daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
6,356 Commits
18 Branches
0 Tags
171 MiB
Commit Graph

1603 Commits (a5c0ee738232d2529283c90d4d890abe2ff47b38)

Author SHA1 Message Date
Geeknik Labs e83ba1b5ec
Create CVE-2018-16670.yaml 2021-06-11 12:11:36 +00:00
Geeknik Labs c451137ffc
Create CVE-2018-16668.yaml 2021-06-11 12:10:29 +00:00
Geeknik Labs 210465a658
Create CVE-2018-16671.yaml 2021-06-11 12:09:29 +00:00
Prince Chaddha 3779eb70e0 Moved template to cves folder 2021-06-11 16:48:05 +05:30
Sandeep Singh b17196ee18
Merge pull request #1679 from Mad-robot/master 
Update CVE-2018-3167.yaml
 2021-06-11 16:25:07 +05:30
Prince Chaddha 710d2345ba
Merge pull request #1671 from Akokonunes/patch-6 
Create CVE-2018-16836.yaml
 2021-06-11 15:59:49 +05:30
Prince Chaddha bc4a0d37b1 Moving template to cves folder 2021-06-11 15:58:02 +05:30
Prince Chaddha 3ef83889b4
Update CVE-2014-2383.yaml 2021-06-11 15:22:14 +05:30
Alex-null 161b2f5008
Update CVE-2013-2251.yaml 
Add new payload. Test it on this environment-https://github.com/vulhub/vulhub/tree/master/struts2/s2-016
 2021-06-11 17:50:50 +08:00
Prince Chaddha 658cd17d4f
Merge pull request #1670 from Akokonunes/patch-5 
Create CVE-2014-2383.yaml
 2021-06-11 15:04:17 +05:30
Prince Chaddha afb2f15dbd
Added more paths 2021-06-11 14:47:02 +05:30
Prince Chaddha d4db18c218 Update CVE-2014-2383.yaml 2021-06-11 14:33:43 +05:30
Prince Chaddha 583f4e6778 Template moved to CVE folder 2021-06-11 14:19:36 +05:30
SaN ThosH a2e740148f
Update CVE-2018-3167.yaml 2021-06-11 13:21:20 +05:30
SaN ThosH bfed8d5200
Update CVE-2018-3167.yaml 2021-06-11 13:19:46 +05:30
SaN ThosH 84341549c0
Update CVE-2018-3167.yaml 2021-06-11 13:18:36 +05:30
SaN ThosH 42ec1d5636
Update CVE-2018-3167.yaml 2021-06-11 13:14:15 +05:30
sandeep 69ded42e3a Template rename / update 2021-06-10 21:57:07 +05:30
sandeep 3de46aa21b misc changes 2021-06-10 00:01:38 +05:30
sandeep ea26842383 Added CVE-2019-2616 2021-06-09 23:56:42 +05:30
Sandeep Singh 4e17331f30
Merge pull request #1657 from DhiyaneshGeek/master 
CVE-2017-9140: Telerik ReportViewer XSS
 2021-06-09 21:40:40 +05:30
sandeep 8fa1dbc604 Minor updates 2021-06-09 21:37:22 +05:30
sandeep 5c80980915 Added CVE-2020-36289 2021-06-09 21:13:52 +05:30
Dhiyaneshwaran 6c79bfa14d
Create CVE-2017-9140.yaml 2021-06-09 18:40:47 +05:30
Prince Chaddha 83ce809e8d Updated author names 2021-06-09 17:50:56 +05:30
Prince Chaddha 769de2a231 Create CVE-2013-2248.yaml 2021-06-09 15:32:42 +05:30
sandeep ccdb667d3b YML to YAML 2021-06-09 14:42:14 +05:30
sandeep 1299ae621f Update CVE-2021-28164.yml 2021-06-09 14:39:19 +05:30
sandeep eef5158207 Update CVE-2021-28164.yml 2021-06-09 14:38:12 +05:30
sandeep 23cb4c4d9f moving files around 2021-06-09 14:37:40 +05:30
Sandeep Singh 9d7ab618b8
Merge pull request #1654 from Mad-robot/master 
Update CVE-2017-9506.yaml
 2021-06-09 14:25:30 +05:30
sandeep 9045f0bb2a misc changes 2021-06-09 14:23:32 +05:30
Prince Chaddha 0013f94807
Merge pull request #1631 from projectdiscovery/sap_update 
SAP NetWeaver update
 2021-06-09 14:17:51 +05:30
SaN ThosH c5d4e5e400
Update CVE-2017-9506.yaml 2021-06-09 13:11:39 +05:30
sandeep 0cdfd0468f Update CVE-2021-24285.yaml 2021-06-09 04:01:21 +05:30
sandeep 2953942c3c Added CVE-2021-24285 2021-06-09 03:13:23 +05:30
sandeep 68642e226b CVE-2018-1247 fix 2021-06-09 01:40:02 +05:30
sandeep 799af2e5fb minor update 2021-06-09 01:23:13 +05:30
SaN ThosH aca824b910
Update CVE-2019-2767.yaml 2021-06-08 21:59:59 +05:30
SaN ThosH ff9b9a871c
Update CVE-2019-2767.yaml 2021-06-08 21:53:28 +05:30
SaN ThosH 41784d5261
Update CVE-2019-2767.yaml 2021-06-08 21:52:58 +05:30
SaN ThosH 169d64a3ff
Create CVE-2019-2767.yaml 2021-06-08 21:49:35 +05:30
Philippe Delteil 39555505db
Update CVE-2018-18069.yaml 
The matching condition are not enough. The payload input is not checked for reflection. This creates false positives like this one

nuclei -debug -t nuclei-templates/cves/2018/CVE-2018-18069.yaml -u https://empleo.gbtspain.com
 2021-06-05 14:12:50 -04:00
sandeep 14fa085d1b more improvements 2021-06-05 12:15:32 +05:30
sandeep 55c0e1b103 Improved matchers for CVE-2020-6287 2021-06-05 10:29:59 +05:30
Sandeep Singh c0103e0b8a
Merge pull request #1608 from Mad-robot/master 
Create CVE-2020-6308.yaml
 2021-06-05 00:04:56 +05:30
sandeep 83d359f6cf updating tags 2021-06-05 00:02:33 +05:30
sandeep 11cb8b3106 Update CVE-2020-6308.yaml 2021-06-05 00:00:50 +05:30
sandeep 8e13733d34 moving files around 2021-06-04 16:30:31 +05:30
sandeep 0e3ed049ae misc changes 2021-06-03 23:00:47 +05:30
sandeep bdc803fd4b Added CVE-2020-13927 2021-06-03 14:23:34 +05:30
sandeep 4a0e83037d Update CVE-2020-11978.yaml 2021-06-03 13:58:41 +05:30
sandeep 6652b2ddb6 Added CVE-2020-11978 2021-06-03 13:57:09 +05:30
Prince Chaddha d92568cd03
Merge pull request #1604 from Sicks3c/sicks3c 
Added new path for CVE-2021-22122.yaml
 2021-06-02 13:18:12 +05:30
Prince Chaddha 5269cc1c87
Update CVE-2021-22122.yaml 2021-06-02 13:17:00 +05:30
Noam Rathaus e3f42066bf Spelling 2021-06-02 09:39:35 +03:00
SaN ThosH f28fdf610b
Create CVE-2020-6308.yaml 2021-06-02 11:39:27 +05:30
root 2678721174 Added new path for CVE-2021-22122.yaml 2021-06-02 00:06:20 +01:00
Sandeep Singh 23a59704e9
Merge pull request #1585 from pikpikcu/patch-171 
Add CVE-2017-14535
 2021-06-01 11:07:56 +05:30
sandeep b021a0cf49 Misc changes 2021-06-01 11:06:13 +05:30
Geeknik Labs fe1ab8385d
Update and rename exposures/logs/circarlife-system-log.yaml to cves/2018/CVE-2018-12634.yaml 2021-05-31 11:31:04 -05:00
sandeep 19b73df6be Update CVE-2021-21985.yaml 2021-05-31 19:44:44 +05:30
sandeep 633644b159 Added CVE-2021-21985 2021-05-31 19:20:59 +05:30
sandeep 2cc30c771a misc updates 2021-05-31 16:53:36 +05:30
PikPikcU b0eca52c4b
Create CVE-2017-14535.yaml 2021-05-31 09:46:53 +00:00
sandeep a39f71eeff Fixing CVE-2018-0296 2021-05-31 09:28:47 +05:30
0xsapra 0d8c5607cb
CVE-2021-33564.yaml 2021-05-29 02:33:38 +05:30
Sandeep Singh 707d6720d1
Merge pull request #1543 from Morn98/CVE-2017-1000486 
Add detection for JavaServer Faces and detection for vulnerable PrimeFaces 5.x EL Injection (CVE 2017 1000486)
 2021-05-28 14:05:01 +05:30
sandeep b7d103a740 Update CVE-2017-1000486.yaml 2021-05-28 10:27:21 +05:30
sandeep 450cf76976 Improved template 2021-05-28 10:25:48 +05:30
sandeep 01995c82ab misc changes 2021-05-28 09:26:30 +05:30
PikPikcU 830a187e0d
Update CVE-2020-35736.yaml 2021-05-27 15:02:32 +00:00
PikPikcU ddf6bcb7ca
Update CVE-2020-35736.yaml 2021-05-27 14:51:03 +00:00
PikPikcU f981074e3f
Update CVE-2020-35736.yaml 2021-05-27 13:03:59 +00:00
PikPikcU b7d8536a01
Create CVE-2020-35736.yaml 2021-05-27 12:56:22 +00:00
Moritz 0c0eaf114c Update CVE-2017-1000486.yaml file to pass Checks 2021-05-27 11:38:23 +02:00
Moritz 24bcb23857 Add Detection for PrimeFaces 5.x EL Injection (CVE-2017-1000486) 2021-05-27 10:17:31 +02:00
Dhiyaneshwaran 633b9c39ee
Update CVE-2020-19625.yaml 2021-05-26 16:39:57 +05:30
sandeep e36fd816da Removing unused matcher 2021-05-25 05:21:23 +05:30
sandeep cad836d34e Added CVE-2020-15227 2021-05-22 17:22:45 +05:30
sandeep 26fc5c2dfa Added CVE-2021-27850 2021-05-21 09:04:16 +05:30
Sandeep Singh 20eb4b5084
Merge pull request #1510 from geeknik/patch-96 
Create CVE-2021-29622.yaml
 2021-05-20 22:17:13 +05:30
Sandeep Singh a320fd7720
Merge pull request #1494 from Techbrunch/magento-stuff 
Security Checks for Magento - Templates and workflow
 2021-05-20 20:04:25 +05:30
Geeknik Labs 67bf4fab3c
Update CVE-2021-29622.yaml 2021-05-20 13:14:28 +00:00
Geeknik Labs dde1e5e736
Create CVE-2021-29622.yaml 2021-05-20 13:13:18 +00:00
Geeknik Labs 788fe276ed
Update CVE-2009-0545.yaml 2021-05-19 14:53:06 +00:00
Geeknik Labs c55b2c58db
Create CVE-2009-0545.yaml 2021-05-19 14:40:37 +00:00
sandeep 74449f98ed Removing additional requests 2021-05-19 06:50:49 +05:30
Geeknik Labs 0c6a3051e8
Create CVE-2020-36112.yaml 2021-05-18 22:56:54 +00:00
Techbrunch 776776621a Added a few Magento related templates 2021-05-18 15:53:10 +02:00
Sandeep Singh 78abf0d8a2
Merge pull request #1480 from nrathaus/master 
Changes to reference and description
 2021-05-17 21:54:41 +05:30
sandeep ce200510a6 changed for testing locally, reverting it back 2021-05-17 21:45:53 +05:30
sandeep fa73765221 regex update 2021-05-17 21:42:41 +05:30
sandeep cd9321d4cb minor update 2021-05-17 19:32:49 +05:30
Geeknik Labs 0cf6e5507e
Update and rename cves/2021/CVE-2021-31800.yaml to cves/2014/CVE-2014-3744.yaml 2021-05-17 13:18:10 +00:00
Sandeep Singh c0d13a6def
Merge pull request #1475 from Ganofins/patch-3 
Create CVE-2021-24176.yaml
 2021-05-16 22:15:39 +05:30
sandeep 1d9cdf949b Update CVE-2021-24176.yaml 2021-05-16 22:12:33 +05:30
Noam Rathaus ae6b2b42bf Shorter check 2021-05-16 16:12:59 +03:00
Noam Rathaus dbdf6e8b6e Better description 2021-05-16 15:53:51 +03:00
Noam Rathaus 0d836a40f8 Much better description 2021-05-16 15:50:33 +03:00
Noam Rathaus 14a612623a Some dots make it easier to ready 2021-05-16 15:49:02 +03:00
Noam Rathaus 6df4482c23 Make description more managable 2021-05-16 15:46:17 +03:00
Noam Rathaus f659e820b7 Much better description and references 2021-05-16 15:44:54 +03:00
sandeep e46fcb9e9a Adding CVE-2021-27651 2021-05-16 15:10:08 +05:30
Ganesh Bagaria 4170b2d3e3
Create CVE-2021-24176.yaml 2021-05-16 12:59:32 +05:30
Prince Chaddha 5e2eaaf7a7
Update CVE-2021-31800.yaml 2021-05-16 02:16:34 +05:30
Geeknik Labs 4e1c4986f8
Create CVE-2021-31800.yaml 2021-05-15 18:56:07 +00:00
sandeep fdec804118 Template fix 2021-05-15 19:25:57 +05:30
sandeep 7b4d736b94 Adding additional matcher 2021-05-14 22:15:50 +05:30
Geeknik Labs 77b95af240
Update CVE-2021-31537.yaml 2021-05-12 20:27:33 +00:00
Geeknik Labs 8365697de4
Update CVE-2021-31537.yaml 2021-05-12 20:25:22 +00:00
Geeknik Labs 7dcfccff74
Create CVE-2021-31537.yaml 2021-05-12 20:23:19 +00:00
sandeep d63b9e1cb8 Adding missing tags 2021-05-13 00:54:59 +05:30
sandeep ff93978e09 Removing status matcher to avoid missing true positives results. 2021-05-12 02:04:56 +05:30
sandeep 20eae78810 improved matcher 2021-05-12 00:32:16 +05:30
sandeep ce680a546c Improved matcher 2021-05-12 00:25:14 +05:30
sandeep de70b699bc More references 2021-05-11 23:47:49 +05:30
sandeep 1c04ba5abc Additional matchers 2021-05-11 23:47:09 +05:30
Pina 79962222c5
cve-2017-12149 jboss deserialization rce 2021-05-11 12:07:05 +01:00
sandeep 682b9fbbc3 Adding status matcher 2021-05-11 02:48:45 +05:30
sandeep bfddeccb31 path update 2021-05-11 02:42:34 +05:30
sandeep 1913076aef Update CVE-2017-7269.yaml 2021-05-09 22:50:07 +05:30
Geeknik Labs ce63f8ebea
Update CVE-2017-7269.yaml 2021-05-09 15:43:32 +00:00
Geeknik Labs f6dc6a1376
Update CVE-2017-7269.yaml 2021-05-09 15:16:07 +00:00
sandeep c0f5cf03ab tags update 2021-05-09 20:41:52 +05:30
sandeep f18a611286 Delete CVE-2018-0101.yaml 
Temporarily removing as current matcher is not sufficient to match this accurately.
 2021-05-09 17:12:50 +05:30
sandeep 988d09e2de Added CVE-2021-28073 2021-05-07 20:30:23 +05:30
sandeep 5fca66c2a5 Added CVE-2020-9490 2021-05-07 19:24:44 +05:30
sandeep c56111663f Added CVE-2021-30461 2021-05-07 18:00:10 +05:30
Sandeep Singh cee291e366
Merge pull request #1419 from dwisiswant0/add/GHSL-2020-325 
Hotfix: Update operator
 2021-05-07 16:46:43 +05:30
Dwi Siswanto 1f5cbe507c Update operator 2021-05-06 16:24:08 +07:00
Sandeep Singh 1198c7e724
Merge pull request #1382 from dwisiswant0/add/GHSL-2020-325 
Add CVE-2021-29441
 2021-05-05 18:26:10 +05:30
sandeep 22f123ff79 template update 2021-05-05 18:23:07 +05:30
sandeep a14c1ce233 Added strict matcher 2021-05-05 17:26:14 +05:30
sandeep 931f8833bf removing weak matcher 2021-05-05 17:13:51 +05:30
sandeep 1d2a7b370f Adding strict matcher 2021-05-05 17:04:46 +05:30
sandeep c2c381787f updating condition 2021-05-05 16:58:40 +05:30
Sandeep Singh 68a9a5f954
Merge pull request #1302 from projectdiscovery/CVE-2020-7247 
Adding CVE-2020-7247 🔥 🔥
 2021-05-05 00:02:23 +05:30
Sandeep Singh f8ebcb9239
Merge pull request #1303 from projectdiscovery/oob-templates-update 
OOB Template updates (WIP)
 2021-05-05 00:01:55 +05:30
Sandeep Singh 81c7aac3ab
Merge pull request #1372 from projectdiscovery/CVE-2017-3506 
Added CVE-2017-3506
 2021-05-05 00:01:18 +05:30
Sandeep Singh 2080bfdab3
Merge pull request #1380 from projectdiscovery/cves/CVE-2017-12629 
Added CVE-2017-12629
 2021-05-05 00:00:43 +05:30
Dwi Siswanto d2ea9d2da0 Using Get configurations open API endpoint 2021-05-04 13:18:55 +07:00
sandeep a3c73e6aa3 updated workflow 2021-05-03 15:37:05 +05:30
sandeep b2ffaa1c5b Update CVE-2018-10141.yaml 2021-05-03 15:16:29 +05:30
sandeep e94b507722 moving files around 2021-05-03 15:16:08 +05:30
Dhiyaneshwaran 15c7472891
Update CVE-2019-8446.yaml 2021-05-03 01:32:15 +05:30
Dhiyaneshwaran cf8f9ac094
Update CVE-2019-8446.yaml 2021-05-03 01:23:15 +05:30
Dhiyaneshwaran e7caffd3e7
Create CVE-2019-8446.yaml 2021-05-03 01:20:57 +05:30
sandeep 641e125c79 improved payload 2021-05-02 18:51:04 +05:30
Sandeep Singh f838747ec1
Merge pull request #1393 from DhiyaneshGeek/master 
ZyXEL NAS RCE,Oracle iPlanet Improper Authorization,NetScalar AAA Login Panel,ShareCenter Login Page
 2021-05-02 17:18:15 +05:30
sandeep 534fcc8964 Update CVE-2020-9315.yaml 2021-05-02 17:14:03 +05:30
sandeep 837ca10f23 minor updates 2021-05-02 17:07:30 +05:30
Noam Rathaus e76d10a3c7 Make reference visible 2021-05-02 08:51:18 +03:00
sandeep a6b8fd6e67 Adding CVE-2019-13462 2021-05-02 00:24:21 +05:30
Dhiyaneshwaran 3ec1a82d82
Create CVE-2020-9315.yaml 2021-05-01 16:38:36 +05:30
Dhiyaneshwaran 3012822716
Create CVE-2020-9054.yaml 2021-05-01 16:15:03 +05:30
Noam Rathaus bfc959a5a6 Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates 2021-04-30 20:11:38 +03:00
sandeep dad40cadfc Temporarily moving to branch 2021-04-30 21:45:18 +05:30
Noam Rathaus 2860cdfb4a Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates 2021-04-29 08:38:11 +03:00
Dwi Siswanto 3a51f45be5 Update description 2021-04-28 21:01:25 +07:00
Prince Chaddha 56d09dda92
Update CVE-2021-29442.yaml 2021-04-28 18:30:55 +05:30
Dwi Siswanto 64a45f2439 Add CVE-2021-29442 2021-04-28 12:01:34 +07:00
Dwi Siswanto 486103e0d4 Add CVE-2021-29441 2021-04-28 11:54:36 +07:00
Noam Rathaus 1f2b2d05c1 False positive in the matcher, the content of the file has: "= 5.3.1 =" in it, not just a number on its own in addition, it has "1. ... something" in it causing FP 2021-04-27 16:09:27 +03:00
sandeep daff7a614c RAW requests 2021-04-27 16:55:09 +05:30
sandeep 7a2edf0085 Moving files around 2021-04-27 16:38:12 +05:30
sandeep e9621ed0a0 Payload and matcher update 2021-04-27 16:37:02 +05:30
sandeep 68b06c50a4 Update CVE-2017-3506.yaml 2021-04-26 21:16:27 +05:30
sandeep b6c1ab4ac8 Update CVE-2019-17382.yaml 2021-04-26 20:05:45 +05:30
Sandeep Singh e257a691f3
Merge pull request #1359 from Open-Sec/patch-1 
Update CVE-2019-17382.yaml
 2021-04-26 20:04:03 +05:30
sandeep 73e17259fd Added more payloads 2021-04-26 20:01:51 +05:30
sandeep 8ca815d191 Update CVE-2017-3506.yaml 2021-04-26 15:20:04 +05:30
sandeep 6eae4191d6 Added CVE-2017-3506 2021-04-26 15:18:57 +05:30
sandeep 8b7fbeb786 Added hostname 2021-04-25 13:02:41 +05:30
sandeep 564c7635ec In template payload input and fixes 2021-04-24 09:29:34 +05:30
Open Sec d6c0dfa5c5
Update CVE-2019-17382.yaml 
Sometimes dashboards get deleted and asking just for an specific numbre will give a false negative
 2021-04-23 16:15:16 -05:00
Sandeep Singh 4d3a55cfca
Merge pull request #1353 from geeknik/patch-75 
Create CVE-2014-2321.yaml
 2021-04-23 22:14:45 +05:30
sandeep 34d8d2a2c9 Update CVE-2014-2321.yaml 2021-04-23 22:12:45 +05:30
Sandeep Singh 7d9cb28f33
Merge pull request #1355 from geeknik/patch-77 
Create CVE-2019-15859.yaml
 2021-04-23 22:05:43 +05:30
Sandeep Singh 627448a876
Merge pull request #1354 from geeknik/patch-76 
Create CVE-2017-15715.yaml
 2021-04-23 22:03:42 +05:30
sandeep c3379618ab matching against uploaded string in file 2021-04-23 22:02:27 +05:30
sandeep d9f32d0312 Update CVE-2017-15715.yaml 2021-04-23 21:48:57 +05:30
sandeep f596d64a47 Update CVE-2014-4210.yaml 2021-04-23 19:41:38 +05:30
sandeep 6c3634a162 Update CVE-2017-15715.yaml 2021-04-23 19:27:38 +05:30
sandeep 7d0fea2bab making it unique for every new scans 2021-04-23 19:22:23 +05:30
Geeknik Labs b75885491f
Create CVE-2019-15859.yaml 2021-04-23 13:38:16 +00:00
Geeknik Labs 8fc4e54a36
Create CVE-2017-15715.yaml 2021-04-23 13:34:52 +00:00
Geeknik Labs debd9dd2bc
Create CVE-2014-2321.yaml 2021-04-23 13:32:38 +00:00
sandeep 7203040e96 minor update 2021-04-23 18:51:52 +05:30
sandeep ee74145a98 template update 2021-04-23 15:38:41 +05:30
Sandeep Singh 8a9c25f21c
Merge pull request #1329 from davidmckennirey/kentico-cms-deser-vuln 
Add Kentico CMS Deserialization RCE (CVE-2019-10068)
 2021-04-23 14:41:21 +05:30
sandeep bfe1b00af3 Update CVE-2019-10068.yaml 2021-04-23 14:38:40 +05:30
sandeep 3608b6c162 Update CVE-2019-10068.yaml 2021-04-23 14:36:58 +05:30
sandeep 28e1900715 minor updates 2021-04-23 14:29:22 +05:30
sandeep 76c08284ce Adding more references 2021-04-23 14:21:15 +05:30
sandeep c539514cdd Update CVE-2021-27905.yaml 2021-04-23 14:18:51 +05:30
sandeep 33c9b30143 Template fix and minor updates 2021-04-23 14:14:49 +05:30
Dhiyaneshwaran 6ca4f1c5d2
Create CVE-2021-27905 2021-04-23 12:53:49 +05:30
sandeep 5af8fe5e34 Moving into draft for better matching 2021-04-23 12:45:49 +05:30
sandeep 2f434d0440 Update CVE-2021-24146.yaml 2021-04-23 08:50:02 +05:30