daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
7,874 Commits
18 Branches
0 Tags
171 MiB
Commit Graph

2231 Commits (8be55281c46ce953ae0471a917ea37182e5dfe0e)

Author SHA1 Message Date
Prince Chaddha 9620f4616e
Update CVE-2020-7796.yaml 2021-08-03 12:42:56 +05:30
GwanYeong Kim 9c16967fa5 Create CVE-2020-7796.yaml 
Zimbra Collaboration Suite (ZCS) before 8.8.15 Patch 7 allows SSRF when WebEx zimlet is installed and zimlet JSP is enabled.

Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
 2021-08-03 09:31:23 +09:00
Muhammad Daffa 6e13d833ef
Create CVE-2018-19458.yaml 2021-08-03 06:20:58 +07:00
Muhammad Daffa 02d3258f2a
Create CVE-2018-20470.yaml 2021-08-03 06:19:42 +07:00
sandeep e2b20b8f01 Adding metadata 2021-08-02 23:16:05 +05:30
Sandeep Singh 249c39af51
Merge pull request #2299 from httpvoid/master 
Add CVE-2021-29484 - Ghost CMS DOM XSS
 2021-08-02 23:13:22 +05:30
Harsh Jaiswal 3f8e3ce2d0
Update cves/2021/CVE-2021-29484.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-08-02 23:05:35 +05:30
Prince Chaddha 1939842ab6
Merge pull request #2219 from pikpikcu/patch-225 
Add Dolibarr xss
 2021-08-02 22:32:24 +05:30
Prince Chaddha f924e58b8e
Update CVE-2018-10095.yaml 2021-08-02 22:31:01 +05:30
Prince Chaddha dca1dd56b1
Merge pull request #2220 from pikpikcu/patch-226 
Add Grav CMS XSS
 2021-08-02 22:26:37 +05:30
Prince Chaddha e359b030f2
Update CVE-2018-5233.yaml 2021-08-02 22:25:21 +05:30
Prince Chaddha df1348ee5c
Merge pull request #2232 from daffainfo/patch-112 
Create CVE-2014-8799.yaml
 2021-08-02 22:00:52 +05:30
Prince Chaddha f93858622d
Update CVE-2014-8799.yaml 2021-08-02 21:59:27 +05:30
Sandeep Singh 18722cd4f4
Merge pull request #2311 from gy741/rule-add-v48 
Create CVE-2020-27361.yaml
 2021-08-02 21:56:57 +05:30
Prince Chaddha 347a850911
Merge pull request #2233 from pikpikcu/patch-232 
Add Tiki Wiki CMS Groupware XSS
 2021-08-02 21:48:20 +05:30
GwanYeong Kim 8627aadce0 Create CVE-2020-27361.yaml 
An issue exists within Akkadian Provisioning Manager 4.50.02 which allows attackers to view sensitive information within the /pme subdirectories.

Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
 2021-08-03 01:17:48 +09:00
Prince Chaddha 7d0e2be80a
Update CVE-2011-4336.yaml 2021-08-02 21:47:19 +05:30
Prince Chaddha 7aa7401f3a
Merge pull request #2278 from gy741/rule-add-v44 
Create CVE-2021-21816.yaml
 2021-08-02 21:17:00 +05:30
sandeep a1d73379aa Added CVE-2021-27561 2021-08-02 18:25:13 +05:30
Prince Chaddha c670df2925
Update CVE-2021-21816.yaml 2021-08-02 17:57:09 +05:30
Prince Chaddha 5c7a745e04
Merge pull request #2298 from gy741/rule-add-v47 
Create CVE-2021-3297.yaml
 2021-08-02 17:18:29 +05:30
Prince Chaddha 8810d6fd64
Merge pull request #2294 from daffainfo/patch-123 
Create CVE-2016-1000148.yaml
 2021-08-02 17:18:22 +05:30
Prince Chaddha fb0c113fb6
Merge pull request #2281 from daffainfo/patch-121 
Create CVE-2016-10993.yaml
 2021-08-02 17:18:07 +05:30
Prince Chaddha 434b69608a
Update CVE-2016-10993.yaml 2021-08-02 17:16:58 +05:30
Prince Chaddha a3cba3b1e1
Merge pull request #2280 from daffainfo/patch-120 
Create CVE-2020-35598.yaml
 2021-08-02 17:14:38 +05:30
Prince Chaddha e4817b6e19
Merge pull request #2282 from daffainfo/patch-122 
Create CVE-2012-4253.yaml
 2021-08-02 17:13:52 +05:30
Prince Chaddha 27f96f96c4
Update CVE-2021-3297.yaml 2021-08-02 17:12:42 +05:30
Prince Chaddha 2c0ecb01b3
Update CVE-2021-3297.yaml 2021-08-02 17:09:52 +05:30
Prince Chaddha bae8422cfb
Update CVE-2021-3297.yaml 2021-08-02 17:06:07 +05:30
Noam Rathaus 37608a954c Description 2021-08-02 12:56:17 +03:00
Noam Rathaus 6950d325e6 Update description 2021-08-02 12:55:21 +03:00
rootxharsh 6f2d74337e Add CVE-2021-29484.yaml 2021-08-02 13:28:24 +05:30
GwanYeong Kim bfa043e51f Create CVE-2021-3297.yaml 
On Zyxel NBG2105 V1.00(AAGU.2)C0 devices, setting the login cookie to 1 provides administrator access.

Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
 2021-08-02 16:35:38 +09:00
Prince Chaddha 1d58b2abd2
Merge pull request #2295 from daffainfo/patch-124 
Create CVE-2016-1000149.yaml
 2021-08-02 12:57:51 +05:30
Prince Chaddha 0757721d24
Update CVE-2016-1000149.yaml 2021-08-02 12:56:49 +05:30
Prince Chaddha 0c7025f30d
Update CVE-2016-1000148.yaml 2021-08-02 12:55:51 +05:30
sandeep 02dc911dc9 Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates 2021-08-02 12:53:44 +05:30
sandeep e896a8982d misc updates 2021-08-02 12:53:35 +05:30
r3dg33k dfcd364059 update to CVE-2017-5487, added extractor 2021-08-02 01:08:39 -04:00
Muhammad Daffa 6347e02b91
Create CVE-2016-1000149.yaml 2021-08-02 06:10:17 +07:00
Muhammad Daffa 54f927329d
Create CVE-2016-1000148.yaml 2021-08-02 06:09:14 +07:00
Sandeep Singh 81572ce596
Merge pull request #2292 from geeknik/patch-4 
Update CVE-2021-31581.yaml
 2021-08-02 02:09:32 +05:30
Sandeep Singh b04dc13dcd
Update CVE-2021-31581.yaml 2021-08-02 02:08:28 +05:30
sandeep a24977aab9 Update CVE-2020-6637.yaml 2021-08-02 01:42:01 +05:30
Sandeep Singh d416aea142
Merge pull request #2279 from gy741/rule-add-v45 
Create CVE-2021-36380.yaml
 2021-08-02 01:36:56 +05:30
sandeep ebf1653d65 Update CVE-2021-36380.yaml 2021-08-02 01:33:10 +05:30
Sandeep Singh 454e11f6c4
Merge pull request #2271 from pikpikcu/patch-240 
Update JIRA SSRF
 2021-08-02 01:31:27 +05:30
sandeep f5982c5d28 Update CVE-2019-8451.yaml 2021-08-02 01:30:00 +05:30
sandeep 5023dd6f9c Update CVE-2019-8451.yaml 2021-08-02 01:27:40 +05:30
Sandeep Singh c7778257c3
Update CVE-2019-8451.yaml 2021-08-02 01:22:49 +05:30
Sandeep Singh 56d3a2f1bd
Merge pull request #2284 from pikpikcu/patch-242 
Update CVE-2019-0221
 2021-08-02 01:17:36 +05:30
Sandeep Singh 76fb40314a
Merge pull request #2277 from pikpikcu/patch-241 
Update CVE-2021-3223
 2021-08-02 01:15:39 +05:30
sandeep 5c22441bac Update CVE-2021-3223.yaml 2021-08-02 01:11:43 +05:30
Geeknik Labs 9cbb151600
Update CVE-2021-31581.yaml 
Fixes https://github.com/projectdiscovery/nuclei-templates/issues/2285. 👍🏻
 2021-08-01 10:59:39 -05:00
Noam Rathaus 03dfb4bff6 More references 2021-08-01 09:16:33 +03:00
Noam Rathaus 3de7af6018 Better reference 2021-08-01 09:14:14 +03:00
Noam Rathaus ac70ba03c7 description and reference 2021-08-01 09:12:12 +03:00
Noam Rathaus 21b17993be Better references 2021-08-01 09:10:14 +03:00
Noam Rathaus 9dc30c37a2 Description and reference 2021-08-01 08:57:40 +03:00
Noam Rathaus 734dde35cc Fix FP - https://github.com/projectdiscovery/nuclei-templates/issues/2217 2021-08-01 08:52:30 +03:00
PikPikcU 0653fdc498
Update CVE-2019-0221.yaml 2021-08-01 09:43:53 +07:00
Muhammad Daffa 7f608a2d57
Create CVE-2012-4253.yaml 2021-08-01 07:33:05 +07:00
Muhammad Daffa 8801d2c380
Create CVE-2016-10993.yaml 2021-08-01 06:41:54 +07:00
Muhammad Daffa b826d82268
Create CVE-2020-35598.yaml 2021-08-01 06:40:11 +07:00
GwanYeong Kim 0678e7d233 Create CVE-2021-36380.yaml 
The /cgi/networkDiag.cgi script directly incorporated user-controllable parameters within a shell command, allowing an attacker to manipulate the resulting command by injecting valid OS command input. The following POST request injects a new command that instructs the server to establish a reverse TCP connection to another system, allowing the establishment of an interactive remote shell session.

Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
 2021-08-01 03:10:49 +09:00
GwanYeong Kim 5b3529bad5 Create CVE-2021-21816.yaml 
An information disclosure vulnerability exists in the Syslog functionality of D-LINK DIR-3040 1.13B03. A specially crafted network request can lead to the disclosure of sensitive information. An attacker can send an HTTP request to trigger this vulnerability.

Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
 2021-08-01 02:42:48 +09:00
Sandeep Singh bc48231304
Merge pull request #2192 from gy741/rule-add-v41 
Create CVE-2018-10818.yaml
 2021-07-31 22:56:26 +05:30
sandeep 620cd107c6 Update CVE-2018-10818.yaml 2021-07-31 22:55:55 +05:30
PikPikcU ae672521d9
Update CVE-2021-3223.yaml 2021-07-31 16:12:48 +07:00
Prince Chaddha 3cb1abc436
Merge pull request #2268 from daffainfo/patch-117 
Create CVE-2014-4535.yaml
 2021-07-31 09:02:23 +05:30
Prince Chaddha dccd46c576
Merge pull request #2267 from daffainfo/patch-116 
Create CVE-2019-12276.yaml
 2021-07-31 09:00:52 +05:30
Prince Chaddha 077191496a
Update CVE-2014-4535.yaml 2021-07-31 09:00:47 +05:30
Prince Chaddha 8246b2356c
Update CVE-2019-12276.yaml 2021-07-31 08:58:19 +05:30
Prince Chaddha 9c758ea8fb
Merge pull request #2275 from daffainfo/patch-118 
Create CVE-2014-4536.yaml
 2021-07-31 08:48:36 +05:30
Prince Chaddha b2e3670c91
Update CVE-2014-4536.yaml 2021-07-31 08:43:27 +05:30
Prince Chaddha 9a47b53434
Update CVE-2012-0991.yaml 2021-07-31 08:41:41 +05:30
Muhammad Daffa afe800c0db
Create CVE-2012-0991.yaml 2021-07-31 06:04:14 +07:00
Muhammad Daffa 3afcf2a755
Create CVE-2014-4536.yaml 2021-07-31 06:01:46 +07:00
Toufik Airane 1cce455f1c
Update CVE-2020-13927.yaml 
Following the discussion https://github.com/projectdiscovery/nuclei-templates/discussions/1477.

According to NIST, It's a critical issue.
https://nvd.nist.gov/vuln/detail/CVE-2020-13927
 2021-07-30 16:40:41 +02:00
sandeep ff344b0e49 Update CVE-2019-8451.yaml 2021-07-30 17:35:48 +05:30
PikPikcU 5bf63d1811
Update JIRA SSRF 2021-07-30 18:50:31 +07:00
Muhammad Daffa 010f1a8700
Create CVE-2014-4535.yaml 2021-07-30 05:51:07 +07:00
Muhammad Daffa 189f59ba9d
Create CVE-2019-12276.yaml 2021-07-30 05:49:59 +07:00
Prince Chaddha 10b35b4051
Merge pull request #2231 from daffainfo/patch-111 
Create CVE-2009-5114.yaml
 2021-07-29 18:35:08 +05:30
Muhammad Daffa da3ba72db3
Create CVE-2020-11455.yaml 2021-07-29 05:43:07 +07:00
Prince Chaddha 60be63be57
Merge pull request #2238 from pikpikcu/patch-235 
Add iTop XSS
 2021-07-29 00:23:17 +05:30
Prince Chaddha feb0af88eb
Update CVE-2015-6544.yaml 2021-07-29 00:16:01 +05:30
Prince Chaddha b3fdcb6bb3
Merge pull request #2240 from daffainfo/patch-113 
Create CVE-2019-14312.yaml
 2021-07-29 00:11:17 +05:30
Prince Chaddha 249766aff1
Merge pull request #2243 from pikpikcu/patch-238 
Add CVE-2015-8349
 2021-07-29 00:09:55 +05:30
Prince Chaddha f6b2676b00
Update CVE-2015-8349.yaml 2021-07-28 23:24:32 +05:30
Prince Chaddha 2b719b9fdb
Update CVE-2015-3648.yaml 2021-07-28 15:28:21 +05:30
PikPikcU 56a7c8095e
Create CVE-2015-3648.yaml 2021-07-28 13:00:02 +07:00
PikPikcU e3af07706d
Create CVE-2015-8349.yaml 2021-07-28 12:45:44 +07:00
Muhammad Daffa 3a3ccf0ba2
Create CVE-2019-14312.yaml 2021-07-28 09:04:19 +07:00
PikPikcU b65ac6853e
Update CVE-2015-6544.yaml 2021-07-28 08:02:57 +07:00
PikPikcU 0af99625ba
Create CVE-2015-6544.yaml 2021-07-28 08:01:44 +07:00
PikPikcU 38e095c98c
Fix Tags 2021-07-28 07:38:20 +07:00
PikPikcU 8c9697cb2f
Update CVE-2011-4336.yaml 2021-07-28 07:19:43 +07:00
PikPikcU 2bc6cc018f
Create CVE-2011-4336.yaml 2021-07-28 07:13:33 +07:00
Muhammad Daffa a07d931799
Create CVE-2014-8799.yaml 2021-07-28 05:03:23 +07:00