daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
28,791 Commits
18 Branches
0 Tags
171 MiB
Commit Graph

1251 Commits (621141dae2c5093553f9869a9c30c75b55c2e0e3)

Author SHA1 Message Date
Dhiyaneshwaran 33fd3977b2
Merge pull request #6997 from j4vaovo/patch-1 
Update php-zerodium-backdoor-rce.yaml
 2023-04-04 08:47:09 +05:30
GitHub Action 1a5385a40f Auto Generated CVE annotations [Fri Mar 31 16:11:22 UTC 2023] 🤖 2023-03-31 16:11:22 +00:00
Ritik Chaddha dec264a418
Merge pull request #7009 from MostInterestingBotInTheWorld/dashboard 
Dashboard Content Enhancements
 2023-03-31 21:19:24 +05:30
Ritik Chaddha 1f2c5974ad
matched severity with cvss 2023-03-31 21:16:04 +05:30
Prince Chaddha 2915092570 templates added 2023-03-31 16:58:24 +05:30
j4vaovo 741be7721f
Update php-zerodium-backdoor-rce.yaml 2023-03-31 08:12:20 +08:00
sullo 58c2f1beba Some manual enhancements to avoid dashboard issues 2023-03-30 15:49:16 -04:00
Dhiyaneshwaran c9a993f1a8
Merge pull request #6949 from j4vaovo/test 
fix php-backdoor
 2023-03-28 11:01:35 +05:30
MostInterestingBotInTheWorld 186745475b
dos2unix conversions (#6969) 
* Add description and enhance one where the UI failed to save properly.
dos2unix on a template

* Change cvedetails link to nvd

* make severities match

* Enhancement: cves/2015/CVE-2015-2863.yaml by md

* Enhancement: cves/2017/CVE-2017-14524.yaml by md

* Enhancement: cves/2017/CVE-2017-5638.yaml by md

* Enhancement: cves/2019/CVE-2019-16759.yaml by md

* Enhancement: cves/2021/CVE-2021-22986.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24155.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24347.yaml by md

* Enhancement: cves/2021/CVE-2021-25003.yaml by md

* Enhancement: cves/2021/CVE-2021-25296.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-25296.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-25298.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-28151.yaml by md

* Enhancement: cves/2021/CVE-2021-30128.yaml by md

* Enhancement: cves/2022/CVE-2022-0824.yaml by md

* Enhancement: cves/2022/CVE-2022-0824.yaml by md

* Enhancement: cves/2022/CVE-2022-0885.yaml by md

* Enhancement: cves/2022/CVE-2022-21587.yaml by md

* Enhancement: cves/2022/CVE-2022-2314.yaml by md

* Enhancement: cves/2022/CVE-2022-24816.yaml by md

* Enhancement: cves/2022/CVE-2022-31499.yaml by md

* Enhancement: cves/2022/CVE-2022-21587.yaml by md

* Enhancement: cves/2021/CVE-2021-24155.yaml by md

* Enhancement: cves/2017/CVE-2017-5638.yaml by md

* Enhancement: cves/2015/CVE-2015-2863.yaml by md

* Enhancement: cves/2022/CVE-2022-33901.yaml by md

* Enhancement: cves/2022/CVE-2022-2314.yaml by md

* Enhancement: cves/2022/CVE-2022-33901.yaml by md

* Enhancement: cves/2022/CVE-2022-34753.yaml by md

* Enhancement: cves/2022/CVE-2022-39952.yaml by md

* Enhancement: cves/2022/CVE-2022-4060.yaml by md

* Enhancement: cves/2022/CVE-2022-44877.yaml by md

* Enhancement: cves/2023/CVE-2023-0669.yaml by md

* Enhancement: cves/2023/CVE-2023-26255.yaml by md

* Enhancement: cves/2023/CVE-2023-26256.yaml by md

* Enhancement: exposures/files/salesforce-credentials.yaml by md

* Enhancement: misconfiguration/hadoop-unauth-rce.yaml by md

* Enhancement: misconfiguration/installer/nopcommerce-installer.yaml by md

* Enhancement: network/backdoor/backdoored-zte.yaml by md

* Enhancement: network/detection/ibm-d2b-database-server.yaml by md

* Enhancement: network/detection/ibm-d2b-database-server.yaml by md

* Enhancement: technologies/oracle/oracle-atg-commerce.yaml by md

* Enhancement: token-spray/api-abuseipdb.yaml by md

* Enhancement: token-spray/api-abuseipdb.yaml by md

* Enhancement: token-spray/api-dbt.yaml by md

* Enhancement: vulnerabilities/avaya/avaya-aura-rce.yaml by md

* Enhancement: vulnerabilities/avaya/avaya-aura-xss.yaml by md

* Enhancement: vulnerabilities/cisco/cisco-cloudcenter-suite-rce.yaml by md

* Enhancement: vulnerabilities/froxlor-xss.yaml by md

* Enhancement: vulnerabilities/jamf/jamf-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/mobileiron/mobileiron-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/jamf/jamf-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/opencpu/opencpu-rce.yaml by md

* Enhancement: vulnerabilities/other/academy-lms-xss.yaml by md

* Enhancement: vulnerabilities/other/caucho-resin-info-disclosure.yaml by md

* Enhancement: vulnerabilities/other/ckan-dom-based-xss.yaml by md

* Enhancement: vulnerabilities/other/couchdb-adminparty.yaml by md

* Enhancement: vulnerabilities/other/graylog-log4j.yaml by md

* Enhancement: vulnerabilities/mobileiron/mobileiron-log4j-jndi-rce.yaml by md

* Initial cleanups for syntax errors

* dashboard gremlins

* Add log4j back to name

* Enhancement: exposures/files/salesforce-credentials.yaml by cs

* Enhancement: misconfiguration/installer/nopcommerce-installer.yaml by cs

* Enhancement: network/backdoor/backdoored-zte.yaml by cs

* Enhancement: vulnerabilities/other/couchdb-adminparty.yaml by cs

* Sev and other info tweaks

* Merge conflict

* Run dos2unix against all templates

* too many newlines error

* Fix too many blank lines error

* Fix severity mismatches
Cleanup language on a new test

---------

Co-authored-by: sullo <sullo@cirt.net>
 2023-03-27 14:22:40 -04:00
sullo 14b104d9bd Fix severity mismatches 
Cleanup language on a new test
 2023-03-27 14:12:43 -04:00
MostInterestingBotInTheWorld 301fddaeb0
Dashboard Content Enhancements (#6965) 
* Add description and enhance one where the UI failed to save properly.
dos2unix on a template

* Change cvedetails link to nvd

* make severities match

* Enhancement: cves/2015/CVE-2015-2863.yaml by md

* Enhancement: cves/2017/CVE-2017-14524.yaml by md

* Enhancement: cves/2017/CVE-2017-5638.yaml by md

* Enhancement: cves/2019/CVE-2019-16759.yaml by md

* Enhancement: cves/2021/CVE-2021-22986.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24155.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24347.yaml by md

* Enhancement: cves/2021/CVE-2021-25003.yaml by md

* Enhancement: cves/2021/CVE-2021-25296.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-25296.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-25298.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-28151.yaml by md

* Enhancement: cves/2021/CVE-2021-30128.yaml by md

* Enhancement: cves/2022/CVE-2022-0824.yaml by md

* Enhancement: cves/2022/CVE-2022-0824.yaml by md

* Enhancement: cves/2022/CVE-2022-0885.yaml by md

* Enhancement: cves/2022/CVE-2022-21587.yaml by md

* Enhancement: cves/2022/CVE-2022-2314.yaml by md

* Enhancement: cves/2022/CVE-2022-24816.yaml by md

* Enhancement: cves/2022/CVE-2022-31499.yaml by md

* Enhancement: cves/2022/CVE-2022-21587.yaml by md

* Enhancement: cves/2021/CVE-2021-24155.yaml by md

* Enhancement: cves/2017/CVE-2017-5638.yaml by md

* Enhancement: cves/2015/CVE-2015-2863.yaml by md

* Enhancement: cves/2022/CVE-2022-33901.yaml by md

* Enhancement: cves/2022/CVE-2022-2314.yaml by md

* Enhancement: cves/2022/CVE-2022-33901.yaml by md

* Enhancement: cves/2022/CVE-2022-34753.yaml by md

* Enhancement: cves/2022/CVE-2022-39952.yaml by md

* Enhancement: cves/2022/CVE-2022-4060.yaml by md

* Enhancement: cves/2022/CVE-2022-44877.yaml by md

* Enhancement: cves/2023/CVE-2023-0669.yaml by md

* Enhancement: cves/2023/CVE-2023-26255.yaml by md

* Enhancement: cves/2023/CVE-2023-26256.yaml by md

* Enhancement: exposures/files/salesforce-credentials.yaml by md

* Enhancement: misconfiguration/hadoop-unauth-rce.yaml by md

* Enhancement: misconfiguration/installer/nopcommerce-installer.yaml by md

* Enhancement: network/backdoor/backdoored-zte.yaml by md

* Enhancement: network/detection/ibm-d2b-database-server.yaml by md

* Enhancement: network/detection/ibm-d2b-database-server.yaml by md

* Enhancement: technologies/oracle/oracle-atg-commerce.yaml by md

* Enhancement: token-spray/api-abuseipdb.yaml by md

* Enhancement: token-spray/api-abuseipdb.yaml by md

* Enhancement: token-spray/api-dbt.yaml by md

* Enhancement: vulnerabilities/avaya/avaya-aura-rce.yaml by md

* Enhancement: vulnerabilities/avaya/avaya-aura-xss.yaml by md

* Enhancement: vulnerabilities/cisco/cisco-cloudcenter-suite-rce.yaml by md

* Enhancement: vulnerabilities/froxlor-xss.yaml by md

* Enhancement: vulnerabilities/jamf/jamf-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/mobileiron/mobileiron-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/jamf/jamf-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/opencpu/opencpu-rce.yaml by md

* Enhancement: vulnerabilities/other/academy-lms-xss.yaml by md

* Enhancement: vulnerabilities/other/caucho-resin-info-disclosure.yaml by md

* Enhancement: vulnerabilities/other/ckan-dom-based-xss.yaml by md

* Enhancement: vulnerabilities/other/couchdb-adminparty.yaml by md

* Enhancement: vulnerabilities/other/graylog-log4j.yaml by md

* Enhancement: vulnerabilities/mobileiron/mobileiron-log4j-jndi-rce.yaml by md

* Initial cleanups for syntax errors

* dashboard gremlins

* Add log4j back to name

* Enhancement: exposures/files/salesforce-credentials.yaml by cs

* Enhancement: misconfiguration/installer/nopcommerce-installer.yaml by cs

* Enhancement: network/backdoor/backdoored-zte.yaml by cs

* Enhancement: vulnerabilities/other/couchdb-adminparty.yaml by cs

* Sev and other info tweaks

* Merge conflict

---------

Co-authored-by: sullo <sullo@cirt.net>
 2023-03-27 23:16:47 +05:30
sullo 46f56a8587 Sev and other info tweaks 2023-03-27 10:29:37 -04:00
MostInterestingBotInTheWorld 99d97e0bc6 Enhancement: vulnerabilities/other/couchdb-adminparty.yaml by cs 2023-03-27 10:27:39 -04:00
Ritik Chaddha d6fd4c1c32
Update php-zerodium-backdoor-rce.yaml 2023-03-25 23:15:46 +05:30
j4vaovo 424b8c2c62 fix php-backdoor 2023-03-24 20:03:47 +08:00
MostInterestingBotInTheWorld a7b3e23bf0 Enhancement: vulnerabilities/other/graylog-log4j.yaml by md 2023-03-23 16:09:09 -04:00
MostInterestingBotInTheWorld af695dbbf6 Enhancement: vulnerabilities/other/couchdb-adminparty.yaml by md 2023-03-23 16:04:07 -04:00
MostInterestingBotInTheWorld 194922b958 Enhancement: vulnerabilities/other/ckan-dom-based-xss.yaml by md 2023-03-23 15:51:03 -04:00
MostInterestingBotInTheWorld daf7aa41cf Enhancement: vulnerabilities/other/caucho-resin-info-disclosure.yaml by md 2023-03-23 15:46:35 -04:00
MostInterestingBotInTheWorld ec8601b0ca Enhancement: vulnerabilities/other/academy-lms-xss.yaml by md 2023-03-23 15:36:53 -04:00
Ritik Chaddha 2b5c3c48cc
Merge pull request #6823 from sullo/severity-matching 
Match severity with CVSS
 2023-03-15 20:48:33 +05:30
Dhiyaneshwaran 6d4a18a8d4
Merge pull request #5254 from Akokonunes/patch-179 
Create brightsign-dsdws-ssrf.yaml
 2023-03-14 23:17:34 +05:30
Prince Chaddha 923b16173d
Update brightsign-dsdws-ssrf.yaml 2023-03-10 20:10:06 +05:30
sullo 2a7b69bab3 Match severity with CVSS 2023-03-03 10:27:54 -05:00
Jorian Woltjer 06e9e06961 Add open-directed improvement to more templates 2023-03-01 19:22:21 +01:00
Jorian Woltjer 71fd3bf973 Reduce false-positives in open-redirect regexes 2023-03-01 09:39:14 +01:00
Dhiyaneshwaran b56027ff24
Create nextjs-redirect.yaml 2023-02-16 16:26:36 +05:30
Thibault Soubiran 8d26b3fea5 Improve Keycloak templates 2023-02-10 22:01:43 +01:00
brightio 8321b40726
Fix a typo in hashicorp-consul-rce.yaml 2023-02-10 11:24:24 +01:00
Dhiyaneshwaran c661f7c531
fix-false-positive-can-xss 2023-02-10 00:28:16 +05:30
MostInterestingBotInTheWorld 693e1e3daa
Dashboard Content Enhancements (#6613) 
Dashboard Content Enhancements
 2023-01-24 08:21:18 -08:00
GitHub Action 8fd50b3632 Auto Generated CVE annotations [Mon Jan 23 22:30:31 UTC 2023] 🤖 2023-01-23 22:30:31 +00:00
MostInterestingBotInTheWorld 0d6fbd237f
Dashboard Content Enhancements (#6598) 
Dashboard Content Enhancements
 2023-01-23 14:14:23 -08:00
GitHub Action 5addb51f6d Auto Generated CVE annotations [Mon Jan 23 10:36:01 UTC 2023] 🤖 2023-01-23 10:36:01 +00:00
Dhiyaneshwaran 2ccee035fb
Merge pull request #6586 from cryptoconman/patch-122 
Create slims-xss.yaml
 2023-01-23 15:57:03 +05:30
Ritik Chaddha 398bb21665
Merge pull request #6585 from cryptoconman/patch-121 
Create alms-xss
 2023-01-23 15:28:30 +05:30
Ritik Chaddha 095df8edcc
updated matchers 2023-01-23 15:24:33 +05:30
Ritik Chaddha f60dcf0f19
added text/html header 2023-01-23 15:17:20 +05:30
Dhiyaneshwaran 68861082fc
Merge pull request #6587 from cryptoconman/patch-123 
Create tikiwiki-xss.yaml
 2023-01-23 15:04:02 +05:30
GitHub Action f7da6d8b33 Auto Generated CVE annotations [Mon Jan 23 07:48:36 UTC 2023] 🤖 2023-01-23 07:48:36 +00:00
Ritik Chaddha 9aa77a4e09
updated matchers 2023-01-23 13:08:09 +05:30
Dhiyaneshwaran 243b12571c
matcher-update 
added additional data to keep the template uniform
 2023-01-23 10:57:54 +05:30
Dhiyaneshwaran 74b188e8e0
added-stop-first-match 2023-01-23 10:21:13 +05:30
Dhiyaneshwaran e39f508e51
fix-matcher 2023-01-23 10:20:26 +05:30
Dhiyaneshwaran ed200ecad8
fixed-formatting 2023-01-23 09:52:06 +05:30
Cryptoc0nman e0c253202e
Create sound4-disclosure.yaml 2023-01-23 01:54:11 +05:30
Cryptoc0nman 86c69575b3
Create tikiwiki-xss.yaml 2023-01-23 00:58:22 +05:30
Cryptoc0nman 7480a83529
Create slims-xss.yaml 2023-01-23 00:30:48 +05:30
Cryptoc0nman ea6e61448d
Create alms-xss 2023-01-23 00:02:57 +05:30
MostInterestingBotInTheWorld 643700ca28
Dashboard Content Enhancements (#6526) 
Dashboard Content Enhancements
 2023-01-16 12:41:15 -05:00