daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
2,250 Commits
17 Branches
0 Tags
165 MiB
Commit Graph

582 Commits (90cd9baa97dc756191e8662770424d82de0d4268)

Author SHA1 Message Date
team-projectdiscovery 441c1d2c40 updated rails6-xss 2020-12-23 14:54:03 +05:30
team-projectdiscovery 365098fd7b Update CVE-2020-8185.yaml 2020-12-23 08:03:49 +05:30
rootxharsh 93154ff6ae Formatted YAML 2020-12-23 04:03:16 +05:30
rootxharsh 61beebde41 Add Rails 6 XSS 2020-12-23 03:55:41 +05:30
team-projectdiscovery 077fda9228 Update CVE-2008-2398.yaml 2020-12-16 11:06:39 +05:30
shubham chaskar 8c9ce49b2d
cve-2008-2398 added 2020-12-16 01:20:04 +05:30
Philippe Pépos Petitclerc 00ef32a392 Reintroduce CVE-2019-15858.yaml check 
Old version had a lot of FP as it did not check if the returned page was
acutally the correct readme. So I added a check for the name of the
plugin and another one to ensure there is a changelog. This shoud remove
almost all false positives.
 2020-12-14 20:53:39 -05:00
team-projectdiscovery d0df82d928 Adding content type checks for XSS templates 2020-12-14 00:54:23 +05:30
PD-Team f5a5a0883d
Merge pull request #675 from geeknik/patch-27 
Delete CVE-2019-11043.yaml
 2020-12-14 00:42:16 +05:30
Geeknik Labs 5e844c925f
Delete CVE-2019-11043.yaml 
This is the incorrect way to test for this particular bug. The person who pointed this out has no desire to open a pull request. So we nuke this file.
 2020-12-12 19:45:59 +00:00
Dwi Siswanto 044bf5d19b 🔥 Add CVE-2020-11738 2020-12-12 12:03:34 +07:00
Dwi Siswanto d383687b6a 🔥 Add CVE-2020-7318 2020-12-09 15:54:40 +07:00
bauthard 33c36b045e
Merge pull request #667 from dwisiswant0/add/CVE-2020-4463 
Add CVE-2020-4463
 2020-12-07 20:31:05 +05:30
bauthard dd077a0300 Adding small note 2020-12-07 20:30:11 +05:30
bauthard ad01bb0633 Temporarily removing due to f/p 2020-12-07 20:18:03 +05:30
Dwi Siswanto 676b5d23ef 🔥 Add CVE-2020-4463 2020-12-07 14:59:25 +07:00
bauthard e22932c1fa Improving matchers 2020-12-06 15:12:32 +05:30
bauthard 04d566eea5 misc changes 2020-12-06 15:02:10 +05:30
ree4pwn b7102ea11b
Update CVE-2019-11581.yaml 2020-12-05 17:21:28 +08:00
ree4pwn bf3e0f501a
Update CVE-2019-11581.yaml 2020-12-05 17:17:48 +08:00
ree4pwn b19bcfacf8
Update CVE-2019-11581.yaml 
Fix syntax error
 2020-12-05 17:00:05 +08:00
ree4pwn d3a77c422d
Update and rename cve-2019-11581.yaml to CVE-2019-11581.yaml 2020-12-05 16:53:14 +08:00
ree4pwn 3a7130030e
cve-2019-11581 
Jira template injection
 2020-12-05 16:51:54 +08:00
bauthard 950d3e4f24 Create CVE-2019-15858.yaml 2020-12-02 10:55:57 +05:30
bauthard 2ef8cb5c8f
temporary remove 2020-12-02 10:47:07 +05:30
bauthard 6b5734f25d
Merge pull request #630 from Patralos/master 
cve-2019-15858 reversed check
 2020-12-02 10:22:45 +05:30
Dwi Siswanto 06b94ebae3 🔥 Add CVE-2020-23972 2020-12-01 16:25:33 +07:00
bauthard 7d0d8bdb99 Update CVE-2019-11043.yaml 2020-11-29 17:38:24 +05:30
Geeknik Labs 0bc9e92da6
Update CVE-2019-11043.yaml 2020-11-28 19:14:21 +00:00
bauthard 231974676e
Merge pull request #650 from projectdiscovery/bugfix-cve-2019-12725 
fixing unmarshal error
 2020-11-27 01:19:50 +05:30
bauthard 519ddb4ce5
reverting the change 2020-11-27 01:19:35 +05:30
bauthard 1b203b350b
Update CVE-2019-12725.yaml 2020-11-27 01:16:49 +05:30
Mzack9999 f5e5515a35 fixing unmarshal error 2020-11-26 20:36:28 +01:00
bauthard 0fae570c4c Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates 2020-11-26 20:59:30 +05:30
bauthard a1732cc1a3 Removing cve-2020-14815 
This will be added back with support of https://github.com/projectdiscovery/nuclei/issues/295
 2020-11-26 20:59:10 +05:30
bauthard 3d7e839a99 Update CVE-2019-12725.yaml 2020-11-26 14:42:15 +05:30
Dwi Siswanto f9301c5808 🔥 Add CVE-2019-12725 2020-11-26 11:24:02 +07:00
bauthard 6c4fcfc602 Adding marker to payload 2020-11-26 02:02:20 +05:30
Dwi Siswanto e39ffdf513 🔨 Fix false-positive for CVE-2013-2251 2020-11-25 07:26:52 +07:00
bauthard 6f3b2cdd0c adding more info and matchers 2020-11-25 01:30:01 +05:30
shelld3v b81c8ea57d
🔥 Add CVE-2018-13380 2020-11-24 21:30:18 +07:00
Dwi Siswanto 05796b0692 🔥 Rename cve-* files to CVEs 2020-11-22 05:49:16 +07:00
bauthard 971f016178 few updates 2020-11-21 20:39:12 +05:30
SaN ThosH bf5e619803
Create CVE-2019-6340.yaml 2020-11-21 13:07:33 +05:30
bauthard beb578cdf0 Marker updates to payloads 
Adding § marker to variable names to avoid any confusion with real data and variable name, supported from nuclei v2.2.0
 2020-11-21 12:25:49 +05:30
Patralos f35eec7ba1
remove empty lines 2020-11-20 10:33:26 +01:00
Patralos becd37a635
cve-2019-15858 reversed check 
2.2.5 is the fixed version and should therefore be absent.
 2020-11-20 10:28:29 +01:00
bauthard 1ec8040a8d
Merge pull request #624 from dwisiswant0/add/CVE-2020-13942 
Add CVE-2020-13942
 2020-11-19 00:42:55 +05:30
Dwi Siswanto 05f41079f4 🔥 Add CVE-2020-13942 2020-11-19 00:47:19 +07:00
Dwi Siswanto 63cfa344bd 🔥 Add CVE-2020-16846 2020-11-19 00:21:07 +07:00
bauthard 071e3b25c9 few updates 2020-11-17 16:27:15 +05:30
Sandor Toth 0202889780 cve-2017-12637.yaml tab fixed 2020-11-17 11:18:19 +01:00
Sandor Toth f5e1d23545 cve-2017-12637.yaml added 2020-11-17 11:14:41 +01:00
Dwi Siswanto d6198665e7 🔥 Add CVE-2020-8209 
References:
- https://swarm.ptsecurity.com/path-traversal-on-citrix-xenmobile-server/
 2020-11-16 21:49:51 +07:00
bauthard b1965155f7 Update CVE-2020-14815.yaml 2020-11-14 15:37:15 +05:30
bauthard a710c24d4d Update CVE-2020-14815.yaml 2020-11-14 15:35:06 +05:30
mohammedshine a273c87c2e
Create CVE-2020-14815.yaml 2020-11-13 01:25:48 +05:30
bauthard 3cf5167077 Update CVE-2019-20141.yaml 2020-11-12 14:30:01 +05:30
bauthard c4349a33cf fixing possible false positive 2020-11-12 13:55:56 +05:30
bauthard 4f746684c8 Encoding updates 2020-11-10 19:43:51 +05:30
Casper Guldbech Nielsen 29d421549a Search for "provider":"ldap" to complete the match on the cve 
Signed-off-by: Casper Guldbech Nielsen <whopsec@protonmail.com>
 2020-11-07 12:37:29 +01:00
Casper Guldbech Nielsen e9b57b3e9a Add cve-2020-26214 detection 
Signed-off-by: Casper Guldbech Nielsen <whopsec@protonmail.com>
 2020-11-07 11:47:02 +01:00
bauthard cd90698cb5 Adding cve-2019-3402 2020-11-06 15:58:11 +05:30
Dwi Siswanto b175c2117c 🔥 Update CVE-2020-14882 payload & with positive matchers 2020-11-02 14:23:12 +07:00
bauthard 73c94b174c moved to another branch for the fix. 2020-11-01 12:53:33 +05:30
bauthard 8503dd1471
fixing mistake 2020-10-30 11:01:43 +05:30
Dwi Siswanto baaba9036e 🔥 Add CVE-2020-14882 2020-10-29 19:58:49 +07:00
bauthard 0c3b87f943
Merge pull request #595 from projectdiscovery/z-xxe 
adding cve-2019-9670
 2020-10-29 16:24:59 +05:30
bauthard 0c63ebfd8f adding cve-2019-9670 2020-10-29 16:23:46 +05:30
bauthard ca1c3e7f72 Update CVE-2020-14864.yaml 2020-10-29 15:43:50 +05:30
palaziv 54f73f80e1
add template for CVE-2020-14864 2020-10-29 10:54:06 +01:00
SaN ThosH 3b1f0bf6f9
Create CVE-2020-9344.yaml 2020-10-23 11:59:51 +05:30
bauthard c912513e40
Merge pull request #575 from dwisiswant0/fix/cve-2020-7961 
Update CVE-2020-7961
 2020-10-16 11:34:23 +05:30
Dwi Siswanto d9f53727c9 ✏️ Escaping dot in extractors 2020-10-16 02:59:46 +07:00
Dwi Siswanto b69d65fe7b 🔨 Update matchers using regexes 2020-10-16 02:58:54 +07:00
bauthard 9bd306ab3f matcher updates 2020-10-16 00:20:10 +05:30
Dwi Siswanto 53c239b645 ✏️ Escaping dots in patterns 2020-10-15 18:21:25 +07:00
Dwi Siswanto 31c8d723c1 🔥 Update methods & matchers for CVE-2020-16952 2020-10-15 17:27:52 +07:00
bauthard dddb8e8a37
Merge pull request #562 from knassar702/new-branch 
Neon Dashboard - XSS Reflected (CVE-2019-20141)
 2020-10-15 00:17:02 +05:30
bauthard 431a56847b
Merge pull request #561 from dwisiswant0/add/CVE-2020-16952 
Add CVE-2020-16952
 2020-10-15 00:13:44 +05:30
Khaled Nassar f4ba565b50 Neon Dashboard - XSS Reflected (CVE-2019-20141) 2020-10-14 15:39:46 +00:00
Dwi Siswanto 18bdf7f9d1 🔥 Add CVE-2020-16952 2020-10-14 15:49:48 +07:00
Jonatas Fil 6a9f6cd3dc
Update CVE-2013-2251.yaml 2020-10-13 18:15:07 -04:00
Jonatas Fil 78b652f2e8
add cve-2013-2251 2020-10-13 19:06:01 -03:00
Vidhun K e6c3ec08c4
Update CVE-2020-3452.yaml 
Added another endpoint that's vulnerable to the same path traversal issue
 2020-10-07 15:33:36 +05:30
bauthard a926f61ed2 Removing this for the time being 2020-10-04 11:54:28 +05:30
bauthard 107d9b9dcc
Merge pull request #512 from dwisiswant0/add/CVE-2020-2034 
Add CVE-2020-2034
 2020-10-03 11:45:12 +05:30
bauthard 41f64dfcf9
Merge pull request #533 from projectdiscovery/bp0lr/master 
Bp0lr/master
 2020-10-03 11:42:29 +05:30
bauthard a5840f0205 template update 2020-10-03 11:40:14 +05:30
bauthard b129f008f2 updates 2020-10-03 11:27:10 +05:30
sillydadddy 32d42575f7
Create CVE-2019-8442.yaml 2020-10-03 01:20:52 +05:30
bauthard 69d03e0d6f
Merge pull request #522 from swisskyrepo/swisskyrepo-shellshock 
CVE-2014-6271 Shellshock
 2020-10-02 23:11:14 +05:30
bauthard 5254fb77af
Merge pull request #517 from dwisiswant0/add/CVE-2019-1653 
Add CVE-2019-1653
 2020-10-02 23:08:48 +05:30
bauthard 365e93ec23
Merge pull request #518 from dwisiswant0/add/CVE-2019-15858 
Add CVE-2019-15858
 2020-10-02 23:07:51 +05:30
bauthard a5df22b9d6
Merge pull request #519 from dwisiswant0/add/CVE-2019-16920 
Add CVE-2019-16920
 2020-10-02 21:57:05 +05:30
bauthard 729fc628f2
Merge pull request #516 from dwisiswant0/add/CVE-2020-12116 
Add CVE-2020-12116
 2020-10-02 03:15:53 +05:30
bauthard 5a7d6dd30d
Merge pull request #515 from jaiswalakshansh/master 
added cve-2019-9733.yaml
 2020-10-02 03:00:00 +05:30
bauthard 1acddaff20
Update CVE-2020-14181.yaml 2020-10-02 02:56:01 +05:30
bauthard 91bd427d6e Update cve-2019-9733.yaml 2020-10-02 02:49:18 +05:30
bauthard 05df03474a
Merge pull request #514 from dwisiswant0/add/CVE-2020-9047 
Add CVE-2020-9047
 2020-10-02 02:39:20 +05:30