Commit Graph

7634 Commits (8df4939b6a44912a715d8571e6e42b5eb31c23f3)

Author SHA1 Message Date
GwanYeong Kim 4029278d6c Create CVE-2018-10818.yaml
The vulnerability (CVE-2018-10818) is a pre-auth remote command injection vulnerability found in the majority of LG NAS devices. You cannot simply log in with any random username and password. However, there lies a command injection vulnerability in the “password” parameter.

Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-07-27 02:27:13 +09:00
Sandeep Singh 8dc516c732
Merge pull request #2191 from projectdiscovery/geeknik
More CVEs Template by geeknik
2021-07-26 22:52:58 +05:30
sandeep 9c66387f0f More CVEs Template 2021-07-26 22:48:45 +05:30
Sandeep Singh 5fc3ae4ef4
Merge pull request #1872 from Vladimir-Ivanov-Git/CVE-2018-2392
CVE-2018-2392 SAP IGS XXE
2021-07-26 20:12:08 +05:30
Sandeep Singh 79c077ddf7
Merge pull request #1874 from Vladimir-Ivanov-Git/CVE-2020-6207
CVE-2020-6207 SAP SolMan RCE
2021-07-26 18:26:55 +05:30
Sandeep Singh 8130cd2c3b
Update CVE-2020-6207.yaml 2021-07-26 18:26:19 +05:30
Prince Chaddha c58565e8ed
Merge pull request #2118 from daffainfo/patch-95
Create CVE-2016-1000140.yaml
2021-07-26 18:09:34 +05:30
Prince Chaddha dbace50bdb
Update CVE-2016-1000140.yaml 2021-07-26 18:03:07 +05:30
Prince Chaddha 833ae4ae48
Merge pull request #1083 from pikpikcu/patch-123
Create dedecms-membergroup-sqli
2021-07-26 18:02:27 +05:30
Prince Chaddha 4069e981c4
Merge pull request #2120 from daffainfo/patch-96
Create CVE-2014-6308.yaml
2021-07-26 18:00:31 +05:30
Prince Chaddha 4e82da883d
Merge pull request #2117 from daffainfo/patch-94
Create CVE-2016-1000138.yaml
2021-07-26 17:59:39 +05:30
Sandeep Singh d582eb620e
Merge pull request #2188 from projectdiscovery/symfony-debugmode
Additional matcher for Symfony debug mode
2021-07-26 17:22:55 +05:30
sandeep 1b437d300a Additional matcher for Symfony debug mode 2021-07-26 17:21:46 +05:30
sandeep 4a1f85ac76 misc changes 2021-07-26 16:42:17 +05:30
Sandeep Singh 055682a49e
Merge pull request #1796 from Mad-robot/patch-3
Create IBM-Default-Creds.yaml
2021-07-26 16:38:08 +05:30
Sandeep Singh d19aedc785
Merge pull request #2187 from projectdiscovery/exacqvision-default-credentials
Added exacqvision-default-credentials
2021-07-26 16:22:25 +05:30
sandeep 54e72e7a3b Added exacqvision-default-credentials 2021-07-26 16:17:38 +05:30
Sandeep Singh b380cfef36
Merge pull request #2186 from projectdiscovery/fckeditor
Added additional fckeditor path
2021-07-26 15:50:02 +05:30
sandeep b78eceb857 Added additional fckeditor path 2021-07-26 15:44:42 +05:30
sandeep bfd40054e4 matcher update 2021-07-26 15:18:10 +05:30
sandeep e9210d80bf strict negative matchers 2021-07-26 15:14:33 +05:30
Prince Chaddha 68327ddfa1
Update CVE-2016-1000138.yaml 2021-07-26 14:28:04 +05:30
sandeep b990243906 uniform tags 2021-07-26 14:25:43 +05:30
sandeep 1bb53313af Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates 2021-07-26 14:23:41 +05:30
Prince Chaddha 9d7b8707e8
Merge pull request #2116 from daffainfo/patch-93
Create CVE-2016-1000137.yaml
2021-07-26 14:23:29 +05:30
sandeep d4a3f345fb tags update 2021-07-26 14:23:27 +05:30
Sandeep Singh eaa2561c70
Merge pull request #2170 from geeknik/patch-13
Create development-logs.yaml
2021-07-26 14:21:12 +05:30
Sandeep Singh c15e827b84
Update development-logs.yaml 2021-07-26 14:18:24 +05:30
Prince Chaddha 73ddb84266
Update CVE-2016-1000137.yaml 2021-07-26 14:08:03 +05:30
Prince Chaddha bdaab4c330
Merge pull request #2050 from daffainfo/patch-76
Create CVE-2016-1000126.yaml
2021-07-26 14:06:59 +05:30
Prince Chaddha 4ee46bf076
Merge pull request #2112 from daffainfo/patch-91
Create CVE-2020-35580.yaml
2021-07-26 14:06:50 +05:30
Prince Chaddha a76d36ead2
Update CVE-2016-1000126.yaml 2021-07-26 14:05:41 +05:30
Prince Chaddha 068a3542e8
Merge pull request #2177 from pussycat0x/master
Port update
2021-07-26 14:02:27 +05:30
Prince Chaddha 13f734129d
Merge pull request #2180 from geeknik/patch-1
Create detect-addpac-voip-gateway.yaml
2021-07-26 13:58:29 +05:30
Prince Chaddha 8b0f37af89
Update CVE-2016-2004.yaml 2021-07-26 13:57:56 +05:30
Prince Chaddha f5ceb9958a
Update detect-addpac-voip-gateway.yaml 2021-07-26 13:50:41 +05:30
Prince Chaddha ac3c8faf11
Merge pull request #2181 from gy741/rule-add-v39
Create netgear-wnap320-rce.yaml
2021-07-26 13:41:48 +05:30
Prince Chaddha e03898ebe3
Merge pull request #2182 from daffainfo/patch-105
Create CVE-2013-7240.yaml
2021-07-26 13:38:53 +05:30
Prince Chaddha 86989129d1
Update netgear-wnap320-rce.yaml 2021-07-26 13:38:38 +05:30
Prince Chaddha e8f9cc580e
Update CVE-2013-7240.yaml 2021-07-26 13:32:53 +05:30
Prince Chaddha fc025a8cc9
Merge pull request #2183 from daffainfo/patch-106
Create CVE-2014-2962.yaml
2021-07-26 13:30:23 +05:30
Prince Chaddha 154ed31be9
Update CVE-2014-2962.yaml 2021-07-26 13:30:16 +05:30
Prince Chaddha 3742da2dbd
Merge pull request #2184 from gy741/rule-add-v40
Create CVE-2020-8813.yaml
2021-07-26 13:28:50 +05:30
Prince Chaddha 84161bc33e
Update CVE-2020-8813.yaml 2021-07-26 13:27:19 +05:30
Sandeep Singh 034c7c1490
Merge pull request #2185 from shelld3v/patch-6 2021-07-26 13:12:51 +05:30
Pham Sy Minh 934d899f5e
Reduce false positives 2021-07-26 12:53:34 +07:00
GwanYeong Kim 620ff3f367 Create CVE-2020-8813.yaml
This vulnerability could be exploited without authentication if Cacti is enabling “Guest Realtime Graphs” privilege, So in this case no need for the authentication part and you can just use the following code to exploit the vulnerability

Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-07-26 11:32:23 +09:00
Muhammad Daffa f8e16c595a
Create CVE-2014-2962.yaml 2021-07-26 06:58:58 +07:00
Muhammad Daffa fed682443e
Update CVE-2020-35580.yaml 2021-07-26 06:55:48 +07:00
Muhammad Daffa a9d07605c3
Update CVE-2014-6308.yaml 2021-07-26 06:55:17 +07:00