +05:30
54f40d8f2c
Update CVE-2018-13380.yaml
2021-06-29 02:17:42 +00:00
40bb93faff
Merge pull request #1773 from pikpikcu/patch-184
...
Create CVE-2020-3580.yaml
2021-06-28 21:44:36 +05:30
40782db039
Merge pull request #1771 from gy741/rule-add-v7
...
Create CVE-2021-3223.yaml
2021-06-28 21:43:59 +05:30
b97811a143
Update CVE-2021-3223.yaml
2021-06-28 21:43:04 +05:30
bce647b441
Added CVE-2015-8813
2021-06-28 17:14:03 +05:30
cb5c53aef3
Create CVE-2021-29203.yaml
2021-06-26 13:40:30 +05:30
bae4998f81
Merge pull request #1766 from gy741/rule-add-v6
...
Create CVE-2021-21234.yaml
2021-06-25 16:50:36 +05:30
2d40d90715
Update CVE-2021-21234.yaml
2021-06-25 12:53:22 +05:30
dd98451110
Update CVE-2018-16299.yaml
2021-06-25 12:45:04 +05:30
fca70dd2c7
Update and rename CVE-2018-16299.yaml to cves/2018/CVE-2018-16299.yaml
2021-06-25 12:43:55 +05:30
d1e4b5c510
minor updates
2021-06-25 10:51:00 +05:30
95b34330ed
Add CVE-2018-2893.yaml - Oracle WebLogic Server Deserialization RCE
2021-06-25 03:41:02 +08:00
4e888bf3e2
Add CVE-2018-2893.yaml - Oracle WebLogic Server Deserialization RCE
2021-06-25 03:38:53 +08:00
7db13c6bce
Duplicate template
2021-06-25 00:08:05 +05:30
426abedcfa
severity updates as per CVE database
2021-06-25 00:05:59 +05:30
e4e8e6e148
Merge pull request #1776 from pikpikcu/patch-187
...
Create CVE-2021-28169.yaml
2021-06-25 00:02:51 +05:30
a736120dc0
minor updates
2021-06-25 00:02:05 +05:30
e84c784fa2
Merge pull request #1689 from nrathaus/master
...
CVE-2021-28164 and some fixes
2021-06-24 23:58:29 +05:30
a9a161f8c6
Update CVE-2021-28164.yaml
2021-06-24 23:56:33 +05:30
809668943f
minor changes
2021-06-24 23:54:29 +05:30
16e5ad7fad
The default request never flagged druid in my env. Replaced with MSF request and it flags everytime now
2021-06-24 13:37:45 -04:00
b97d012636
Create CVE-2021-28169.yaml
2021-06-24 16:00:02 +00:00
9cc9a52db2
Create CVE-2017-12794.yaml
2021-06-24 15:49:12 +00:00
19d80d9d0a
Create CVE-2020-3580.yaml
2021-06-24 15:34:19 +00:00
e7bb4bff23
Create CVE-2021-3223.yaml
...
Node-RED-Dashboard before 2.26.2 allows ui_base/js/..%2f directory traversal to read files.
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-06-24 21:07:17 +09:00
37261f7a2f
Update and rename vulnerabilities/jira/jira-unauthenticated-popular-filters.yaml to cves/2019/CVE-2019-3401.yaml
2021-06-24 16:52:04 +05:30
f7563d9718
Update CVE-2019-3401.yaml
2021-06-24 16:45:07 +05:30
cc0dd04ac2
Create CVE-2021-21234.yaml
...
spring-boot-actuator-logview in a library that adds a simple logfile viewer as spring boot actuator endpoint. It is maven package "eu.hinsch:spring-boot-actuator-logview". In spring-boot-actuator-logview before version 0.2.13 there is a directory traversal vulnerability. The nature of this library is to expose a log file directory via admin (spring boot actuator) HTTP endpoints. Both the filename to view and a base folder (relative to the logging folder root) can be specified via request parameters. While the filename parameter was checked to prevent directory traversal exploits (so that `filename=../somefile` would not work), the base folder parameter was not sufficiently checked, so that `filename=somefile&base=../` could access a file outside the logging base directory). The vulnerability has been patched in release 0.2.13. Any users of 0.2.12 should be able to update without any issues as there are no other changes in that release. There is no workaround to fix the vulnerability other than updating or removing the dependency. However, removing read access of the user the application is run with to any directory not required for running the application can limit the impact. Additionally, access to the logview endpoint can be limited by deploying the application behind a reverse proxy.
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-06-24 14:36:45 +09:00
35cf8d1378
Merge pull request #1221 from projectdiscovery/princechaddha-patch-6
...
Create CVE-2018-9995.yaml
2021-06-24 02:33:20 +05:30
0fbbfdd364
Update CVE-2018-9995.yaml
2021-06-24 02:32:23 +05:30
9479826132
Merge pull request #1747 from Udyz/patch-3
...
Create CVE-2021-21389
2021-06-24 02:26:23 +05:30
416bafe2fa
misc changes
2021-06-24 02:24:58 +05:30
9386111906
making status check generic both case
2021-06-24 00:13:58 +05:30
459dd6b84b
misc changes
2021-06-23 23:48:34 +05:30
67c4713f13
Added status to CVE-2012-3153
2021-06-23 08:26:37 -05:00
916ea5ff72
Add CVE-2019-3401 - Atlassian JIRA Information Exposure (CVE-2019-3401)
2021-06-23 01:29:08 +08:00
6e139881ee
fix or operator
2021-06-23 00:33:06 +08:00
6b358f38a9
Merge pull request #1751 from realistic-security/master
...
Create two "Oracle Forms & Reports" Vulnerabilities
2021-06-22 19:43:04 +05:30
672acb880e
Updated Oracle Forms & Reports CVE-2012-3153
2021-06-22 14:53:26 +01:00
139aaf2ecf
Add CVE-2018-1000130.yaml - fix spaces
2021-06-22 20:35:17 +08:00
e84dc0e94c
Add CVE-2018-1000130.yaml - Jolokia Agent Proxy JNDI Code Injection
2021-06-22 20:32:30 +08:00
04a7fda94a
Update CVE-2021-21389.yaml
2021-06-22 19:12:35 +07:00
014ca91e15
hmm just simple check...
...
sorry i just know little bit english...
2021-06-22 19:07:00 +07:00
1c4a2a56a7
Merge pull request #1734 from darrenmartyn/patch-1
...
Create CVE-2019-4781.yaml
2021-06-22 13:21:04 +05:30
2539c830ac
Update CVE-2019-7481.yaml
2021-06-22 13:20:06 +05:30
c87238c37a
Update CVE-2019-7481.yaml
2021-06-22 13:18:51 +05:30
dcaef6a836
Rename CVE-2021-21389 to CVE-2021-21389.yaml
2021-06-22 04:05:42 +05:30
3844df9fc8
misc changes
2021-06-21 18:09:16 +05:30
592b2e7222
Update CVE-2020-1938.yaml
2021-06-21 14:28:51 +05:30
be89aed331
Update CVE-2018-2628.yaml
2021-06-21 14:26:53 +05:30
cb4d12cc8c
Moved to cves/2018
2021-06-21 14:20:20 +05:30
ec835a0bc5
Create CVE-2012-3152, CVE-2012-3153
2021-06-21 09:48:42 +01:00
8b43919211
Update CVE-2020-11930.yaml
2021-06-21 14:15:45 +05:30
216b484aec
Update CVE-2020-11930.yaml
2021-06-21 14:15:09 +05:30
ebc202adcb
Create CVE-2020-11930.yaml
2021-06-21 14:11:20 +05:30
0d5a57bc23
Create CVE-2021-21389
2021-06-21 12:33:14 +07:00
55b89115aa
add CVE-2018-2628 - Oracle WebLogic Server Deserialization RCE
2021-06-21 06:24:33 +08:00
c7a11cd1b1
Added CVE-2020-11110
2021-06-20 20:00:19 +05:30
1465ad8c76
Merge pull request #1740 from Akokonunes/patch-9
...
Create CVE-2018-18775.yaml
2021-06-20 16:51:09 +05:30
a2623f5e9d
Update CVE-2018-18775.yaml
2021-06-20 16:49:24 +05:30
b874963894
moved to cves
2021-06-20 16:47:21 +05:30
00ad7ee3db
Moved to cves
2021-06-20 16:43:44 +05:30
bb6fa66dd9
Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates
2021-06-20 13:56:54 +03:00
80d159c277
Update CVE-2019-7481.yaml
2021-06-19 22:44:05 +01:00
7c65c33396
Update CVE-2019-7481.yaml
...
maybe yaml lint thing doesn't hate me now
2021-06-19 22:42:10 +01:00
722a2bd60c
Update and rename CVE-2019-4781.yaml to CVE-2019-7481.yaml
2021-06-19 21:39:08 +01:00
a26c0d9c3a
Create CVE-2019-4781.yaml
...
Need some feedback on this, tested it out and it works just fine.
2021-06-19 21:17:40 +01:00
e8e5dd5c83
add CVE-2020-1938.yaml - Ghostcat - Apache Tomcat AJP File Read/Inclusion Vulnerability
2021-06-19 21:59:42 +08:00
988726f5c8
Create CVE-2017-15944.yaml
...
This fixes #1091 . I changed line 20 from `part: body` to `part: header`.
2021-06-18 20:45:44 +00:00
55c1984a52
Template Moved to cves
2021-06-19 01:58:02 +05:30
112113437c
Moved template to cves folder
2021-06-18 16:58:27 +05:30
9200ac068a
Merge pull request #1714 from skar4444/unauthenticated-CI-lint-API
...
CVE 2021-22214 - Unauthenticated Gitlab SSRF - CI Lint API
2021-06-18 15:08:33 +05:30
b301c830a3
final improvements
2021-06-18 15:02:17 +05:30
27d67855e8
misc changes
2021-06-18 14:42:13 +05:30
4f0bfc9362
Merge pull request #1705 from projectdiscovery/CVE-2021-28854
...
Added CVE-2021-28854
2021-06-18 12:52:42 +05:30
44a53f7090
Merge pull request #1636 from pdelteil/patch-6
...
Update CVE-2018-18069.yaml
2021-06-18 10:01:04 +05:30
bfa70bacf5
Update CVE-2021-21975.yaml
2021-06-17 22:55:10 +05:30
0f590a867b
Update CVE-2018-18069.yaml
2021-06-17 22:20:02 +05:30
eeb88e4bd1
Update CVE-2018-18069.yaml
2021-06-17 22:13:32 +05:30
36bb1fff95
Update CVE-2018-18069.yaml
2021-06-17 22:11:00 +05:30
01b77a7ed2
Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates
2021-06-17 16:54:18 +03:00
8a1d7bd7d2
Hotfix FP of CVE-2021-24146
2021-06-17 08:16:54 +07:00
5c2a07d65e
Merge pull request #1684 from geeknik/patch-107
...
Create CVE-2018-16670.yaml
2021-06-16 02:01:36 +05:30
dbee289627
Merge pull request #1683 from geeknik/patch-106
...
Create CVE-2018-16668.yaml
2021-06-16 01:59:47 +05:30
6c48452767
Merge pull request #1682 from geeknik/patch-105
...
Create CVE-2018-16671.yaml
2021-06-16 01:58:32 +05:30
bfbd3ccdac
Merge pull request #1656 from Akokonunes/patch-4
...
Create CVE-2021-24237.yaml
2021-06-16 01:56:39 +05:30
074b15b081
Merge pull request #1655 from Akokonunes/patch-3
...
Create CVE-2013-2248.yaml
2021-06-16 01:46:45 +05:30
92d35b4710
minor update
2021-06-16 01:45:31 +05:30
5cff973564
Added tags
2021-06-16 01:02:21 +05:30
c36419c94c
Added CVE-2021-28854
2021-06-16 01:01:01 +05:30
8cf0d5e8ac
Merge pull request #1680 from Alex-null/master
...
Update CVE-2013-2251.yaml
2021-06-15 16:42:14 +05:30
ccac0e26e5
Update CVE-2013-2251.yaml
2021-06-15 16:41:14 +05:30
edf4a45ee4
Update CVE-2018-1000533.yaml
2021-06-15 16:38:28 +05:30
72d9357cf6
Update CVE-2018-1000533.yaml
2021-06-15 16:23:59 +05:30
3cfc921b71
Update CVE-2018-1000533.yaml
2021-06-15 15:31:36 +05:30
e970a09c53
Create CVE-2018-1000533.yaml
2021-06-15 07:28:10 +00:00
d25869d764
Update CVE-2020-36289.yaml
2021-06-14 11:50:25 -04:00
a91ee941ff
Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates
2021-06-14 14:59:58 +03:00
8df5f982f3
Moved template to cves
2021-06-13 21:01:21 +05:30
b5bdac494b
Merge branch 'master' of https://github.com/nrathaus/nuclei-templates
2021-06-13 09:54:52 +03:00
eb1a3b678a
Update CVE-2014-2383.yaml
2021-06-12 16:42:57 +05:30
e83ba1b5ec
Create CVE-2018-16670.yaml
2021-06-11 12:11:36 +00:00
c451137ffc
Create CVE-2018-16668.yaml
2021-06-11 12:10:29 +00:00
210465a658
Create CVE-2018-16671.yaml
2021-06-11 12:09:29 +00:00
3779eb70e0
Moved template to cves folder
2021-06-11 16:48:05 +05:30
b17196ee18
Merge pull request #1679 from Mad-robot/master
...
Update CVE-2018-3167.yaml
2021-06-11 16:25:07 +05:30
710d2345ba
Merge pull request #1671 from Akokonunes/patch-6
...
Create CVE-2018-16836.yaml
2021-06-11 15:59:49 +05:30
bc4a0d37b1
Moving template to cves folder
2021-06-11 15:58:02 +05:30
3ef83889b4
Update CVE-2014-2383.yaml
2021-06-11 15:22:14 +05:30
161b2f5008
Update CVE-2013-2251.yaml
...
Add new payload. Test it on this environment-https://github.com/vulhub/vulhub/tree/master/struts2/s2-016
2021-06-11 17:50:50 +08:00
658cd17d4f
Merge pull request #1670 from Akokonunes/patch-5
...
Create CVE-2014-2383.yaml
2021-06-11 15:04:17 +05:30
afb2f15dbd
Added more paths
2021-06-11 14:47:02 +05:30
d4db18c218
Update CVE-2014-2383.yaml
2021-06-11 14:33:43 +05:30
583f4e6778
Template moved to CVE folder
2021-06-11 14:19:36 +05:30
a2e740148f
Update CVE-2018-3167.yaml
2021-06-11 13:21:20 +05:30
bfed8d5200
Update CVE-2018-3167.yaml
2021-06-11 13:19:46 +05:30
84341549c0
Update CVE-2018-3167.yaml
2021-06-11 13:18:36 +05:30
42ec1d5636
Update CVE-2018-3167.yaml
2021-06-11 13:14:15 +05:30
69ded42e3a
Template rename / update
2021-06-10 21:57:07 +05:30
3de46aa21b
misc changes
2021-06-10 00:01:38 +05:30
ea26842383
Added CVE-2019-2616
2021-06-09 23:56:42 +05:30
4e17331f30
Merge pull request #1657 from DhiyaneshGeek/master
...
CVE-2017-9140: Telerik ReportViewer XSS
2021-06-09 21:40:40 +05:30
8fa1dbc604
Minor updates
2021-06-09 21:37:22 +05:30
5c80980915
Added CVE-2020-36289
2021-06-09 21:13:52 +05:30
6c79bfa14d
Create CVE-2017-9140.yaml
2021-06-09 18:40:47 +05:30
83ce809e8d
Updated author names
2021-06-09 17:50:56 +05:30
769de2a231
Create CVE-2013-2248.yaml
2021-06-09 15:32:42 +05:30
ccdb667d3b
YML to YAML
2021-06-09 14:42:14 +05:30
1299ae621f
Update CVE-2021-28164.yml
2021-06-09 14:39:19 +05:30
eef5158207
Update CVE-2021-28164.yml
2021-06-09 14:38:12 +05:30
23cb4c4d9f
moving files around
2021-06-09 14:37:40 +05:30
9d7ab618b8
Merge pull request #1654 from Mad-robot/master
...
Update CVE-2017-9506.yaml
2021-06-09 14:25:30 +05:30
9045f0bb2a
misc changes
2021-06-09 14:23:32 +05:30
0013f94807
Merge pull request #1631 from projectdiscovery/sap_update
...
SAP NetWeaver update
2021-06-09 14:17:51 +05:30
c5d4e5e400
Update CVE-2017-9506.yaml
2021-06-09 13:11:39 +05:30
0cdfd0468f
Update CVE-2021-24285.yaml
2021-06-09 04:01:21 +05:30
2953942c3c
Added CVE-2021-24285
2021-06-09 03:13:23 +05:30
68642e226b
CVE-2018-1247 fix
2021-06-09 01:40:02 +05:30
799af2e5fb
minor update
2021-06-09 01:23:13 +05:30
aca824b910
Update CVE-2019-2767.yaml
2021-06-08 21:59:59 +05:30
ff9b9a871c
Update CVE-2019-2767.yaml
2021-06-08 21:53:28 +05:30
41784d5261
Update CVE-2019-2767.yaml
2021-06-08 21:52:58 +05:30
169d64a3ff
Create CVE-2019-2767.yaml
2021-06-08 21:49:35 +05:30
39555505db
Update CVE-2018-18069.yaml
...
The matching condition are not enough. The payload input is not checked for reflection. This creates false positives like this one
nuclei -debug -t nuclei-templates/cves/2018/CVE-2018-18069.yaml -u https://empleo.gbtspain.com
2021-06-05 14:12:50 -04:00
14fa085d1b
more improvements
2021-06-05 12:15:32 +05:30
55c0e1b103
Improved matchers for CVE-2020-6287
2021-06-05 10:29:59 +05:30
c0103e0b8a
Merge pull request #1608 from Mad-robot/master
...
Create CVE-2020-6308.yaml
2021-06-05 00:04:56 +05:30
83d359f6cf
updating tags
2021-06-05 00:02:33 +05:30
11cb8b3106
Update CVE-2020-6308.yaml
2021-06-05 00:00:50 +05:30
8e13733d34
moving files around
2021-06-04 16:30:31 +05:30
0e3ed049ae
misc changes
2021-06-03 23:00:47 +05:30
bdc803fd4b
Added CVE-2020-13927
2021-06-03 14:23:34 +05:30
4a0e83037d
Update CVE-2020-11978.yaml
2021-06-03 13:58:41 +05:30
6652b2ddb6
Added CVE-2020-11978
2021-06-03 13:57:09 +05:30
d92568cd03
Merge pull request #1604 from Sicks3c/sicks3c
...
Added new path for CVE-2021-22122.yaml
2021-06-02 13:18:12 +05:30
5269cc1c87
Update CVE-2021-22122.yaml
2021-06-02 13:17:00 +05:30
e3f42066bf
Spelling
2021-06-02 09:39:35 +03:00
f28fdf610b
Create CVE-2020-6308.yaml
2021-06-02 11:39:27 +05:30
2678721174
Added new path for CVE-2021-22122.yaml
2021-06-02 00:06:20 +01:00
23a59704e9
Merge pull request #1585 from pikpikcu/patch-171
...
Add CVE-2017-14535
2021-06-01 11:07:56 +05:30
b021a0cf49
Misc changes
2021-06-01 11:06:13 +05:30
fe1ab8385d
Update and rename exposures/logs/circarlife-system-log.yaml to cves/2018/CVE-2018-12634.yaml
2021-05-31 11:31:04 -05:00
19b73df6be
Update CVE-2021-21985.yaml
2021-05-31 19:44:44 +05:30
633644b159
Added CVE-2021-21985
2021-05-31 19:20:59 +05:30
2cc30c771a
misc updates
2021-05-31 16:53:36 +05:30
b0eca52c4b
Create CVE-2017-14535.yaml
2021-05-31 09:46:53 +00:00
a39f71eeff
Fixing CVE-2018-0296
2021-05-31 09:28:47 +05:30
0d8c5607cb
CVE-2021-33564.yaml
2021-05-29 02:33:38 +05:30
707d6720d1
Merge pull request #1543 from Morn98/CVE-2017-1000486
...
Add detection for JavaServer Faces and detection for vulnerable PrimeFaces 5.x EL Injection (CVE 2017 1000486)
2021-05-28 14:05:01 +05:30
b7d103a740
Update CVE-2017-1000486.yaml
2021-05-28 10:27:21 +05:30
450cf76976
Improved template
2021-05-28 10:25:48 +05:30
01995c82ab
misc changes
2021-05-28 09:26:30 +05:30
830a187e0d
Update CVE-2020-35736.yaml
2021-05-27 15:02:32 +00:00
ddf6bcb7ca
Update CVE-2020-35736.yaml
2021-05-27 14:51:03 +00:00
f981074e3f
Update CVE-2020-35736.yaml
2021-05-27 13:03:59 +00:00
b7d8536a01
Create CVE-2020-35736.yaml
2021-05-27 12:56:22 +00:00
0c0eaf114c
Update CVE-2017-1000486.yaml file to pass Checks
2021-05-27 11:38:23 +02:00
24bcb23857
Add Detection for PrimeFaces 5.x EL Injection (CVE-2017-1000486)
2021-05-27 10:17:31 +02:00
633b9c39ee
Update CVE-2020-19625.yaml
2021-05-26 16:39:57 +05:30
e36fd816da
Removing unused matcher
2021-05-25 05:21:23 +05:30
cad836d34e
Added CVE-2020-15227
2021-05-22 17:22:45 +05:30
26fc5c2dfa
Added CVE-2021-27850
2021-05-21 09:04:16 +05:30
20eb4b5084
Merge pull request #1510 from geeknik/patch-96
...
Create CVE-2021-29622.yaml
2021-05-20 22:17:13 +05:30
a320fd7720
Merge pull request #1494 from Techbrunch/magento-stuff
...
Security Checks for Magento - Templates and workflow
2021-05-20 20:04:25 +05:30
67bf4fab3c
Update CVE-2021-29622.yaml
2021-05-20 13:14:28 +00:00
dde1e5e736
Create CVE-2021-29622.yaml
2021-05-20 13:13:18 +00:00
788fe276ed
Update CVE-2009-0545.yaml
2021-05-19 14:53:06 +00:00
c55b2c58db
Create CVE-2009-0545.yaml
2021-05-19 14:40:37 +00:00
74449f98ed
Removing additional requests
2021-05-19 06:50:49 +05:30
0c6a3051e8
Create CVE-2020-36112.yaml
2021-05-18 22:56:54 +00:00
776776621a
Added a few Magento related templates
2021-05-18 15:53:10 +02:00
78abf0d8a2
Merge pull request #1480 from nrathaus/master
...
Changes to reference and description
2021-05-17 21:54:41 +05:30
ce200510a6
changed for testing locally, reverting it back
2021-05-17 21:45:53 +05:30
fa73765221
regex update
2021-05-17 21:42:41 +05:30
cd9321d4cb
minor update
2021-05-17 19:32:49 +05:30
0cf6e5507e
Update and rename cves/2021/CVE-2021-31800.yaml to cves/2014/CVE-2014-3744.yaml
2021-05-17 13:18:10 +00:00
c0d13a6def
Merge pull request #1475 from Ganofins/patch-3
...
Create CVE-2021-24176.yaml
2021-05-16 22:15:39 +05:30
1d9cdf949b
Update CVE-2021-24176.yaml
2021-05-16 22:12:33 +05:30
ae6b2b42bf
Shorter check
2021-05-16 16:12:59 +03:00
dbdf6e8b6e
Better description
2021-05-16 15:53:51 +03:00
0d836a40f8
Much better description
2021-05-16 15:50:33 +03:00
14a612623a
Some dots make it easier to ready
2021-05-16 15:49:02 +03:00
6df4482c23
Make description more managable
2021-05-16 15:46:17 +03:00
f659e820b7
Much better description and references
2021-05-16 15:44:54 +03:00
e46fcb9e9a
Adding CVE-2021-27651
2021-05-16 15:10:08 +05:30
4170b2d3e3
Create CVE-2021-24176.yaml
2021-05-16 12:59:32 +05:30
5e2eaaf7a7
Update CVE-2021-31800.yaml
2021-05-16 02:16:34 +05:30
4e1c4986f8
Create CVE-2021-31800.yaml
2021-05-15 18:56:07 +00:00
fdec804118
Template fix
2021-05-15 19:25:57 +05:30
7b4d736b94
Adding additional matcher
2021-05-14 22:15:50 +05:30
77b95af240
Update CVE-2021-31537.yaml
2021-05-12 20:27:33 +00:00
8365697de4
Update CVE-2021-31537.yaml
2021-05-12 20:25:22 +00:00
7dcfccff74
Create CVE-2021-31537.yaml
2021-05-12 20:23:19 +00:00
d63b9e1cb8
Adding missing tags
2021-05-13 00:54:59 +05:30
ff93978e09
Removing status matcher to avoid missing true positives results.
2021-05-12 02:04:56 +05:30
20eae78810
improved matcher
2021-05-12 00:32:16 +05:30
ce680a546c
Improved matcher
2021-05-12 00:25:14 +05:30
de70b699bc
More references
2021-05-11 23:47:49 +05:30
1c04ba5abc
Additional matchers
2021-05-11 23:47:09 +05:30
79962222c5
cve-2017-12149 jboss deserialization rce
2021-05-11 12:07:05 +01:00
682b9fbbc3
Adding status matcher
2021-05-11 02:48:45 +05:30
bfddeccb31
path update
2021-05-11 02:42:34 +05:30
1913076aef
Update CVE-2017-7269.yaml
2021-05-09 22:50:07 +05:30
ce63f8ebea
Update CVE-2017-7269.yaml
2021-05-09 15:43:32 +00:00
f6dc6a1376
Update CVE-2017-7269.yaml
2021-05-09 15:16:07 +00:00
c0f5cf03ab
tags update
2021-05-09 20:41:52 +05:30
f18a611286
Delete CVE-2018-0101.yaml
...
Temporarily removing as current matcher is not sufficient to match this accurately.
2021-05-09 17:12:50 +05:30
988d09e2de
Added CVE-2021-28073
2021-05-07 20:30:23 +05:30
5fca66c2a5
Added CVE-2020-9490
2021-05-07 19:24:44 +05:30
c56111663f
Added CVE-2021-30461
2021-05-07 18:00:10 +05:30
cee291e366
Merge pull request #1419 from dwisiswant0/add/GHSL-2020-325
...
Hotfix: Update operator
2021-05-07 16:46:43 +05:30
1f5cbe507c
Update operator
2021-05-06 16:24:08 +07:00
1198c7e724
Merge pull request #1382 from dwisiswant0/add/GHSL-2020-325
...
Add CVE-2021-29441
2021-05-05 18:26:10 +05:30
22f123ff79
template update
2021-05-05 18:23:07 +05:30
a14c1ce233
Added strict matcher
2021-05-05 17:26:14 +05:30
931f8833bf
removing weak matcher
2021-05-05 17:13:51 +05:30
1d2a7b370f
Adding strict matcher
2021-05-05 17:04:46 +05:30
c2c381787f
updating condition
2021-05-05 16:58:40 +05:30
68a9a5f954
Merge pull request #1302 from projectdiscovery/CVE-2020-7247
...
Adding CVE-2020-7247 🔥 🔥
2021-05-05 00:02:23 +05:30
f8ebcb9239
Merge pull request #1303 from projectdiscovery/oob-templates-update
...
OOB Template updates (WIP)
2021-05-05 00:01:55 +05:30
81c7aac3ab
Merge pull request #1372 from projectdiscovery/CVE-2017-3506
...
Added CVE-2017-3506
2021-05-05 00:01:18 +05:30
2080bfdab3
Merge pull request #1380 from projectdiscovery/cves/CVE-2017-12629
...
Added CVE-2017-12629
2021-05-05 00:00:43 +05:30
d2ea9d2da0
Using Get configurations open API endpoint
2021-05-04 13:18:55 +07:00
a3c73e6aa3
updated workflow
2021-05-03 15:37:05 +05:30
b2ffaa1c5b
Update CVE-2018-10141.yaml
2021-05-03 15:16:29 +05:30
e94b507722
moving files around
2021-05-03 15:16:08 +05:30
15c7472891
Update CVE-2019-8446.yaml
2021-05-03 01:32:15 +05:30
cf8f9ac094
Update CVE-2019-8446.yaml
2021-05-03 01:23:15 +05:30
e7caffd3e7
Create CVE-2019-8446.yaml
2021-05-03 01:20:57 +05:30
641e125c79
improved payload
2021-05-02 18:51:04 +05:30
f838747ec1
Merge pull request #1393 from DhiyaneshGeek/master
...
ZyXEL NAS RCE,Oracle iPlanet Improper Authorization,NetScalar AAA Login Panel,ShareCenter Login Page
2021-05-02 17:18:15 +05:30
534fcc8964
Update CVE-2020-9315.yaml
2021-05-02 17:14:03 +05:30
837ca10f23
minor updates
2021-05-02 17:07:30 +05:30
e76d10a3c7
Make reference visible
2021-05-02 08:51:18 +03:00
a6b8fd6e67
Adding CVE-2019-13462
2021-05-02 00:24:21 +05:30
3ec1a82d82
Create CVE-2020-9315.yaml
2021-05-01 16:38:36 +05:30
3012822716
Create CVE-2020-9054.yaml
2021-05-01 16:15:03 +05:30
bfc959a5a6
Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates
2021-04-30 20:11:38 +03:00
dad40cadfc
Temporarily moving to branch
2021-04-30 21:45:18 +05:30
2860cdfb4a
Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates
2021-04-29 08:38:11 +03:00
3a51f45be5
Update description
2021-04-28 21:01:25 +07:00
56d09dda92
Update CVE-2021-29442.yaml
2021-04-28 18:30:55 +05:30
64a45f2439
Add CVE-2021-29442
2021-04-28 12:01:34 +07:00
486103e0d4
Add CVE-2021-29441
2021-04-28 11:54:36 +07:00
1f2b2d05c1
False positive in the matcher, the content of the file has: "= 5.3.1 =" in it, not just a number on its own in addition, it has "1. ... something" in it causing FP
2021-04-27 16:09:27 +03:00
daff7a614c
RAW requests
2021-04-27 16:55:09 +05:30
7a2edf0085
Moving files around
2021-04-27 16:38:12 +05:30
e9621ed0a0
Payload and matcher update
2021-04-27 16:37:02 +05:30
68b06c50a4
Update CVE-2017-3506.yaml
2021-04-26 21:16:27 +05:30
b6c1ab4ac8
Update CVE-2019-17382.yaml
2021-04-26 20:05:45 +05:30
e257a691f3
Merge pull request #1359 from Open-Sec/patch-1
...
Update CVE-2019-17382.yaml
2021-04-26 20:04:03 +05:30
73e17259fd
Added more payloads
2021-04-26 20:01:51 +05:30
8ca815d191
Update CVE-2017-3506.yaml
2021-04-26 15:20:04 +05:30
6eae4191d6
Added CVE-2017-3506
2021-04-26 15:18:57 +05:30
8b7fbeb786
Added hostname
2021-04-25 13:02:41 +05:30
564c7635ec
In template payload input and fixes
2021-04-24 09:29:34 +05:30
d6c0dfa5c5
Update CVE-2019-17382.yaml
...
Sometimes dashboards get deleted and asking just for an specific numbre will give a false negative
2021-04-23 16:15:16 -05:00
4d3a55cfca
Merge pull request #1353 from geeknik/patch-75
...
Create CVE-2014-2321.yaml
2021-04-23 22:14:45 +05:30
34d8d2a2c9
Update CVE-2014-2321.yaml
2021-04-23 22:12:45 +05:30
7d9cb28f33
Merge pull request #1355 from geeknik/patch-77
...
Create CVE-2019-15859.yaml
2021-04-23 22:05:43 +05:30
627448a876
Merge pull request #1354 from geeknik/patch-76
...
Create CVE-2017-15715.yaml
2021-04-23 22:03:42 +05:30
c3379618ab
matching against uploaded string in file
2021-04-23 22:02:27 +05:30
d9f32d0312
Update CVE-2017-15715.yaml
2021-04-23 21:48:57 +05:30
f596d64a47
Update CVE-2014-4210.yaml
2021-04-23 19:41:38 +05:30
6c3634a162
Update CVE-2017-15715.yaml
2021-04-23 19:27:38 +05:30
7d0fea2bab
making it unique for every new scans
2021-04-23 19:22:23 +05:30
b75885491f
Create CVE-2019-15859.yaml
2021-04-23 13:38:16 +00:00
8fc4e54a36
Create CVE-2017-15715.yaml
2021-04-23 13:34:52 +00:00
debd9dd2bc
Create CVE-2014-2321.yaml
2021-04-23 13:32:38 +00:00
7203040e96
minor update
2021-04-23 18:51:52 +05:30
ee74145a98
template update
2021-04-23 15:38:41 +05:30
8a9c25f21c
Merge pull request #1329 from davidmckennirey/kentico-cms-deser-vuln
...
Add Kentico CMS Deserialization RCE (CVE-2019-10068)
2021-04-23 14:41:21 +05:30
bfe1b00af3
Update CVE-2019-10068.yaml
2021-04-23 14:38:40 +05:30
3608b6c162
Update CVE-2019-10068.yaml
2021-04-23 14:36:58 +05:30
28e1900715
minor updates
2021-04-23 14:29:22 +05:30
76c08284ce
Adding more references
2021-04-23 14:21:15 +05:30
c539514cdd
Update CVE-2021-27905.yaml
2021-04-23 14:18:51 +05:30
33c9b30143
Template fix and minor updates
2021-04-23 14:14:49 +05:30
6ca4f1c5d2
Create CVE-2021-27905
2021-04-23 12:53:49 +05:30
5af8fe5e34
Moving into draft for better matching
2021-04-23 12:45:49 +05:30
2f434d0440
Update CVE-2021-24146.yaml
2021-04-23 08:50:02 +05:30
6cd5b9d35c
CVE update
2021-04-23 08:47:52 +05:30
5ce3ebc7f7
Update CVE-2019-10068.yaml
2021-04-22 21:29:09 +05:30
622748c6f6
Description and references
2021-04-22 12:06:27 +03:00
71645c8c5c
Description and references
2021-04-22 12:04:36 +03:00
7bd3bc65b8
Description and references
2021-04-22 12:02:19 +03:00
4c048c4de1
Description and reference
2021-04-22 11:59:05 +03:00
65b6c57e9f
Temporarily removing this template
2021-04-22 09:46:29 +05:30
2c8fca0c1d
remove trailing spaces
2021-04-21 23:06:29 -04:00
1a01c80dd8
Add Kentico CMS Deserialization RCE (CVE-2019-10068)
2021-04-21 22:57:28 -04:00
ced9938646
Merge pull request #1215 from projectdiscovery/princechaddha-patch-3
...
Create CVE-2015-8399.yaml
2021-04-21 23:57:24 +05:30
98dbbe4d0f
Merge pull request #1225 from projectdiscovery/princechaddha-patch-8
...
Create CVE-2017-8917.yaml
2021-04-21 23:57:11 +05:30
a6c178bd90
Merge pull request #1226 from projectdiscovery/princechaddha-patch-9
...
Create CVE-2015-7297.yaml
2021-04-21 23:56:56 +05:30
b5d16381de
Merge pull request #1220 from projectdiscovery/princechaddha-patch-5
...
Create CVE-2014-3704.yaml
2021-04-21 23:55:51 +05:30
51ae3a6d1f
Update CVE-2015-8399.yaml
2021-04-21 23:55:23 +05:30
fb4020a894
Merge pull request #1245 from projectdiscovery/princechaddha-patch-13
...
Create CVE-2018-8770.yaml
2021-04-21 23:53:08 +05:30
bc4e678ed1
Merge pull request #1235 from projectdiscovery/princechaddha-patch-10
...
Create CVE-2018-17246.yaml
2021-04-21 23:43:01 +05:30
2681015072
Merge pull request #1278 from projectdiscovery/princechaddha-patch-15
...
Create CVE-2017-5521.yaml
2021-04-21 23:42:18 +05:30
0e2a270a11
minor update
2021-04-21 22:08:46 +05:30
5b598fb291
Add files via upload
2021-04-21 21:05:47 +05:30
ba47278ff6
Merge pull request #1319 from Al-AizHashim/master
...
CVE-2018-13379 traversal path is corrected
2021-04-21 12:59:33 +05:30
6cb0b89738
minor update
2021-04-21 12:46:44 +05:30
f91c579fb3
Update CVE-2021-28480.yaml
2021-04-21 12:24:19 +05:30
c2a990a0d9
CVE-2018-13379 traversal path is corrected
2021-04-21 02:15:12 +03:00
beb1ac700e
Update CVE-2021-28480.yaml
2021-04-21 02:51:05 +05:30
8e8ef1a0dd
Update CVE-2021-28480.yaml
2021-04-21 02:42:50 +05:30
5a8949554c
Create CVE-2021-28480.yaml
2021-04-21 02:34:10 +05:30
d89e613dc6
Update CVE-2019-17558.yaml
2021-04-21 00:27:22 +05:30
9117c91bd0
Update CVE-2017-12635.yaml
2021-04-19 14:28:00 +05:30
385aff0b7c
Update CVE-2017-9506.yaml
2021-04-19 13:17:56 +05:30
3a8edbffe6
I think the 'words' were placed in the wrong place
2021-04-19 09:32:33 +03:00
b1f15e3c29
Not familar with the term "RPE" tried to look it up, can't find it, so I think this should be RCE
2021-04-19 08:31:33 +03:00
de4f25fce7
OOB Template updates (WIP)
2021-04-18 22:06:07 +05:30
866ad44553
Merge pull request #1301 from pikpikcu/patch-150
...
Create CVE-2019-17270
2021-04-18 20:53:47 +05:30
64e3e49ea2
template name update
2021-04-18 20:47:43 +05:30
be92728c36
Merge pull request #1300 from nrathaus/master
...
Descriptions and references
2021-04-18 20:41:47 +05:30
af3905d2db
Update CVE-2020-7247.yaml
2021-04-18 20:18:32 +05:30
dad0d1b3a4
Adding CVE-2020-7247
2021-04-18 20:15:41 +05:30
a9aba00d42
Update CVE-2011-0049.yaml
2021-04-18 20:09:39 +05:30
0ee0c0870f
Description and References
2021-04-18 16:02:50 +03:00
4beb5e8495
Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates
2021-04-18 16:00:42 +03:00
d26f311cdf
Descriptions and references
2021-04-18 16:00:27 +03:00
6597c83c02
Create CVE-2011-0049.yaml
2021-04-18 10:16:06 +00:00
8652ce2262
minor update
2021-04-17 21:24:29 +05:30
44c26e52d5
Merge pull request #1130 from pikpikcu/patch-132
...
Added CVE-2017-12542
2021-04-17 21:19:53 +05:30
41d1d4258b
Update CVE-2017-12542.yaml
2021-04-17 21:18:58 +05:30
0ed9083f12
Merge pull request #1231 from Mad-robot/patch-1
...
Update CVE-2019-17558.yaml
2021-04-17 21:04:15 +05:30
954fe60b85
Merge pull request #1286 from geeknik/patch-66
...
Create CVE-2021-3374.yaml
2021-04-17 20:45:29 +05:30
216a40129c
Merge pull request #1288 from pikpikcu/patch-148
...
Create CVE-2015-1880
2021-04-17 19:40:57 +05:30
15bbb07505
Update CVE-2015-1880.yaml
2021-04-17 19:40:44 +05:30
6bf828d61d
Update CVE-2021-28937.yaml
2021-04-16 02:21:48 +05:30
aa2ac6471d
Update CVE-2021-28937.yaml
2021-04-15 20:31:01 +00:00
e7a1fde388
Update CVE-2021-28937.yaml
2021-04-15 20:24:24 +00:00
6edf8c3a8b
Create CVE-2021-28937.yaml
2021-04-15 20:20:27 +00:00
d4e78af66b
Update CVE-2020-19625.yaml
2021-04-15 23:37:47 +05:30
3ebf76685a
Create CVE-2020-19625.yaml
2021-04-15 13:16:11 +00:00
79428b13a5
Create CVE-2015-1880.yaml
2021-04-15 08:28:35 +00:00
a6417c6fa5
Update CVE-2021-3374.yaml
2021-04-14 23:54:48 +00:00
de7321344f
Create CVE-2021-3374.yaml
2021-04-14 20:56:03 +00:00
9e87970190
Merge pull request #1246 from projectdiscovery/princechaddha-patch-14
...
Adding CVE-2009-1151
2021-04-14 17:41:22 +05:30
29f1bdcdf7
template updates
2021-04-14 17:34:59 +05:30
e732259392
Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates
2021-04-14 10:53:12 +03:00
3eea755de1
Adding status matcher
2021-04-14 01:37:04 +05:30
155987f7a7
Update CVE-2017-5521.yaml
2021-04-14 01:33:05 +05:30
1073ba9234
Create CVE-2017-5521.yaml
2021-04-14 01:24:49 +05:30
eed5fb11da
Add CVE-2020-35846
2021-04-14 02:45:06 +07:00
8ab8a1d53e
Add CVE-2020-35848
2021-04-14 02:30:08 +07:00
65a7eae942
Add CVE-2020-35847
2021-04-14 02:19:41 +07:00
b0c0a3063a
Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates
2021-04-13 17:02:10 +03:00
e72784eb53
Merge pull request #1249 from geeknik/patch-67
...
Create CVE-2018-2894.yaml
2021-04-13 18:10:38 +05:30
4196c94ac5
Update CVE-2018-2894.yaml
2021-04-13 18:08:13 +05:30
ed8ea816eb
Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates
2021-04-12 09:35:53 +03:00
a5f19bdf4f
Merge pull request #1250 from DhiyaneshGeek/master
...
CVE-2021-30151
2021-04-11 17:55:49 +05:30
b0b45dd599
Update CVE-2021-30151.yaml
2021-04-11 17:51:41 +05:30
b05c8f402b
Added CVE-2020-15500
2021-04-11 16:12:21 +05:30
a4ffb88b17
Added CVE-2018-7422
2021-04-11 15:49:26 +05:30
f0a7b5da37
Update CVE-2017-12542.yaml
2021-04-10 23:48:05 +00:00
43e59a577e
Update CVE-2021-30151.yaml
2021-04-11 01:00:49 +05:30
4c9cbc1692
Update CVE-2021-30151.yaml
2021-04-11 00:57:38 +05:30
1692ef1821
Update CVE-2021-30151.yaml
2021-04-10 23:47:02 +05:30
1e0b6ea383
Update CVE-2021-30151.yaml
2021-04-10 23:43:37 +05:30
3e3db1c972
Update CVE-2021-30151.yaml
2021-04-10 23:37:38 +05:30
e87a0671ee
Create CVE-2021-30151.yaml
2021-04-10 22:58:27 +05:30
32a3410ff8
Create CVE-2018-2894.yaml
2021-04-10 13:44:41 +00:00
8e5c1150a8
Update CVE-2019-18394.yaml
2021-04-10 03:49:09 +05:30
abad438c3b
Create CVE-2018-8770.yaml
2021-04-10 03:40:04 +05:30
a4ab51f7de
Update CVE-2018-17246.yaml
2021-04-09 15:44:40 +05:30
0b746c97c2
Added additional check to avoid possible false positive
2021-04-09 13:13:36 +05:30
8e74c7f37a
Update CVE-2018-17246.yaml
2021-04-09 02:35:42 +05:30
bfc477e817
Create CVE-2018-17246.yaml
2021-04-09 02:31:08 +05:30
d4025787ca
misc changes
2021-04-08 15:30:03 +05:30
e6b81affd3
Update CVE-2019-17558.yaml
2021-04-08 15:25:15 +05:30
aacf7c8cd3
Update CVE-2019-17558.yaml
2021-04-08 15:16:32 +05:30
c2751f24d3
Update CVE-2019-17558.yaml
2021-04-08 15:14:25 +05:30
a3510d29a0
Create CVE-2017-7921.yaml
2021-04-07 22:30:37 +05:30
e314a1273b
Create CVE-2015-7297.yaml
2021-04-07 22:22:11 +05:30
0e07c2d618
Create CVE-2017-8917.yaml
2021-04-07 22:09:33 +05:30
578ec0bac1
Create CVE-2018-9995.yaml
2021-04-07 18:03:31 +05:30
bcab1f76c3
Create CVE-2014-3704.yaml
2021-04-07 17:52:53 +05:30
2d3051aea1
Merge pull request #1207 from nrathaus/master
...
Fixed some template issues
2021-04-07 14:27:19 +05:30
7bc9df16d7
misc fix
2021-04-07 14:26:16 +05:30
8575e24234
Create CVE-2015-8399.yaml
2021-04-07 01:07:06 +05:30
7b44702946
Remove duplicated CVE-2020-26073 template
2021-04-06 15:40:01 +02:00
9f5d6c5eaa
Spelling
2021-04-06 13:43:41 +03:00
989ee9d9dd
Spelling
2021-04-06 13:38:03 +03:00
098d3157e5
Relevant reference
2021-04-06 13:27:39 +03:00
ac932b6c33
description
2021-04-06 13:25:50 +03:00
2de36ad7b4
description and reference
2021-04-06 13:22:54 +03:00
b6b0b3dfda
Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates
2021-04-06 13:19:07 +03:00
7ae63d0899
Adding missing host for network based templates
2021-04-06 12:58:03 +05:30
8fdfc64e54
misc tag updates
2021-04-06 12:16:11 +05:30
1790babdd4
Better reference
2021-04-04 12:49:07 +03:00
38decfa33d
Merge pull request #1190 from dwisiswant0/add/cves/2021/CVE-2021-21402
...
Add CVE-2021-21402
2021-04-02 18:05:38 +05:30
3f8303a1de
Update CVE-2020-24550.yaml
2021-04-02 14:31:43 +05:30
7111fb4bbe
Create CVE-2020-24550.yaml
2021-04-02 14:11:43 +05:30
c2c7c9b0c2
Add header matcher
2021-04-02 07:17:18 +07:00
efae3ccd11
Update vulnerable paths
2021-04-02 07:11:37 +07:00
bb33d0597b
Update routes
2021-04-02 05:28:27 +07:00
029706a939
Add more vulnerable path
2021-04-02 05:17:29 +07:00
79c0046596
Update severity
2021-04-02 05:17:07 +07:00
ad69b05f11
🔥 Add CVE-2021-21402
2021-04-02 05:16:53 +07:00
198e192137
Description
2021-04-01 17:16:07 +03:00
3c8ec933e7
Description
2021-04-01 17:09:29 +03:00
15aba2ca14
improved matcher
2021-04-01 14:31:34 +05:30
8d022bcbf7
Merge pull request #1058 from dwisiswant0/add/cves/2018/CVE-2018-0101
...
Add CVE-2018-0101
2021-04-01 14:02:28 +05:30
06827e41c9
Update CVE-2018-0101.yaml
2021-04-01 14:01:09 +05:30
b7efe0b3c9
minor fixes and improvements
2021-04-01 13:59:23 +05:30
f5321b040f
Merge branch 'master' into patch-30
2021-04-01 13:33:08 +05:30
b273765752
minor changes
2021-04-01 13:28:30 +05:30
5df627a909
Update CVE-2020-25078.yaml
2021-04-01 12:53:55 +05:30
052c61ba31
Update CVE-2020-25078.yaml
2021-04-01 03:49:46 +00:00
3735db2221
Create CVE-2020-25078.yaml
2021-04-01 03:35:06 +00:00
570cc1a220
Update CVE-2021-21975.yaml
2021-03-31 22:45:42 +05:30
c6bb3b0151
Merge pull request #1164 from geeknik/patch-34
...
Create CVE-2020-23517.yaml
2021-03-31 15:39:35 +05:30
ee3930525c
Merge pull request #1166 from pikpikcu/patch-136
...
Add CVE-2020-15148
2021-03-31 15:36:49 +05:30
fd763a3d69
Update CVE-2020-15148.yaml
2021-03-31 15:35:43 +05:30
063d685ac5
Update CVE-2021-21975.yaml
2021-03-31 06:27:33 +05:30
94a4c87c3f
safe matcher
2021-03-31 06:22:10 +05:30
8f7e7cba24
Add CVE-2021-21975
2021-03-31 02:43:36 +03:00
8cecc0f7d0
More description
2021-03-30 15:21:02 +03:00
c20d89466a
Description and referenes
2021-03-30 15:10:17 +03:00
98fd86e313
description and reference
2021-03-30 15:01:26 +03:00
6be989e58f
Description and references
2021-03-30 15:00:27 +03:00
b07a3bab2f
Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates
2021-03-30 10:18:12 +03:00
4f7f8a2291
Missing reference
2021-03-30 10:16:57 +03:00
5976870cfd
Spelling mistake
2021-03-30 09:51:17 +03:00
b0a9be9d08
Description
2021-03-30 09:50:02 +03:00
95899eee43
Missing condition
2021-03-30 09:49:14 +03:00
fba16d5f49
Description
2021-03-30 09:27:35 +03:00
4d1addb6f1
Create CVE-2020-15148.yaml
2021-03-29 20:47:04 +00:00
b25ba806dc
Update CVE-2017-17562.yaml
2021-03-29 20:04:26 +00:00
4363fcded1
Update CVE-2020-23517.yaml
2021-03-29 19:37:59 +00:00
8ec0053387
Create CVE-2020-23517.yaml
2021-03-29 15:52:28 +00:00
4f7faf94ff
Create CVE-2020-28208.yaml
2021-03-29 17:09:45 +05:30
7b3c6c12a6
Create CVE-2017-17562.yaml
...
WIP
2021-03-27 21:22:33 +00:00
2925d53ab9
Fix wrong identations
2021-03-28 02:09:26 +07:00
b804f5f676
Add more possible crash 5xx status codes
2021-03-28 02:07:23 +07:00
53d8ab8322
Using DSL type of matcher
2021-03-28 02:06:37 +07:00
e80e67a592
Using RAW requests
2021-03-28 02:06:04 +07:00
cf99b0a32b
Update CVE-2019-9955.yaml
2021-03-26 14:12:05 +05:30
e942511845
description and relevant reference
2021-03-26 09:53:07 +03:00
33755631fe
description and reference
2021-03-26 09:52:14 +03:00
95afdb43d7
description and reference
2021-03-26 09:49:26 +03:00
957fca9fba
Description and reference
2021-03-26 09:47:35 +03:00
68cee6ae86
Another reference
2021-03-26 09:44:13 +03:00
80b4647f7c
Reference and description
2021-03-26 09:43:58 +03:00
66f141f733
Better reference
2021-03-25 12:08:15 +02:00
b84a491478
Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates
2021-03-25 12:06:18 +02:00
1107344fab
Reference and description
2021-03-25 12:05:45 +02:00
826cfa89e3
Reference and description
2021-03-25 12:02:27 +02:00
cd1723f699
Description and references
2021-03-25 12:00:46 +02:00
351167e91f
removing redundant boolean check
2021-03-25 00:28:50 +01:00
282dfa1c5c
Added CVE-2015-3337
2021-03-25 02:21:43 +05:30
4bbbd79b70
Merge pull request #1124 from alanbriangh/master
...
Add CVE-2020-35489 Detection
2021-03-25 01:29:36 +05:30
904c9666d1
matcher and workflow update
2021-03-25 01:28:03 +05:30
5d8bf70470
Merge pull request #1137 from nrathaus/master
...
Description and References on some templates were missing
2021-03-24 23:02:15 +05:30
bc5ab99237
Update CVE-2021-26295.yaml
2021-03-24 22:57:35 +05:30
8e781f97d0
Update CVE-2021-26295.yaml
2021-03-24 22:57:35 +05:30
7a8d56ee65
Update CVE-2021-26295.yaml
2021-03-24 22:57:35 +05:30
635cc7fae7
Update CVE-2021-26295.yaml
2021-03-24 22:57:35 +05:30
9987dc0c36
Update CVE-2021-26295.yaml
2021-03-24 22:57:35 +05:30
33e3fac8da
Update CVE-2021-26295.yaml
2021-03-24 22:57:35 +05:30
c55a72a168
Update CVE-2021-26295.yaml
2021-03-24 22:57:35 +05:30
38daf751a3
Update CVE-2021-26295.yaml
2021-03-24 22:57:35 +05:30
3876cb6b55
Create CVE-2021-26295.yaml
2021-03-24 22:57:35 +05:30
8b4c8b8549
wrong branch 😅
2021-03-24 22:46:39 +05:30
423be58952
Update CVE-2020-17453.yaml
2021-03-24 22:42:56 +05:30
8c2b41e7bd
Merge branch 'master' of https://github.com/Mad-robot/nuclei-templates into pr/1132
2021-03-24 22:32:03 +05:30
92cda223eb
Create CVE-2020-17453.yaml
2021-03-24 21:05:32 +05:30
362858a6c9
Added CVE-2016-10033
2021-03-24 17:03:21 +05:30
86ad55d66f
Adding to workflow
2021-03-24 14:07:22 +05:30
dbaf445933
Update CVE-2021-26295.yaml
2021-03-24 13:02:29 +05:30
f04bd785db
Update CVE-2021-26295.yaml
2021-03-24 13:00:26 +05:30
be600fd099
References
2021-03-24 09:01:00 +02:00
f56f240951
Descriptions and references
2021-03-24 09:00:21 +02:00
314a487512
Description
2021-03-24 08:56:49 +02:00
4d7b0396ae
Description
2021-03-24 08:54:09 +02:00
6e7314ac41
Better description
2021-03-24 08:51:54 +02:00
532c5373a1
Missing description
2021-03-24 08:50:41 +02:00
904f156121
Missing description
2021-03-24 08:50:31 +02:00
93bc3a76b1
Better references and description
2021-03-24 08:48:11 +02:00
3f3357f2a6
Update CVE-2021-26295.yaml
2021-03-23 21:48:13 +05:30
a2ab8b67e5
Update CVE-2021-26295.yaml
2021-03-23 21:42:58 +05:30
744e4c504c
Update CVE-2021-26295.yaml
2021-03-23 21:42:35 +05:30
d392432b15
Update CVE-2021-26295.yaml
2021-03-23 21:32:09 +05:30
a8149d0cfc
Create CVE-2021-26295.yaml
2021-03-23 21:30:15 +05:30
e49b4a7d8a
✏️ Add wordpress to tags
2021-03-23 19:57:15 +07:00
2e233a0aa2
🔨 Update matchers
2021-03-23 19:56:56 +07:00
53c0e1e954
🔥 Add CVE-2017-1000170
2021-03-23 19:56:42 +07:00
832a39f418
Update CVE-2017-12542.yaml
2021-03-23 11:33:07 +00:00
4244af34d2
Create CVE-2017-12542.yaml
2021-03-23 11:26:08 +00:00
7105ac9c46
Merge pull request #1127 from nrathaus/master
...
Prettify tests
2021-03-23 03:54:09 +05:30
e8ef1c198e
Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates
2021-03-22 16:34:00 +02:00
ca66fa321b
Update CVE-2021-22986.yaml
2021-03-22 18:21:42 +05:30
ee8c34576c
Description and reference
2021-03-22 10:55:38 +02:00
555dba6268
References
2021-03-22 10:54:22 +02:00
301dd3c243
Add reference
2021-03-22 10:51:39 +02:00
f5831c3f97
Add description
2021-03-22 10:49:07 +02:00
704a217663
Make references visible
2021-03-22 10:22:27 +02:00
a8f3e09621
Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates
2021-03-22 09:28:32 +02:00
5ae86fcaef
Update CVE-2020-35489.yaml
2021-03-22 01:22:38 +05:30
1f8170332a
Update CVE-2020-35489.yaml
2021-03-22 01:21:07 +05:30
339077ff43
misc fixes
2021-03-22 01:19:30 +05:30
f7a508ad1e
FIX: Indentation
2021-03-21 15:08:38 -03:00
Prince Chaddha
Prince Chaddha
GwanYeong Kim
Muhammad Daffa
sandeep
Geeknik Labs
Suman Kar
Dwi Siswanto
Ivanov Vladimir
sandeep
Suman Kar
Keith
Robbie
SaN ThosH
PikPikcU
wyatt
Wyatt Dahlenburg
Sidahmed
lulz
Dhiyaneshwaran
Noam Rathaus
darrenmartyn
Philippe Delteil
Alex-null
root
0xsapra
Moritz
Techbrunch
Ganesh Bagaria
Pina
Open Sec
David McKennirey
jeyaseelan8
Al-AizHashim
Julian Vilas
daemonum
Mzack9999
Alan Brian