daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
11,900 Commits
17 Branches
0 Tags
160 MiB
Commit Graph

11900 Commits (c99e6415fdc1f1348bc268a7aa3475db7be84862)

Author SHA1 Message Date
Prince Chaddha 1c4372d846
Create concrete5-install.yaml 2022-01-19 13:38:59 +05:30
pussycat0x 650a38ffde
Qualcomm 4G LTE WiFi VoIP-Router (#3555) 
* Add files via upload

* Auto Generated CVE annotations [Mon Jan 17 16:05:35 UTC 2022] 🤖

* Update CVE-2021-44528.yaml

* Update CVE-2021-45232.yaml

* Add files via upload

* removing duplicate template

* moving template around

* template fix

Co-authored-by: GitHub Action <action@github.com>
Co-authored-by: Prince Chaddha <prince@projectdiscovery.io>
Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2022-01-19 13:33:34 +05:30
Dhiyaneshwaran 0e8b34f776
New Templates & Workflow (#3556) 
* Create secure-login-panel.yaml

* Create geo-webserver.yaml

* Create hp-virtual-connect-manager.yaml

* Create microsoft-azure-error.yaml

* Create microsoft-iis-8.yaml

* Create veeam-backup-azure-panel.yaml

* Create user-control-panel.yaml

* Create kafka-consumer-monitor.yaml

* Update kafka-consumer-monitor.yaml

* Create kafka-connect-ui-exposure.yaml

* misc updates

* duplicate template

existing one - `exposed-panels/kafka-connect-ui.yaml`

* Create kafka-cruise-control.yaml

* Create kafka-center-default-login.yaml

* Create kafka-center-login.yaml

* minor update

* Create azure-kubernetes-service.yaml

* Update azure-kubernetes-service.yaml

* Update azure-kubernetes-service.yaml

* Create barracuda-panel.yaml

* Update barracuda-panel.yaml

* Update barracuda-panel.yaml

* Create CVE-2021-24891.yaml

* template meta info update

* Delete CVE-2021-24891.yaml

* Create caddy-open-redirect.yaml

* Create concrete5-panel.yaml

* Create concrete-workflow.yaml

* updated matcher to avoid false negative results

* misc updates

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2022-01-19 13:21:15 +05:30
Adam Crosser 4000a96d3b
Updated Axis Camera Template (#3557) 
* Updated Axis Camera Template

* Added missing AND condition

* syntax fix

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2022-01-19 12:49:00 +05:30
Adam Crosser dbdc25b148
Terraform Enterprise (#3559) 
* Added Terraform Enterprise Detection Template

* Updated Author

* Added title extractor

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2022-01-19 12:46:43 +05:30
Adam Crosser 053d02b80b
Code42 Panel Detection (#3560) 
* Added Terraform Enterprise Detection Template

* Updated Author

* Added Code42 Panel Detection

* Removed Terraform Enterprise Template

* Update code42-panel.yaml

Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
 2022-01-19 12:29:11 +05:30
GitHub Action 3cd869ca44 Auto README Update [Tue Jan 18 11:10:29 UTC 2022] 🤖 2022-01-18 11:10:29 +00:00
GitHub Action bb6791b7ab Auto Generated Templates Stats [Tue Jan 18 11:10:04 UTC 2022] 🤖 2022-01-18 11:10:04 +00:00
forgedhallpass da68c83220
Credentials disclosure refactor (#3552) 
* misc updates
* fixed linter error: unnecessary escape of single quotes
* minor simplification of the last capture group
* replaced (=| =|:| :)(( \"|\")|( '|')) with \\s*[=:]\\s*[\"'] because it's more readable and also more permissive with white space characters
* changed the [a-z0-9-_] with [\w-] for readability
* removed the unnecessary capture group

Co-authored-by: Emad Youssef <48482029+Sy3Omda@users.noreply.github.com>
Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2022-01-18 16:25:55 +05:30
Daniel aa451b254b
Update pulse-secure-panel (#3536) 
* Update pulse-secure-panel

Add version info retrieval.

* separated version detection

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2022-01-18 13:44:57 +05:30
Roberto Nunes f8013457b6
Create CVE-2020-23575.yaml (#3547) 
* Create CVE-2020-23575.yaml

* Update and rename CVE-2020-23575.yaml to cves/2020/CVE-2020-23575.yaml

* minor update

Co-authored-by: Prince Chaddha <prince@projectdiscovery.io>
Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2022-01-18 13:12:16 +05:30
Roberto Nunes 2cadf76241
Create CVE-2021-32618.yaml (#3546) 
* Create CVE-2021-32618.yaml

* Update and rename CVE-2021-32618.yaml to cves/2021/CVE-2021-32618.yaml

* matcher update

Co-authored-by: Prince Chaddha <prince@projectdiscovery.io>
Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2022-01-18 12:51:00 +05:30
Pathtaga a39245bf40
Added drupal login template (#3471) 
* Added drupal login template

* moved drupal detection to separate template

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2022-01-18 12:35:19 +05:30
johnk3r 362c381732
Create fortimail-panel.yaml (#3549) 
* Create fortimail-panel.yaml

* misc updates

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2022-01-18 11:01:45 +05:30
GitHub Action 2c250d66c7 Auto Generated CVE annotations [Tue Jan 18 05:22:01 UTC 2022] 🤖 2022-01-18 05:22:01 +00:00
Dwi Siswanto b8dabfbcbb
Add CVE-2021-20038 (#3542) 
* Add CVE-2021-20038

* misc: Update author
 2022-01-18 10:50:14 +05:30
sandeep 7c30910d69 Added missing request 2022-01-18 10:46:50 +05:30
sandeep 2b7304c427 Added version extractor 2022-01-18 09:50:34 +05:30
Antoine Neuenschwander 6479afc4f1
Enable redirects (#3545) 2022-01-17 11:38:12 +05:30
Mzack9999 f6ef818e44
Adding contributors.json from gh commit logs (#3540) 2022-01-16 22:21:22 +05:30
GitHub Action 8244d08f57 Auto Generated CVE annotations [Sun Jan 16 16:40:51 UTC 2022] 🤖 2022-01-16 16:40:51 +00:00
Sandeep Singh f6377b09ec
Added Apache APISIX's Admin API Default Access Token (RCE) (#3544) 2022-01-16 22:08:55 +05:30
Patrick 1086ca1a30
added template for CVE-2021-42551 (#3541) 
* added template for CVE-2021-42551

* Update CVE-2021-42551.yaml

* Update CVE-2021-42551.yaml

* unbricked CVE-2021-42551

* additional page specific matcher

Co-authored-by: Patrick <patrick.schmid@redguard.ch>
Co-authored-by: Prince Chaddha <prince@projectdiscovery.io>
Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2022-01-16 19:01:29 +05:30
GitHub Action a3c13932b8 Auto README Update [Sun Jan 16 12:26:57 UTC 2022] 🤖 2022-01-16 12:26:57 +00:00
GitHub Action 1722e435f4 Auto Generated Templates Stats [Sun Jan 16 12:26:36 UTC 2022] 🤖 2022-01-16 12:26:36 +00:00
Sandeep Singh 6f84c96e5b
Add cloud metadata checks for reverse proxies (#3528) 
* Add cloud metadata checks (proxied) for:
- Amazon AWS
- Alibaba Cloud
- Microsoft Azure
- DigitalOcean
- Hetzner Cloud
- OpenStack
- Oracle Cloud

* fixup! Add cloud metadata checks (proxied) for: - Amazon AWS - Alibaba Cloud - Microsoft Azure - DigitalOcean - Hetzner Cloud - OpenStack - Oracle Cloud

* Fix URL

* Remove unnecessary Flavor header

* Add cgi as a file type

* syntax fix

* syntax update

* moving files around

* tags update

* matchers update

* * Added CVSS scores
* Updated metadata tests to latest versions
* Added generic proxy tests

* * Update to latest versions
* Remove empty lines to pass lint

* removing sniper to use default attacktype

* minor syntax fix

* minor updates

Co-authored-by: sullo <sullo@ziggy.local>
Co-authored-by: sullo <sullo@cirt.net>
 2022-01-16 17:55:28 +05:30
Sandeep Singh 02c01d30da
Added MeterSphere Plugin Pre-auth RCE (#3543) 2022-01-16 03:06:09 +05:30
gy741 e5958c1364
Update tags (#3538) 2022-01-16 02:08:21 +05:30
GitHub Action 93337032a0 Auto Generated CVE annotations [Sat Jan 15 20:36:52 UTC 2022] 🤖 2022-01-15 20:36:52 +00:00
PikPikcU 7e0a3acf44
Create dreambox-xss (#3535) 
* Create dreambox-xss.yaml

* Create dreambox-detect.yaml

* misc updates

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2022-01-16 02:05:33 +05:30
GitHub Action ca79e7a81f Auto Generated CVE annotations [Sat Jan 15 20:28:18 UTC 2022] 🤖 2022-01-15 20:28:18 +00:00
alph4byt3 2d28cebfee
Create CVE-2017-14135 (#3534) 
* Create opendreambox-plugin-webadmin-rce.yaml

* Update opendreambox-plugin-webadmin-rce.yaml

* Update opendreambox-plugin-webadmin-rce.yaml

* Update opendreambox-plugin-webadmin-rce.yaml

* misc updates

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2022-01-16 01:56:51 +05:30
Muhammad Daffa c9fdcf9aea
Add workflow template (#3533) 
* Add 27 workflow templates

* fixed Artifactory workflow

* Fixed Jetty workflow

* Fixed Moodle workflow

* Fixed Zabbix workflow

* Fixed DedeCMS workflow

* Fixed OFBiz workflow

* Fixed rConfig workflow

* Tag update for R-SeeNet workflow

* Add 3 token-spray templates

* format fixes

* Add workflow templates

* More workflows templates

* multiple workflow fixes

* add workflows template

* workflows fixes

* this will be covered under wordpress workflow

* Revert "this will be covered under wordpress workflow"

This reverts commit 3b8cf662023ffecff6f2bace08f533bb01be464d.

* this will be covered under wordpress workflow

Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
 2022-01-16 01:01:19 +05:30
GitHub Action d5e2eb7d41 Auto Generated CVE annotations [Sat Jan 15 19:05:39 UTC 2022] 🤖 2022-01-15 19:05:39 +00:00
S Bani 7fd96b2c17
Add Template for Netbeans Configurations (#3527) 
* Add Template for Netbeans Configurations

Netbeans configs might be exposed via the path `nbproject/project.properties`.
That file can leak secrets.

* severity update

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2022-01-16 00:34:00 +05:30
Guillaume Granjus 2070860a50
Add Browserless Debugger Template (#3537) 
* "Add Browserless Debugger Template"

* minor update

* lint fixes

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2022-01-14 11:55:08 +05:30
sandeep 20dca0d7c7 Added Accept-Language header 2022-01-13 12:12:35 +05:30
GitHub Action bc3fa19859 Auto Generated CVE annotations [Thu Jan 13 05:21:21 UTC 2022] 🤖 2022-01-13 05:21:21 +00:00
Muhammad Daffa 0a651c182f
Update tags (#3530) 2022-01-13 10:49:53 +05:30
Muhammad Daffa 5ea92bcb0f
Update tags woocommerce (#3531) 2022-01-13 10:49:26 +05:30
Muhammad Daffa 64cf0fa4ba
Rename maian cart rce (#3532) 
* Update and rename vulnerabilities/other/maian-cart-preauth-rce.yaml to cves/2021/CVE-2021-32172.yaml

* Update CVE-2021-32172.yaml

Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
 2022-01-13 10:48:51 +05:30
Muhammad Daffa 0e39fd0103
Add some workflow templates (#3521) 
* Add 27 workflow templates

* fixed Artifactory workflow

* Fixed Jetty workflow

* Fixed Moodle workflow

* Fixed Zabbix workflow

* Fixed DedeCMS workflow

* Fixed OFBiz workflow

* Fixed rConfig workflow

* Tag update for R-SeeNet workflow

* Add 3 token-spray templates

* format fixes

* Add workflow templates

* More workflows templates

* multiple workflow fixes

Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
 2022-01-12 18:19:54 +05:30
sandeep 5c471a6168 removing duplicate template 2022-01-12 17:28:47 +05:30
Prince Chaddha 369cdfdf81
Merge pull request #3523 from daffainfo/patch-3 
Update tags circontrol
 2022-01-12 14:45:36 +05:30
Muhammad Daffa 6b70a53ba6
Update tags circontrol 2022-01-12 14:53:00 +07:00
Prince Chaddha 4af56f0b06
Merge pull request #3512 from gy741/rule-add-v84 
Create CVE-2014-3206.yaml
 2022-01-11 14:59:23 +05:30
Prince Chaddha e089bd841a
Update CVE-2014-3206.yaml 2022-01-11 14:57:24 +05:30
Prince Chaddha a53ae7b694
Merge pull request #3518 from gy741/rule-add-v85 
Create CVE-2021-20167.yaml
 2022-01-11 14:54:05 +05:30
Prince Chaddha aa8fd16018
Merge pull request #3515 from Akokonunes/patch-104 
Create CVE-2020-11529.yaml
 2022-01-11 14:37:32 +05:30
Prince Chaddha 7f26b9e895
Update and rename CVE-2020-11529.yaml to cves/2020/CVE-2020-11529.yaml 2022-01-11 14:35:53 +05:30