Commit Graph

8356 Commits (74ae2366b3e027d1ae5912cd28eec564c1d823a7)

Author SHA1 Message Date
j3ssie b89dee6aae Path Traversal in Ghost CMS < 5.42.1 2023-05-08 13:27:57 +07:00
Ritik Chaddha 7d521d0264
updated matcher 2023-05-08 11:36:48 +05:30
Dhiyaneshwaran df0d7dca53 added matcher-condition and 2023-05-08 11:07:36 +05:30
Ritik Chaddha f96e98052e payload update 2023-05-08 11:07:00 +05:30
Dhiyaneshwaran 5875abf833
Merge pull request #7182 from ViCrack/CVE-2020-14883
Updated CVE-2020-14883
2023-05-08 11:03:41 +05:30
Dhiyaneshwaran 5c457fab94
Merge pull request #7187 from Arrnitage/main
change to default password
2023-05-08 10:53:16 +05:30
GitHub Action dcffb39e7c Auto WordPress Plugins Update [Mon May 8 04:02:16 UTC 2023] 🤖 2023-05-08 04:02:16 +00:00
Arm!tage 9dbcf5b78a change to default password 2023-05-08 00:19:29 +08:00
ViCrack 5b88116b2e fix xstream 2023-05-07 00:36:32 +08:00
ViCrack 4e638c079f replace cat command with rand_int 2023-05-06 23:08:06 +08:00
Prince Chaddha 124b2230cf templates added 2023-05-06 17:42:20 +05:30
Ritik Chaddha 1732a81929
added shodan 2023-05-06 12:38:20 +05:30
Ritik Chaddha cb6ebb417b
updated variable and matcher 2023-05-06 12:29:32 +05:30
ViCrack df22dcc281 add support for Windows 2023-05-06 14:21:07 +08:00
Ritik Chaddha b17a5d1177
Merge branch 'main' into oracle-opera-login 2023-05-06 00:01:48 +05:30
Ritik Chaddha cc4a213613
Merge pull request #7158 from DhiyaneshGeek/sb-meetup
Sb meetup
2023-05-06 00:00:58 +05:30
Ritik Chaddha 1cb374b3a3
Update oracle-opera-login.yaml 2023-05-05 23:53:14 +05:30
pussycat0x 0e09e7c289
Merge pull request #7179 from dogasantos/CVE-2021-43798.yaml
fixed false positive produce by the old win.ini regex
2023-05-05 23:02:26 +05:30
pussycat0x 906a0a65e3
Update CVE-2021-43798.yaml 2023-05-05 22:56:15 +05:30
Dhiyaneshwaran 511a601dd6
Merge pull request #7175 from Co5mos/CVE-2022-40879
Updated CVE-2022-40879 Template
2023-05-05 22:52:41 +05:30
Dhiyaneshwaran c585da0abe
Merge pull request #7176 from Co5mos/CVE-2022-0678
Updated CVE-2022-0678 Template
2023-05-05 22:52:23 +05:30
pussycat0x 8bafd0510d
Merge branch 'main' into CVE-2021-43798.yaml 2023-05-05 22:51:45 +05:30
pussycat0x a82301ad7b
Merge pull request #7171 from Mys7ic/fix_CVE-2021-43798
fix regex for win.ini
2023-05-05 22:36:01 +05:30
sandeep 8c98270a8c typo update 2023-05-05 19:04:02 +05:30
pussycat0x 983915d4bc
Rename CVE-2020-11547.yaml to CVE-2020-11547.yaml 2023-05-05 19:02:53 +05:30
Dhiyaneshwaran 6ea44267d5
Merge branch 'main' into main 2023-05-05 18:35:06 +05:30
pussycat0x 4660c9abf3
lint -fix 2023-05-05 16:48:47 +05:30
Prince Chaddha 872a146a25
Create waf-fuzz.yaml 2023-05-05 15:45:38 +05:30
Prince Chaddha 9a11ae394b
Merge pull request #7046 from projectdiscovery/add-cpe-epss
Added CPE and EPSS Score to CVE Templates
2023-05-05 15:33:15 +05:30
mlec a6c3f4f9c1
fix(false-positive): Remove trailing space 🩹 2023-05-05 08:27:56 +02:00
mlec 8c792b2911
fix(false-positive): Add removed part after rebased 🩹
Refs:
- https://github.com/projectdiscovery/nuclei-templates/issues/5934
- https://github.com/projectdiscovery/nuclei-templates/pull/5939
2023-05-05 08:17:35 +02:00
pussycat0x 576c0d64d4
Merge pull request #7154 from j4vaovo/patch-33
Create CVE-2017-17731.yaml
2023-05-05 11:47:15 +05:30
pussycat0x 0649a8eec8
Update and rename http/cves/CVE-2017-17731.yaml to http/cves/2017/CVE-2017-17731.yaml 2023-05-05 11:43:29 +05:30
pussycat0x a7b52d98a9
Merge branch 'main' into main 2023-05-05 10:38:42 +05:30
pussycat0x 9e7fa915d9
protocol update 2023-05-05 10:35:38 +05:30
pussycat0x 9159fde669
Update and rename cves/2021/CVE-2021-40870.yaml to http/cves/2021/CVE-2021-40870.yaml 2023-05-05 10:35:10 +05:30
pussycat0x 8458967376
Rename cves/2020/CVE-2020-5847.yaml to http/cves/2020/CVE-2020-5847.yaml 2023-05-05 10:33:34 +05:30
GitHub Action adef8ce3a2 Auto WordPress Plugins Update [Fri May 5 04:02:08 UTC 2023] 🤖 2023-05-05 04:02:08 +00:00
Ritik Chaddha c6c2a0d413
Update CVE-2018-13379.yaml 2023-05-05 00:05:34 +05:30
Ritik Chaddha 9f85fbc113
Update CVE-2019-19908.yaml 2023-05-05 00:04:56 +05:30
Ritik Chaddha 561b42ebe7 Merge branch 'main' into add-cpe-epss 2023-05-05 00:00:13 +05:30
dogasantos dfadeb5774 fixed false positive produce by the old win.ini regex 2023-05-04 14:28:33 -03:00
Co5mos c6e1cabcfe Added CVE-2023-2356 Template 2023-05-04 20:59:25 +08:00
Co5mos c76b0a862a Updated CVE-2022-0678 Template 2023-05-04 20:37:18 +08:00
Co5mos 4565b0a6fe Updated CVE-2022-40879 Template 2023-05-04 20:34:45 +08:00
Prince Chaddha b08774126b
Merge pull request #7155 from projectdiscovery/add-max-request
Added `max-request` counter of each template
2023-05-04 17:55:42 +05:30
dm-ct f74e8bd714
Update unauth-ztp-ping.yaml
accidentally left a ?ref tag in a reference.
2023-05-04 10:54:09 +01:00
dm-ct 9ec854c91e
Create unauth-ztp-ping.yaml
Creates a template that can detect ZyXEL ZTP (Zero Touch Provisioning) interfaces that lack any authentication checks.
Authentication checks were added in the fixes for CVE-2023-28771
2023-05-04 10:14:16 +01:00
Ritik Chaddha 05eb753985
Update apache-ofbiz-log4j-rce.yaml 2023-05-04 11:05:06 +05:30
Ritik Chaddha 0c049e028e updated templates 2023-05-04 00:16:17 +05:30
Ritik Chaddha 109d452109 Merge branch 'update-log4j' of https://github.com/projectdiscovery/nuclei-templates into update-log4j 2023-05-03 23:51:59 +05:30
Ritik Chaddha 82a8526978 updated templates 2023-05-03 23:51:23 +05:30
Ritik Chaddha 8da408f77c
name update=id 2023-05-03 23:42:07 +05:30
Ritik Chaddha 89185ad7fe
fix 2023-05-03 23:31:55 +05:30
Ritik Chaddha b50e22b7da updated log4j 2023-05-03 23:21:44 +05:30
avisscr daa28f13fb eclipse-panel, CVE-2021-34427.yaml 2023-05-03 13:43:39 +00:00
myztique e5c97d8319 fix regex for win.ini 2023-05-03 15:00:00 +02:00
Ritik Chaddha 3cf8d0bd94
Update All Existing Log4j Templates 2023-05-03 17:21:48 +05:30
Ritik Chaddha c735ba6524
Create red-lion-panel.yaml 2023-05-03 17:13:12 +05:30
GitHub Action 72d74b4c25 Auto WordPress Plugins Update [Wed May 3 04:02:18 UTC 2023] 🤖 2023-05-03 04:02:18 +00:00
pussycat0x b5772b0b37
Merge pull request #7162 from projectdiscovery/wpml-xss
Added WPML XSS
2023-05-02 23:25:56 +05:30
Barthy f62fe3538e
Merge branch 'projectdiscovery:main' into umami_default_login 2023-05-02 17:02:54 +02:00
sandeep 2175d81329 removed duplicate key 2023-05-02 18:29:30 +05:30
sandeep ea116bde6b moving file around 2023-05-02 18:24:56 +05:30
sandeep e5ae45127e Merge remote-tracking branch 'origin' into add-cpe-epss 2023-05-02 18:21:24 +05:30
sandeep a470c2a150 Merge remote-tracking branch 'origin' into add-max-request 2023-05-02 17:52:27 +05:30
sandeep 4858f39e1e removed duplicate key 2023-05-02 17:51:59 +05:30
Dhiyaneshwaran 5d204637bd Update CVE-2017-17731.yaml 2023-05-02 16:39:12 +05:30
Dhiyaneshwaran 3a0ceae738 fix 2023-05-02 16:29:15 +05:30
Dhiyaneshwaran 547bc9ee0e
Merge pull request #7144 from j4vaovo/patch-31
Create apache-zeppelin-unauth.yaml
2023-05-02 14:33:52 +05:30
Dhiyaneshwaran e0190816e1 Merge branch 'patch-31' of https://github.com/j4vaovo/nuclei-templates into pr/7144 2023-05-02 14:31:07 +05:30
Dhiyaneshwaran 93ec538017 Update apache-zeppelin-unauth.yaml 2023-05-02 14:30:55 +05:30
Dhiyaneshwaran 70d2eecc92 fix matcher and header 2023-05-02 14:23:21 +05:30
sandeep a13b8eac7f lint fixes 2023-05-02 13:02:45 +05:30
Dhiyaneshwaran 1c1bc41ea2 added metadata 2023-05-02 11:03:28 +05:30
GitHub Action 88c25d4565 Auto WordPress Plugins Update [Tue May 2 04:02:19 UTC 2023] 🤖 2023-05-02 04:02:19 +00:00
Dhiyaneshwaran 8eb2083647
Create oracle-opera-login.yaml 2023-05-02 08:34:35 +05:30
Barthy 02948cb6a6
Create umami-default-login.yaml 2023-05-01 23:12:20 +02:00
Ritik Chaddha 23b6a05402
updated matcher 2023-05-01 23:15:58 +05:30
sandeep e762172422 Added WPML XSS 2023-05-01 21:18:57 +05:30
Prince Chaddha 59ac982c42
Create CVE-2019-3398.yaml 2023-05-01 17:54:05 +05:30
Prince Chaddha d6d8d9f4ae
Merge branch 'main' into patch-23 2023-05-01 09:07:54 +05:30
Prince Chaddha 966d37b02e
updated template path and protocol name 2023-05-01 09:07:12 +05:30
Dhiyaneshwaran 2c6d6cb3c0 Update postman-key.yaml 2023-04-30 17:49:29 +05:30
j4vaovo f5df1a74cb
Update vmware-siterecovery-log4j-rce.yaml (#7157) 2023-04-30 16:03:43 +05:30
Dhiyaneshwaran 9286f2174d
Create postman-key.yaml 2023-04-30 13:53:37 +05:30
Sandeep Singh 28f4302dcd
Merge branch 'main' into add-max-request 2023-04-29 13:32:16 +05:30
MostInterestingBotInTheWorld a34153eb9c
Dashboard Content Enhancements (#7149)
Dashboard Content Enhancements
2023-04-28 09:11:35 -04:00
Ritik Chaddha 392187b67e
Merge branch 'main' into CVE-2023-20864 2023-04-28 16:17:54 +05:30
Dhiyaneshwaran 27f30265bd
Merge pull request #7126 from projectdiscovery/CVE-2023-27350
PaperCut - Unauthenticated Remote Code Execution  CVE-2023-27350
2023-04-28 16:01:47 +05:30
Dhiyaneshwaran 77ee8acc56
change to http 2023-04-28 15:32:24 +05:30
Dhiyaneshwaran 00ef22599c
Rename cves/2023/CVE-2023-27350.yaml to http/cves/2023/CVE-2023-27350.yaml 2023-04-28 15:32:02 +05:30
Dhiyaneshwaran 0f573ef4dc
Merge pull request #7120 from For3stCo1d/minio-default-login
Update minio-default-login.yaml
2023-04-28 15:29:36 +05:30
Dhiyaneshwaran bb63a4aeab
Merge pull request #7116 from j4vaovo/patch-28
Create apache-druid-kafka-connect-rce.yaml
2023-04-28 15:27:30 +05:30
Dhiyaneshwaran 5136c8f23c
Rename vulnerabilities/apache/apache-druid-kafka-connect-rce.yaml to http/vulnerabilities/apache/apache-druid-kafka-connect-rce.yaml 2023-04-28 15:25:03 +05:30
Dhiyaneshwaran dde0ee23dc
Merge pull request #7103 from lu4nx/mail-archive
Add Mail-archive OSINT
2023-04-28 15:23:10 +05:30
Dhiyaneshwaran cbf186eb55
Update and rename osint/mail-archive.yaml to http/osint/mail-archive.yaml 2023-04-28 14:02:52 +05:30
Dhiyaneshwaran 1280b5b17b
Merge pull request #7142 from j4vaovo/patch-29
Create powerjob-default-login.yaml
2023-04-28 14:00:34 +05:30
sandeep 1f5b1f2c47 Added max request counter of each template 2023-04-28 13:41:21 +05:30
pussycat0x dd2b93a095
Merge pull request #7145 from projectdiscovery/CVE-2023-29489
Create CVE-2023-29489.yaml
2023-04-28 13:18:18 +05:30
pussycat0x 474f99f7c4
Rename CVE-2023-29489.yaml to CVE-2023-29489.yaml 2023-04-28 13:15:11 +05:30
pussycat0x d1aa1491e7
Merge branch 'main' into minio-default-login 2023-04-28 11:51:01 +05:30
pussycat0x 78f48036db
Update and rename default-logins/minio/minio-default-login.yaml to http/default-logins/minio/minio-default-login.yaml 2023-04-28 11:39:36 +05:30
Dhiyaneshwaran 4545b9082c
Rename http/cve/CVE-2023-29489.yaml to http/cve/2023/CVE-2023-29489.yaml 2023-04-28 10:55:44 +05:30
pussycat0x f04bd2658b
Merge pull request #7150 from Co5mos/CVE-2023-1671
Added CVE-2023-1671 Template
2023-04-28 10:40:31 +05:30
j4vaovo ca0b9665cd
Create CVE-2017-17731.yaml 2023-04-28 08:53:23 +08:00
Dhiyaneshwaran 658575fb02
Merge pull request #5520 from edoardottt/CVE-2020-27481
Add CVE-2020-27481
2023-04-27 23:10:11 +05:30
Dhiyaneshwaran 38514e4bd1
Update and rename cves/2020/CVE-2020-27481.yaml to http/cves/2020/CVE-2020-27481.yaml 2023-04-27 23:06:26 +05:30
Dhiyaneshwaran 2a363a80a2
Update and rename cves/2023/CVE-2023-1671.yaml to http/cves/2023/CVE-2023-1671.yaml 2023-04-27 22:45:45 +05:30
Sandeep Singh 4615f5ab9d
validate workflow fix (#7151)
* workflow fixes

* disable downloading template as we have it locally.
2023-04-27 22:04:16 +05:30
Ritik Chaddha 793b661255
Update and rename cves/2023/CVE-2023-20864.yaml to http/cves/2023/CVE-2023-20864.yaml 2023-04-27 21:14:42 +05:30
Dhiyaneshwaran b72996aa42
change of protocol attribute 2023-04-27 17:54:02 +05:30
Dhiyaneshwaran 10bd0df1a3
Rename CVE-2023-29489.yaml to CVE-2023-29489.yaml 2023-04-27 17:44:38 +05:30
pussycat0x 795999751e
Refactoring the directory structure based on protocols (#7146)
* Refactoring the directory structure based on protocols

* Update CVE-2021-30175.yaml

* lint fix

---------

Co-authored-by: Ritik Chaddha <44563978+ritikchaddha@users.noreply.github.com>
2023-04-27 17:01:53 +05:30
pussycat0x ada36e744f
Refactoring the directory structure based on protocols (#7147)
* @pussycat0x Refactoring the directory structure based on protocols

* Update CVE-2023-29922.yaml
2023-04-27 17:01:18 +05:30
pussycat0x 8d4c85bdc7
Description -update 2023-04-27 16:28:20 +05:30
savik 53191a877a
fix the path (#7148)
* fix the path

* lint fix

---------

Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>
2023-04-27 15:55:32 +05:30
pussycat0x caa647f61a
format -update 2023-04-27 15:26:28 +05:30
Dhiyaneshwaran a14e0b382e
Rename http/misconfiguration/apacheiapacheapacheapache-zeppelin-unauth.yaml to http/misconfiguration/apache/apache-zeppelin-unauth.yaml 2023-04-27 11:30:00 +05:30
Dhiyaneshwaran 4c73bc5869
Rename misconfiguration/apache-zeppelin-unauth.yaml to http/misconfiguration/apacheiapacheapacheapache-zeppelin-unauth.yaml 2023-04-27 11:29:33 +05:30
sandeep da52872ba2 moving files around 2023-04-27 10:21:55 +05:30
Prince Chaddha e0af666e1c
Refactoring the directory structure based on protocols (#7137)
* moving http templates

* updated cves.json

* moved network CVEs

* updated scripts

* updated workflows

* updated requests to http

* replaced network to tcp

---------

Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>
2023-04-27 09:58:59 +05:30
GitHub Action e7b61d6662 Auto Template Signing [Sat Jun 1 19:25:56 UTC 2024] 🤖 2024-06-01 19:25:57 +00:00
Dhiyaneshwaran 2d875681b9
Fix FP netrc 2024-06-01 23:14:36 +05:30
GitHub Action 8117d4754f Auto Template Signing [Sat Jun 1 13:57:15 UTC 2024] 🤖 2024-06-01 13:57:16 +00:00
Ritik Chaddha 2cbc9c0b8d
Merge pull request #9714 from theMiddleBlue/new-directory-listing
New directory listing template
2024-06-01 19:24:44 +05:30
Ritik Chaddha 368d4737d0
Fix FN matcher 2024-06-01 19:11:04 +05:30
GitHub Action 281cd62161 Auto Template Signing [Sat Jun 1 09:07:19 UTC 2024] 🤖 2024-06-01 09:07:19 +00:00
Ritik Chaddha 4c1a802a8b
Fix FP opensns-rce.yaml 2024-06-01 14:28:57 +05:30
GitHub Action 5e8cb13b60 Auto Template Signing [Sat Jun 1 06:52:59 UTC 2024] 🤖 2024-06-01 06:53:01 +00:00
Ritik Chaddha 31a1abd830
Merge pull request #9951 from projectdiscovery/product-queries-update
product/queries updated
2024-06-01 12:20:47 +05:30
Prince Chaddha a6d4f5de35
Update directory-listing.yaml 2024-06-01 10:29:33 +04:00
GitHub Action cbc2220fd6 Auto Template Signing [Sat Jun 1 06:26:31 UTC 2024] 🤖 2024-06-01 06:26:32 +00:00
Ritik Chaddha 111fa440f6
Merge pull request #9952 from projectdiscovery/Mohammad-Reza-Omrani-EgDkFCzWzjQkZB6fcyfTKV
Added template for CVE-2024-3822
2024-06-01 11:54:11 +05:30
Ritik Chaddha 73e5461538
fix template 2024-06-01 11:51:52 +05:30
Dhiyaneshwaran c7c77fdcc2
minor update 2024-06-01 11:49:40 +05:30
GitHub Action 7490d98a1b Auto Template Signing [Sat Jun 1 06:19:22 UTC 2024] 🤖 2024-06-01 06:19:22 +00:00
Ritik Chaddha a5f1b0a986
Merge pull request #9949 from projectdiscovery/easy-wi-installer
Create easy-wi-installer.yaml
2024-06-01 11:47:05 +05:30
GitHub Action 24cb459f5f Auto Template Signing [Sat Jun 1 06:03:58 UTC 2024] 🤖 2024-06-01 06:03:58 +00:00
Ritik Chaddha 3dc88dc1fb
Update easy-wi-installer.yaml 2024-06-01 11:32:34 +05:30
Ritik Chaddha 5101638963
Merge pull request #9950 from rxerium/snowflake-favicon
Snowflake Favicon Hash
2024-06-01 11:31:29 +05:30
Ritik Chaddha e76f6aa44f
updated format, matchers and template path 2024-06-01 11:29:10 +05:30
Prince Chaddha 2fc42cb2a4 product/queries updated 2024-05-31 23:23:20 +04:00
Rishi e09b9abae3
snowflake favicon hash 2024-05-31 19:48:35 +01:00
Dhiyaneshwaran 3d3fb89879
Create easy-wi-installer.yaml 2024-05-31 23:11:54 +05:30
GitHub Action 11e4ce2a0e Auto Template Signing [Fri May 31 17:40:57 UTC 2024] 🤖 2024-05-31 17:40:57 +00:00
Ritik Chaddha 95dc53c127
Fix FP open-redirect-generic.yaml 2024-05-31 22:36:15 +05:30
GitHub Action f380070c3f Auto Template Signing [Fri May 31 16:36:23 UTC 2024] 🤖 2024-05-31 16:36:24 +00:00
Ritik Chaddha 9755ae17c6
Merge pull request #9945 from projectdiscovery/orchard-installer
Create orchard-installer.yaml
2024-05-31 22:04:53 +05:30
Ritik Chaddha 3884371be5
Update orchard-installer.yaml 2024-05-31 22:02:24 +05:30
Ritik Chaddha 758e1687c6
Update confluence-installer.yaml 2024-05-31 22:01:36 +05:30
Dhiyaneshwaran 17a131d3a7
Create confluence-installer.yaml 2024-05-31 20:14:35 +05:30
Dhiyaneshwaran c2b6ea9a58
Create orchard-installer.yaml 2024-05-31 20:03:51 +05:30
Muhammad Daffa b474e45161
Rename http/misconfiguration/cubebackup-setup-installer.yaml to http/misconfiguration/installer/cubebackup-setup-installer.yaml 2024-05-31 16:15:44 +07:00
theMiddleBlue dd5224cb5f fix: trailing spaces 2024-05-06 20:28:36 +02:00
theMiddleBlue 124086fe32 feat: new directory listing template 2024-05-06 20:04:28 +02:00