939b8bee6c
Create myucms-lfr.yaml
2021-04-10 03:10:57 +05:30
03c6126f60
Create etouch-v2-sqli.yaml
2021-04-07 22:03:17 +05:30
797098e7fc
Create feifeicms-lfr.yaml
2021-04-07 19:54:35 +05:30
220a6461fb
Create 74cms-sqli.yaml
2021-04-06 23:59:29 +05:30
0c243d188a
tags improvements
2021-04-06 13:45:46 +05:30
e4b9397b06
Adding missing wordpress tags
2021-04-06 13:19:32 +05:30
8fdfc64e54
misc tag updates
2021-04-06 12:16:11 +05:30
d34ca6773b
misc changes
2021-04-05 23:55:18 +05:30
e934241101
Update empirecms-xss.yaml
2021-04-05 22:13:16 +05:30
d789177b06
Create empirecms-xss.yaml
2021-04-05 08:16:27 +00:00
40fb0066c3
more reference
2021-04-02 21:38:35 +05:30
3daa03c799
Update cache-poisoning.yaml
2021-04-02 19:19:50 +05:30
5eb1e78503
Create cache-poisoning.yaml
2021-04-02 15:14:09 +02:00
532dc4cf0c
Added more info and strict matcher
2021-03-29 17:05:11 +05:30
82fbfcf962
Create unauth-message-read.yaml
2021-03-28 23:42:11 -07:00
59574cc701
Revert "Create apache-spark-rce"
2021-03-26 00:16:29 +05:30
28bf41830f
Merge branch 'patch-104' of https://github.com/pikpikcu/nuclei-templates into pikpikcu-patch-104
2021-03-25 22:37:34 +05:30
2aa7c97e40
Update apache-spark-rce.yaml
2021-03-25 21:25:59 +05:30
b5c4ed0e2e
Update wordpress-rce-simplefilelist.yaml
2021-03-25 19:21:30 +05:30
351167e91f
removing redundant boolean check
2021-03-25 00:28:50 +01:00
9a750ba944
Merge pull request #1136 from pikpikcu/patch-134
...
Create thinkcmf-arbitrary-code-execution.yaml
2021-03-24 17:22:58 +05:30
915aeb93bb
Update thinkcmf-arbitrary-code-execution.yaml
2021-03-24 17:21:31 +05:30
356856a983
Create thinkcmf-arbitrary-code-execution.yaml
2021-03-24 01:10:20 +00:00
568a795319
Update thinkcmf-lfi.yaml
2021-03-24 00:42:53 +00:00
1e541d324f
Merge pull request #1116 from pikpikcu/patch-127
...
Create tpshop-directory-traversal.yaml
2021-03-21 21:04:43 +05:30
7af81a3ce8
Update tpshop-directory-traversal.yaml
2021-03-21 21:04:33 +05:30
0c20bbf8b5
Merge pull request #1119 from pikpikcu/patch-130
...
Create xdcms-sqli
2021-03-21 20:43:51 +05:30
8fd55de534
Update error-based-sql-injection.yaml
2021-03-21 20:28:22 +05:30
7674824c98
Create xdcms-sqli.yaml
2021-03-21 10:15:44 +00:00
ce51bfee06
Create tpshop-directory-traversal.yaml
2021-03-21 02:53:52 +00:00
a3d7047521
Update error-based-sql-injection.yaml
...
Reverting back to raw http request. Sending encoded requests using net/http were missing blatant SQL injections.
Before:
[INF] Loading templates...
[INF] [error-based-sql-injection] Error based SQL injection (@geeknik) [high]
[INF] Loading workflows...
[INF] Using 1 rules (1 templates, 0 workflows)
[INF] No results found. Better luck next time!
After:
[INF] Loading templates...
[INF] [error-based-sql-injection] Error based SQL injection (@geeknik) [high]
[INF] Loading workflows...
[INF] Using 1 rules (1 templates, 0 workflows)
[2021-03-20 14:48:59] [error-based-sql-injection:MariaDB] [http] [high] https://REDACTED/ ') [check the manual that corresponds to your MariaDB server version]
2021-03-20 19:52:48 +00:00
c04d699985
wordpress-infinitewp-auth-bypass
2021-03-19 02:10:02 +05:30
75cd16f667
Merge pull request #1100 from geeknik/patch-51
...
Create error-based-sql-injection.yaml
2021-03-18 14:06:56 +05:30
0c602a56e7
Update error-based-sql-injection.yaml
2021-03-18 14:05:19 +05:30
ad84ecb792
tag improvements
2021-03-18 13:24:36 +05:30
988d0c75c9
Update error-based-sql-injection.yaml
2021-03-17 20:39:57 +00:00
019a193aec
Update error-based-sql-injection.yaml
2021-03-17 19:31:08 +00:00
be020357e8
Update error-based-sql-injection.yaml
2021-03-17 19:25:02 +00:00
99bb91c255
Update error-based-sql-injection.yaml
2021-03-17 19:19:27 +00:00
8fe5f4e1ff
Create error-based-sql-injection.yaml
...
🎉 OMG 🎉
Detect Error Based SQL Injection
Includes regex matchers + extractors for 29 Database Engines
💥 https://buymeacoffee.com/geeknik 💥
2021-03-17 17:30:53 +00:00
3c8432686c
Update viewlinc-crlf-injection.yaml
2021-03-16 14:05:20 +05:30
e951c75c59
Update viewlinc-crlf-injection.yaml
2021-03-15 20:04:37 +00:00
0068d7ae0c
Create viewlinc-crlf-injection.yaml
...
This was discovered whilst participating in a private Hacker0x01 bug bounty program.
2021-03-15 20:00:56 +00:00
fb65d9341b
Merge branch 'master' into patch-4
2021-03-15 00:30:30 +05:30
ffae74a6a8
Updated to openam-detection
2021-03-15 00:27:59 +05:30
47a7ea85e0
Merge pull request #1066 from r3naissance/master
...
Add teacherease-xss and parentlink-xss to /vulnerabilities/other/
2021-03-14 17:12:05 +05:30
e18b34cc64
few updates
2021-03-14 17:07:52 +05:30
ed87cc42a8
Create pmb-local-file-disclosure.yaml
2021-03-12 22:42:45 +05:30
9ff6adff73
Update wordpress-accessible-wpconfig.yaml
2021-03-12 17:58:35 +05:30
28b0636f2d
syntax update
2021-03-12 17:32:16 +05:30
c35ed8a408
Merge branch 'master' into wordpress-cves
2021-03-12 17:25:27 +05:30
a0785510f5
Update apache-flink-unauth-rce.yaml
2021-03-12 12:42:17 +05:30
db18f137e6
linting updates
2021-03-12 12:40:16 +05:30
bee7bbdac0
Merge pull request #1037 from PurushottamanR/master
...
Moodle jitsi plugin XSS detection
2021-03-12 01:13:37 +05:30
830cc84899
Update moodle-jitsi-plugin-xss.yaml
2021-03-12 01:08:56 +05:30
48dc97b6fe
Update moodle-jitsi-plugin-xss.yaml
2021-03-12 01:06:37 +05:30
655308b864
Added reference
2021-03-11 09:50:26 -07:00
86faa863f6
Added some reference
2021-03-11 20:33:36 +05:30
881cedaabc
Adding teacherease-xss
2021-03-10 12:36:44 -07:00
8a015fe306
Adding parentlink-xss
2021-03-10 12:36:08 -07:00
ed91c0813e
more typos
2021-03-10 19:45:41 +05:30
06945d56a8
fixing typos
2021-03-10 19:33:49 +05:30
de3b1d27ea
added templates
2021-03-10 17:06:11 +05:30
ce919375eb
Create wordpress-auth-bypass-wptimecapsule.yaml
2021-03-10 12:29:08 +05:30
79ebf9b5bd
Update moodle-jitsi-plugin-xss.yaml
2021-03-07 14:28:07 +05:30
944493d343
wip
2021-03-07 13:48:33 +05:30
d67648b6d7
Update moodle-jitsi-plugin-xss.yaml
2021-03-07 13:43:48 +05:30
17a4f315e7
moodle jitsi plugin XSS detection
2021-03-06 13:52:35 -05:00
7ab99e908a
moodle jitsi plugin XSS detection
2021-03-06 13:25:44 -05:00
04cc9c44fb
xss matchers update
2021-03-04 21:32:34 +05:30
e9c9c4822f
misc update
2021-03-04 21:04:06 +05:30
4e31596426
Fix 🛠️
2021-03-03 22:07:46 +07:00
8a2f8ca4ee
Fix name 🛠️
2021-03-03 22:03:52 +07:00
b831644c7e
Update apache-sprak-rce.yaml
2021-03-03 21:49:11 +07:00
0389429c1f
Create apache-sprak-rce.yaml
2021-03-03 11:02:51 +00:00
fdd015042f
Update simple-employee-rce.yaml
2021-03-02 21:42:00 +05:30
0e78ce0a5b
Create simple-employee-rce.yaml
2021-03-01 11:40:03 +00:00
b9d3325fc6
Create ruijie-networks-lfi.yaml
2021-03-01 10:21:32 +00:00
4c319fc79f
Update ruijie-networks-rce.yaml
2021-03-01 13:37:10 +05:30
7ec42cf499
Update ruijie-networks-rce.yaml
2021-03-01 06:57:32 +00:00
c55692e01c
Create ruijie-networks-rce.yaml
2021-03-01 06:56:46 +00:00
481ba6aba1
Create duomicms-sql-injection.yaml
2021-02-26 22:44:31 +07:00
4fb3b338a0
Merge pull request #954 from daffainfo/patch-2
...
Update wordpress-user-enumeration.yaml
2021-02-26 11:22:23 +05:30
36694ceec9
wp workflow update
2021-02-26 11:21:15 +05:30
1f3b105490
Update wordpress-user-enumeration.yaml
2021-02-26 08:36:34 +07:00
3a22ab23c0
Merge pull request #938 from gano3s/master
...
Improvement of the regex in open redirection template
2021-02-26 01:20:40 +05:30
5241e0f960
Update open-redirect.yaml
2021-02-26 01:16:45 +05:30
acd1ab4735
misc changes
2021-02-26 00:21:07 +05:30
2e3aa4355f
Merge pull request #18 from projectdiscovery/master
...
improved matcher
2021-02-25 23:42:45 +05:30
9bcd36338e
improved matcher
2021-02-25 23:38:40 +05:30
b24a1eecae
Create wordpress-affiliatewp-allowed-products.yaml
2021-02-25 23:21:42 +05:30
1355185b45
improved matcher
2021-02-25 23:04:21 +05:30
237b268e31
Merge pull request #937 from pikpikcu/patch-82
...
Create weiphp-path-traversal
2021-02-25 18:43:18 +05:30
1dbd3b082b
matcher update
2021-02-25 18:29:49 +05:30
277f7c21d6
Delete weiphp-sql-injection.yaml
2021-02-25 12:37:44 +00:00
bf11f5889f
Update weiphp-sql-injection.yaml
2021-02-25 12:02:35 +00:00
609ac0e098
Update rockmongo-xss.yaml
2021-02-25 17:16:33 +05:30
3ea4c3a826
Update rockmongo-xss.yaml
2021-02-25 17:15:21 +05:30
63a71afa62
Create rockmongo-xss.yaml
2021-02-25 11:28:40 +00:00
c2982994a4
Update weiphp-sql-injection.yaml
2021-02-25 16:36:57 +05:30
30483cf1e5
Update weiphp-path-traversal.yaml
2021-02-25 16:18:18 +05:30
8927253cb3
Improvement of the regex in open redirection template
2021-02-25 11:13:01 +01:00
4a55ac7128
Update weiphp-sql-injection.yaml
2021-02-25 10:02:04 +00:00
e81b961873
Update weiphp-sql-injection.yaml
2021-02-25 09:51:58 +00:00
fe995933bc
Create weiphp-sql-injection.yaml
2021-02-25 09:49:18 +00:00
48f55d25d0
Update weiphp-path-traversal.yaml
2021-02-25 15:03:56 +05:30
f0f11568c0
Update weiphp-path-traversal.yaml
2021-02-25 09:07:26 +00:00
b18c68674c
Create weiphp-path-traversal.yaml
2021-02-25 08:59:17 +00:00
9e9aa20646
Merge pull request #929 from pikpikcu/patch-80
...
zhiyuan-oa session leak
2021-02-24 23:24:28 +05:30
a0175f96c4
Update zhiyuan-oa-info-leak.yaml
2021-02-24 23:22:23 +05:30
00abdb4732
Update yarn-resourcemanager-rce.yaml
2021-02-24 21:29:13 +05:30
99b1ae2d46
Improved matcher
2021-02-24 21:28:48 +05:30
2f39160e65
Create zhiyuan-oa-info-leak.yaml
2021-02-24 08:07:57 +00:00
b86a406d26
Create zhiyuan-oa-session-leak.yaml
2021-02-24 08:06:28 +00:00
f6042d3d43
Update wordpress-accessible-wpconfig.yaml
2021-02-22 09:51:01 +07:00
cd2a3a7a77
Update dedecms-openredirect.yaml
2021-02-20 23:12:14 +05:30
d118e3e8cf
Create dedecms-openredirect.yaml
2021-02-21 00:35:47 +07:00
6f74d31e0b
few updates
2021-02-20 22:41:54 +05:30
6ace5ab376
Create finereport-path-traversal.yaml
2021-02-20 23:36:48 +07:00
5ffc1aa211
Update metinfo-lfi.yaml
2021-02-20 19:24:20 +05:30
6e19a6eb45
Create metinfo-lfi.yaml
2021-02-20 07:25:43 +07:00
d77862ef7b
adding tags
2021-02-19 13:51:21 +05:30
e537b279a0
Create cisco-webui-rce.yaml
2021-02-19 14:39:32 +07:00
b538a7f481
Update seacms-rce.yaml
2021-02-18 20:38:50 +05:30
15bff234ef
Create seacms-rce.yaml
2021-02-18 20:05:35 +07:00
0ca299e92b
adding wp template and workflow
2021-02-17 17:33:03 +05:30
86243622cc
tag updates
2021-02-16 22:32:57 +05:30
6d88f03e08
moving files around
2021-02-16 14:54:04 +05:30
a9769ed11b
Update oracle-glassfish-lfi.yaml
2021-02-16 14:25:42 +05:30
b38e84957e
Update oracle-glassfish-lfi.yaml
2021-02-16 08:41:11 +00:00
35e0b8e2f4
Create oracle-glassfish-lfi.yaml
2021-02-16 08:38:42 +00:00
a772670227
Merge pull request #866 from pikpikcu/patch-66
...
Create cacti-weathermap-file-write
2021-02-16 02:19:45 +05:30
b4a9d2ec68
Update cacti-weathermap-file-write.yaml
2021-02-16 02:17:45 +05:30
f165b4bef4
Merge pull request #867 from Mad-robot/master
...
Create Zebra_Form_XSS.yaml
2021-02-16 00:30:09 +05:30
3bb6b81dc5
misc changes
2021-02-16 00:28:11 +05:30
07eb454de6
Update open-redirect.yaml
...
Seems a bit rude to add a production website like test.com to a template like this will generate a ton of unexpected traffic for a company who might not be expecting it or appreciating it.
2021-02-15 17:42:57 +00:00
55b6b33e93
misc changes
2021-02-15 21:29:12 +05:30
18fde04cb7
Update Zebra_Form_XSS.yaml
2021-02-15 17:54:22 +05:30
1655381ae6
Update Zebra_Form_XSS.yaml
2021-02-15 17:53:52 +05:30
68ffcca822
Update Zebra_Form_XSS.yaml
2021-02-15 17:42:09 +05:30
91768dc160
Create Zebra_Form_XSS.yaml
2021-02-15 16:13:31 +05:30
3f3f9b9f43
Create samsung-wlan-ap-rce.yaml
2021-02-15 06:17:07 +00:00
50c0d50d3d
Create samsung-wlan-ap-xss.yaml
2021-02-15 05:53:18 +00:00
ef6b416535
Create cacti-weathermap-file-write.yaml
2021-02-15 04:39:47 +00:00
9daed142be
Create samsung-wlan-ap-lfi.yaml
2021-02-15 04:30:32 +00:00
eb50c32a64
Update rails6-xss.yaml
2021-02-15 04:27:45 +05:30
4d8510a60d
Update rails6-xss.yaml
2021-02-15 00:31:40 +05:30
f577b9c91e
Merge pull request #860 from Mad-robot/master
...
Update rails6-xss.yaml
2021-02-15 00:17:02 +05:30
6222b9fe49
Added working poc as comment
2021-02-15 00:15:07 +05:30
58835cfc59
Update oa-tongda-path-traversal.yaml
2021-02-14 20:24:12 +05:30
Prince Chaddha
sandeep
PikPikcU
Mohamed Elbadry
Rojan Rijal
PD-Team
Mzack9999
Geeknik Labs
Dhiyaneshwaran
Chapman Schleiss
Chapman Schleiss
purushottamanr
sandeep
Muhammad Daffa
ganoes
SaN ThosH