Commit Graph

10922 Commits (8ae26e91e1a8b97f66ef611f69a74fdb67286488)

Author SHA1 Message Date
Prince Chaddha 8ae26e91e1
Merge pull request #3146 from daffainfo/patch-249
Update api-accuweather.yaml
2021-11-16 11:53:43 +05:30
Muhammad Daffa ec50915627
Update api-accuweather.yaml 2021-11-16 05:54:18 +07:00
sandeep 4f88a66890 misc update 2021-11-15 23:05:21 +05:30
Prince Chaddha 1975af0c64
Merge pull request #3139 from gy741/rule-add-v72
Create CVE-2019-19824.yaml
2021-11-15 21:11:19 +05:30
Sandeep Singh 8bd443777c
Merge pull request #3141 from ImNightmaree/master
Remove freshdesk takeover
2021-11-15 21:10:24 +05:30
Sandeep Singh 920d1638e0
Merge pull request #3143 from righettod/master
Add a tpl for IBM MQSeries web console detection
2021-11-15 21:09:30 +05:30
sandeep fbf50f1109 format fixing 2021-11-15 21:00:17 +05:30
drighetto ef5a44cf05 Add a tpl for IBM MQSeries web console detection 2021-11-15 13:53:43 +01:00
Prince Chaddha 7566a563cd
Update CVE-2019-19824.yaml 2021-11-15 17:11:47 +05:30
Prince Chaddha ff68dda114
Merge pull request #3142 from daffainfo/patch-247
Create api-ebird.yaml
2021-11-15 17:08:19 +05:30
Muhammad Daffa 2d7072d5d1
Create api-ebird.yaml 2021-11-15 07:24:14 +07:00
ImNightmaree ec6aae4358
Merge branch 'projectdiscovery:master' into master 2021-11-14 22:05:21 +00:00
ImNightmaree 60a36cb401
Delete freshdesk-takeover.yaml 2021-11-14 22:05:11 +00:00
GwanYeong Kim 451366d33e Create CVE-2019-19824.yaml
On certain TOTOLINK Realtek SDK based routers, an authenticated attacker may execute arbitrary OS commands via the sysCmd parameter to the boafrm/formSysCmd URI, even if the GUI (syscmd.htm) is not available. This allows for full control over the device's internals. This affects A3002RU through 2.0.0, A702R through 2.1.3, N301RT through 2.1.6, N302R through 3.4.0, N300RT through 3.4.0, N200RE through 4.0.0, N150RT through 3.4.0, and N100RE through 3.4.0.

Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-11-14 13:17:27 +09:00
GitHub Action 984c293b0d Auto README Update [Sat Nov 13 20:02:44 UTC 2021] 🤖 2021-11-13 20:02:44 +00:00
GitHub Action 1226bbc638 Auto Generated Templates Stats [Sat Nov 13 20:02:23 UTC 2021] 🤖 2021-11-13 20:02:23 +00:00
Prince Chaddha 4eb84d7802
Merge pull request #3131 from Akokonunes/patch-70
Create hrsale-unauthenticated-lfi.yaml
2021-11-13 23:46:11 +05:30
Prince Chaddha 8d7a317512
Merge pull request #3132 from Akokonunes/patch-72
Create CVE-2020-19360.yaml
2021-11-13 23:37:43 +05:30
Prince Chaddha 9a227941a1
Rename hrsale-unauthenticated-lfi.yaml to vulnerabilities/other/hrsale-unauthenticated-lfi.yaml 2021-11-13 23:37:32 +05:30
Prince Chaddha 25f09af05e
Merge pull request #3133 from daffainfo/patch-246
Create api-adoptapet.yaml
2021-11-13 23:34:30 +05:30
Prince Chaddha 26a9bbc797
Update and rename CVE-2020-19360.yaml to cves/2020/CVE-2020-19360.yaml 2021-11-13 23:34:22 +05:30
Prince Chaddha d780d03ab5
Update api-adoptapet.yaml 2021-11-13 23:33:07 +05:30
sandeep b2aa8f9f5b misc updates 2021-11-13 23:01:53 +05:30
sandeep 6c64c42dc0 misc updates 2021-11-13 22:14:58 +05:30
GitHub Action 19f522f9e5 Auto Generated CVE annotations [Sat Nov 13 14:29:44 UTC 2021] 🤖 2021-11-13 14:29:44 +00:00
Sandeep Singh a2f074dd67
Merge pull request #3137 from projectdiscovery/CVE-2019-10232
Added Pre-authenticated SQL injection in GLPI <= 9.3.3 (CVE-2019-10232)
2021-11-13 19:58:29 +05:30
sandeep 2809a60004 Added Pre-authenticated SQL injection in GLPI <= 9.3.3 (CVE-2019-10232) 2021-11-13 19:56:16 +05:30
Sandeep Singh a8a667c90d
Merge pull request #3135 from projectdiscovery/CVE-2021-40539-update
Template update to confirm RCE (CVE-2021-40539)
2021-11-13 16:39:00 +05:30
sandeep b0860f2275 Template update to confirm RCE 2021-11-13 16:36:43 +05:30
Sandeep Singh 684fe0a7ee
Merge pull request #2889 from securitytest3r/master
Add ms-active-directory-certificate-services-detect.yaml
2021-11-13 14:38:12 +05:30
sandeep 12b072ea1f Added extractor to print target URL 2021-11-13 14:34:13 +05:30
sandeep 5b66093b49 matcher improvements 2021-11-13 14:30:52 +05:30
Sandeep Singh 7b1cc1bcd7
Merge pull request #3134 from pussycat0x/master
Unauthentication InfluxDB Detection
2021-11-13 14:18:20 +05:30
sandeep 6dbf6233be lint fix 2021-11-13 14:16:19 +05:30
sandeep 5981681f65 misc updates 2021-11-13 14:14:06 +05:30
Sandeep Singh 4bcf43e258
Merge pull request #3130 from projectdiscovery/debug-vars
Added Golang expvar Information Disclosure
2021-11-13 12:51:01 +05:30
pussycat0x 2051ea65ea
Add files via upload 2021-11-13 12:26:47 +05:30
Muhammad Daffa 85bd79dc0c
Update api-adoptapet.yaml 2021-11-13 11:22:05 +07:00
Muhammad Daffa 97a9ebe76b
Create api-adoptapet.yaml 2021-11-13 11:15:49 +07:00
Roberto Nunes 94cb4a60dc
Create CVE-2020-19360.yaml 2021-11-13 12:35:48 +09:00
Roberto Nunes d0f7e52d86
Create hrsale-unauthenticated-lfi.yaml 2021-11-13 12:29:02 +09:00
sandeep 6220525d3e Added Golang expvar Information Disclosure
Co-Authored-By: Luqman <9842995+luqmanhy@users.noreply.github.com>
2021-11-13 02:03:22 +05:30
Sandeep Singh a702ad1a57
Merge pull request #3128 from AdamCrosser/master
Templates for ADFS, Common DevOps Tools (e.g. ArgoCD), and GraphiQL
2021-11-13 01:46:52 +05:30
sandeep 3e1c1f2b4b removed extra line 2021-11-13 01:45:29 +05:30
sandeep d237c03297 misc update 2021-11-13 01:42:06 +05:30
sandeep e79f7c4a91 misc updates 2021-11-13 01:39:02 +05:30
sandeep 0e9faf2419 misc updates 2021-11-13 00:37:40 +05:30
GitHub Action d77afde6f2 Auto Generated CVE annotations [Fri Nov 12 19:00:28 UTC 2021] 🤖 2021-11-12 19:00:28 +00:00
sandeep e649bcc493 template fix 2021-11-13 00:29:04 +05:30
Sandeep Singh e50e82d61b
Merge pull request #3129 from httpvoid/master
Add CVE-2021-41349
2021-11-13 00:28:42 +05:30