MostInterestingBotInTheWorld
bd5823ea54
Merge branch 'projectdiscovery:master' into dashboard
2022-05-23 17:24:43 -04:00
MostInterestingBotInTheWorld
0880da19a4
Enhancement: vulnerabilities/apache/apache-flink-unauth-rce.yaml by mp
2022-05-23 15:33:34 -04:00
Prince Chaddha
fe0bf001b7
Merge pull request #4471 from projectdiscovery/princechaddha-patch-2
...
Update and rename vulnerabilities/other/sangfor-edr-rce.yaml to vulne…
2022-05-23 23:58:57 +05:30
Prince Chaddha
fa903d06d3
Merge pull request #4368 from ritikchaddha/patch-52
...
Create sangfor-ba-rce.yaml
2022-05-23 16:29:32 +05:30
Prince Chaddha
430cc1ea03
Update sangfor-ba-rce.yaml
2022-05-23 16:27:59 +05:30
Prince Chaddha
5ad7e37a87
Update and rename vulnerabilities/other/sangfor-edr-auth-bypass.yaml to vulnerabilities/sangfor/sangfor-edr-auth-bypass.yaml
2022-05-23 16:27:31 +05:30
Prince Chaddha
b8d2df57ba
Update and rename vulnerabilities/other/sangfor-edr-rce.yaml to vulnerabilities/sangfor/sangfor-edr-rce.yaml
2022-05-23 16:25:10 +05:30
Prince Chaddha
a6a35ab400
Merge pull request #4431 from ritikchaddha/patch-59
...
Update ecshop-sqli.yaml
2022-05-23 16:14:33 +05:30
Prince Chaddha
d2333f8c0c
Update ecshop-sqli.yaml
2022-05-23 16:13:10 +05:30
Prince Chaddha
78a5fbc640
Merge pull request #4466 from gy741/rule-add-v114
...
Create ait-csv-import-export-rce.yaml
2022-05-23 14:16:51 +05:30
Prince Chaddha
b2be30c340
Update ait-csv-import-export-rce.yaml
2022-05-23 14:04:27 +05:30
Prince Chaddha
09de9e19ce
Merge branch 'master' into master
2022-05-23 13:30:04 +05:30
Prince Chaddha
428176e5f6
Update grafana-file-read.yaml
2022-05-23 13:27:45 +05:30
GwanYeong Kim
aacb8f738f
Create ait-csv-import-export-rce.yaml
...
The AIT CSV Import/Export plugin <= 3.0.3 allows unauthenticated remote attackers to upload and execute arbitrary PHP code. The upload-handler does not require authentication, nor validates the uploaded content.
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2022-05-22 10:12:09 +09:00
MostInterestingBotInTheWorld
809e87987c
Dashboard Content Enhancements ( #4456 )
...
Dashboard Content Enhancements
2022-05-20 17:38:52 -04:00
Prince Chaddha
b78e56dbc9
Update and rename vulnerabilities/other/dedecms-configphp-xss.yaml to vulnerabilities/dedecms/dedecms-config-xss.yaml
2022-05-20 00:36:18 +05:30
Ritik Chaddha
35e6d8b5f7
Update dedecms-configphp-xss.yaml
2022-05-19 18:08:04 +05:30
Ritik Chaddha
b6f6f3ff76
Create dedecms-configphp-xss.yaml
2022-05-19 18:03:58 +05:30
Ritik Chaddha
30d4f20b7e
Update ecshop-sqli.yaml
2022-05-19 00:51:53 +05:30
Ritik Chaddha
6c76c6f99c
Update ecshop-sqli.yaml
2022-05-18 15:06:50 +05:30
Ritik Chaddha
14664c1e01
Update ecshop-sqli.yaml
2022-05-18 14:53:08 +05:30
Ritik Chaddha
d8fdb31b1b
Update ecshop-sqli.yaml
2022-05-18 14:50:12 +05:30
MostInterestingBotInTheWorld
83cc50ce3e
Dashboard Content Enhancements ( #4411 )
...
* standardizing enhanced by tag
* Fix spacing. Add classification->cve
* Enhancement: cves/2021/CVE-2021-20158.yaml by mp
* Enhancement: cves/2021/CVE-2021-20167.yaml by mp
* Typo
* Enhancement: cves/2021/CVE-2021-20837.yaml by mp
* Enhancement: cves/2021/CVE-2021-21307.yaml by mp
* Enhancement: cves/2021/CVE-2021-21479.yaml by mp
* Enhancement: cves/2021/CVE-2021-21881.yaml by mp
* Enhancement: cves/2021/CVE-2021-21972.yaml by mp
* Enhancement: cves/2021/CVE-2021-21978.yaml by mp
* Enhancement: cves/2021/CVE-2021-22005.yaml by mp
* Enhancement: cves/2021/CVE-2021-22205.yaml by mp
* Enhancement: cves/2021/CVE-2021-22986.yaml by mp
* Enhancement: cves/2021/CVE-2021-24285.yaml by mp
* Enhancement: cves/2021/CVE-2021-24472.yaml by mp
* Enhancement: cves/2021/CVE-2021-20090.yaml by mp
* Enhancement: cves/2021/CVE-2021-20167.yaml by mp
* Enhancement: cves/2021/CVE-2021-21307.yaml by mp
* Enhancement: cves/2021/CVE-2021-21978.yaml by mp
* Enhancement: cves/2021/CVE-2021-21985.yaml by mp
* Enhancement: cves/2021/CVE-2021-21972.yaml by mp
* Enhancement: cves/2021/CVE-2021-22205.yaml by mp
* Enhancement: cves/2021/CVE-2021-22986.yaml by mp
* Enhancement: cves/2021/CVE-2021-24285.yaml by mp
* Restore empty lines
* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs
* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs
* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs
* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs
* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs
* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs
* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs
* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs
* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs
* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs
* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs
* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs
* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs
* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Remove unnecessary file
* Restore content after bad dashboard edit
* Enhancement: undefined by cs
* Spacing issues
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: undefined by cs
* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs
* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs
* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs
* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs
* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs
* Delete null file created by dashboard
* Remove improper Enhanced tag
* Spacing issues
* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs
* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs
* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs
* Remove test dashboard commits
* Enhancement: cves/2014/CVE-2014-9618.yaml by mp
* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs
* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs
* Not really enhanced
* Add classification->cve-id
* Restore content from dashboard mess up
* Enhancement: cves/2014/CVE-2014-9618.yaml by mp
* Enhancement: cves/2014/CVE-2014-9618.yaml by mp
* Restore newlines
* Enhancement: cves/2007/CVE-2007-4556.yaml by mp
* Enhancement: cves/2007/CVE-2007-4556.yaml by mp
* Enhancement: cves/2014/CVE-2014-9618.yaml by mp
* Enhancement: cves/2015/CVE-2015-1427.yaml by mp
* Enhancement: cves/2015/CVE-2015-3224.yaml by mp
* Enhancement: cves/2015/CVE-2015-7450.yaml by mp
* Enhancement: cves/2016/CVE-2016-10134.yaml by mp
* Enhancement: cves/2016/CVE-2016-1555.yaml by mp
* Enhancement: cves/2016/CVE-2016-2004.yaml by mp
* Enhancement: cves/2016/CVE-2016-5649.yaml by mp
* Enhancement: cves/2016/CVE-2016-7552.yaml by mp
* Enhancement: cves/2017/CVE-2017-1000486.yaml by mp
* Enhancement: cves/2017/CVE-2017-11444.yaml by mp
* Spacing issues
* Added better reference
* Enhancement: cves/2017/CVE-2017-12149.yaml by mp
* Enhancement: cves/2017/CVE-2017-12542.yaml by mp
* Enhancement: cves/2017/CVE-2017-12611.yaml by mp
* Enhancement: cves/2017/CVE-2017-12635.yaml by mp
* Enhancement: cves/2017/CVE-2017-14135.yaml by mp
* Enhancement: cves/2017/CVE-2017-3881.yaml by mp
* Enhancement: cves/2017/CVE-2017-7269.yaml by mp
* Enhancement: cves/2017/CVE-2017-8917.yaml by mp
* Enhancement: cves/2017/CVE-2017-9791.yaml by mp
* Enhancement: cves/2015/CVE-2015-1427.yaml by mp
* Enhancement: cves/2017/CVE-2017-12149.yaml by mp
* Enhancement: cves/2017/CVE-2017-12542.yaml by mp
* Enhancement: cves/2017/CVE-2017-8917.yaml by mp
* Spacing and other minor issues
* Update CVE-2015-1427.yaml
* Update CVE-2017-12149.yaml
* Update CVE-2017-12542.yaml
* Update CVE-2017-12635.yaml
* Update CVE-2017-14135.yaml
* Update CVE-2017-3881.yaml
* Update CVE-2017-7269.yaml
* Update CVE-2017-8917.yaml
* Update CVE-2017-9791.yaml
* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by mp
* Enhancement: cnvd/2019/CNVD-2019-32204.yaml by mp
* Enhancement: cnvd/2020/CNVD-2020-68596.yaml by mp
* Enhancement: cnvd/2021/CNVD-2021-09650.yaml by mp
* Enhancement: cnvd/2021/CNVD-2021-26422.yaml by mp
* Enhancement: cnvd/2022/CNVD-2022-03672.yaml by mp
* Enhancement: cves/2017/CVE-2017-9841.yaml by mp
* Enhancement: cves/2018/CVE-2018-0127.yaml by mp
* Enhancement: cves/2018/CVE-2018-1000226.yaml by mp
* Enhancement: cves/2018/CVE-2018-1000861.yaml by mp
* Enhancement: cves/2018/CVE-2018-10562.yaml by mp
* Enhancement: cves/2018/CVE-2018-12031.yaml by mp
* Enhancement: cves/2018/CVE-2018-1207.yaml by mp
* Enhancement: cves/2018/CVE-2018-12634.yaml by mp
* Enhancement: cves/2018/CVE-2018-1273.yaml by mp
* Enhancement: cves/2018/CVE-2018-16763.yaml by mp
* Enhancement: cves/2018/CVE-2018-16167.yaml by mp
* Enhancement: cves/2018/CVE-2018-14916.yaml by mp
* Enhancement: cves/2018/CVE-2018-14064.yaml by mp
* Enhancement: cves/2018/CVE-2018-13379.yaml by mp
* Enhancement: cves/2017/CVE-2017-9841.yaml by mp
* Enhancement: cves/2018/CVE-2018-1000861.yaml by mp
* Enhancement: cves/2018/CVE-2018-10562.yaml by mp
* Enhancement: cves/2018/CVE-2018-12031.yaml by mp
* Enhancement: cves/2018/CVE-2018-1207.yaml by mp
* Enhancement: cves/2018/CVE-2018-12634.yaml by mp
* Enhancement: cves/2018/CVE-2018-13379.yaml by mp
* Enhancement: cves/2018/CVE-2018-14916.yaml by mp
* Enhancement: cves/2018/CVE-2018-16167.yaml by mp
* Enhancement: cves/2018/CVE-2018-16763.yaml by mp
* Cleanup and spacing
* Remove blank cve-id lines
* Enhancement: cves/2018/CVE-2018-16836.yaml by mp
* Enhancement: cves/2018/CVE-2018-17246.yaml by mp
* Enhancement: cves/2018/CVE-2018-17431.yaml by mp
* Enhancement: cves/2018/CVE-2018-18925.yaml by mp
* Enhancement: cves/2018/CVE-2018-20985.yaml by mp
* Enhancement: cves/2018/CVE-2018-2894.yaml by mp
* Enhancement: cves/2018/CVE-2018-3810.yaml by mp
* Enhancement: cves/2018/CVE-2018-7600.yaml by mp
* Enhancement: cves/2018/CVE-2018-7600.yaml by mp
* Enhancement: cves/2018/CVE-2018-7602.yaml by mp
* Enhancement: cves/2018/CVE-2018-9161.yaml by mp
* Enhancement: cves/2018/CVE-2018-16836.yaml by mp
* Enhancement: cves/2018/CVE-2018-17431.yaml by mp
* Many title clean-ups for more standardization.
Some vendor name clean-up
* Enhancement: cves/2018/CVE-2018-20985.yaml by mp
* Enhancement: cves/2018/CVE-2018-3810.yaml by mp
* Spacing issues
* Remove 2 blank newlines
* Enhancement: vulnerabilities/other/tamronos-rce.yaml by cs
* Enhancement: cves/2018/CVE-2018-9845.yaml by mp
* Enhancement: cves/2018/CVE-2018-9995.yaml by mp
* Enhancement: cves/2019/CVE-2019-0230.yaml by mp
* Enhancement: cves/2019/CVE-2019-16920.yaml by mp
* Enhancement: cves/2019/CVE-2019-17270.yaml by mp
* Enhancement: cves/2019/CVE-2019-17382.yaml by mp
* Enhancement: cves/2019/CVE-2019-17444.yaml by mp
* Enhancement: cves/2019/CVE-2019-17506.yaml by mp
* Enhancement: cves/2020/CVE-2020-10148.yaml by mp
* Enhancement: cves/2020/CVE-2020-11710.yaml by mp
* Enhancement: cves/2020/CVE-2020-11854.yaml by mp
* Enhancement: cves/2020/CVE-2020-12800.yaml by mp
* Enhancement: cves/2020/CVE-2020-13117.yaml by mp
* Enhancement: cves/2020/CVE-2020-13167.yaml by mp
* Enhancement: cves/2020/CVE-2020-13927.yaml by mp
* Enhancement: cves/2020/CVE-2020-13942.yaml by mp
* Spacing, syntax error
* Spacing, correct this time.
* Enhancement: cves/2020/CVE-2020-15920.yaml by mp
* Enhancement: cves/2020/CVE-2020-29227.yaml by mp
* Enhancement: cves/2021/CVE-2021-24499.yaml by mp
* Enhancement: cves/2021/CVE-2021-24762.yaml by mp
* Enhancement: cves/2018/CVE-2018-9995.yaml by mp
* Enhancement: cves/2019/CVE-2019-0230.yaml by mp
* Enhancement: cves/2019/CVE-2019-17444.yaml by mp
* Enhancement: cves/2020/CVE-2020-10148.yaml by mp
* Enhancement: cves/2020/CVE-2020-11854.yaml by mp
* Enhancement: cves/2020/CVE-2020-13167.yaml by mp
* Enhancement: cves/2020/CVE-2020-13927.yaml by mp
* Enhancement: cves/2020/CVE-2020-15920.yaml by mp
* Enhancement: cves/2021/CVE-2021-24499.yaml by mp
* Extra newlines and one sp;acing issue
* Update CVE-2018-9995.yaml
* Update CVE-2019-0230.yaml
* Update CVE-2019-16920.yaml
* Update CVE-2019-17270.yaml
* Update CVE-2019-17382.yaml
* Update CVE-2019-17444.yaml
* Update CVE-2019-17506.yaml
* Update CVE-2020-10148.yaml
* Update CVE-2020-11710.yaml
* Update CVE-2020-11854.yaml
* Update CVE-2020-12800.yaml
* Update CVE-2020-13167.yaml
* Update CVE-2020-13927.yaml
* Update CVE-2020-13942.yaml
* Update CVE-2020-15920.yaml
* Update CVE-2020-29227.yaml
* Update CVE-2021-24499.yaml
* Update CVE-2021-24762.yaml
Co-authored-by: sullo <sullo@cirt.net>
Co-authored-by: Prince Chaddha <prince@projectdiscovery.io>
2022-05-17 14:41:26 +05:30
Prince Chaddha
334a4d03f4
Update cache-poisoning.yaml ( #4418 )
...
* Update cache-poisoning.yaml
* added identifier to headers
Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2022-05-17 14:31:33 +05:30
Arm!tage
1a5427c415
Fix yonyou product name, add tag yonyou-ufida-nc to CNVD-2021-30167.yaml ( #4388 )
...
* Change weblogic-workflow.yaml file privilege
* Change yonyou product name
* Add Yonyou-ufida-nc workflow template
* misc update
* misc update
Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2022-05-15 05:55:05 +05:30
sandeep
22ab0f9d53
minor matcher update
2022-05-15 04:48:52 +05:30
Dhiyaneshwaran
a3ce25a5a6
Authenticated Wordpress XSS Templates ( #4398 )
...
* Create CVE-2021-25075.yaml
* Create seo-redirection-xss.yaml
2022-05-15 04:32:53 +05:30
MostInterestingBotInTheWorld
581b7a627b
Dashboard Content Enhancements ( #4381 )
...
Dashboard Content Enhancements
2022-05-13 16:26:43 -04:00
Prince Chaddha
20b869632b
Merge pull request #4341 from gy741/rule-add-v108
...
Create gnuboard-sms-xss.yaml
2022-05-13 01:14:28 +05:30
Prince Chaddha
c616179c95
Update gnuboard-sms-xss.yaml
2022-05-13 01:11:32 +05:30
Ritik Chaddha
27a039a70c
Update metadata query ( #4350 )
...
* Update adobe-component-login.yaml
* Update cold-fusion-cfcache-map.yaml
* Update unpatched-coldfusion.yaml
* Update coldfusion-debug-xss.yaml
* Update CVE-2020-11978.yaml
* Update CVE-2020-13927.yaml
* Update CVE-2021-38540.yaml
* Update CVE-2021-44451.yaml
* Update CVE-2022-24288.yaml
* Update airflow-debug.yaml
* Update airflow-detect.yaml
* Update CVE-2010-0219.yaml
* Update apache-axis-detect.yaml
* Update CVE-2020-11991.yaml
* Update apache-cocoon-detect.yaml
* Update CVE-2021-21402.yaml
* Update jellyfin-detect.yaml
* Update CVE-2021-21402.yaml
* Update CVE-2021-21402.yaml
* Update ecology-arbitrary-file-upload.yaml
* Update ecology-v8-sqli.yaml
* Update ecology-syncuserinfo-sqli.yaml
* Update ecology-filedownload-directory-traversal.yaml
* Update CNVD-2021-15822.yaml
* Update dedecms-carbuyaction-fileinclude.yaml
* Update dedecms-openredirect.yaml
* Update tamronos-rce.yaml
* Update natshell-path-traversal.yaml
2022-05-12 19:48:36 +05:30
Prince Chaddha
93c86e4adf
Update ecsimagingpacs-rce.yaml
2022-05-12 16:38:58 +05:30
Ritik Chaddha
70501101a6
Create ecsimagingpacs-rce.yaml
2022-05-12 13:50:38 +05:30
Ritik Chaddha
f1f82468ea
Update natshell-path-traversal.yaml
2022-05-12 01:33:14 +05:30
Ritik Chaddha
57373213b6
Update tamronos-rce.yaml
2022-05-12 01:33:12 +05:30
Ritik Chaddha
750bbe0c15
Update dedecms-openredirect.yaml
2022-05-12 01:33:10 +05:30
Ritik Chaddha
dd8800feb3
Update dedecms-carbuyaction-fileinclude.yaml
2022-05-12 01:33:07 +05:30
Ritik Chaddha
c82ef1fb68
Create sangfor-ba-rce.yaml
2022-05-12 00:17:57 +05:30
Ritik Chaddha
2b04163410
Update ecology-filedownload-directory-traversal.yaml
2022-05-11 19:11:12 +05:30
Ritik Chaddha
6728a61005
Update ecology-syncuserinfo-sqli.yaml
2022-05-11 19:11:09 +05:30
Ritik Chaddha
02603f1f02
Update ecology-v8-sqli.yaml
2022-05-11 19:11:03 +05:30
Ritik Chaddha
43dd78de1b
Update ecology-arbitrary-file-upload.yaml
2022-05-11 19:10:58 +05:30
Prince Chaddha
a584def0e1
Create age-gate-open-redirect.yaml
2022-05-11 02:14:39 +05:30
Ritik Chaddha
7619f86249
Update coldfusion-debug-xss.yaml
2022-05-10 15:44:14 +05:30
Prince Chaddha
f7fd0efead
Create wp-under-construction-ssrf.yaml
2022-05-10 15:00:09 +05:30
Prince Chaddha
91a4cd3fa0
Create newsletter-manager-open-redirect.yaml
2022-05-10 14:44:58 +05:30
Prince Chaddha
7003c19dda
Create wp-security-open-redirect.yaml
2022-05-10 14:33:03 +05:30
GwanYeong Kim
92e9c1da0b
Create gnuboard-sms-xss.yaml
...
A vulnerability in Gnuboard CMS allows remote attackers to inject arbitrary Javascript into the responses returned by the server.
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2022-05-10 13:22:31 +09:00
Prince Chaddha
c44aed7f5e
Update huijietong-cloud-fileread.yaml
2022-05-09 13:31:15 +05:30
Ritik Chaddha
a9de43f0f7
Update huijietong-cloud-fileread.yaml
2022-05-08 18:14:47 +05:30
Ritik Chaddha
4124cb441a
Update huijietong-cloud-fileread.yaml
2022-05-08 18:11:28 +05:30
Sandeep Singh
958b15663c
Strict matchers / f/p fix ( #4320 )
...
* more strict matcher + matcher fix
* misc updates
2022-05-08 12:13:38 +05:30
Prince Chaddha
303165dac4
Rename vulnerabilities/other/ruijie-networks-rce.yaml to vulnerabilities/ruijie/ruijie-networks-rce.yaml
2022-05-06 21:09:42 +05:30
Prince Chaddha
ef7e1fcf8b
Rename vulnerabilities/other/ruijie-networks-lfi.yaml to vulnerabilities/ruijie/ruijie-networks-lfi.yaml
2022-05-06 21:09:32 +05:30
Prince Chaddha
027c4ee86e
Rename vulnerabilities/other/ruijie-eg-rce.yaml to vulnerabilities/ruijie/ruijie-eg-rce.yaml
2022-05-06 21:09:20 +05:30
Prince Chaddha
16c82b3aad
Rename vulnerabilities/other/ruijie/ruijie-password-leak.yaml to vulnerabilities/ruijie/ruijie-password-leak.yaml
2022-05-06 21:09:07 +05:30
Prince Chaddha
610f52a09b
Update and rename vulnerabilities/other/ruijie-password-leak.yaml to vulnerabilities/other/ruijie/ruijie-password-leak.yaml
2022-05-06 21:07:45 +05:30
Prince Chaddha
e445aa053a
Update and rename firewall-password-leak.yaml to ruijie-password-leak.yaml
2022-05-06 20:59:15 +05:30
Ritik Chaddha
684528467b
Update firewall-password-leak.yaml
2022-05-06 16:13:47 +05:30
Ritik Chaddha
7ffa667acc
Create firewall-password-leak.yaml
2022-05-06 16:10:24 +05:30
Prince Chaddha
c48987d818
Update health-check-lfi.yaml
2022-05-03 01:12:36 +05:30
Dhiyaneshwaran
ce8efa4f01
Create health-check-lfi.yaml
2022-05-01 15:39:20 +05:30
Muhammad Daffa
96cc1928eb
Update wp-code-snippets-xss.yaml
2022-04-29 22:01:22 +07:00
sullo
c3d4dfd6ae
Tenda Template Enhancementleanup ( #4257 )
...
* Replace § markers with {{ }} pairs
* Clean up new Tenda admin panel template
* Update tenda-11n-wireless-router-login.yaml
Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2022-04-29 10:34:34 +05:30
Prince Chaddha
c9f72c1137
Update avada-xss.yaml
2022-04-28 23:27:46 +05:30
Muhammad Daffa
1c2235e87a
Update avada-xss.yaml
2022-04-28 21:41:50 +07:00
MostInterestingBotInTheWorld
aa888bca8d
Dashboard Content Enhancements ( #4238 )
...
Dashboard Content Enhancements
2022-04-25 10:35:07 -04:00
Sandeep Singh
5e58c8a1dc
Added WSO2 < 5.8.0 - Server Side Request Forgery ( #4229 )
2022-04-24 01:19:18 +05:30
forgedhallpass
5451673368
Moved and renamed templates containing a CVE under their correct location
2022-04-22 19:25:23 +03:00
Sandeep Singh
2487e9877f
Merge pull request #4219 from projectdiscovery/template_info_fixup
...
Info section refactor
2022-04-22 18:01:12 +05:30
forgedhallpass
e349c4ed72
YamlLint warning fix
...
* added new lines at the end of the template
2022-04-22 13:41:48 +03:00
forgedhallpass
209538baa6
refactor: Description field uniformization
...
* info field reorder
* reference values refactored to list
* added new lines after the id and before the protocols
* removed extra new lines
* split really long descriptions to multiple lines (part 1)
* other minor fixes
2022-04-22 13:38:41 +03:00
Prince Chaddha
b0f93aa784
Create avada-xss.yaml
2022-04-22 12:56:53 +04:00
MostInterestingBotInTheWorld
31312b1c19
Dashboard Content Enhancements ( #4191 )
...
Dashboard Content Enhancements
2022-04-21 17:16:41 -04:00
Prince Chaddha
321f265cf4
Merge pull request #4194 from ritikchaddha/patch-35
...
Create tianqing-info-leak.yaml
2022-04-20 12:32:46 +04:00
Prince Chaddha
37b638bd08
Update tianqing-info-leak.yaml
2022-04-20 12:29:00 +04:00
Prince Chaddha
90d48ca1aa
Merge pull request #4195 from ritikchaddha/patch-36
...
Create ecology-arbitrary-file-upload.yaml
2022-04-20 01:25:01 +04:00
Prince Chaddha
a9aab42ead
Update and rename vulnerabilities/other/ecology-arbitrary-file-upload.yaml to vulnerabilities/ecology/ecology-arbitrary-file-upload.yaml
2022-04-20 01:22:26 +04:00
Prince Chaddha
2669491e8a
Update ecology-v8-sqli.yaml
2022-04-20 01:03:52 +04:00
Ritik Chaddha
6125f3beee
Update ecology-arbitrary-file-upload.yaml
2022-04-20 02:17:41 +05:30
Ritik Chaddha
15586bf5ef
Create ecology-v8-sqli.yaml
2022-04-20 02:11:43 +05:30
Ritik Chaddha
bbd06de880
Create ecology-arbitrary-file-upload.yaml
2022-04-20 02:01:43 +05:30
Ritik Chaddha
aec114c561
Create tianqing-info-leak.yaml
2022-04-20 01:34:41 +05:30
MostInterestingBotInTheWorld
3e2e842d0e
Dashboard Content Ehnancements ( #4183 )
...
* Spacing and other template cleanups
* duplicate yaml tags
Co-authored-by: sullo <sullo@cirt.net>
2022-04-18 10:00:15 -04:00
Prince Chaddha
433bc68f85
Update ninjaform-open-redirect.yaml
2022-04-18 13:47:45 +04:00
Muhammad Daffa
fb17e3c779
Update ninjaform-open-redirect.yaml
2022-04-18 14:04:09 +07:00
Muhammad Daffa
d8d4d30a3d
Update wp-woocommerce-email-verification.yaml ( #4175 )
2022-04-17 11:51:29 +05:30
Sandeep Singh
f95e43a5af
CORS misconfig improvements ( #3988 )
...
* CORS misconfig improvements
* more updates
* Update cors-misconfig.yaml
* misc update
2022-04-16 21:06:53 +05:30
MostInterestingBotInTheWorld
5730781afa
Dashboard Content Enhancements ( #4157 )
...
* Enhancement: exposures/files/joomla-file-listing.yaml by cs
* Enhancement: cves/2019/CVE-2019-5418.yaml by mp
* Enhancement: cves/2016/CVE-2016-10940.yaml by mp
* Enhancement: cves/2015/CVE-2015-4694.yaml by mp
* Enhancement: cves/2016/CVE-2016-10960.yaml by mp
* Enhancement: cves/2021/CVE-2021-20091.yaml by mp
* Enhancement: cves/2021/CVE-2021-20092.yaml by mp
* Enhancement: vulnerabilities/other/solar-log-authbypass.yaml by mp
* Enhancement: vulnerabilities/wordpress/churchope-lfi.yaml by mp
* Enhancement: vulnerabilities/other/solar-log-authbypass.yaml by mp
* Enhancement: cves/2017/CVE-2017-10075.yaml by mp
* Enhancement: cves/2021/CVE-2021-27358.yaml by mp
* Enhancement: cves/2017/CVE-2017-9833.yaml by mp
* Enhancement: vulnerabilities/wordpress/wordpress-accessible-wpconfig.yaml by mp
* Enhancement: vulnerabilities/wordpress/wp-spot-premium-lfi.yaml by mp
* Enhancement: misconfiguration/symfony-debugmode.yaml by mp
* Enhancement: cves/2016/CVE-2016-10940.yaml by mp
* Enhancement: cves/2015/CVE-2015-4694.yaml by mp
* Enhancement: cves/2016/CVE-2016-10960.yaml by mp
* Enhancement: cves/2015/CVE-2015-4694.yaml by mp
* Enhancement: vulnerabilities/wordpress/churchope-lfi.yaml by mp
* Enhancement: cves/2017/CVE-2017-10075.yaml by mp
* Enhancement: cves/2021/CVE-2021-27358.yaml by mp
* Enhancement: vulnerabilities/wordpress/wordpress-accessible-wpconfig.yaml by mp
* Enhancement: vulnerabilities/wordpress/wp-spot-premium-lfi.yaml by mp
* Enhancement: vulnerabilities/wordpress/newsletter-open-redirect.yaml by mp
* Enhancement: vulnerabilities/wordpress/newsletter-open-redirect.yaml by mp
* Enhancement: vulnerabilities/wordpress/pieregister-open-redirect.yaml by mp
* Enhancement: cves/2021/CVE-2021-25055.yaml by mp
* Enhancement: cves/2021/CVE-2021-25028.yaml by mp
* Enhancement: vulnerabilities/wordpress/noptin-open-redirect.yaml by mp
* Enhancement: vulnerabilities/wordpress/elex-woocommerce-xss.yaml by mp
* Enhancement: vulnerabilities/wordpress/my-chatbot-xss.yaml by mp
* Enhancement: vulnerabilities/wordpress/wp-adaptive-xss.yaml by mp
* Enhancement: cves/2021/CVE-2021-24947.yaml by mp
* Enhancement: cves/2021/CVE-2021-24406.yaml by mp
* Enhancement: vulnerabilities/wordpress/elementorpage-open-redirect.yaml by mp
* Enhancement: cves/2016/CVE-2016-10033.yaml by mp
* Enhancement: cves/2021/CVE-2021-31682.yaml by mp
* Enhancement: vulnerabilities/wordpress/wp-woocommerce-file-download.yaml by mp
* Enhancement: cves/2021/CVE-2021-22986.yaml by mp
* Enhancement: vulnerabilities/wordpress/newsletter-open-redirect.yaml by mp
* Enhancement: vulnerabilities/wordpress/pieregister-open-redirect.yaml by mp
* Enhancement: cves/2021/CVE-2021-25055.yaml by mp
* Enhancement: cves/2021/CVE-2021-25028.yaml by mp
* Enhancement: vulnerabilities/wordpress/noptin-open-redirect.yaml by mp
* Enhancement: vulnerabilities/wordpress/elex-woocommerce-xss.yaml by mp
* Enhancement: cves/2021/CVE-2021-24947.yaml by mp
* Enhancement: cves/2021/CVE-2021-24406.yaml by mp
* Enhancement: cves/2021/CVE-2021-22986.yaml by mp
* Enhancement: cves/2016/CVE-2016-10033.yaml by mp
* Enhancement: vulnerabilities/wordpress/elementorpage-open-redirect.yaml by mp
* Enhancement: cves/2021/CVE-2021-24406.yaml by mp
* Relocating to CVE folder
* Enhancement: cves/2017/CVE-2017-14651.yaml by mp
* Enhancement: cves/2020/CVE-2020-24589.yaml by mp
* Enhancement: vulnerabilities/confluence/confluence-ssrf-sharelinks.yaml by mp
* Enhancement: cves/2019/CVE-2019-2729.yaml by mp
* Enhancement: cves/2018/CVE-2018-2893.yaml by mp
* Enhancement: cves/2018/CVE-2018-2628.yaml by mp
* Enhancement: cves/2018/CVE-2018-3238.yaml by mp
* Enhancement: cves/2018/CVE-2018-3238.yaml by mp
* Enhancement: cves/2017/CVE-2017-3528.yaml by mp
* Enhancement: cves/2019/CVE-2019-2588.yaml by mp
* Enhancement: cves/2021/CVE-2021-31755.yaml by mp
* Enhancement: cves/2021/CVE-2021-42071.yaml by mp
* Enhancement: misconfiguration/zabbix-dashboards-access.yaml by mp
* Enhancement: cves/2017/CVE-2017-14651.yaml by mp
* Enhancement: cves/2020/CVE-2020-24589.yaml by mp
* Enhancement: vulnerabilities/confluence/confluence-ssrf-sharelinks.yaml by mp
* Enhancement: cves/2019/CVE-2019-2729.yaml by mp
* Enhancement: cves/2018/CVE-2018-2893.yaml by mp
* Enhancement: cves/2018/CVE-2018-3238.yaml by mp
* Enhancement: cves/2017/CVE-2017-3528.yaml by mp
* Enhancement: cves/2021/CVE-2021-42071.yaml by mp
* Syntax corrections
Added some cve-id fields
Removed duplicate dashboard comments
* Tag typo
Co-authored-by: sullo <sullo@cirt.net>
2022-04-15 12:39:44 -04:00
Prince Chaddha
eda4cdd339
Merge pull request #4102 from ritikchaddha/patch-23
...
Create qizhi-fortressaircraft-unauthorized.yaml
2022-04-12 01:39:51 +05:30
Prince Chaddha
13de1b849c
Merge pull request #4106 from ritikchaddha/patch-25
...
Create pyspider-unauthorized-access.yaml
2022-04-12 01:38:05 +05:30
Prince Chaddha
dda19c0a9b
Update and rename qizhi-fortressaircraft-unauthorized.yaml to qizhi-fortressaircraft-unauth.yaml
2022-04-12 01:37:20 +05:30
Prince Chaddha
39336f2ca5
Update pyspider-unauthorized-access.yaml
2022-04-12 01:34:02 +05:30
MostInterestingBotInTheWorld
45174dee16
Dashboard Content Enhancements ( #4111 )
...
Dashboard Content Enhancements
2022-04-11 10:42:35 -04:00
Ritik Chaddha
a874ccac44
Create pyspider-unauthorized-access.yaml
2022-04-11 12:36:33 +05:30
Ritik Chaddha
55907e03a9
Create qizhi-fortressaircraft-unauthorized.yaml
2022-04-11 12:12:24 +05:30
Sandeep Singh
5eb47292e4
Added Reprise License Manager Templates ( #4097 )
...
Co-Authored-By: Akincibor <99909324+Akincibor@users.noreply.github.com>
Co-authored-by: Akincibor <99909324+Akincibor@users.noreply.github.com>
2022-04-10 12:41:31 +05:30
Prince Chaddha
7a26b26611
Merge pull request #4079 from ritikchaddha/patch-19
...
Create hanming-video-conferencing-file-read.yaml
2022-04-10 01:15:06 +05:30
Prince Chaddha
c48a3009ef
Update and rename hanming-video-conferencing-file-read.yaml to hanming-lfr.yaml
2022-04-10 01:12:47 +05:30
Prince Chaddha
fb3b587f8d
Merge pull request #4080 from ritikchaddha/patch-20
...
Create tongda-user-session-disclosure.yaml
2022-04-10 01:10:41 +05:30
Prince Chaddha
da6a91f00c
Update and rename tongda-user-session-disclosure.yaml to tongda-session-disclosure.yaml
2022-04-10 01:07:22 +05:30
Prince Chaddha
3a870ceb11
Update yongyou-u8-oa-sqli.yaml
2022-04-10 00:40:02 +05:30
Ritik Chaddha
e33e5186d7
Create yongyou-u8-oa-sqli.yaml
2022-04-08 13:43:23 +05:30
Ritik Chaddha
4333ef4f89
Create tongda-user-session-disclosure.yaml
2022-04-08 13:42:20 +05:30
Ritik Chaddha
14029f1772
Create hanming-video-conferencing-file-read.yaml
2022-04-08 13:40:46 +05:30
Prince Chaddha
210d16392b
Merge pull request #4064 from ritikchaddha/patch-8
...
Create ecology-syncuserinfo-sqli.yaml
2022-04-07 19:27:52 +05:30
MostInterestingBotInTheWorld
a24ef794b7
Dashboard Content Enhancements ( #4031 )
...
Dashboard Content Enhancements
2022-04-07 09:53:15 -04:00
Prince Chaddha
bb4358e498
Update ecology-syncuserinfo-sqli.yaml
2022-04-07 18:42:11 +05:30
Prince Chaddha
7791b71a8d
Update ecology-syncuserinfo-sqli.yaml
2022-04-07 18:40:03 +05:30
Prince Chaddha
8a45bc4f7d
Update hiboss-rce.yaml
2022-04-07 18:12:31 +05:30
Prince Chaddha
84b9e66fba
Merge pull request #4073 from ritikchaddha/patch-16
...
Create pbootcms-database-file-download.yaml
2022-04-07 17:32:58 +05:30
Prince Chaddha
6f2ae23929
Merge pull request #4074 from ritikchaddha/patch-17
...
Create dss-download-fileread.yaml
2022-04-07 17:32:37 +05:30
Prince Chaddha
d2c87cf12a
Update pbootcms-database-file-download.yaml
2022-04-07 17:30:29 +05:30
Prince Chaddha
465b904cf1
Update pbootcms-database-file-download.yaml
2022-04-07 17:24:43 +05:30
Prince Chaddha
c509256843
Update dss-download-fileread.yaml
2022-04-07 17:07:42 +05:30
Prince Chaddha
3dafb4bbfe
Update kingsoft-v8-file-read.yaml
2022-04-07 16:58:32 +05:30
Ritik Chaddha
78625369df
Create dss-download-fileread.yaml
2022-04-07 16:01:28 +05:30
Ritik Chaddha
cfee24aaa7
Create pbootcms-database-file-download.yaml
2022-04-07 15:53:09 +05:30
Ritik Chaddha
2f849a6620
Create kingsoft-v8-file-read.yaml
2022-04-07 15:15:14 +05:30
Prince Chaddha
0c6a333a38
Update ns-asg-file-read.yaml
2022-04-07 14:31:10 +05:30
Prince Chaddha
9bf3b9493c
Update ns-asg-file-read.yaml
2022-04-07 14:24:10 +05:30
Prince Chaddha
888c593257
Update ns-asg-file-read.yaml
2022-04-07 14:23:54 +05:30
Ritik Chaddha
37dc09b55b
Update ns-asg-file-read.yaml
2022-04-07 14:14:15 +05:30
sullo
becdd7810b
Cleanup Joomla! Jvehicles template ( #3983 )
...
* Cleanup Joomla! Jvehicles template since it was labeled as SQLi but had a test for LFI
Create new template for the Jvehicles LFI
* Fix id
* path update
* Delete CVE-2010-1873.yaml
temporarily removing as it doesn't contain the exact matchers.
Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
2022-04-06 17:21:08 +05:30
Ritik Chaddha
affc2d4e52
Create ecology-syncuserinfo-sqli.yaml
2022-04-06 14:25:59 +05:30
Prince Chaddha
3b767cd5b6
Merge pull request #4055 from ritikchaddha/patch-5
...
Create kingdee-eas-directory-traversal.yaml
2022-04-06 13:34:12 +05:30
Prince Chaddha
0c07ddb3a7
Update kingdee-eas-directory-traversal.yaml
2022-04-06 13:32:42 +05:30
Prince Chaddha
7aa021fd1e
Merge pull request #4057 from ritikchaddha/patch-7
...
Create seacms-sqli.yaml
2022-04-06 13:32:19 +05:30
Prince Chaddha
b5e81d3f54
Update kingdee-eas-directory-traversal.yaml
2022-04-06 13:31:21 +05:30
Prince Chaddha
831f53d205
Rename vulnerabilities/seacms-sqli.yaml to vulnerabilities/other/seacms-sqli.yaml
2022-04-06 13:21:30 +05:30
Prince Chaddha
c3e409cff5
Update seacms-sqli.yaml
2022-04-06 10:18:53 +05:30
Prince Chaddha
9ade9247db
Merge pull request #4035 from projectdiscovery/3cx-management-console
...
Create 3cx-management-console.yaml
2022-04-06 09:37:38 +05:30
Prince Chaddha
0451a7c3ea
Update 3cx-management-console.yaml
2022-04-06 09:30:14 +05:30
Sandeep Singh
3d15307605
Fixed mobileiron-log4j-jndi-rce ( #4060 )
2022-04-05 23:02:05 +05:30
Ritik Chaddha
4e8eb2adc8
Create seacms-sqli.yaml
2022-04-05 18:42:45 +05:30
Ritik Chaddha
cd16ff171d
Create kingdee-eas-directory-traversal.yaml
2022-04-05 17:20:57 +05:30
Prince Chaddha
1d0be90f62
Merge pull request #4044 from Splint3r7/master
...
Enhancement - PR#4009
2022-04-04 18:40:48 +05:30
Hassan Khan
45b992d75d
Updating Templates
2022-04-03 14:17:31 +05:00
Prince Chaddha
cbb575dddb
Create 3cx-management-console.yaml
2022-04-02 16:24:05 +05:30
Prince Chaddha
ef807cd420
Merge pull request #4005 from daffainfo/patch-7
...
Create admin-word-count-column-lfi.yaml
2022-04-02 16:11:47 +05:30
Prince Chaddha
786636813e
Update admin-word-count-column-lfi.yaml
2022-04-02 16:09:39 +05:30
Prince Chaddha
58d84ce38a
Merge pull request #4004 from daffainfo/patch-6
...
Create amministrazione-aperta-lfi.yaml
2022-04-02 16:07:07 +05:30
Prince Chaddha
56b6ef7205
Update amministrazione-aperta-lfi.yaml
2022-04-02 16:04:50 +05:30
Prince Chaddha
b09ac6b3bc
Merge pull request #4009 from Splint3r7/master
...
Add video-synchro-pdf & cab-fare-calculator - WordPress Plugin LFI
2022-04-02 15:32:30 +05:30
Prince Chaddha
0468dc5782
Update video-synchro-pdf-lfi.yaml
2022-04-02 15:30:18 +05:30
Prince Chaddha
a13f72f634
Update cab-fare-calculator-lfi.yaml
2022-04-02 15:28:48 +05:30
Prince Chaddha
4a1d72d2a7
Update video-synchro-pdf-lfi.yaml
2022-04-02 15:25:19 +05:30
Prince Chaddha
87e5919079
Update cab-fare-calculator-lfi.yaml
2022-04-02 15:24:02 +05:30
MostInterestingBotInTheWorld
6ddfbac2b4
Dashboard Content Enhancement ( #4020 )
...
* Enhancement: cnvd/2021/CNVD-2021-15822.yaml by mp
* Enhancement: exposed-panels/apache/tomcat-pathnormalization.yaml by mp
* Enhancement: cves/2021/CVE-2021-40542.yaml by mp
* Enhancement: misconfiguration/horde-unauthenticated.yaml by mp
* Enhancement: misconfiguration/horde-unauthenticated.yaml by mp
* Enhancement: misconfiguration/horde-unauthenticated.yaml by mp
* Enhancement: cves/2021/CVE-2021-40542.yaml by mp
* Enhancement: exposed-panels/apiman-panel.yaml by mp
* Enhancement: cves/2010/CVE-2010-1873.yaml by mp
* Enhancement: exposed-panels/arcgis/arcgis-panel.yaml by mp
* Enhancement: exposed-panels/arcgis/arcgis-rest-api.yaml by mp
* Enhancement: exposed-panels/argocd-login.yaml by mp
* Enhancement: exposed-panels/atlassian-crowd-panel.yaml by mp
* Enhancement: exposed-panels/atvise-login.yaml by mp
* Enhancement: exposed-panels/avantfax-panel.yaml by mp
* Enhancement: exposed-panels/avatier-password-management.yaml by mp
* Enhancement: exposed-panels/axigen-webadmin.yaml by mp
* Enhancement: exposed-panels/axigen-webmail.yaml by mp
* Enhancement: exposed-panels/azkaban-web-client.yaml by mp
* Enhancement: exposed-panels/acunetix-panel.yaml by mp
* Enhancement: exposed-panels/adiscon-loganalyzer.yaml by mp
* Enhancement: exposed-panels/adminer-panel.yaml by mp
* Enhancement: cves/2010/CVE-2010-1870.yaml by mp
* Enhancement: exposed-panels/adminset-panel.yaml by mp
* Enhancement: exposed-panels/adobe/adobe-component-login.yaml by mp
* Enhancement: exposed-panels/adobe/adobe-connect-central-login.yaml by mp
* Enhancement: exposed-panels/adobe/adobe-experience-manager-login.yaml by mp
* Enhancement: exposed-panels/adobe/adobe-media-server.yaml by mp
* Enhancement: exposed-panels/advance-setup.yaml by mp
* Enhancement: exposed-panels/aerohive-netconfig-ui.yaml by mp
* Enhancement: exposed-panels/aims-password-mgmt-client.yaml by mp
* Enhancement: exposed-panels/aims-password-mgmt-client.yaml by mp
* Enhancement: exposed-panels/aims-password-portal.yaml by mp
* Enhancement: exposed-panels/airflow-panel.yaml by mp
* Enhancement: exposed-panels/airflow-panel.yaml by mp
* spacing issues
* Spacing
* HTML codes improperly interpreted
Relocate horde-unauthenticated.yaml to CVE-2005-3344.yaml
* Relocate horde-unauthenticated.yaml to CVE-2005-3344.yaml
* Enhancement: technologies/waf-detect.yaml by mp
* Enhancement: vulnerabilities/wordpress/wordpress-wpcourses-info-disclosure.yaml by mp
* Enhancement: vulnerabilities/wordpress/wordpress-wpcourses-info-disclosure.yaml by mp
* Enhancement: network/sap-router-info-leak.yaml by mp
* Enhancement: vulnerabilities/wordpress/wordpress-wpcourses-info-disclosure.yaml by mp
* Enhancement: network/sap-router-info-leak.yaml by mp
* Enhancement: network/exposed-adb.yaml by mp
* Enhancement: vulnerabilities/vmware/vrealize-operations-log4j-rce.yaml by mp
* Enhancement: vulnerabilities/vmware/vrealize-operations-log4j-rce.yaml by mp
* Enhancement: vulnerabilities/vmware/vrealize-operations-log4j-rce.yaml by mp
* Enhancement: vulnerabilities/vmware/vrealize-operations-log4j-rce.yaml by mp
* Enhancement: vulnerabilities/wordpress/wordpress-woocommerce-sqli.yaml by mp
* Enhancement: exposures/tokens/digitalocean/tugboat-config-exposure.yaml by mp
* Enhancement: exposed-panels/concrete5/concrete5-install.yaml by mp
* Enhancement: vulnerabilities/wordpress/wordpress-infinitewp-auth-bypass.yaml by mp
* indentation issue
* Character encoding issue fix
* Enhancement: default-logins/alibaba/canal-default-login.yaml by mp
* Enhancement: default-logins/alphaweb/alphaweb-default-login.yaml by mp
* Enhancement: default-logins/ambari/ambari-default-login.yaml by mp
* Enhancement: default-logins/apache/airflow-default-login.yaml by mp
* Enhancement: default-logins/apache/apisix-default-login.yaml by mp
* Enhancement: default-logins/apollo/apollo-default-login.yaml by mp
* Enhancement: default-logins/arl/arl-default-login.yaml by mp
* Enhancement: default-logins/digitalrebar/digitalrebar-default-login.yaml by mp
* Enhancement: default-logins/mantisbt/mantisbt-default-credential.yaml by mp
* Enhancement: default-logins/stackstorm/stackstorm-default-login.yaml by mp
* Enhancement: dns/caa-fingerprint.yaml by mp
* Enhancement: exposed-panels/active-admin-exposure.yaml by mp
* Enhancement: exposed-panels/activemq-panel.yaml by mp
* Enhancement: default-logins/ambari/ambari-default-login.yaml by mp
* Restore & stomped by dashboard
* Enhancement: cves/2010/CVE-2010-1653.yaml by mp
* Enhancement: cves/2021/CVE-2021-38751.yaml by mp
* Enhancement: cves/2021/CVE-2021-39320.yaml by mp
* Enhancement: cves/2021/CVE-2021-39322.yaml by mp
* Enhancement: cves/2021/CVE-2021-39327.yaml by mp
* Enhancement: cves/2021/CVE-2021-39350.yaml by mp
* Enhancement: cves/2021/CVE-2021-39433.yaml by mp
* Enhancement: cves/2021/CVE-2021-41192.yaml by mp
* Enhancement: cnvd/2021/CNVD-2021-15824.yaml by mp
* Enhancement: exposed-panels/ansible-semaphore-panel.yaml by mp
* Enhancement: exposed-panels/aviatrix-panel.yaml by mp
* Enhancement: cves/2022/CVE-2022-24288.yaml by mp
* Enhancement: cves/2022/CVE-2022-24990.yaml by mp
* Enhancement: cves/2022/CVE-2022-26159.yaml by mp
* Enhancement: default-logins/aem/aem-default-login.yaml by mp
* Enhancement: exposed-panels/blue-iris-login.yaml by mp
* Enhancement: exposed-panels/bigbluebutton-login.yaml by mp
* Enhancement: cves/2022/CVE-2022-24288.yaml by mp
* Enhancement: cves/2022/CVE-2022-24990.yaml by mp
* Enhancement: cves/2022/CVE-2022-26159.yaml by mp
* Enhancement: default-logins/aem/aem-default-login.yaml by mp
* Spacing issues
Add cve-id field
* fix & stomping
* Enhancement: cves/2016/CVE-2016-1000141.yaml by mp
* Enhancement: cves/2020/CVE-2020-24912.yaml by mp
* Enhancement: cves/2021/CVE-2021-35265.yaml by mp
* Enhancement: cves/2022/CVE-2022-0437.yaml by mp
* Enhancement: cves/2010/CVE-2010-1601.yaml by mp
* Enhancement: technologies/teradici-pcoip.yaml by mp
* Enhancement: vulnerabilities/other/unauth-hoteldruid-panel.yaml by mp
* Enhancement: cves/2010/CVE-2010-1475.yaml by mp
* Enhancement: cves/2010/CVE-2010-1535.yaml by mp
* Enhancement: exposed-panels/epson-web-control-detect.yaml by mp
* Enhancement: exposed-panels/epson-access-detect.yaml by mp
* Enhancement: cves/2020/CVE-2020-29453.yaml by mp
* Fix spacing
* Remove empty cve lines and relocate tags
* Remove blank cve lines & move tags
* Fix merge errors
* Enhancement: cves/2020/CVE-2020-21224.yaml by mp
* Enhancement: cves/2020/CVE-2020-24148.yaml by mp
* Enhancement: cves/2020/CVE-2020-24391.yaml by mp
* Enhancement: cves/2020/CVE-2020-24589.yaml by mp
* Enhancement: cves/2020/CVE-2020-25213.yaml by mp
* Enhancement: cves/2020/CVE-2020-25223.yaml by mp
* Enhancement: cves/2020/CVE-2020-25506.yaml by mp
* Enhancement: cves/2020/CVE-2020-2551.yaml by mp
* Enhancement: cves/2020/CVE-2020-28871.yaml by mp
* Enhancement: cves/2020/CVE-2020-28188.yaml by mp
* Enhancement: cves/2020/CVE-2020-26948.yaml by mp
* Enhancement: cves/2020/CVE-2020-26919.yaml by mp
* Enhancement: cves/2020/CVE-2020-26214.yaml by mp
* Enhancement: cves/2020/CVE-2020-25223.yaml by mp
* Enhancement: cves/2020/CVE-2020-21224.yaml by mp
* Enhancement: cves/2020/CVE-2020-24148.yaml by mp
* Enhancement: cves/2020/CVE-2020-24186.yaml by mp
* Enhancement: cves/2020/CVE-2020-24186.yaml by mp
* Enhancement: cves/2020/CVE-2020-24391.yaml by mp
* Enhancement: cves/2020/CVE-2020-24589.yaml by mp
* Enhancement: cves/2020/CVE-2020-25213.yaml by mp
* Enhancement: cves/2020/CVE-2020-25223.yaml by mp
* Enhancement: cves/2020/CVE-2020-25506.yaml by mp
* Enhancement: cves/2020/CVE-2020-28871.yaml by mp
* Enhancement: cves/2020/CVE-2020-28188.yaml by mp
* Enhancement: cves/2020/CVE-2020-26948.yaml by mp
* Enhancement: cves/2020/CVE-2020-26919.yaml by mp
* Enhancement: cves/2020/CVE-2020-26214.yaml by mp
* Syntax cleanup
* Enhancement: cves/2021/CVE-2021-38647.yaml by mp
* Syntax and a title change
* Enhancement: cves/2021/CVE-2021-38702.yaml by mp
* Fix references
* Enhancement: cves/2021/CVE-2021-38704.yaml by mp
* Enhancement: cves/2021/CVE-2021-41691.yaml by mp
* Enhancement: cves/2021/CVE-2021-41691.yaml by mp
* Enhancement: cves/2021/CVE-2021-41691.yaml by mp
* Enhancement: cves/2021/CVE-2021-44529.yaml by mp
* Conflicts resolved
* Fix quoting
* Enhancement: cves/2021/CVE-2021-45967.yaml by mp
* Enhancement: cves/2022/CVE-2022-0189.yaml by mp
* Enhancement: cves/2022/CVE-2022-0189.yaml by mp
* Enhancement: cves/2022/CVE-2022-23779.yaml by mp
* Enhancement: default-logins/apache/dolphinscheduler-default-login.yaml by mp
* Enhancement: default-logins/cobbler/hue-default-credential.yaml by mp
* Enhancement: default-logins/emqx/emqx-default-login.yaml by mp
* Enhancement: default-logins/geoserver/geoserver-default-login.yaml by mp
* Enhancement: cves/2021/CVE-2021-38647.yaml by mp
* Enhancement: cves/2021/CVE-2021-41691.yaml by mp
* Enhancement: cves/2021/CVE-2021-45967.yaml by mp
* Enhancement: cves/2022/CVE-2022-0189.yaml by mp
* Enhancement: cnvd/2021/CNVD-2021-14536.yaml by mp
* Enhancement: default-logins/apache/dolphinscheduler-default-login.yaml by mp
* Enhancement: default-logins/geoserver/geoserver-default-login.yaml by mp
* Update CVE-2020-25223.yaml
* Update CVE-2020-26214.yaml
* Update CVE-2020-25506.yaml
* Update CVE-2020-2551.yaml
* Update CVE-2020-26919.yaml
* Update CVE-2021-44529.yaml
* Update CVE-2020-28871.yaml
* Update CVE-2020-28188.yaml
* Update CVE-2021-45967.yaml
* Update hue-default-credential.yaml
* Update CVE-2021-44529.yaml
* misc syntax update
* Syntax restore some characters
* Spacing
* Enhancement: vulnerabilities/wordpress/hide-security-enhancer-lfi.yaml by mp
* Enhancement: vulnerabilities/wordpress/issuu-panel-lfi.yaml by mp
* Enhancement: cves/2019/CVE-2019-10068.yaml by mp
* Enhancement: cves/2019/CVE-2019-10232.yaml by mp
* Enhancement: cves/2019/CVE-2019-10758.yaml by mp
* Enhancement: cves/2019/CVE-2019-11510.yaml by mp
* Enhancement: cves/2019/CVE-2019-11580.yaml by mp
* Enhancement: cves/2019/CVE-2019-11581.yaml by mp
* Enhancement: cves/2019/CVE-2019-12314.yaml by mp
* Enhancement: cves/2019/CVE-2019-13101.yaml by mp
* Link wrapping issue
* Enhancement: cves/2019/CVE-2019-13462.yaml by mp
* Enhancement: cves/2019/CVE-2019-15107.yaml by mp
* Enhancement: cves/2019/CVE-2019-15859.yaml by mp
* Enhancement: cves/2019/CVE-2019-16759.yaml by mp
* Enhancement: cves/2019/CVE-2019-16662.yaml by mp
* Enhancement: cves/2019/CVE-2019-16278.yaml by mp
* Enhancement: cves/2019/CVE-2019-10232.yaml by mp
* Enhancement: cves/2019/CVE-2019-10758.yaml by mp
* Enhancement: cves/2019/CVE-2019-11510.yaml by mp
* Enhancement: cves/2019/CVE-2019-12725.yaml by mp
* Enhancement: cves/2019/CVE-2019-13101.yaml by mp
* Enhancement: cves/2019/CVE-2019-15107.yaml by mp
* Enhancement: cves/2019/CVE-2019-15859.yaml by mp
* Enhancement: cves/2019/CVE-2019-16662.yaml by mp
* Enhancement: cnvd/2021/CNVD-2021-10543.yaml by cs
* Enhancement: cves/2021/CVE-2021-33807.yaml by mp
* Enhancement: cves/2010/CVE-2010-0943.yaml by mp
* Enhancement: cves/2008/CVE-2008-6172.yaml by mp
* Enhancement: vulnerabilities/simplecrm/simple-crm-sql-injection.yaml by mp
* Enhancement: vulnerabilities/oracle/oracle-siebel-xss.yaml by mp
* Enhancement: cves/2010/CVE-2010-1602.yaml by mp
* Enhancement: cves/2010/CVE-2010-1474.yaml by mp
* Enhancement: network/cisco-smi-exposure.yaml by mp
* Enhancement: cves/2021/CVE-2021-37704.yaml by mp
* Enhancement: vulnerabilities/other/microweber-xss.yaml by mp
* Enhancement: cves/2019/CVE-2019-16313.yaml by mp
* Enhancement: cves/2021/CVE-2021-3017.yaml by mp
* Enhancement: cves/2010/CVE-2010-1353.yaml by mp
* Enhancement: cves/2010/CVE-2010-5278.yaml by mp
* Enhancement: cves/2021/CVE-2021-37573.yaml by mp
* Enhancement: vulnerabilities/oracle/oracle-siebel-xss.yaml by mp
* Enhancement: cves/2010/CVE-2010-1602.yaml by mp
* Enhancement: cves/2010/CVE-2010-1474.yaml by mp
* Enhancement: vulnerabilities/other/microweber-xss.yaml by mp
* Enhancement: cves/2018/CVE-2018-11709.yaml by mp
* Enhancement: cves/2014/CVE-2014-2321.yaml by mp
* Enhancement: vulnerabilities/other/visual-tools-dvr-rce.yaml by mp
* Enhancement: vulnerabilities/other/visual-tools-dvr-rce.yaml by mp
* Manual enhancement
* Manual enhancement push due to dashboard failure
* Testing of dashboard accidentally commited to dashboard branch
* Spacing
Put some CVEs in the classification
* Add missing cve-id fields to templates in cve/
Co-authored-by: sullo <sullo@cirt.net>
Co-authored-by: Prince Chaddha <prince@projectdiscovery.io>
Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2022-04-01 14:21:42 +05:30
sandeep
b06d02b2fe
template id update
2022-03-30 15:16:52 +05:30
Hassan Khan
e667127067
Merge branch 'master' of https://github.com/Splint3r7/nuclei-templates
2022-03-30 10:42:37 +05:00
Hassan Khan
df4bc6693d
WordPress LFI
2022-03-30 10:42:22 +05:00
Hassan Khan
1da098f499
Will push again
2022-03-30 10:39:37 +05:00
Hassan Khan
1f815786c0
LFI Templates
2022-03-30 10:35:04 +05:00
Muhammad Daffa
10fe7186ca
Create admin-word-count-column-lfi.yaml
2022-03-29 19:59:12 +07:00
Muhammad Daffa
605bb41f03
Update amministrazione-aperta-lfi.yaml
2022-03-29 19:58:21 +07:00
Muhammad Daffa
613a5800ae
Create amministrazione-aperta-lfi.yaml
2022-03-29 19:55:33 +07:00
sandeep
e82f14ee67
additional reference + path update
2022-03-28 22:28:04 +05:30
Sandeep Singh
5f28041069
Added Spring Boot Log4j Remote Code Injection ( #3993 )
...
* Added Spring Boot Log4j Remote Code Injection
* minor improvements to CVE-2021-44228
* URI based payload update to catch injection point
2022-03-28 01:46:50 +05:30
gy741
04ec5b6b6d
Create netgear-wac124-router-auth-bypass.yaml ( #3986 )
...
* Create netgear-wac124-router-auth-bypass.yaml
This vulnerability allows network-adjacent attackers to bypass authentication on affected of WAC124, AC2000 routers. Authentication is not required to exploit this vulnerability.
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
* misc update
Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2022-03-27 20:40:41 +05:30
东方有鱼名为咸
38a902317f
add springcloud-function-spel-rce ( #3991 )
...
* add springcloud-function-spel-rce
* misc updates
Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2022-03-27 20:17:28 +05:30
Sandeep Singh
eeff6b26b8
more strict matchers ( #3987 )
2022-03-26 16:45:50 +05:30
Prince Chaddha
948ceb8b11
Create oracle-fatwire-lfi.yaml ( #3975 )
...
* Create oracle-fatwire-lfi.yaml
* Update oracle-fatwire-lfi.yaml
* Update oracle-fatwire-lfi.yaml
Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
2022-03-26 14:56:13 +05:30
MostInterestingBotInTheWorld
eb23e6e44e
Dashboard Content Enhancements ( #3980 )
...
Dashboard Content Enhancements
2022-03-25 10:16:18 -04:00
MostInterestingBotInTheWorld
814d07fb7d
Dashboard Content Enhancements ( #3961 )
...
* Enhancement: default-logins/viewpoint/trilithic-viewpoint-login.yaml by mp
* Enhancement: default-logins/visionhub/visionhub-default-login.yaml by mp
* Enhancement: default-logins/weblogic/weblogic-weak-login.yaml by mp
* Enhancement: default-logins/wifisky/wifisky-default-login.yaml by mp
* Enhancement: default-logins/wso2/wso2-default-login.yaml by mp
* Enhancement: default-logins/xerox/xerox7-default-login.yaml by mp
* Enhancement: default-logins/xxljob/xxljob-default-login.yaml by mp
* Enhancement: default-logins/zabbix/zabbix-default-login.yaml by mp
* Enhancement: default-logins/zmanda/zmanda-default-login.yaml by mp
* Enhancement: dns/azure-takeover-detection.yaml by mp
* Enhancement: dns/cname-fingerprint.yaml by mp
* Enhancement: dns/cname-service-detection.yaml by mp
* Enhancement: dns/detect-dangling-cname.yaml by mp
* Enhancement: dns/dns-waf-detect.yaml by mp
* Enhancement: default-logins/weblogic/weblogic-weak-login.yaml by mp
* Enhancement: default-logins/xxljob/xxljob-default-login.yaml by mp
* Enhancement: dns/dnssec-detection.yaml by mp
* Enhancement: dns/ec2-detection.yaml by mp
* Add CVSS/CWE
* Trailing space
* Linting error on comment indentation
* Typo
* Enhancement: dns/elasticbeantalk-takeover.yaml by mp
* Enhancement: cves/2020/CVE-2020-23517.yaml by mp
* Enhancement: dns/elasticbeantalk-takeover.yaml by mp
* Enhancement: dns/mx-fingerprint.yaml by mp
* Enhancement: dns/mx-service-detector.yaml by mp
* Enhancement: dns/nameserver-fingerprint.yaml by mp
* Enhancement: dns/ptr-fingerprint.yaml by mp
* Enhancement: dns/servfail-refused-hosts.yaml by mp
* Enhancement: dns/spoofable-spf-records-ptr.yaml by mp
* Enhancement: dns/txt-fingerprint.yaml by mp
* Enhancement: dns/worksites-detection.yaml by mp
* Enhancement: exposed-panels/3g-wireless-gateway.yaml by mp
* Enhancement: exposed-panels/acemanager-login.yaml by mp
* Enhancement: exposed-panels/acrolinx-dashboard.yaml by mp
* Enhancement: dns/mx-fingerprint.yaml by mp
* Enhancement: dns/mx-service-detector.yaml by mp
* Enhancement: dns/ptr-fingerprint.yaml by mp
* Enhancement: dns/servfail-refused-hosts.yaml by mp
* Enhancement: dns/spoofable-spf-records-ptr.yaml by mp
* Enhancement: cves/2021/CVE-2021-39501.yaml by mp
* Enhancement: cves/2021/CVE-2021-40323.yaml by mp
* Enhancement: cves/2021/CVE-2021-40539.yaml by mp
* Enhancement: cves/2021/CVE-2021-40542.yaml by mp
* Enhancement: cves/2021/CVE-2021-40856.yaml by mp
* Enhancement: cves/2021/CVE-2021-40859.yaml by mp
* Enhancement: cves/2021/CVE-2021-40323.yaml by mp
* Enhancement: cves/2021/CVE-2021-40539.yaml by mp
* Enhancement: cves/2010/CVE-2010-1875.yaml by mp
* Enhancement: exposed-panels/aims-password-portal.yaml by mp
* Enhancement: exposed-panels/airflow-panel.yaml by mp
* Enhancement: exposed-panels/akamai-cloudtest.yaml by mp
* Enhancement: exposed-panels/alfresco-detect.yaml by mp
* Enhancement: exposed-panels/alienvault-usm.yaml by mp
* Enhancement: exposed-panels/ambari-exposure.yaml by mp
* Enhancement: exposed-panels/amcrest-login.yaml by mp
* Enhancement: exposed-panels/ametys-admin-login.yaml by mp
* Enhancement: exposed-panels/ametys-admin-login.yaml by mp
* Enhancement: exposed-panels/alienvault-usm.yaml by mp
* Enhancement: exposed-panels/airflow-panel.yaml by mp
* Enhancement: exposed-panels/aims-password-portal.yaml by mp
* Enhancement: exposed-panels/ambari-exposure.yaml by mp
* Enhancement: cnvd/2021/CNVD-2021-17369.yaml by mp
* Enhancement: exposed-panels/apache/public-tomcat-manager.yaml by mp
* Enhancement: exposed-panels/apache/apache-apisix-panel.yaml by mp
* Enhancement: exposed-panels/ansible-tower-exposure.yaml by mp
* Enhancement: exposed-panels/ampps-panel.yaml by mp
* Enhancement: exposed-panels/ampps-admin-panel.yaml by mp
* Enhancement: exposed-panels/ametys-admin-login.yaml by mp
* Enhancement: cves/2010/CVE-2010-1878.yaml by mp
* Fix encoded chars
* trailing space
* Enhancement: cnvd/2021/CNVD-2021-15822.yaml by mp
* Enhancement: cnvd/2021/CNVD-2021-15822.yaml by mp
* Enhancement: cnvd/2021/CNVD-2021-15822.yaml by mp
* Enhancement: exposed-panels/apache/tomcat-pathnormalization.yaml by mp
* Enhancement: cves/2021/CVE-2021-40542.yaml by mp
* Enhancement: misconfiguration/horde-unauthenticated.yaml by mp
* Enhancement: misconfiguration/horde-unauthenticated.yaml by mp
* Enhancement: misconfiguration/horde-unauthenticated.yaml by mp
* Enhancement: cves/2021/CVE-2021-40542.yaml by mp
* Enhancement: exposed-panels/apiman-panel.yaml by mp
* Enhancement: cves/2010/CVE-2010-1873.yaml by mp
* Enhancement: exposed-panels/arcgis/arcgis-panel.yaml by mp
* Enhancement: exposed-panels/arcgis/arcgis-rest-api.yaml by mp
* Enhancement: exposed-panels/argocd-login.yaml by mp
* Enhancement: exposed-panels/atlassian-crowd-panel.yaml by mp
* Enhancement: exposed-panels/atvise-login.yaml by mp
* Enhancement: exposed-panels/avantfax-panel.yaml by mp
* Enhancement: exposed-panels/avatier-password-management.yaml by mp
* Enhancement: exposed-panels/axigen-webadmin.yaml by mp
* Enhancement: exposed-panels/axigen-webmail.yaml by mp
* Enhancement: exposed-panels/azkaban-web-client.yaml by mp
* Enhancement: exposed-panels/acunetix-panel.yaml by mp
* Enhancement: exposed-panels/adiscon-loganalyzer.yaml by mp
* Enhancement: exposed-panels/adminer-panel.yaml by mp
* Enhancement: cves/2010/CVE-2010-1870.yaml by mp
* Enhancement: exposed-panels/adminset-panel.yaml by mp
* Enhancement: exposed-panels/adobe/adobe-component-login.yaml by mp
* Enhancement: exposed-panels/adobe/adobe-connect-central-login.yaml by mp
* Enhancement: exposed-panels/adobe/adobe-experience-manager-login.yaml by mp
* Enhancement: exposed-panels/adobe/adobe-media-server.yaml by mp
* Enhancement: exposed-panels/advance-setup.yaml by mp
* Enhancement: exposed-panels/aerohive-netconfig-ui.yaml by mp
* Enhancement: exposed-panels/aims-password-mgmt-client.yaml by mp
* Enhancement: exposed-panels/aims-password-mgmt-client.yaml by mp
* Enhancement: exposed-panels/aims-password-portal.yaml by mp
* Enhancement: exposed-panels/airflow-panel.yaml by mp
* Enhancement: exposed-panels/airflow-panel.yaml by mp
* spacing issues
* Spacing
* HTML codes improperly interpreted
Relocate horde-unauthenticated.yaml to CVE-2005-3344.yaml
* Relocate horde-unauthenticated.yaml to CVE-2005-3344.yaml
* Enhancement: technologies/waf-detect.yaml by mp
* Enhancement: vulnerabilities/wordpress/wordpress-wpcourses-info-disclosure.yaml by mp
* Enhancement: vulnerabilities/wordpress/wordpress-wpcourses-info-disclosure.yaml by mp
* Enhancement: network/sap-router-info-leak.yaml by mp
* Enhancement: vulnerabilities/wordpress/wordpress-wpcourses-info-disclosure.yaml by mp
* Enhancement: network/sap-router-info-leak.yaml by mp
* Enhancement: network/exposed-adb.yaml by mp
* Enhancement: vulnerabilities/vmware/vrealize-operations-log4j-rce.yaml by mp
* Enhancement: vulnerabilities/vmware/vrealize-operations-log4j-rce.yaml by mp
* Enhancement: vulnerabilities/vmware/vrealize-operations-log4j-rce.yaml by mp
* Enhancement: vulnerabilities/vmware/vrealize-operations-log4j-rce.yaml by mp
* Enhancement: vulnerabilities/wordpress/wordpress-woocommerce-sqli.yaml by mp
* Enhancement: exposures/tokens/digitalocean/tugboat-config-exposure.yaml by mp
* Enhancement: exposed-panels/concrete5/concrete5-install.yaml by mp
* Enhancement: vulnerabilities/wordpress/wordpress-infinitewp-auth-bypass.yaml by mp
* indentation issue
* Character encoding issue fix
* Enhancement: default-logins/alibaba/canal-default-login.yaml by mp
* Enhancement: default-logins/alphaweb/alphaweb-default-login.yaml by mp
* Enhancement: default-logins/ambari/ambari-default-login.yaml by mp
* Enhancement: default-logins/apache/airflow-default-login.yaml by mp
* Enhancement: default-logins/apache/apisix-default-login.yaml by mp
* Enhancement: default-logins/apollo/apollo-default-login.yaml by mp
* Enhancement: default-logins/arl/arl-default-login.yaml by mp
* Enhancement: default-logins/digitalrebar/digitalrebar-default-login.yaml by mp
* Enhancement: default-logins/mantisbt/mantisbt-default-credential.yaml by mp
* Enhancement: default-logins/stackstorm/stackstorm-default-login.yaml by mp
* Enhancement: dns/caa-fingerprint.yaml by mp
* Enhancement: exposed-panels/active-admin-exposure.yaml by mp
* Enhancement: exposed-panels/activemq-panel.yaml by mp
* Enhancement: default-logins/ambari/ambari-default-login.yaml by mp
* Restore & stomped by dashboard
* Enhancement: cves/2010/CVE-2010-1653.yaml by mp
* Enhancement: cves/2021/CVE-2021-38751.yaml by mp
* Enhancement: cves/2021/CVE-2021-39320.yaml by mp
* Enhancement: cves/2021/CVE-2021-39322.yaml by mp
* Enhancement: cves/2021/CVE-2021-39327.yaml by mp
* Enhancement: cves/2021/CVE-2021-39350.yaml by mp
* Enhancement: cves/2021/CVE-2021-39433.yaml by mp
* Enhancement: cves/2021/CVE-2021-41192.yaml by mp
* Enhancement: cnvd/2021/CNVD-2021-15824.yaml by mp
* Enhancement: exposed-panels/ansible-semaphore-panel.yaml by mp
* Enhancement: exposed-panels/aviatrix-panel.yaml by mp
* Enhancement: cves/2022/CVE-2022-24288.yaml by mp
* Enhancement: cves/2022/CVE-2022-24990.yaml by mp
* Enhancement: cves/2022/CVE-2022-26159.yaml by mp
* Enhancement: default-logins/aem/aem-default-login.yaml by mp
* Enhancement: exposed-panels/blue-iris-login.yaml by mp
* Enhancement: exposed-panels/bigbluebutton-login.yaml by mp
* Enhancement: cves/2022/CVE-2022-24288.yaml by mp
* Enhancement: cves/2022/CVE-2022-24990.yaml by mp
* Enhancement: cves/2022/CVE-2022-26159.yaml by mp
* Enhancement: default-logins/aem/aem-default-login.yaml by mp
* Spacing issues
Add cve-id field
* fix & stomping
* Enhancement: cves/2016/CVE-2016-1000141.yaml by mp
* Enhancement: cves/2020/CVE-2020-24912.yaml by mp
* Enhancement: cves/2021/CVE-2021-35265.yaml by mp
* Enhancement: cves/2022/CVE-2022-0437.yaml by mp
* Enhancement: cves/2010/CVE-2010-1601.yaml by mp
* Enhancement: technologies/teradici-pcoip.yaml by mp
* Enhancement: vulnerabilities/other/unauth-hoteldruid-panel.yaml by mp
* Enhancement: cves/2010/CVE-2010-1475.yaml by mp
* Enhancement: cves/2010/CVE-2010-1535.yaml by mp
* Enhancement: exposed-panels/epson-web-control-detect.yaml by mp
* Enhancement: exposed-panels/epson-access-detect.yaml by mp
* Enhancement: cves/2020/CVE-2020-29453.yaml by mp
* Fix spacing
Co-authored-by: sullo <sullo@cirt.net>
2022-03-25 17:15:10 +05:30
Prince Chaddha
a69887bb85
Update wordpress-wp-cron.yaml
2022-03-25 12:09:19 +05:30
sandeep
52d58896a1
fixed len condition
2022-03-24 18:23:32 +05:30
Prince Chaddha
3253a2a723
Update wordpress-wp-cron.yaml
2022-03-24 16:56:50 +05:30
Prince Chaddha
8956a91f51
Update wordpress-wp-cron.yaml
2022-03-24 16:23:59 +05:30
Prince Chaddha
ad8b1a77c3
Update wordpress-wp-cron.yaml
2022-03-24 16:20:45 +05:30
Prince Chaddha
b494dd3f94
Update wordpress-wp-cron.yaml
2022-03-24 14:49:46 +05:30
Pathtaga
122c200f76
Added wp-cron.php wordpress template
2022-03-23 18:20:58 +01:00
Prince Chaddha
95d9b7f30c
Merge pull request #3953 from projectdiscovery/regex-update
...
Updated "/etc/passwd" regex to avoid possible false positive results.
2022-03-23 00:23:06 +05:30
sandeep
ec99241f0e
Updated "/etc/passwd" regex to avoid possible false positive results.
2022-03-22 13:31:31 +05:30
Sandeep Singh
c513d88d0d
Merge branch 'master' into rule-add-v102
2022-03-22 13:23:38 +05:30
MostInterestingBotInTheWorld
9663595dd1
Dashboard Text Enhancements ( #3948 )
...
Dashboard content enhancements
2022-03-21 23:48:47 -04:00
Prince Chaddha
0adf4452f8
Merge pull request #3934 from Akokonunes/patch-130
...
Create huawei-hg255s-lfi.yaml
2022-03-21 16:47:27 +05:30
Prince Chaddha
66927bff20
Update tekon-info-leak.yaml
2022-03-21 16:36:39 +05:30
Prince Chaddha
c8118bc79f
Update and rename huawei-hg255s-lfi.yaml to vulnerabilities/huawei/huawei-hg255s-lfi.yaml
2022-03-20 13:14:34 +05:30
Sandeep Singh
ec2246ee22
added confluence metadata and minor matcher updates ( #3929 )
2022-03-19 16:12:08 +05:30
sandeep
218b87a384
removing duplicate template
2022-03-18 21:09:34 +05:30
Muhammad Daffa
b17a49d4e4
Create CNVD-2021-28277.yaml ( #3892 )
...
* Create CNVD-2021-28277.yaml
* misc update
Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2022-03-18 20:35:35 +05:30
Sandeep Singh
5e1fb187e4
Added negative content type check ( #3932 )
2022-03-18 19:52:29 +05:30
GwanYeong Kim
bb7dbc4f0c
Create tekon-info-leak.yaml
...
A vulnerability in Tekon allows remote unauthenticated users to disclose the Log of the remote device.
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2022-03-18 19:38:44 +09:00
Prince Chaddha
fd3a1efd51
Update cache-poisoning.yaml
2022-03-17 16:49:43 +05:30
Adam Crosser
aa47b1d97b
Added 23 Nuclei Templates ( #3909 )
...
* Added 23 Nuclei Templates
* Update cofense-vision-detection.yml
* Update sophos-mobile-panel-detection.yml
* Update cofense-vision-detection.yml
* Update httpbin-open-redirect.yml
* Update httpbin-xss.yml
* Update ansible-semaphore-panel.yml
* Rename ansible-semaphore-panel.yml to ansible-semaphore-panel.yaml
* Update and rename avatier_password_management.yml to avatier-password-management.yaml
* Update and rename buddy-panel.yml to buddy-panel.yaml
* Update and rename buildbot-panel.yml to buildbot-panel.yaml
* Update and rename cofense-vision-detection.yml to cofense-vision-panel.yaml
* Update and rename concourse-ci-panel.yml to concourse-ci-panel.yaml
* Update and rename drone-ci-panel.yml to drone-ci-panel.yaml
* Update and rename flowci-detection.yml to flowci-panel.yaml
* Update and rename gradle-enterprise-build-cache-detect.yml to gradle-cache-node-detect.yaml
* Update and rename exposed-panels/gradle-cache-node-detect.yaml to exposed-panels/gradle/gradle-cache-node-detect.yaml
* Update and rename exposed-panels/gradle-enterprise-panel.yml to exposed-panels/gradle/gradle-enterprise-panel.yaml
* Update and rename httpbin-detection.yml to httpbin-panel.yaml
* Update and rename leostream-detection.yml to leostream-panel.yaml
* Delete redash-detection.yml
* Update and rename sophos-mobile-panel-detection.yml to sophos-mobile-panel.yaml
* Update and rename splunk-enterprise-login-panel.yml to splunk-enterprise-panel.yaml
* Update splunk-enterprise-panel.yaml
* Update and rename stridercd-detection.yml to stridercd-panel.yaml
* Update and rename zuul-panel.yml to zuul-panel.yaml
* Update and rename zentral-detection.yml to zentral-panel.yaml
* Update and rename api-fastly.yml to api-fastly.yaml
* Update and rename api-gitlab.yml to api-gitlab.yaml
* Update and rename httpbin-xss.yml to httpbin-xss.yaml
* Update and rename httpbin-open-redirect.yml to httpbin-open-redirect.yaml
* Update and rename log4j-code42-rce.yml to code42-log4j-rce.yaml
* minor matcher fixes
* added missing hostname variable
* meta data update
Co-authored-by: Prince Chaddha <prince@projectdiscovery.io>
Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2022-03-16 18:47:58 +05:30
Prince Chaddha
9b0c2bb854
Update dzs-zoomsounds-listing.yaml
2022-03-15 17:21:27 +05:30
sandeep
795dbfdecc
Added Kiwi TCMS JSON-RPC misconfig
2022-03-13 17:50:38 +05:30
Prince Chaddha
713c8d87cf
Merge pull request #3877 from projectdiscovery/dixell-xweb500-file-write
...
Create dixell-xweb500-file-write.yaml
2022-03-11 16:34:36 +05:30
Prince Chaddha
5bd8cb0f89
Update and rename dixell-xweb500-file-write.yaml to dixell-xweb500-filewrite.yaml
2022-03-11 16:30:02 +05:30
Prince Chaddha
030c9484b9
Update and rename unisharp-laravel-file-manager.yaml to laravel-filemanager-lfi.yaml
2022-03-11 15:57:07 +05:30
Prince Chaddha
b7cc60c53d
Update dixell-xweb500-file-write.yaml
2022-03-11 02:00:55 +05:30
Prince Chaddha
d7b8f35d9f
Create unisharp-laravel-file-manager.yaml
2022-03-11 02:00:23 +05:30
Prince Chaddha
a5713235f2
Create dixell-xweb500-file-write.yaml
2022-03-11 01:57:31 +05:30
MostInterestingBotInTheWorld
21d872d42c
Merge branch 'projectdiscovery:master' into dashboard
2022-03-07 08:10:22 -05:00
sandeep
ac26863c5d
template id/name update
2022-03-07 15:46:57 +05:30
Surya
1b814c3d07
Create vrealize-operations-tenant-app-log4j-rce.yaml
2022-03-07 04:43:20 -05:00
sullo
6378a1ab1a
Update CVSS information and text content
2022-03-04 15:58:39 -05:00
sandeep
3a6c69df71
template name updates
2022-03-04 22:12:30 +05:30
MostInterestingBotInTheWorld
66f1023114
Merge branch 'projectdiscovery:master' into dashboard
2022-03-03 08:52:54 -05:00
MostInterestingBotInTheWorld
d5556d3a75
Enhancement: default-logins/cobbler/cobbler-default-login.yaml by mp
2022-03-03 08:27:48 -05:00
Prince Chaddha
a05b7d098e
Merge pull request #3819 from manasmbellani/cisco-ucm-uds-api-userenum
...
Cisco UCM UDS API Unauthenticated User Enumeration
2022-03-03 17:02:46 +05:30
Prince Chaddha
869638c91a
Update and rename exposures/apis/cisco-ucm-uds-api-username-enumeration.yaml to vulnerabilities/cisco/cucm-username-enumeration.yaml
2022-03-03 17:00:45 +05:30
Prince Chaddha
b0e13cb19d
Merge pull request #3791 from pussycat0x/master
...
New Template Added
2022-03-03 16:44:20 +05:30
Prince Chaddha
a55ae538d1
Update and rename wordpress-plugins-dzs-zoomsounds.yaml to dzs-zoomsounds-listing.yaml
2022-03-03 16:42:30 +05:30
Prince Chaddha
64670366a1
Update and rename wordpress-plugins-qards.yaml to wp-qards-listing.yaml
2022-03-03 16:41:00 +05:30
Sandeep Singh
cf9e3f95c3
Merge pull request #3814 from projectdiscovery/gitlab-meta-update
...
GitLab metadata update
2022-03-02 21:20:55 +05:30
sandeep
0a7ad17939
added optional extractor
2022-03-02 21:15:47 +05:30
MostInterestingBotInTheWorld
83d58c326f
Enhancement: vulnerabilities/other/accent-microcomputers-lfi.yaml by mp
2022-03-02 10:11:09 -05:00
MostInterestingBotInTheWorld
3f18fe8d0b
Enhancement: vulnerabilities/other/accent-microcomputers-lfi.yaml by mp
2022-03-02 09:52:59 -05:00
MostInterestingBotInTheWorld
3b031c3693
Enhancement: vulnerabilities/other/74cms-sqli.yaml by mp
2022-03-02 09:43:09 -05:00
sandeep
6d32b81b2a
GitLab metadata update
2022-03-02 13:05:29 +05:30
MostInterestingBotInTheWorld
a330bb78bb
Merge branch 'master' into dashboard
2022-02-28 17:21:32 -05:00
Prince Chaddha
c77aab2078
Merge pull request #3794 from gy741/rule-add-v98
...
Create microweber-xss.yaml
2022-03-01 02:50:09 +05:30
Prince Chaddha
44a9163e54
Update microweber-xss.yaml
2022-03-01 02:47:11 +05:30
Prince Chaddha
db7352c0ed
Merge pull request #3792 from DhiyaneshGeek/master
...
Create wp-adaptive-xss.yaml
2022-03-01 02:35:54 +05:30
Prince Chaddha
dc6712dbf7
Update wp-adaptive-xss.yaml
2022-03-01 02:30:16 +05:30
MostInterestingBotInTheWorld
84bb70b326
Enhancement: vulnerabilities/mobileiron/mobileiron-log4j-jndi-rce.yaml by cs
2022-02-28 14:44:36 -05:00
MostInterestingBotInTheWorld
420a995b14
Enhancement: vulnerabilities/other/unauth-spark-api.yaml by cs
2022-02-28 14:17:05 -05:00
pussycat0x
6c2c496bac
Add files via upload
2022-02-28 22:29:32 +05:30
MostInterestingBotInTheWorld
07422cead6
Enhancement: vulnerabilities/oracle/oracle-siebel-xss.yaml by cs
2022-02-28 11:32:08 -05:00
sullo
73c4e88830
Rename vulnerabilities/wordpress/easy-wp-smtp-listing.yaml to CVE-2020-35234.yaml
2022-02-28 11:25:50 -05:00
sullo
aa96f25eaf
Merge branch 'dashboard' of https://github.com/MostInterestingBotInTheWorld/nuclei-templates into dashboard
2022-02-28 11:24:56 -05:00
sullo
ea1601f72f
Remove in favor of vulnerabilities/wordpress/easy-wp-smtp-listing.yaml, which will also be moved to CVE-2020-35234.yaml
2022-02-28 11:22:57 -05:00
MostInterestingBotInTheWorld
8210121d21
Enhancement: vulnerabilities/wordpress/easy-wp-smtp-listing.yaml by cs
2022-02-28 11:22:38 -05:00
MostInterestingBotInTheWorld
8c4759d292
Enhancement: vulnerabilities/wordpress/easy-wp-smtp-listing.yaml by cs
2022-02-28 11:21:11 -05:00
MostInterestingBotInTheWorld
8bee0e5934
Enhancement: vulnerabilities/wordpress/easy-wp-smtp-listing.yaml by cs
2022-02-28 11:19:29 -05:00
MostInterestingBotInTheWorld
f18404302a
Dashboard Text Enhancement ( #3798 )
...
Dashboard text enhancements
2022-02-28 09:09:26 -05:00
GwanYeong Kim
1368ea9fe7
Create microweber-xss.yaml
...
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2022-02-28 16:17:51 +09:00
sandeep
8abb5bf2c0
misc updates
2022-02-27 21:36:08 +05:30
Dhiyaneshwaran
ad01679036
Create wp-adaptive-xss.yaml
2022-02-27 21:20:50 +05:30
sandeep
fd7ac70096
misc updates
2022-02-27 16:25:03 +05:30
sandeep
c07bd54967
payload fix
2022-02-25 17:28:47 +05:30
pussycat0x
c8984f9266
Update qards-ssrf.yaml
2022-02-23 23:07:18 +05:30
pussycat0x
89823d95c7
Update qards-ssrf.yaml
2022-02-23 23:04:21 +05:30
pussycat0x
84f65110bd
Update qards-ssrf.yaml
2022-02-23 23:02:04 +05:30
pussycat0x
4be2ec8a81
Update qards-ssrf.yaml
2022-02-23 22:57:52 +05:30
pussycat0x
b42e933514
Update qards-ssrf.yaml
2022-02-23 22:56:20 +05:30
pussycat0x
e706030d5e
Add files via upload
2022-02-23 22:52:14 +05:30
Prince Chaddha
402cda8a0a
Merge pull request #3747 from Akokonunes/patch-120
...
Create otobo-open-redirect.yaml
2022-02-23 17:35:55 +05:30
Prince Chaddha
b86641d6df
Update and rename otobo-open-redirect.yaml to vulnerabilities/other/otobo-open-redirect.yaml
2022-02-23 17:07:41 +05:30
sandeep
736e7427d6
added missing tags
2022-02-22 19:53:43 +05:30
sandeep
12bcede1ac
template id update
2022-02-22 18:53:25 +05:30
Prince Chaddha
22f35f3e23
Merge pull request #3730 from DhiyaneshGeek/master
...
10 New Wordpress Template
2022-02-22 14:47:20 +05:30
Prince Chaddha
d5b600a2a1
Merge pull request #3727 from evanRubinsteinIT/pollbot-redirect
...
Added pollbot-redirect
2022-02-22 13:56:25 +05:30
Prince Chaddha
9c089cd567
Update my-chatbot-xss.yaml
2022-02-22 13:52:36 +05:30
Prince Chaddha
cdd7768f2f
Update and rename wp-mthemeunus-lfi.yaml to mthemeunus-lfi.yaml
2022-02-22 13:51:29 +05:30
Prince Chaddha
bf0daa2650
Update elex-woocommerce-xss.yaml
2022-02-22 13:50:29 +05:30
Prince Chaddha
9771206e69
Update and rename vulnerabilities/easy-facebook-likebox-xss.yaml to vulnerabilities/wordpress/easy-social-feed.yaml
2022-02-22 13:46:16 +05:30
Prince Chaddha
e944791ddb
Update feedwordpress-xss.yaml
2022-02-22 13:42:49 +05:30