Commit Graph

4813 Commits (baa1acee95204e6bfd5be9dd47933396b0daa0d2)

Author SHA1 Message Date
Ritik Chaddha 7246679d76
Update CVE-2024-21644.yaml 2024-01-30 22:43:40 +05:30
Ritik Chaddha 6efa2faa4c
Merge pull request #9043 from isacaya/CVE-2023-47115
Create CVE-2023-47115.yaml
2024-01-30 22:42:20 +05:30
Ritik Chaddha 9e7e8525c5
Update CVE-2023-47115.yaml 2024-01-30 22:36:51 +05:30
GitHub Action 7f6cfce042 Auto Template Signing [Tue Jan 30 17:04:38 UTC 2024] 🤖 2024-01-30 17:04:39 +00:00
Ritik Chaddha b57c4ceebc
Merge pull request #9044 from t3l3machus/main
Add detection for SAP public admin web interface
2024-01-30 22:32:26 +05:30
Ritik Chaddha 2880a9a9f0
and condition & additional matcher added 2024-01-30 22:30:01 +05:30
GitHub Action 7c5356a93a Auto Template Signing [Tue Jan 30 10:52:54 UTC 2024] 🤖 2024-01-30 10:52:54 +00:00
Dhiyaneshwaran 5ed6b938ba
Merge pull request #9010 from FLX-0x00/main
implement node-express-dev-environment detection template
2024-01-30 16:20:33 +05:30
GitHub Action cd91099e2c Auto Template Signing [Tue Jan 30 10:49:24 UTC 2024] 🤖 2024-01-30 10:49:25 +00:00
kazet bc89f2ee75
Improving descriptions (#9048) 2024-01-30 16:17:24 +05:30
Dhiyaneshwaran adde990d87
formatting fix 2024-01-30 15:24:28 +05:30
Dhiyaneshwaran 283ec0bc03
Update node-express-dev-env.yaml 2024-01-30 15:23:48 +05:30
GitHub Action 52ef767133 Auto Template Signing [Tue Jan 30 09:51:48 UTC 2024] 🤖 2024-01-30 09:51:48 +00:00
Ritik Chaddha 774af06560
Merge pull request #9035 from righettod/friendica_tpl
Add detection of Friendica instances
2024-01-30 15:19:41 +05:30
Ritik Chaddha 863fc27569
updated matcher format & req 2024-01-30 14:14:14 +05:30
Ritik Chaddha 9c34fd86d1
FN result - fix matcher 2024-01-30 13:48:33 +05:30
Dhiyaneshwaran 1bb5100edc
minor update 2024-01-30 13:40:16 +05:30
GitHub Action 06e5e6f555 Auto Template Signing [Tue Jan 30 08:04:54 UTC 2024] 🤖 2024-01-30 08:04:55 +00:00
Dhiyaneshwaran 8e2cd75674
fix-formatting 2024-01-30 13:25:56 +05:30
kiokuless 7eade25b71 Add a `CWE-` prefix for cwe-id 2024-01-30 16:52:58 +09:00
Dhiyaneshwaran 42a422d896
added status code and tags 2024-01-30 13:10:14 +05:30
Dhiyaneshwaran 5282cf09a7
Update CVE-2024-21644.yaml 2024-01-30 12:40:43 +05:30
Dhiyaneshwaran 840674bcd3
added metadata & additional matcher 2024-01-30 12:35:15 +05:30
GitHub Action 9b36adffc3 Auto Template Signing [Tue Jan 30 06:46:18 UTC 2024] 🤖 2024-01-30 06:46:19 +00:00
Prince Chaddha 8ac584ed86
Merge pull request #8933 from pwnwithlove/new_cf_template
Added CVE-2023-44352 template
2024-01-30 12:14:01 +05:30
Ritik Chaddha 7315f11c7a
matcher update 2024-01-30 12:07:26 +05:30
Panagiotis Chartas 8bb6fcad4a
Create sap-public-admin.yaml 2024-01-29 19:39:50 +01:00
isacaya fa5123e17d Create CVE-2023-47115.yaml 2024-01-30 02:18:17 +09:00
GitHub Action 5d263425e6 TemplateMan Update [Mon Jan 29 17:11:13 UTC 2024] 🤖 2024-01-29 17:11:14 +00:00
PhoB 76f5d50039
rename author 2024-01-30 01:39:03 +09:00
PhoB d6fdce8c6c
Rename CVE-2024-21644 to CVE-2024-21644.yaml 2024-01-30 01:33:46 +09:00
PhoB bb03dfd3c7
Create CVE-2024-21644
add CVE_2024_21644
2024-01-30 01:33:24 +09:00
GitHub Action 4e44484ad2 Auto Template Signing [Mon Jan 29 13:29:55 UTC 2024] 🤖 2024-01-29 13:29:55 +00:00
Dhiyaneshwaran ec8b8f6a0c
Merge pull request #9041 from geeknik/patch-5
Update old-copyright.yaml
2024-01-29 18:57:50 +05:30
Dhiyaneshwaran a8831741f0
fix FP 2024-01-29 18:53:42 +05:30
GitHub Action 12465a6ff4 Auto Template Signing [Mon Jan 29 12:49:35 UTC 2024] 🤖 2024-01-29 12:49:36 +00:00
Dhiyaneshwaran 980f320bd0
Merge pull request #9033 from isacaya/CVE-2023-47643
Create CVE-2023-47643.yaml
2024-01-29 18:17:29 +05:30
Dhiyaneshwaran 2e23fc32da
Update CVE-2023-47643.yaml 2024-01-29 18:14:06 +05:30
GitHub Action d1ce7c6527 Auto Template Signing [Mon Jan 29 12:41:50 UTC 2024] 🤖 2024-01-29 12:41:51 +00:00
Dhiyaneshwaran 42195d8bf9
Merge pull request #9026 from gy741/rule-add-v154
Create CVE-2023-6977.yaml
2024-01-29 18:11:31 +05:30
Dhiyaneshwaran 156c7080c6
Merge pull request #9032 from DomenicoVeneziano/main
Added CVE-2019-16469 template
2024-01-29 18:09:38 +05:30
geeknik 0a95dbada4
Update old-copyright.yaml
It's 2024! 🎉
2024-01-29 12:26:02 +00:00
GitHub Action 5c4a72935f TemplateMan Update [Mon Jan 29 11:58:34 UTC 2024] 🤖 2024-01-29 11:58:34 +00:00
GitHub Action 5a763c043e Auto Template Signing [Mon Jan 29 08:46:40 UTC 2024] 🤖 2024-01-29 08:46:40 +00:00
Ritik Chaddha d18f5120b7
Merge pull request #9031 from monitor403/ref/for/fix-solr-poc
Fix: fix apache solr log4j2 poc
2024-01-29 14:14:26 +05:30
Ritik Chaddha 6644702636
updated matcher & payload 2024-01-29 14:04:46 +05:30
Ritik Chaddha 216cfc2ea0
additional matchers 2024-01-29 11:52:30 +05:30
Ritik Chaddha c7f283846b
template format fix 2024-01-29 11:45:08 +05:30
Muhammad Daffa ac7d83e037
Rename CVE-2019-6799 2.yaml to CVE-2019-6799.yaml 2024-01-29 06:02:22 +07:00
Dominique RIGHETTO bdfa2d2929
Add files via upload 2024-01-28 19:32:03 +01:00
sandeep d76bec3254 misc update 2024-01-28 17:42:40 +05:30
sandeep 9a87ce55cc lint fixes 2024-01-28 16:20:55 +05:30
isacaya 3051711de1 Create CVE-2023-47643.yaml 2024-01-28 18:02:49 +09:00
Domenico Veneziano c1a0763529
Added CVE-2019-16469 template 2024-01-27 15:32:56 +01:00
daiwei 18a55f1036 Fix: fix apache solr log4j2 poc 2024-01-27 22:15:15 +08:00
GitHub Action e74af38f8d Auto Template Signing [Fri Jan 26 15:51:53 UTC 2024] 🤖 2024-01-26 15:51:54 +00:00
Dhiyaneshwaran bad767850f
Merge pull request #8992 from NxtTAB/main
Update IBM Websphere Friendly Path Exposure Template to Reduce False Positives
2024-01-26 21:19:35 +05:30
Dhiyaneshwaran da43f86301
fix trail space 2024-01-26 21:15:40 +05:30
GitHub Action e63a56d2d9 Auto Template Signing [Fri Jan 26 14:12:01 UTC 2024] 🤖 2024-01-26 14:12:02 +00:00
Tarun Koyalwar 337d6d293d flow: remove temporary workaround 2024-01-26 18:09:32 +05:30
GitHub Action a841877cc1 Auto Template Signing [Fri Jan 26 11:27:47 UTC 2024] 🤖 2024-01-26 11:27:48 +00:00
J4vaovo 50fe59159b
Update druid-default-login.yaml (#9023) 2024-01-26 16:55:47 +05:30
GitHub Action d8cd931214 Auto Template Signing [Fri Jan 26 09:01:29 UTC 2024] 🤖 2024-01-26 09:01:30 +00:00
Ritik Chaddha 19dd5e8571
Merge pull request #9017 from righettod/lomnido_tpl
Add detection of Lomnido instances
2024-01-26 14:30:09 +05:30
Ritik Chaddha ec5bf9bf63
Merge pull request #9018 from righettod/tibco-businessconnect_tpl
Add detection of  TIBCO BusinessConnect instances
2024-01-26 14:29:19 +05:30
Ritik Chaddha 0372cd68ec
Update lomnido-panel.yaml 2024-01-26 14:27:24 +05:30
Ritik Chaddha 87ab14a1c8
updated matcher 2024-01-26 14:24:37 +05:30
Ritik Chaddha 8ae1072328 Revert "updated matcher(body to header matcher)"
This reverts commit 648ec1fb6c.
2024-01-26 14:23:59 +05:30
Ritik Chaddha 648ec1fb6c
updated matcher(body to header matcher) 2024-01-26 14:21:07 +05:30
GitHub Action 2f917f065c Auto Template Signing [Fri Jan 26 08:31:11 UTC 2024] 🤖 2024-01-26 08:31:12 +00:00
Ritik Chaddha 12d566e783
Merge pull request #8938 from projectdiscovery/updated-tags
Auto Tagged Templates
2024-01-26 13:58:45 +05:30
Ritik Chaddha f9322db69d Merge branch 'main' into updated-tags 2024-01-26 13:48:21 +05:30
GwanYeong Kim 004a0c16ff Create CVE-2023-6977.yaml
Mlflow before 2.8.0 is susceptible to local file inclusion due to path traversal in GitHub repository mlflow/mlflow. An attacker can potentially obtain sensitive information, modify data, and/or execute unauthorized administrative operations in the context of the affected site.

Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2024-01-26 16:20:29 +09:00
Paul Werther 0c0265db7a
add flow in order to detect node.js on express first before sending malicious request 2024-01-25 20:20:00 +01:00
GitHub Action aa18564f6b Auto Template Signing [Thu Jan 25 16:32:00 UTC 2024] 🤖 2024-01-25 16:32:01 +00:00
pussycat0x fa30f631ee
Merge pull request #9002 from Rinolock72/reactapp-env
React app runtime-env files
2024-01-25 22:00:01 +05:30
GitHub Action 7fec464f96 Auto Template Signing [Thu Jan 25 16:21:22 UTC 2024] 🤖 2024-01-25 16:21:24 +00:00
pussycat0x 6e707b4653
Merge pull request #9012 from projectdiscovery/springboot-startup
Create springboot-startup.yaml
2024-01-25 21:49:17 +05:30
Dominique RIGHETTO 426c4283e3
Fix linter error 2024-01-25 15:18:39 +01:00
Dominique RIGHETTO 7bd287f0fd
Add files via upload 2024-01-25 15:11:22 +01:00
Dominique RIGHETTO 15d7ddeefd
Add files via upload 2024-01-25 14:50:00 +01:00
GitHub Action c9a9070881 Auto Template Signing [Thu Jan 25 13:19:33 UTC 2024] 🤖 2024-01-25 13:19:34 +00:00
Dhiyaneshwaran f2f499ff99
Merge pull request #9009 from projectdiscovery/princechaddha-patch-1
Create springboot-integrationgraph.yaml
2024-01-25 18:48:15 +05:30
Dhiyaneshwaran 1888dd7549
Merge pull request #8997 from projectdiscovery/update-vbulletin-backdoor
Update vbulletin-backdoor.yaml
2024-01-25 18:47:17 +05:30
Rinolock72 19144bada5
Merge branch 'main' into reactapp-env 2024-01-25 15:55:18 +03:00
Ritik Chaddha 2af06840d8
Delete http/takeovers/webflow-takeover.yaml 2024-01-25 17:36:16 +05:30
Ritik Chaddha 129fae0047 Revert "Merge branch 'main' into updated-tags"
This reverts commit d3c7d73554.
2024-01-25 16:52:45 +05:30
Ritik Chaddha d3c7d73554 Merge branch 'main' into updated-tags 2024-01-25 16:49:26 +05:30
Dhiyaneshwaran 5916745f82
Delete http/takeovers/flywheel-takeover.yaml 2024-01-25 16:10:18 +05:30
Dhiyaneshwaran 51010f90ec
added additional matcher 2024-01-25 16:04:12 +05:30
Dhiyaneshwaran 448e0eb44e
Create springboot-startup.yaml 2024-01-25 15:58:17 +05:30
Dhiyaneshwaran cc881f4c85 add paths in old template & update author name 2024-01-25 15:24:22 +05:30
Paul Werther 1a8f497330
linting 2024-01-25 10:42:53 +01:00
Paul Werther b9fc0ddf5e
implement node-express-dev-environment detection template 2024-01-25 10:32:41 +01:00
GitHub Action 5c4205db17 Auto Template Signing [Thu Jan 25 08:22:23 UTC 2024] 🤖 2024-01-25 08:22:24 +00:00
Dhiyaneshwaran 6ddc27bb2d
Merge pull request #9000 from ryanborum/patch-1
Update Shodan facets in CVE-2024-0204.yaml
2024-01-25 13:50:16 +05:30
Dhiyaneshwaran 72ca7c085e
Merge pull request #8935 from gy741/rule-add-v153
Create CVE-2023-47211
2024-01-25 13:50:04 +05:30
Prince Chaddha e1e802d2d9
Create springboot-integrationgraph.yaml 2024-01-25 13:43:41 +05:30
Ritik Chaddha 51736de814
Update CVE-2023-47211.yaml 2024-01-25 13:41:38 +05:30
Dhiyaneshwaran c7fa263e0a
minor update 2024-01-25 13:27:32 +05:30
Dhiyaneshwaran dc08cc8fd3
fix format 2024-01-25 13:16:58 +05:30
GitHub Action 7c45154974 Auto Template Signing [Wed Jan 24 17:23:25 UTC 2024] 🤖 2024-01-24 17:23:26 +00:00
Ritik Chaddha e8176b67d4
Merge pull request #8991 from j4vaovo/patch-8
fixed fp CVE-2021-39327.yaml
2024-01-24 22:51:18 +05:30
Unnamed 660d1cf885 Added template to detect reactapp runtime env files 2024-01-24 17:06:19 +03:00
Ryan Borum 327cf651c5
Update CVE-2024-0204.yaml
Updated and added Shodan facets
2024-01-24 07:36:09 -05:00
Ritik Chaddha 6a53c0e3ec
req type update /CVE-2023-27639.yaml 2024-01-24 14:23:02 +05:30
Ritik Chaddha 5888552648
name typo fix openbullet2-panel.yaml 2024-01-24 13:47:48 +05:30
Ritik Chaddha 46feba68b0
name and severity update 2024-01-24 13:40:10 +05:30
Ritik Chaddha 25bebf4e27
Update vbulletin-backdoor.yaml 2024-01-24 13:36:38 +05:30
GitHub Action 5ced0a8e54 Auto Template Signing [Wed Jan 24 07:16:05 UTC 2024] 🤖 2024-01-24 07:16:06 +00:00
Dhiyaneshwaran b5b0abcb92
Merge pull request #8971 from kazet/fewer-fps-nuclei-template
Fewer FPs in mixed content Nuclei template
2024-01-24 12:44:01 +05:30
Ritik Chaddha b5fdb2f9d6
Update mixed-active-content.yaml 2024-01-24 11:59:58 +05:30
GitHub Action 075fa7d240 Auto Template Signing [Wed Jan 24 06:25:31 UTC 2024] 🤖 2024-01-24 06:25:31 +00:00
Dhiyaneshwaran e275e2d501
Merge pull request #8906 from boy-hack/main
Add go pprof debug and Java web config detection and optimize payload.
2024-01-24 11:53:17 +05:30
Ritik Chaddha b4cabf1590
Delete http/exposures/configs/java-web-config-files.yaml 2024-01-24 11:37:36 +05:30
GitHub Action a49b242402 Auto Template Signing [Wed Jan 24 04:24:37 UTC 2024] 🤖 2024-01-24 04:24:38 +00:00
Dhiyaneshwaran b0d53bfc2a
Merge pull request #8975 from ricardomaia/defacement-detector
Add Defacement Detection Template
2024-01-24 09:53:16 +05:30
GitHub Action 3f31a17b7e Auto Template Signing [Wed Jan 24 04:21:28 UTC 2024] 🤖 2024-01-24 04:21:29 +00:00
pussycat0x ec480435a9
Merge pull request #8994 from projectdiscovery/CVE-2024-0204
Create CVE-2024-0204.yaml (Fortra GoAnywhere MFT - Authentication Bypass 🔥 )
2024-01-24 09:50:15 +05:30
pussycat0x 2630a05608
Merge pull request #8990 from hieuha/main
Added CVE-2023-6023 template
2024-01-24 09:49:18 +05:30
GitHub Action df06b88152 Auto Template Signing [Wed Jan 24 04:01:02 UTC 2024] 🤖 2024-01-24 04:01:02 +00:00
Dhiyaneshwaran 69abc09772
Merge pull request #8982 from projectdiscovery/CVE-2023-22527
Added Template for CVE-2023-22527 (atlassian-confluence-ssti-remote-code-execution)
2024-01-24 09:28:58 +05:30
GitHub Action 6b6d70e2c2 Auto Template Signing [Wed Jan 24 03:55:35 UTC 2024] 🤖 2024-01-24 03:55:35 +00:00
Muhammad Daffa 23f7413ea3
fix: wrong condition editor-exposure template 2024-01-24 10:47:16 +07:00
Dhiyaneshwaran 766cf0c7bb
Create CVE-2024-0204.yaml 2024-01-24 02:35:52 +05:30
sandeep 91df84650d Updated payload to execute whoami and print the output 2024-01-24 01:58:11 +05:30
GitHub Action 23489cc05e Auto Template Signing [Tue Jan 23 15:48:11 UTC 2024] 🤖 2024-01-23 15:48:12 +00:00
Dhiyaneshwaran b7d1c0ccab
Merge pull request #8974 from dkasak/main
Add version detection to vault-panel template
2024-01-23 21:15:46 +05:30
Thomas Baisley c8f8ed73f2
Add Regex Matcher to ibm-websphere-panel 2024-01-23 16:03:11 +01:00
kazet c1f23c2dcd
Update http/miscellaneous/balada-injector-malware.yaml
Co-authored-by: msm-cert <156842376+msm-cert@users.noreply.github.com>
2024-01-23 15:51:02 +01:00
Krzysztof Zając c5fc786539 Detecting Balada Injector malware 2024-01-23 15:27:58 +01:00
Thomas Baisley 6f16c9a416
Fix false positive: bei redirect to main page using Content-Location 2024-01-23 14:49:12 +01:00
Dhiyaneshwaran 0bf39f4511
minor update 2024-01-23 09:47:33 +05:30
J4vaovo f625a60648
Update CVE-2021-39327.yaml 2024-01-23 06:55:33 +08:00
J4vaovo dcf1c60bac
Update CVE-2021-39327.yaml 2024-01-23 06:47:56 +08:00
Hieu Ha Trung a268f580f6 Added CVE-2023-6023 template 2024-01-23 02:53:32 +07:00
Ricardo Maia 8d0b4c5e99 Reintroducing context feature. 2024-01-22 14:02:29 -03:00
Muhammad Daffa ed49c09da7
fix: wrong path apache-nifi-rce template 2024-01-22 23:44:19 +07:00
Dhiyaneshwaran 575ea833b6
Update and rename defacement-detector.yaml to defacement-detect.yaml 2024-01-22 15:15:56 +05:30
sandeep aba6b4ed2d Added template for CVE-2023-22527
Co-Authored-By: Harsh Jaiswal <21000421+rootxharsh@users.noreply.github.com>
Co-Authored-By: Rahul Maini <31939327+iamnoooob@users.noreply.github.com>
2024-01-22 14:13:25 +05:30
GitHub Action 993e05ad24 Auto Template Signing [Mon Jan 22 07:07:04 UTC 2024] 🤖 2024-01-22 07:07:05 +00:00
Dhiyaneshwaran 69ee250428
Merge pull request #8980 from projectdiscovery/doris-panel
Create doris-panel.yaml
2024-01-22 12:35:05 +05:30
GitHub Action 450270035b Auto Template Signing [Mon Jan 22 07:03:00 UTC 2024] 🤖 2024-01-22 07:03:00 +00:00
Dhiyaneshwaran 934bd6da08
Update doris-panel.yaml 2024-01-22 12:31:32 +05:30
Ritik Chaddha ecd724733b
template fix 2024-01-22 12:28:00 +05:30
Ritik Chaddha 643a0ee1bb
Create doris-panel.yaml 2024-01-22 12:21:48 +05:30
Ritik Chaddha 8d02bbca75
Create doris-dashboard.yaml 2024-01-22 12:16:26 +05:30
Ritik Chaddha 9855277eab
Merge branch 'main' into main 2024-01-22 12:02:39 +05:30
Ritik Chaddha 31e8fdf87a
additional matcher 2024-01-22 11:57:57 +05:30
GitHub Action b09f4db5a6 Auto Template Signing [Mon Jan 22 06:17:46 UTC 2024] 🤖 2024-01-22 06:17:46 +00:00