Commit Graph

2558 Commits (a26fd47aed6d0b7b19574e4489962167c33677be)

Author SHA1 Message Date
Dhiyaneshwaran a37abb4401
Update apache-solr-file-read.yaml 2022-12-02 09:12:05 +05:30
Philippe Delteil 843264155b
Update apache-solr-file-read.yaml
1. The added GET request triggers a file local read on Windows OS. 
2. Matcher added to the Response trigger by 1. 
3. Matcher for other cases (Errors, ie. not found path)
2022-12-01 18:51:21 -05:00
Dhiyaneshwaran a7dfed84ef
Merge pull request #6159 from arafatansari/patch-112
Create wp-related-post-xss
2022-12-01 12:53:45 +05:30
Ritik Chaddha 46dcb9ee92
Update wp-related-post-xss 2022-11-29 19:09:35 +05:30
Dhiyaneshwaran e5a63cf26a
Merge pull request #6174 from pdelteil/patch-111
Rename tikiwiki-json-rpc.yaml to kiwitcms-json-rpc.yaml
2022-11-29 11:32:03 +05:30
Dhiyaneshwaran 0cc2b7b562
Merge pull request #6173 from pdelteil/patch-110
Update nuuo-nvrmini2-rce.yaml
2022-11-29 11:28:26 +05:30
Dhiyaneshwaran 8dfea46220
Merge pull request #6176 from pdelteil/patch-113
Rename vulnerabilities/other/devalcms-xss.yaml to cves/2008/CVE-2008-…
2022-11-29 11:25:35 +05:30
Dhiyaneshwaran 516f3fc0c0
Merge pull request #6172 from pdelteil/patch-109
Rename icewarp-openredirects.yaml to icewarp-open-redirect.yaml
2022-11-29 11:16:40 +05:30
Philippe Delteil 688b56b5df
Rename vulnerabilities/other/devalcms-xss.yaml to cves/2008/CVE-2008-6982.yaml 2022-11-29 00:38:16 -05:00
Philippe Delteil 8b4e280c02
Rename tikiwiki-json-rpc.yaml to kiwitcms-json-rpc.yaml
- Incorrect file name (tikiwiki vs Kiwi TCMS). 
- Matching filename + id.
2022-11-29 00:28:22 -05:00
Philippe Delteil 9c2c3d964b
Update nuuo-nvrmini2-rce.yaml
filename + id matching
2022-11-29 00:24:14 -05:00
Philippe Delteil 3458bcabd9
Rename icewarp-openredirects.yaml to icewarp-open-redirect.yaml
id + filename matching
2022-11-29 00:22:34 -05:00
Philippe Delteil 5bdb492bac
Update comtrend-password-exposure.yaml
Corrected typo -> match id with filename.
2022-11-29 00:16:28 -05:00
GitHub Action 9f60094d84 Auto Generated CVE annotations [Mon Nov 28 08:04:24 UTC 2022] 🤖 2022-11-28 08:04:24 +00:00
Arafat Ansari e93a5a87f6
Create wp-related-post-xss 2022-11-27 12:41:16 +05:30
Prince Chaddha 335f78adc0
Merge pull request #6137 from projectdiscovery/wptouch-xss
Create wptouch-xss.yaml
2022-11-26 22:16:14 +05:30
Prince Chaddha 2b411ebf9d
Merge pull request #4292 from ritikchaddha/patch-40
Create inspur-clusterengine-v4-sysshell-rce.yaml
2022-11-25 13:25:49 +05:30
Prince Chaddha 66681f4dae
Update and rename inspur-clusterengine-v4-sysshell-rce.yaml to inspur-clusterengine-rce.yaml 2022-11-25 13:03:26 +05:30
Ritik Chaddha e4d91857c9
Update wptouch-xss.yaml 2022-11-24 10:01:36 +05:30
Ritik Chaddha 2292877e42
Create wptouch-xss.yaml 2022-11-24 10:00:35 +05:30
GitHub Action 8297d3d8b4 Auto Generated CVE annotations [Tue Nov 22 04:51:59 UTC 2022] 🤖 2022-11-22 04:51:59 +00:00
Philippe Delteil 1028e0f889
Update crlf-injection.yaml
added hackerone report as reference.
2022-11-21 23:14:21 -05:00
Ritik Chaddha b3500789fe
Update wuzhicms-sqli.yaml 2022-11-17 17:08:30 +05:30
Ritik Chaddha a5af14982f
Update wuzhicms-sqli.yaml 2022-11-17 17:02:33 +05:30
Y4er 478db30e9f
Update wuzhicms-sqli.yaml
fix bug
2022-11-17 14:25:13 +08:00
Dhiyaneshwaran 76f4201b95
Update vmware-hcx-log4j.yaml 2022-11-15 15:18:17 +05:30
Thibault Soubiran 331394d36c Fix jenkin typos 2022-11-13 21:54:52 +01:00
sandeep ebe7268c3f Added OpenCPU RCE Template
Co-Authored-By: wa1tf0r.me <92214233+euro-phd@users.noreply.github.com>
2022-11-13 21:36:32 +05:30
GitHub Action 961ee225f5 Auto Generated CVE annotations [Fri Nov 11 16:43:11 UTC 2022] 🤖 2022-11-11 16:43:11 +00:00
Prince Chaddha 3847203748
Merge pull request #5939 from projectdiscovery/generic-phpinfo-matchers
generic phpinfo matchers
2022-11-11 20:25:48 +05:30
MostInterestingBotInTheWorld 942f8fc305
Dashboard Content Enhancements (#5943)
Dashboard Content Enhancements
2022-11-08 15:55:31 -05:00
Prince Chaddha f62d4f09aa
Update core-chuangtian-cloud-rce.yaml 2022-11-02 18:54:27 +05:30
Prince Chaddha 69596d5341
Update seacms-rce.yaml 2022-11-02 18:52:01 +05:30
Prince Chaddha 81123b89ea
Update seacms-rce.yaml 2022-11-02 18:50:37 +05:30
Prince Chaddha 2a580638a3
Update thinkphp-501-rce.yaml 2022-11-02 18:47:41 +05:30
Prince Chaddha 2496b86eea
Update thinkphp-509-information-disclosure.yaml 2022-11-02 18:39:28 +05:30
Prince Chaddha a3f01fc9a3
Delete ruijie-networks-rce.yaml 2022-11-01 18:55:12 +05:30
Prince Chaddha c0a00cde10
Update steve-xss.yaml 2022-10-28 19:44:06 +05:30
Ritik Chaddha 09a119584e
Rename steve-xss-noauth.yaml to steve-xss.yaml 2022-10-27 00:20:39 +05:30
Ritik Chaddha f554be63b5
Update steve-xss-noauth.yaml 2022-10-26 22:29:39 +05:30
clem9669 2a20e69976
Create steve-xss-noauth.yaml 2022-10-26 16:09:38 +00:00
GitHub Action 2bc756b7e1 Auto Generated CVE annotations [Tue Oct 25 14:05:39 UTC 2022] 🤖 2022-10-25 14:05:39 +00:00
Prince Chaddha 9ed84adaa6 fix-conflict 2022-10-25 19:10:49 +05:30
Prince Chaddha dc21ca4bce
Merge pull request #5494 from projectdiscovery/xenmobile-server-log4j
Create xenmobile-server-log4j.yaml
2022-10-21 16:12:02 +05:30
GitHub Action ef50a5c534 Auto Generated CVE annotations [Fri Oct 21 10:28:44 UTC 2022] 🤖 2022-10-21 10:28:44 +00:00
Prince Chaddha c586ccf80b
Merge pull request #5750 from shivampand3y/patch-1
Create aerocms-sqli.yaml
2022-10-21 15:39:50 +05:30
Dhiyaneshwaran fd196d9159
Update xenmobile-server-log4j.yaml 2022-10-21 14:04:41 +05:30
Prince Chaddha b88af7cb01
Delete jamf-pro-log4j.yaml 2022-10-21 14:01:53 +05:30
Prince Chaddha db9c08e2d5
Rename vulnerabilities/log4j/jamf-pro-log4j-rce.yaml to vulnerabilities/apache/log4j/jamf-pro-log4j-rce.yaml 2022-10-21 14:01:23 +05:30
Prince Chaddha e6029be860
Create jamf-pro-log4j-rce.yaml 2022-10-21 13:59:33 +05:30
Prince Chaddha bb066bd79f
Merge pull request #5744 from projectdiscovery/fix-fp-vmware-siterecovery-log4j-rce
Update vmware-siterecovery-log4j-rce.yaml
2022-10-21 13:42:23 +05:30
Prince Chaddha f3021b97af
Merge pull request #5743 from projectdiscovery/fix-fp-vmware-operation-manager-log4j
Update vmware-operation-manager-log4j.yaml
2022-10-21 13:39:56 +05:30
Prince Chaddha a3c81d7df1
Merge pull request #5742 from projectdiscovery/fix-fp-graylog-log4j
Update graylog-log4j.yaml
2022-10-21 13:38:38 +05:30
Prince Chaddha 47e2557bbd
Merge pull request #5741 from projectdiscovery/fix-fp-jamf-log4j-jndi-rce
Update jamf-log4j-jndi-rce.yaml
2022-10-21 13:36:55 +05:30
Prince Chaddha 2cc6587ba9
Merge pull request #5740 from projectdiscovery/fix-fp-mobileiron-log4j-jndi-rce
Update mobileiron-log4j-jndi-rce.yaml
2022-10-21 13:35:31 +05:30
Prince Chaddha 7d0ede17b3
Merge pull request #5739 from projectdiscovery/fix-fp-cisco-vmanage-log4j
Update cisco-vmanage-log4j.yaml
2022-10-21 13:31:13 +05:30
Ritik Chaddha 054f0c4872
Update aerocms-sqli.yaml 2022-10-20 12:59:46 +05:30
Ritik Chaddha dced04fd39
Update aerocms-sqli.yaml 2022-10-20 12:45:34 +05:30
shivampand3y 9fe5faac71
Create aerocms-sqli.yaml 2022-10-20 12:23:03 +05:30
Dhiyaneshwaran fcc232c77d
Update vmware-siterecovery-log4j-rce.yaml 2022-10-20 03:13:37 +05:30
Dhiyaneshwaran 851ecc1685
Update vmware-operation-manager-log4j.yaml 2022-10-20 03:08:41 +05:30
GitHub Action 3e72210539 Auto Generated CVE annotations [Wed Oct 19 21:30:41 UTC 2022] 🤖 2022-10-19 21:30:41 +00:00
Dhiyaneshwaran 8a8cc79de1
Update graylog-log4j.yaml 2022-10-20 02:59:52 +05:30
Dhiyaneshwaran 214d2c50ed
Update jamf-log4j-jndi-rce.yaml 2022-10-20 02:55:05 +05:30
MostInterestingBotInTheWorld 0b1a79f39d
Dashboard Content Enhancements (#5704)
Dashboard Content Enhancements
2022-10-19 17:11:27 -04:00
Dhiyaneshwaran 4eff79955e
Update mobileiron-log4j-jndi-rce.yaml 2022-10-20 02:38:01 +05:30
Dhiyaneshwaran 00acbe2bbb
Update cisco-vmanage-log4j.yaml 2022-10-20 02:30:56 +05:30
Prince Chaddha 2a411bef99
Merge pull request #5734 from projectdiscovery/fix-fp-rundeck-log4j
Update rundeck-log4j.yaml
2022-10-19 22:48:46 +05:30
Prince Chaddha 1e62e0720b
Merge pull request #5733 from projectdiscovery/fix-fp-metabase-log4j
Update metabase-log4j.yaml
2022-10-19 22:44:00 +05:30
Dhiyaneshwaran 499432b36a
Update rundeck-log4j.yaml 2022-10-19 17:43:25 +05:30
Dhiyaneshwaran 0b345ce6c7
Update metabase-log4j.yaml 2022-10-19 16:44:22 +05:30
Prince Chaddha 04846d28d2
Update vmware-nsx-log4j.yaml 2022-10-19 16:30:06 +05:30
Dhiyaneshwaran 6d591d01c4
Update vmware-nsx-log4j.yaml 2022-10-19 16:15:30 +05:30
Joshua Rogers 86bb38b96d
Fix typo in unaunthenticated-jenkin.yaml (#5724)
* Fix typo in unaunthenticated-jenkin.yaml

* Rename unaunthenticated-jenkin.yaml to unauthenticated-jenkins.yaml
2022-10-19 03:54:33 +05:30
Prince Chaddha c6cc78bcf1
Delete omnia-mpx-lfi.yaml 2022-10-17 13:03:17 +05:30
Prince Chaddha 75fdd023c5
Update flatpress-xss.yaml 2022-10-14 17:13:39 +05:30
Ritik Chaddha 2411426ed1
Update flatpress-xss.yaml 2022-10-14 11:41:59 +05:30
Ritik Chaddha 1878bae200
Update flatpress-xss.yaml 2022-10-13 16:26:36 +05:30
Arafat Ansari e4682184c2
Update flatpress-xss.yaml 2022-10-13 16:12:51 +05:30
Arafat Ansari ed83463ff3
Create flatpress-xss.yaml 2022-10-13 16:11:15 +05:30
GitHub Action 3fba7301e0 Auto Generated CVE annotations [Wed Oct 12 10:44:42 UTC 2022] 🤖 2022-10-12 10:44:42 +00:00
Prince Chaddha fa56e9eca9
Update vmware-operation-manager-log4j.yaml 2022-10-12 15:01:48 +05:30
Prince Chaddha 714813c445
Update vmware-hcx-log4j.yaml 2022-10-12 15:01:02 +05:30
Prince Chaddha 8be5694398
Update jamf-pro-log4j.yaml 2022-10-12 15:00:26 +05:30
Prince Chaddha fe3921231f
Update graylog-log4j.yaml 2022-10-12 14:59:44 +05:30
Prince Chaddha 9dccfb90ae
Update cisco-unified-communications-log4j.yaml 2022-10-12 14:59:13 +05:30
Prince Chaddha bf451ad15a
Update vmware-nsx-log4j.yaml 2022-10-12 14:58:33 +05:30
Prince Chaddha e0bf6d8e07
Update opennms-log4j-jndi-rce.yaml 2022-10-12 14:57:53 +05:30
Prince Chaddha a62dffe4bb
Update cisco-vmanage-log4j.yaml 2022-10-12 14:57:15 +05:30
Prince Chaddha 847d2b9631
Update rundeck-log4j.yaml 2022-10-12 14:56:48 +05:30
Prince Chaddha 386b4da10b
Update rundeck-log4j.yaml 2022-10-12 14:56:33 +05:30
Prince Chaddha cc897f6980
Update metabase-log4j.yaml 2022-10-12 14:55:31 +05:30
GitHub Action 6ab6aa6aa3 Auto Generated CVE annotations [Mon Oct 10 20:06:39 UTC 2022] 🤖 2022-10-10 20:06:39 +00:00
MostInterestingBotInTheWorld bcd4ae950d
Standardize Log4j Entries (#5634)
* Standardize Log4j name and classification fields

Co-authored-by: sullo <sullo@cirt.net>
2022-10-10 15:51:42 -04:00
GitHub Action a8c023abc4 Auto Generated CVE annotations [Mon Oct 10 19:40:25 UTC 2022] 🤖 2022-10-10 19:40:25 +00:00
MostInterestingBotInTheWorld 5892582899
Dashboard Content Enhancements (#5582)
Dashboard Content Enhancements
2022-10-10 15:22:59 -04:00
Sandeep Singh 712264db7e
Using "host-redirects" instead of "redirects" to avoid scanning 3rd party / out of scope hosts. (#5491) 2022-10-08 02:57:25 +05:30
Prince Chaddha 66059c01e2
Update unauthenticated-duplicator-disclosure.yaml 2022-10-01 20:59:50 +05:30
Ritik Chaddha 6f2f9abaa8
Update unauthenticated-duplicator-disclosure.yaml 2022-10-01 02:56:16 +05:30
Arman d19b29dc55
Create unauthenticated-duplicator-disclosure.yaml 2022-09-30 17:06:18 -04:00