Commit Graph

754 Commits (b25e83f8c4d5c3df4ea2355ae30743f213a3c49b)

Author SHA1 Message Date
Ritik Chaddha 3f5331b2d6 Update springboot-httptrace.yaml 2022-07-28 14:05:43 +05:30
Ritik Chaddha d39c9b3b1f Update springboot-info.yaml 2022-07-28 14:05:40 +05:30
Ritik Chaddha a6d625a99d Update springboot-loggers.yaml 2022-07-28 14:05:37 +05:30
Ritik Chaddha 5fc571d722 Update springboot-mappings.yaml 2022-07-28 14:05:35 +05:30
Ritik Chaddha 8931041c19 Update springboot-metrics.yaml 2022-07-28 14:05:33 +05:30
Ritik Chaddha 6d94dcacae Update springboot-threaddump.yaml 2022-07-28 14:05:31 +05:30
Ritik Chaddha d914734c55 Update springboot-trace.yaml 2022-07-28 14:05:28 +05:30
Ritik Chaddha fc3776e6fd Update springboot-configprops.yaml 2022-07-28 13:52:31 +05:30
Ritik Chaddha 24b319effc Update springboot-beans.yaml 2022-07-28 13:52:29 +05:30
Ritik Chaddha 7cea59375e Update springboot-autoconfig.yaml 2022-07-28 13:50:57 +05:30
Ritik Chaddha d9a8996b8d
Create springboot-flyway.yaml 2022-07-28 13:38:15 +05:30
Ritik Chaddha 653d9f8854
Update springboot-caches.yaml 2022-07-28 13:31:02 +05:30
Ritik Chaddha f0ce199db4
Create springboot-scheduledtasks.yaml 2022-07-28 13:28:03 +05:30
Ritik Chaddha 35a896aa20
Update springboot-caches.yaml 2022-07-28 13:05:01 +05:30
Ritik Chaddha a765016af0
Create springboot-caches.yaml 2022-07-28 13:01:14 +05:30
MostInterestingBotInTheWorld c5a7d79f5a
Dashboard Content Enhancements (#4819)
Dashboard Content Enhancements
2022-07-26 09:45:11 -04:00
Prince Chaddha 527236cebb
Update graphql-get-method.yaml 2022-07-26 10:51:17 +05:30
Prince Chaddha 289b040173
Update graphql-array-batching.yaml 2022-07-26 10:50:36 +05:30
Prince Chaddha e06bd41343
Update graphql-alias-batching.yaml 2022-07-26 10:50:29 +05:30
Prince Chaddha 509d88d631
Update graphql-field-suggestion.yaml 2022-07-26 10:49:58 +05:30
Prince Chaddha dfb6d8d00a
Update graphql-array-batching.yaml 2022-07-26 10:48:53 +05:30
Prince Chaddha f5ece57006
Update graphql-alias-batching.yaml 2022-07-26 10:48:24 +05:30
Prince Chaddha 72a6a6865b
Update graphql-alias-batching.yaml 2022-07-26 10:47:13 +05:30
Prince Chaddha f05abb6842
Update graphql-array-batching.yaml 2022-07-26 10:45:05 +05:30
Ritik Chaddha 3e0a750411 Update aem-bg-servlet.yaml 2022-07-26 09:07:57 +05:30
Ritik Chaddha 16ffb6d19a Update aem-cached-pages.yaml 2022-07-26 09:07:54 +05:30
Ritik Chaddha e6d7d3c59a Update aem-crx-bypass.yaml 2022-07-26 09:07:51 +05:30
Ritik Chaddha a5dcf50529 Update aem-default-get-servlet.yaml 2022-07-26 09:07:49 +05:30
Ritik Chaddha 7b9f480322 Update aem-gql-servlet.yaml 2022-07-26 09:07:46 +05:30
Ritik Chaddha 80e38a8bd6 Update aem-groovyconsole.yaml 2022-07-26 09:07:44 +05:30
Ritik Chaddha 873fce6b70 Update aem-hash-querybuilder.yaml 2022-07-25 23:07:34 +05:30
Ritik Chaddha 29dcf1426d Update aem-jcr-querybuilder.yaml 2022-07-25 23:07:28 +05:30
Ritik Chaddha e5ffc344c0 Update aem-login-status.yaml 2022-07-25 23:07:26 +05:30
Ritik Chaddha 4d580ba40e Update aem-merge-metadata-servlet.yaml 2022-07-25 23:07:23 +05:30
Ritik Chaddha 952df260af Update aem-querybuilder-feed-servlet.yaml 2022-07-25 23:07:21 +05:30
Ritik Chaddha 7229764d5c Update aem-querybuilder-internal-path-read.yaml 2022-07-25 23:07:20 +05:30
Ritik Chaddha 2ca8efc8c0 Update aem-querybuilder-json-servlet.yaml 2022-07-25 23:07:17 +05:30
Ritik Chaddha ff3208a069 Update aem-setpreferences-xss.yaml 2022-07-25 23:07:15 +05:30
Ritik Chaddha 13ba57d0b2 Update aem-userinfo-servlet.yaml 2022-07-25 23:07:13 +05:30
Ritik Chaddha 8ddb90bd08 Update aem-wcm-suggestions-servlet.yaml 2022-07-25 23:07:11 +05:30
Ritik Chaddha 1ee77ed7b1
Update phpmyadmin-setup.yaml 2022-07-25 13:17:50 +05:30
Ritik Chaddha 433d438305
Update phpmyadmin-setup.yaml 2022-07-25 12:46:48 +05:30
Prince Chaddha 8205684964
Update drupal-user-enum-redirect.yaml 2022-07-24 21:53:18 +05:30
Valerio Preti 6dc09b32a0 fix typo in info.name 2022-07-24 10:56:27 +02:00
Valerio Preti 2cb82efd0b fix redirect regex to match URI with ports and multiple nested routes 2022-07-24 10:53:36 +02:00
Ritik Chaddha ba93d895f5 Update sap-netweaver-info-leak.yaml 2022-07-21 23:56:52 +05:30
Prince Chaddha c9f0a90d66
Update apache-druid-unauth.yaml 2022-07-17 09:32:44 +05:30
Dhiyaneshwaran 097244d542
Create apache-druid-unauth.yaml 2022-07-16 14:52:11 +01:00
Prince Chaddha fd8b123b3d
Update salesforce-aura.yaml 2022-07-14 12:39:43 +05:30
Ph33r 83f9717643
Update salesforce-aura.yaml 2022-07-14 09:26:49 +03:00
Ritik Chaddha 55a080b71a Update grafana-public-signup.yaml 2022-07-07 15:45:56 +05:30
Ritik Chaddha a65d2bb89a Update drupal-user-enum-ajax.yaml 2022-07-07 12:15:33 +05:30
Ritik Chaddha bee5e2f94a Update drupal-user-enum-redirect.yaml 2022-07-07 12:15:30 +05:30
Prince Chaddha 70d1c60b9e
Merge pull request #4740 from DhiyaneshGeek/master
9 New Templates
2022-07-05 10:01:40 +05:30
Prince Chaddha eac1fe3433
Update and rename misconfiguration/docker-cloud.yaml to exposures/files/docker-cloud.yaml 2022-07-05 09:52:18 +05:30
Prince Chaddha 1d9aa6a8c5
Rename vulnerabilities/confluence/confluence-oauth-admin.yaml to misconfiguration/confluence/confluence-oauth-admin.yaml 2022-07-05 09:51:24 +05:30
Prince Chaddha dbcbe89a23
Update and rename misconfiguration/cloud-config.yaml to exposures/files/cloud-config.yaml 2022-07-05 09:47:31 +05:30
Prince Chaddha 1bd96f8902
Update and rename misconfiguration/vulnerabilities/other/umbraco-base-ssrf.yaml to vulnerabilities/other/umbraco-base-ssrf.yaml 2022-07-05 08:23:51 +05:30
Dhiyaneshwaran 2700337be0
Update docker-cloud.yaml 2022-07-04 18:41:25 +01:00
Dhiyaneshwaran 40ab21c292
Create docker-cloud.yaml 2022-07-04 18:38:44 +01:00
Dhiyaneshwaran a711b1c701
Create cloud-config.yaml 2022-07-04 18:06:36 +01:00
Ritik Chaddha 28e3eb0266 Update ibm-friendly-path-exposure.yaml 2022-07-04 18:47:57 +05:30
Ritik Chaddha aacb6a38de Update apache-tomcat-snoop.yaml 2022-07-04 18:47:55 +05:30
Ritik Chaddha 2a4070fc15 Update shodan/fofa links to query 2022-07-04 14:16:15 +05:30
Prince Chaddha eb5fcfaab6
Merge pull request #4680 from Kr1shna4garwal/patch-3
Update phpmyadmin-setup.yaml
2022-06-29 10:33:08 +05:30
Prince Chaddha 85dfd18b08
Update phpmyadmin-setup.yaml 2022-06-28 18:20:13 +05:30
Prince Chaddha 6c3ae9bc39
Merge pull request #4678 from DhiyaneshGeek/master
9 New Templates
2022-06-28 08:52:36 +05:30
Prince Chaddha b7827a9ccf
Update and rename unauth-fastvue.yaml to unauth-fastvue-dashboard.yaml 2022-06-28 08:48:59 +05:30
Prince Chaddha c0d22716e6
Update command-api-explorer.yaml 2022-06-28 00:28:29 +05:30
Prince Chaddha 50fe70f1dd
Update unauth-fastvue.yaml 2022-06-28 00:02:29 +05:30
Krishna Agarwal 764b635932
Update phpmyadmin-setup.yaml 2022-06-27 20:28:22 +05:30
Dhiyaneshwaran ab7b7c2f50
Create command-api-explorer.yaml 2022-06-27 12:32:37 +01:00
Dhiyaneshwaran 71c7f107e6
Create unauth-fastvue.yaml 2022-06-27 11:59:08 +01:00
Prince Chaddha b4247e2969
Merge pull request #4628 from Ph33rr/master
misconfig in teamcity add 2 temp
2022-06-22 11:11:28 +05:30
Prince Chaddha 19aa943966
Rename misconfiguration/teamcity-guest-login-enabled.yaml to misconfiguration/teamcity/teamcity-guest-login-enabled.yaml 2022-06-22 11:05:13 +05:30
Prince Chaddha b60a147f3d
Update and rename misconfiguration/teamcity-register.yaml to misconfiguration/teamcity/teamcity-registration-enabled.yaml 2022-06-22 11:02:03 +05:30
Prince Chaddha 4b8d639fa5
Update and rename teamcity-guest.yaml to teamcity-guest-login-enabled.yaml 2022-06-22 10:50:23 +05:30
Prince Chaddha 4140e20d6f
Update wp-registration-enabled.yaml 2022-06-22 09:24:00 +05:30
Prince Chaddha 29772967c2
Merge pull request #4631 from DhiyaneshGeek/master
Wordpress Registration Enabled
2022-06-22 09:18:01 +05:30
Prince Chaddha 8c2025e9f3
Update and rename wordpress-register-option-enabled.yaml to wp-registration-enabled.yaml 2022-06-22 09:15:30 +05:30
Dhiyaneshwaran 0b4df9b0ca
Update wordpress-register-option-enabled.yaml 2022-06-21 22:14:30 +01:00
Dhiyaneshwaran 2caabe255b
Create wordpress-register-option-enabled.yaml 2022-06-21 22:10:53 +01:00
Ph33r 0bf54a8697
Update teamcity-guest.yaml 2022-06-21 21:24:17 +03:00
Ph33r 01478bd694
Update teamcity-register.yaml 2022-06-21 21:23:48 +03:00
Ph33r 3324d860ec
Update teamcity-register.yaml 2022-06-21 21:13:18 +03:00
Ph33r bcba55ab39
Create teamcity-register.yaml 2022-06-21 21:12:51 +03:00
Ph33r aaa9db5859
Create teamcity-guest.yaml 2022-06-21 21:12:24 +03:00
Prince Chaddha 36524d0685
Merge pull request #4478 from r3naissance/master
Adding additional matchers to hp printers without auth
2022-06-20 11:17:46 +05:30
Prince Chaddha 4330004a20
Update and rename misconfiguration/unauthorized-hp-printer.yaml to misconfiguration/hp/unauthorized-hp-printer.yaml 2022-06-20 10:37:58 +05:30
Prince Chaddha cc2124f496
Update and rename unauthorized-hp-printer.yaml to unauthorized-printer-hp.yaml 2022-06-20 10:37:14 +05:30
johnk3r 12eb845991
Create jupyter-notebooks-exposed.yaml (#4561) 2022-06-09 03:11:58 +05:30
Prince Chaddha 7ada510859
Fixed possible FPs in open redirect templates (#4544)
* Fixed possible FPs in open redirect templates

We have replaced example.com with interact.sh since few domains redirect to example.com, which results in FP results.

* updated example domain

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2022-06-06 16:10:15 +05:30
y0no c3d0dcbdfd
Fix IIS Internal IP Disclosure (#4479)
* Update iis-internal-ip-disclosure.yaml

Fix IIS Internal IP Disclosure for OWA case

* Auto Generated CVE annotations [Wed May 25 14:01:45 UTC 2022] 🤖

* Additional request + improved matcher part

Co-authored-by: GitHub Action <action@github.com>
Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2022-05-26 00:50:38 +05:30
Chapman Schleiss 8d3c76b67f Adding additional matchers to hp printers without auth 2022-05-24 15:52:24 -06:00
MostInterestingBotInTheWorld bdb372cfb4
Dashboard Content Enhancements (#4475)
Dashboard Content Enhancements
2022-05-23 17:29:29 -04:00
Prince Chaddha 3d331f5154
Update selenium-exposure.yaml 2022-05-24 00:57:09 +05:30
Prince Chaddha 3cd7bf4c5a
Update selenium-exposure.yaml 2022-05-24 00:53:21 +05:30
Prince Chaddha 0c5b2efe65
Create selenium-exposure.yaml 2022-05-24 00:51:42 +05:30
MostInterestingBotInTheWorld 809e87987c
Dashboard Content Enhancements (#4456)
Dashboard Content Enhancements
2022-05-20 17:38:52 -04:00
Prince Chaddha f97215e84a
Update and rename misconfiguration/oracle-ebusiness-registration-enabled.yaml to cves/2022/CVE-2022-21500.yaml 2022-05-20 17:50:05 +05:30
sandeep 3db129c6bf additional path for haproxy 2022-05-20 01:11:36 +05:30
forgedhallpass efddaed4bd
Do not report missing headers in case of HTTP redirects (#4425) 2022-05-18 02:19:08 +05:30
Prince Chaddha 7c7b0a7479
Update xss-deprecated-header.yaml 2022-05-17 13:36:53 +05:30
Josh Larsen b1833adc69 remove extra line 2022-05-16 15:02:43 -04:00
Josh Larsen 3c828b8ac0 detect deprecated XSS Protection headers 2022-05-16 12:12:06 -04:00
Prince Chaddha 3f9ce9fb44
Update oracle-ebusiness-registration-enabled.yaml 2022-05-16 18:50:40 +05:30
Prince Chaddha 4896151afd
Update and rename oracle-ebusiness-registration.yaml to oracle-ebusiness-registration-enabled.yaml 2022-05-16 12:55:50 +05:30
Prince Chaddha 8cda6eed4d
Update and rename oracle-misconfiguration.yaml to oracle-ebusiness-registration.yaml 2022-05-16 12:45:30 +05:30
Arman 14b68df4d1
Update oracle-misconfiguration.yaml 2022-05-15 16:33:02 -04:00
Arman a67aa8f07d
Create oracle-misconfiguration.yaml 2022-05-15 16:13:32 -04:00
Prince Chaddha 443d4d238b
Create unauth-wavink-panel.yaml 2022-05-15 18:20:37 +05:30
MostInterestingBotInTheWorld 581b7a627b
Dashboard Content Enhancements (#4381)
Dashboard Content Enhancements
2022-05-13 16:26:43 -04:00
Ritik Chaddha 27a039a70c
Update metadata query (#4350)
* Update adobe-component-login.yaml

* Update cold-fusion-cfcache-map.yaml

* Update unpatched-coldfusion.yaml

* Update coldfusion-debug-xss.yaml

* Update CVE-2020-11978.yaml

* Update CVE-2020-13927.yaml

* Update CVE-2021-38540.yaml

* Update CVE-2021-44451.yaml

* Update CVE-2022-24288.yaml

* Update airflow-debug.yaml

* Update airflow-detect.yaml

* Update CVE-2010-0219.yaml

* Update apache-axis-detect.yaml

* Update CVE-2020-11991.yaml

* Update apache-cocoon-detect.yaml

* Update CVE-2021-21402.yaml

* Update jellyfin-detect.yaml

* Update CVE-2021-21402.yaml

* Update CVE-2021-21402.yaml

* Update ecology-arbitrary-file-upload.yaml

* Update ecology-v8-sqli.yaml

* Update ecology-syncuserinfo-sqli.yaml

* Update ecology-filedownload-directory-traversal.yaml

* Update CNVD-2021-15822.yaml

* Update dedecms-carbuyaction-fileinclude.yaml

* Update dedecms-openredirect.yaml

* Update tamronos-rce.yaml

* Update natshell-path-traversal.yaml
2022-05-12 19:48:36 +05:30
Prince Chaddha 46187a047f
Update and rename default-logins/others/h3c-secparh-default-login.yaml to misconfiguration/unauthorized-h3csecparh-login.yaml 2022-05-12 15:36:08 +05:30
MostInterestingBotInTheWorld d05c7052e9
Restoring Empty Lines (#4340)
* Enhancement: cves/2021/CVE-2021-34473.yaml by mp

* Enhancement: cves/2021/CVE-2021-34621.yaml by mp

* Enhancement: cves/2021/CVE-2021-35336.yaml by mp

* Enhancement: cves/2021/CVE-2021-35464.yaml by mp

* Enhancement: cves/2021/CVE-2021-35587.yaml by mp

* Enhancement: cves/2021/CVE-2021-3577.yaml by mp

* Enhancement: cves/2021/CVE-2021-36260.yaml by mp

* Enhancement: cves/2021/CVE-2021-36380.yaml by mp

* Enhancement: cves/2021/CVE-2021-40323.yaml by mp

* Enhancement: cves/2021/CVE-2021-39226.yaml by mp

* Enhancement: cves/2021/CVE-2021-38647.yaml by mp

* Enhancement: cves/2021/CVE-2021-37580.yaml by mp

* Enhancement: cves/2021/CVE-2021-37538.yaml by mp

* Enhancement: cves/2021/CVE-2021-34473.yaml by mp

* Enhancement: cves/2021/CVE-2021-35336.yaml by mp

* Enhancement: cves/2021/CVE-2021-3577.yaml by mp

* Enhancement: cves/2021/CVE-2021-36260.yaml by mp

* Enhancement: cves/2021/CVE-2021-36380.yaml by mp

* Enhancement: cves/2021/CVE-2021-37538.yaml by mp

* Enhancement: cves/2021/CVE-2021-37580.yaml by mp

* Spacing and spelling

* remove blank lines introduced by dashboard

* Enhancement: cves/2019/CVE-2019-1821.yaml by mp

* Enhancement: cves/2019/CVE-2019-18394.yaml by mp

* Enhancement: cves/2019/CVE-2019-18818.yaml by mp

* Enhancement: cves/2019/CVE-2019-19781.yaml by mp

* Enhancement: cves/2019/CVE-2019-2725.yaml by mp

* Enhancement: cves/2019/CVE-2019-3396.yaml by mp

* Enhancement: cves/2019/CVE-2019-3929.yaml by mp

* Enhancement: cves/2019/CVE-2019-5127.yaml by mp

* Enhancement: cves/2019/CVE-2019-7238.yaml by mp

* Enhancement: cves/2019/CVE-2019-7256.yaml by mp

* Enhancement: cves/2019/CVE-2019-7609.yaml by mp

* Enhancement: cves/2019/CVE-2019-8982.yaml by mp

* Enhancement: cves/2019/CVE-2019-9618.yaml by mp

* Enhancement: cves/2019/CVE-2019-9670.yaml by mp

* Enhancement: cves/2019/CVE-2019-1821.yaml by mp

* Enhancement: cves/2019/CVE-2019-18394.yaml by mp

* Enhancement: cves/2019/CVE-2019-19781.yaml by mp

* Enhancement: cves/2019/CVE-2019-2725.yaml by mp

* Enhancement: cves/2019/CVE-2019-2725.yaml by mp

* Enhancement: cves/2019/CVE-2019-5127.yaml by mp

* Enhancement: cves/2019/CVE-2019-9618.yaml by mp

* Enhancement: cves/2019/CVE-2019-9670.yaml by mp

* Enhancement: cves/2005/CVE-2005-2428.yaml by mp

* Enhancement: cves/2019/CVE-2019-2579.yaml by mp

* Enhancement: cves/2019/CVE-2019-2578.yaml by mp

* Enhancement: cves/2019/CVE-2019-6112.yaml by mp

* Enhancement: cves/2019/CVE-2019-9733.yaml by mp

* Enhancement: cves/2020/CVE-2020-11034.yaml by mp

* Enhancement: cves/2020/CVE-2020-11529.yaml by mp

* Enhancement: cves/2020/CVE-2020-11546.yaml by mp

* Enhancement: cves/2020/CVE-2020-12116.yaml by mp

* Enhancement: cves/2020/CVE-2020-12447.yaml by mp

* Enhancement: cves/2020/CVE-2020-17453.yaml by mp

* Enhancement: cves/2020/CVE-2020-19360.yaml by mp

* Enhancement: cves/2020/CVE-2020-2140.yaml by mp

* Enhancement: cves/2020/CVE-2020-23575.yaml by mp

* Enhancement: cves/2020/CVE-2020-24223.yaml by mp

* Enhancement: cves/2019/CVE-2019-2578.yaml by mp

* Enhancement: cves/2019/CVE-2019-2579.yaml by mp

* Enhancement: cves/2019/CVE-2019-2578.yaml by mp

* Enhancement: cves/2019/CVE-2019-6112.yaml by mp

* Enhancement: cves/2019/CVE-2019-9733.yaml by mp

* Enhancement: cves/2020/CVE-2020-11034.yaml by mp

* Enhancement: cves/2020/CVE-2020-11529.yaml by mp

* Enhancement: cves/2020/CVE-2020-12116.yaml by mp

* Enhancement: cves/2020/CVE-2020-12447.yaml by mp

* Enhancement: cves/2020/CVE-2020-2140.yaml by mp

* Enhancement: cves/2020/CVE-2020-14092.yaml by mp

* Enhancement: cves/2021/CVE-2021-20090.yaml by mp

* standardizing enhanced by tag

* standardizing enhanced by tag

* Fix spacing. Add classification->cve

* Enhancement: cves/2021/CVE-2021-20158.yaml by mp

* Enhancement: cves/2021/CVE-2021-20167.yaml by mp

* Typo

* Enhancement: cves/2021/CVE-2021-20837.yaml by mp

* Enhancement: cves/2021/CVE-2021-21307.yaml by mp

* Enhancement: cves/2021/CVE-2021-21479.yaml by mp

* Enhancement: cves/2021/CVE-2021-21881.yaml by mp

* Enhancement: cves/2021/CVE-2021-21972.yaml by mp

* Enhancement: cves/2021/CVE-2021-21978.yaml by mp

* Enhancement: cves/2021/CVE-2021-22005.yaml by mp

* Enhancement: cves/2021/CVE-2021-22205.yaml by mp

* Enhancement: cves/2021/CVE-2021-22986.yaml by mp

* Enhancement: cves/2021/CVE-2021-24285.yaml by mp

* Enhancement: cves/2021/CVE-2021-24472.yaml by mp

* Enhancement: cves/2021/CVE-2021-20090.yaml by mp

* Enhancement: cves/2021/CVE-2021-20167.yaml by mp

* Enhancement: cves/2021/CVE-2021-21307.yaml by mp

* Enhancement: cves/2021/CVE-2021-21978.yaml by mp

* Enhancement: cves/2021/CVE-2021-21985.yaml by mp

* Enhancement: cves/2021/CVE-2021-21972.yaml by mp

* Enhancement: cves/2021/CVE-2021-22205.yaml by mp

* Enhancement: cves/2021/CVE-2021-22986.yaml by mp

* Enhancement: cves/2021/CVE-2021-24285.yaml by mp

* Restore empty lines

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Remove unnecessary file

* Restore content after bad dashboard edit

* Enhancement: undefined by cs

* Spacing issues

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Delete null file created by dashboard

* Remove improper Enhanced tag

* Spacing issues

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Remove test dashboard commits

* Enhancement: cves/2014/CVE-2014-9618.yaml by mp

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Not really enhanced

* Add classification->cve-id

* Restore content from dashboard mess up

* Enhancement: cves/2014/CVE-2014-9618.yaml by mp

* Enhancement: cves/2014/CVE-2014-9618.yaml by mp

* Restore newlines

Co-authored-by: sullo <sullo@cirt.net>
2022-05-10 12:35:15 +05:30
MostInterestingBotInTheWorld 9ff9285916
Dashboard Content Enhancements (#4338)
Dashboard Content Enhancements
2022-05-09 12:12:52 -04:00
sandeep 95f4bef801 meta data update 2022-05-09 15:13:18 +05:30
Prince Chaddha ddb9f0a8dc
Update insecure-firebase-database.yaml 2022-05-08 17:48:27 +05:30
Prince Chaddha bac486a802
Create insecure-firebase-database.yaml 2022-05-08 17:47:11 +05:30
Sandeep Singh b37f2dbff5
Added Nginx Dashboard (#4318) 2022-05-08 00:05:22 +05:30
Prince Chaddha be5984676a
Update aem-xss-childlist-selector.yaml 2022-05-01 02:04:56 +05:30
Dhiyaneshwaran 76e40c222e
Update aem-xss-childlist-selector.yaml 2022-05-01 00:46:35 +05:30
pussycat0x ccc7835baf
Sucuri Website Firewall - Not Configured Default page (#4254)
* Add files via upload

* Auto Generated CVE annotations [Wed Mar 16 11:29:14 UTC 2022] 🤖

* Auto Generated New Template Addition List [Wed Mar 16 13:48:01 UTC 2022] 🤖

* moving templates into jolokia directory

* duplicate of jolokia-unauthenticated-lfi

* merged similar templates into one with updated matchers

* Auto Generated New Template Addition List [Wed Mar 23 10:21:57 UTC 2022] 🤖

* Delete .new-additions

* Auto Generated New Template Addition List [Wed Mar 23 10:22:29 UTC 2022] 🤖

* conflict update

* Auto Generated New Template Addition List [Wed Mar 23 10:23:39 UTC 2022] 🤖

* Auto Generated New Template Addition List [Wed Mar 23 10:26:51 UTC 2022] 🤖

* Add files via upload

* Auto Generated New Template Addition List [Thu Apr 28 11:25:25 UTC 2022] 🤖

* Auto Generated CVE annotations [Thu Apr 28 11:25:55 UTC 2022] 🤖

* Update and rename sucuri-webs-firewall-default-page-detect.yaml to sucuri-notconfigured-page-detect.yaml

* Auto Generated New Template Addition List [Thu Apr 28 20:25:56 UTC 2022] 🤖

* mise update

Co-authored-by: GitHub Action <action@github.com>
Co-authored-by: sandeep <sandeep@projectdiscovery.io>
Co-authored-by: Prince Chaddha <prince@projectdiscovery.io>
2022-04-29 12:14:52 +05:30
sandeep 03a8c16f71 tags update 2022-04-27 03:06:21 +05:30
MostInterestingBotInTheWorld aa888bca8d
Dashboard Content Enhancements (#4238)
Dashboard Content Enhancements
2022-04-25 10:35:07 -04:00
forgedhallpass 209538baa6 refactor: Description field uniformization
* info field reorder
* reference values refactored to list
* added new lines after the id and before the protocols
* removed extra new lines
* split really long descriptions to multiple lines (part 1)
* other minor fixes
2022-04-22 13:38:41 +03:00
MostInterestingBotInTheWorld 31312b1c19
Dashboard Content Enhancements (#4191)
Dashboard Content Enhancements
2022-04-21 17:16:41 -04:00
sandeep 338d4622bf parts update to use response instead of all 2022-04-20 20:08:07 +05:30
Prince Chaddha 58e78efb02
Update unauthenticated-popup-upload.yaml 2022-04-20 01:12:40 +04:00
MostInterestingBotInTheWorld 5730781afa
Dashboard Content Enhancements (#4157)
* Enhancement: exposures/files/joomla-file-listing.yaml by cs

* Enhancement: cves/2019/CVE-2019-5418.yaml by mp

* Enhancement: cves/2016/CVE-2016-10940.yaml by mp

* Enhancement: cves/2015/CVE-2015-4694.yaml by mp

* Enhancement: cves/2016/CVE-2016-10960.yaml by mp

* Enhancement: cves/2021/CVE-2021-20091.yaml by mp

* Enhancement: cves/2021/CVE-2021-20092.yaml by mp

* Enhancement: vulnerabilities/other/solar-log-authbypass.yaml by mp

* Enhancement: vulnerabilities/wordpress/churchope-lfi.yaml by mp

* Enhancement: vulnerabilities/other/solar-log-authbypass.yaml by mp

* Enhancement: cves/2017/CVE-2017-10075.yaml by mp

* Enhancement: cves/2021/CVE-2021-27358.yaml by mp

* Enhancement: cves/2017/CVE-2017-9833.yaml by mp

* Enhancement: vulnerabilities/wordpress/wordpress-accessible-wpconfig.yaml by mp

* Enhancement: vulnerabilities/wordpress/wp-spot-premium-lfi.yaml by mp

* Enhancement: misconfiguration/symfony-debugmode.yaml by mp

* Enhancement: cves/2016/CVE-2016-10940.yaml by mp

* Enhancement: cves/2015/CVE-2015-4694.yaml by mp

* Enhancement: cves/2016/CVE-2016-10960.yaml by mp

* Enhancement: cves/2015/CVE-2015-4694.yaml by mp

* Enhancement: vulnerabilities/wordpress/churchope-lfi.yaml by mp

* Enhancement: cves/2017/CVE-2017-10075.yaml by mp

* Enhancement: cves/2021/CVE-2021-27358.yaml by mp

* Enhancement: vulnerabilities/wordpress/wordpress-accessible-wpconfig.yaml by mp

* Enhancement: vulnerabilities/wordpress/wp-spot-premium-lfi.yaml by mp

* Enhancement: vulnerabilities/wordpress/newsletter-open-redirect.yaml by mp

* Enhancement: vulnerabilities/wordpress/newsletter-open-redirect.yaml by mp

* Enhancement: vulnerabilities/wordpress/pieregister-open-redirect.yaml by mp

* Enhancement: cves/2021/CVE-2021-25055.yaml by mp

* Enhancement: cves/2021/CVE-2021-25028.yaml by mp

* Enhancement: vulnerabilities/wordpress/noptin-open-redirect.yaml by mp

* Enhancement: vulnerabilities/wordpress/elex-woocommerce-xss.yaml by mp

* Enhancement: vulnerabilities/wordpress/my-chatbot-xss.yaml by mp

* Enhancement: vulnerabilities/wordpress/wp-adaptive-xss.yaml by mp

* Enhancement: cves/2021/CVE-2021-24947.yaml by mp

* Enhancement: cves/2021/CVE-2021-24406.yaml by mp

* Enhancement: vulnerabilities/wordpress/elementorpage-open-redirect.yaml by mp

* Enhancement: cves/2016/CVE-2016-10033.yaml by mp

* Enhancement: cves/2021/CVE-2021-31682.yaml by mp

* Enhancement: vulnerabilities/wordpress/wp-woocommerce-file-download.yaml by mp

* Enhancement: cves/2021/CVE-2021-22986.yaml by mp

* Enhancement: vulnerabilities/wordpress/newsletter-open-redirect.yaml by mp

* Enhancement: vulnerabilities/wordpress/pieregister-open-redirect.yaml by mp

* Enhancement: cves/2021/CVE-2021-25055.yaml by mp

* Enhancement: cves/2021/CVE-2021-25028.yaml by mp

* Enhancement: vulnerabilities/wordpress/noptin-open-redirect.yaml by mp

* Enhancement: vulnerabilities/wordpress/elex-woocommerce-xss.yaml by mp

* Enhancement: cves/2021/CVE-2021-24947.yaml by mp

* Enhancement: cves/2021/CVE-2021-24406.yaml by mp

* Enhancement: cves/2021/CVE-2021-22986.yaml by mp

* Enhancement: cves/2016/CVE-2016-10033.yaml by mp

* Enhancement: vulnerabilities/wordpress/elementorpage-open-redirect.yaml by mp

* Enhancement: cves/2021/CVE-2021-24406.yaml by mp

* Relocating to CVE folder

* Enhancement: cves/2017/CVE-2017-14651.yaml by mp

* Enhancement: cves/2020/CVE-2020-24589.yaml by mp

* Enhancement: vulnerabilities/confluence/confluence-ssrf-sharelinks.yaml by mp

* Enhancement: cves/2019/CVE-2019-2729.yaml by mp

* Enhancement: cves/2018/CVE-2018-2893.yaml by mp

* Enhancement: cves/2018/CVE-2018-2628.yaml by mp

* Enhancement: cves/2018/CVE-2018-3238.yaml by mp

* Enhancement: cves/2018/CVE-2018-3238.yaml by mp

* Enhancement: cves/2017/CVE-2017-3528.yaml by mp

* Enhancement: cves/2019/CVE-2019-2588.yaml by mp

* Enhancement: cves/2021/CVE-2021-31755.yaml by mp

* Enhancement: cves/2021/CVE-2021-42071.yaml by mp

* Enhancement: misconfiguration/zabbix-dashboards-access.yaml by mp

* Enhancement: cves/2017/CVE-2017-14651.yaml by mp

* Enhancement: cves/2020/CVE-2020-24589.yaml by mp

* Enhancement: vulnerabilities/confluence/confluence-ssrf-sharelinks.yaml by mp

* Enhancement: cves/2019/CVE-2019-2729.yaml by mp

* Enhancement: cves/2018/CVE-2018-2893.yaml by mp

* Enhancement: cves/2018/CVE-2018-3238.yaml by mp

* Enhancement: cves/2017/CVE-2017-3528.yaml by mp

* Enhancement: cves/2021/CVE-2021-42071.yaml by mp

* Syntax corrections
Added some cve-id fields
Removed duplicate dashboard comments

* Tag typo

Co-authored-by: sullo <sullo@cirt.net>
2022-04-15 12:39:44 -04:00
MostInterestingBotInTheWorld a24ef794b7
Dashboard Content Enhancements (#4031)
Dashboard Content Enhancements
2022-04-07 09:53:15 -04:00
Prince Chaddha cc8e2e1bc5
Delete mikrotik-graph.yaml 2022-04-04 23:35:52 +05:30
idealphase 7963a563af
Updated mikrotik-graph.yaml
Added how many interface graph exposure extractors
2022-04-03 13:57:40 +07:00
sandeep 7b83c9990a minor updates to template names 2022-03-27 22:13:08 +05:30
Prince Chaddha 76cf7b463a
Update elasticsearch.yaml 2022-03-24 17:56:22 +05:30
Prince Chaddha a16430b81f
Update elasticsearch.yaml 2022-03-24 17:55:39 +05:30
Prince Chaddha 2c6feda7f8
Update jolokia-info-disclosure.yaml 2022-03-24 16:52:03 +05:30
pussycat0x c6e264a04e
New Templates added (#3913)
* Add files via upload

* Auto Generated CVE annotations [Wed Mar 16 11:29:14 UTC 2022] 🤖

* Auto Generated New Template Addition List [Wed Mar 16 13:48:01 UTC 2022] 🤖

* moving templates into jolokia directory

* duplicate of jolokia-unauthenticated-lfi

* merged similar templates into one with updated matchers

* Auto Generated New Template Addition List [Wed Mar 23 10:21:57 UTC 2022] 🤖

* Delete .new-additions

* Auto Generated New Template Addition List [Wed Mar 23 10:22:29 UTC 2022] 🤖

* conflict update

* Auto Generated New Template Addition List [Wed Mar 23 10:23:39 UTC 2022] 🤖

Co-authored-by: GitHub Action <action@github.com>
Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2022-03-23 15:56:30 +05:30
sandeep ec99241f0e Updated "/etc/passwd" regex to avoid possible false positive results. 2022-03-22 13:31:31 +05:30
MostInterestingBotInTheWorld 9663595dd1
Dashboard Text Enhancements (#3948)
Dashboard content enhancements
2022-03-21 23:48:47 -04:00
Xeldax 10b23118aa
add airflow cve-2022-24288 (#3873)
* add airflow cve-2022-24288

* lint update

* template request + matcher + metadata update

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2022-03-19 15:59:17 +05:30
Dhiyaneshwaran f60ea48e4c
AEM XSS - Childlist (#3916)
* Create xss-childlist-selector.yaml

* Update xss-childlist-selector.yaml

* Rename xss-childlist-selector.yaml to aem-xss-childlist-selector.yaml

* adding metadata

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2022-03-17 14:23:26 +05:30
Sandeep Singh cca29dd553
Merge pull request #3866 from dolevf/master
GraphQL Nuclei Templates
2022-03-15 19:13:28 +05:30
sandeep 1df275d0ae update: more matchers + description + reference 2022-03-15 18:43:35 +05:30
Sandeep Singh 2877624443
Merge pull request #3888 from DhiyaneshGeek/master
Additional Paths Added
2022-03-14 20:56:22 +05:30
Dhiyaneshwaran 8301e80261
Update aem-login-status.yaml 2022-03-12 14:26:52 +05:30
Dhiyaneshwaran e910091f08
Update aem-login-status.yaml 2022-03-12 14:26:27 +05:30
Dhiyaneshwaran 32bcbecd43
Update aem-querybuilder-json-servlet.yaml 2022-03-12 14:23:17 +05:30
Dhiyaneshwaran f767a6d027
Update aem-default-get-servlet.yaml 2022-03-12 14:10:53 +05:30
sandeep a2fa2d60d4 added stop at first match support 2022-03-11 21:53:23 +05:30