daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
44,729 Commits
17 Branches
0 Tags
165 MiB
Commit Graph

2745 Commits (d7534c8e71c62cfa4ee93d12608fc948c3219b83)

Author SHA1 Message Date
EvergreenCartoons ee562e420d
Create zyxel-exportlog-lfd.yaml 2022-12-15 13:32:26 +00:00
MostInterestingBotInTheWorld 03c2ef2391
Dashboard Content Enhancements (#6358) 
Dashboard Content Enhancements
 2022-12-13 15:36:48 -05:00
Dhiyaneshwaran 4cfacf2028
Merge pull request #6337 from pect0ral/master 
Added Profile header for additional WAP coverage on CJServer hosts
 2022-12-12 23:16:01 +05:30
Dhiyaneshwaran 74eba669f3
Update qibocms-file-download.yaml 2022-12-12 22:48:05 +05:30
Ritik Chaddha 27a5c1b9c1
Update qibocms-file-download.yaml 2022-12-12 22:42:18 +05:30
Ritik Chaddha e5398d06d1
Update qibocms-file-download.yaml 2022-12-12 22:40:15 +05:30
Abhinav Gaur 221b253406
Create qibocms-file-download.yaml 2022-12-12 21:06:09 +05:30
M4rtin Hsu 1574d7d589
VMware NSX Manager XStream Pre-authenticated RCE (#6295) 
* Added CVE-2022-37042 Template

* misc updates

* Added vmware-nsx-stream-rce Template

* Update vmware-nsx-stream-rce.yaml

* misc update

* added fofa query

* Update and rename vulnerabilities/vmware/vmware-nsx-stream-rce.yaml to cves/2021/CVE-2021-39144.yaml

* Update CVE-2021-39144.yaml

* Update CVE-2021-39144.yaml

* Update and rename cves/2021/CVE-2021-39144.yaml to vulnerabilities/vmware/vmware-nsx-stream-rce.yaml

* Update vmware-nsx-stream-rce.yaml

* Update vmware-nsx-stream-rce.yaml

* format update

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
Co-authored-by: Dhiyaneshwaran <leedhiyanesh@gmail.com>
Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>
 2022-12-11 15:49:35 +05:30
Mike Piekarski 2e9ba680a7 Added Profile header for additional WAP coverage on CJServer hosts 2022-12-10 17:42:58 -05:00
Sandeep Singh ec5168def8
fix: redirect template update (#6329) 2022-12-10 20:12:59 +05:30
Ritik Chaddha e1965b05b2
Merge pull request #6258 from SleepingBag945/new-template-nps-auth-bypass 
Added nps-auth-bypass
 2022-12-09 14:35:35 +05:30
Ritik Chaddha 4de98de0c2
Update nps-auth-bypass.yaml 2022-12-09 14:33:49 +05:30
Joshua Rogers 5b7b5aa86c
Update grafana-file-read.yaml 
Add CVE to metadata.
 2022-12-08 22:38:53 +01:00
Ritik Chaddha f29e0c8c4b
Merge pull request #6201 from pdelteil/patch-117 
Update apache-solr-file-read.yaml
 2022-12-08 14:53:37 +05:30
Ritik Chaddha c5d280b359
Update apache-solr-file-read.yaml 2022-12-08 14:42:36 +05:30
Ritik Chaddha 457974c2de
Update grafana-file-read.yaml 2022-12-08 13:42:47 +05:30
Ritik Chaddha eb36eedb10
Update grafana-file-read.yaml 2022-12-08 11:13:26 +05:30
Joshua Rogers d38ddd1804 Add space and remove tag from non-loading Grafana template 2022-12-08 11:40:13 +11:00
Dhiyaneshwaran e2429ca6a4
Merge pull request #6256 from c3l3si4n/master 
added Reflected XSS for ZendFramework1
 2022-12-07 23:02:48 +05:30
Ritik Chaddha a033b96ceb
Update zend-v1-xss.yaml 2022-12-07 19:22:26 +05:30
Ritik Chaddha f417ca8a2b
Update zend-v1-xss.yaml 2022-12-07 18:23:56 +05:30
GitHub Action 972bafe93e Auto Generated CVE annotations [Wed Dec 7 09:42:26 UTC 2022] 🤖 2022-12-07 09:42:26 +00:00
Sandeep Singh b48c05dc27
Added Template Checksum generator (#6283) 
* Added Template Checksum generator

* fixed lint errors
 2022-12-07 14:54:33 +05:30
Dhiyaneshwaran 4500d5e374
Rename wp-related-post-xss to wp-related-post-xss.yaml 2022-12-07 14:41:03 +05:30
Dhiyaneshwaran 948f05204c
Update nps-auth-bypass.yaml 2022-12-07 10:55:13 +05:30
Dhiyaneshwaran 9cfebe489b
Update nps-auth-bypass.yaml 2022-12-07 10:49:50 +05:30
Ritik Chaddha b04feae9ca
Update zend-v1-xss.yaml 2022-12-06 14:31:05 +05:30
SleepingBag945 af11412622 Added nps-auth-bypass 2022-12-06 16:52:23 +08:00
Celesian 84a48a61ad added XSS for ZendFramework1 2022-12-06 05:13:46 -03:00
Prince Chaddha 61d8f37cca
Update open-redirect.yaml 2022-12-02 13:03:13 +05:30
Dhiyaneshwaran 11b94a1f5a
Update apache-solr-file-read.yaml 2022-12-02 09:32:17 +05:30
Dhiyaneshwaran fd270d85f6
Update apache-solr-file-read.yaml 2022-12-02 09:31:15 +05:30
Dhiyaneshwaran c8b5033ccc
Update apache-solr-file-read.yaml 2022-12-02 09:21:51 +05:30
Dhiyaneshwaran 0384b0d51d
Update apache-solr-file-read.yaml 2022-12-02 09:13:23 +05:30
Dhiyaneshwaran a37abb4401
Update apache-solr-file-read.yaml 2022-12-02 09:12:05 +05:30
Philippe Delteil 843264155b
Update apache-solr-file-read.yaml 
1. The added GET request triggers a file local read on Windows OS. 
2. Matcher added to the Response trigger by 1. 
3. Matcher for other cases (Errors, ie. not found path)
 2022-12-01 18:51:21 -05:00
Dhiyaneshwaran a7dfed84ef
Merge pull request #6159 from arafatansari/patch-112 
Create wp-related-post-xss
 2022-12-01 12:53:45 +05:30
Ritik Chaddha 46dcb9ee92
Update wp-related-post-xss 2022-11-29 19:09:35 +05:30
Dhiyaneshwaran e5a63cf26a
Merge pull request #6174 from pdelteil/patch-111 
Rename tikiwiki-json-rpc.yaml to kiwitcms-json-rpc.yaml
 2022-11-29 11:32:03 +05:30
Dhiyaneshwaran 0cc2b7b562
Merge pull request #6173 from pdelteil/patch-110 
Update nuuo-nvrmini2-rce.yaml
 2022-11-29 11:28:26 +05:30
Dhiyaneshwaran 8dfea46220
Merge pull request #6176 from pdelteil/patch-113 
Rename vulnerabilities/other/devalcms-xss.yaml to cves/2008/CVE-2008-…
 2022-11-29 11:25:35 +05:30
Dhiyaneshwaran 516f3fc0c0
Merge pull request #6172 from pdelteil/patch-109 
Rename icewarp-openredirects.yaml to icewarp-open-redirect.yaml
 2022-11-29 11:16:40 +05:30
Philippe Delteil 688b56b5df
Rename vulnerabilities/other/devalcms-xss.yaml to cves/2008/CVE-2008-6982.yaml 2022-11-29 00:38:16 -05:00
Philippe Delteil 8b4e280c02
Rename tikiwiki-json-rpc.yaml to kiwitcms-json-rpc.yaml 
- Incorrect file name (tikiwiki vs Kiwi TCMS). 
- Matching filename + id.
 2022-11-29 00:28:22 -05:00
Philippe Delteil 9c2c3d964b
Update nuuo-nvrmini2-rce.yaml 
filename + id matching
 2022-11-29 00:24:14 -05:00
Philippe Delteil 3458bcabd9
Rename icewarp-openredirects.yaml to icewarp-open-redirect.yaml 
id + filename matching
 2022-11-29 00:22:34 -05:00
Philippe Delteil 5bdb492bac
Update comtrend-password-exposure.yaml 
Corrected typo -> match id with filename.
 2022-11-29 00:16:28 -05:00
GitHub Action 9f60094d84 Auto Generated CVE annotations [Mon Nov 28 08:04:24 UTC 2022] 🤖 2022-11-28 08:04:24 +00:00
Arafat Ansari e93a5a87f6
Create wp-related-post-xss 2022-11-27 12:41:16 +05:30
Prince Chaddha 335f78adc0
Merge pull request #6137 from projectdiscovery/wptouch-xss 
Create wptouch-xss.yaml
 2022-11-26 22:16:14 +05:30
Prince Chaddha 2b411ebf9d
Merge pull request #4292 from ritikchaddha/patch-40 
Create inspur-clusterengine-v4-sysshell-rce.yaml
 2022-11-25 13:25:49 +05:30
Prince Chaddha 66681f4dae
Update and rename inspur-clusterengine-v4-sysshell-rce.yaml to inspur-clusterengine-rce.yaml 2022-11-25 13:03:26 +05:30
Ritik Chaddha e4d91857c9
Update wptouch-xss.yaml 2022-11-24 10:01:36 +05:30
Ritik Chaddha 2292877e42
Create wptouch-xss.yaml 2022-11-24 10:00:35 +05:30
GitHub Action 8297d3d8b4 Auto Generated CVE annotations [Tue Nov 22 04:51:59 UTC 2022] 🤖 2022-11-22 04:51:59 +00:00
Philippe Delteil 1028e0f889
Update crlf-injection.yaml 
added hackerone report as reference.
 2022-11-21 23:14:21 -05:00
Ritik Chaddha b3500789fe
Update wuzhicms-sqli.yaml 2022-11-17 17:08:30 +05:30
Ritik Chaddha a5af14982f
Update wuzhicms-sqli.yaml 2022-11-17 17:02:33 +05:30
Y4er 478db30e9f
Update wuzhicms-sqli.yaml 
fix bug
 2022-11-17 14:25:13 +08:00
Dhiyaneshwaran 76f4201b95
Update vmware-hcx-log4j.yaml 2022-11-15 15:18:17 +05:30
Thibault Soubiran 331394d36c Fix jenkin typos 2022-11-13 21:54:52 +01:00
sandeep ebe7268c3f Added OpenCPU RCE Template 
Co-Authored-By: wa1tf0r.me <92214233+euro-phd@users.noreply.github.com>
 2022-11-13 21:36:32 +05:30
GitHub Action 961ee225f5 Auto Generated CVE annotations [Fri Nov 11 16:43:11 UTC 2022] 🤖 2022-11-11 16:43:11 +00:00
Prince Chaddha 3847203748
Merge pull request #5939 from projectdiscovery/generic-phpinfo-matchers 
generic phpinfo matchers
 2022-11-11 20:25:48 +05:30
MostInterestingBotInTheWorld 942f8fc305
Dashboard Content Enhancements (#5943) 
Dashboard Content Enhancements
 2022-11-08 15:55:31 -05:00
Prince Chaddha f62d4f09aa
Update core-chuangtian-cloud-rce.yaml 2022-11-02 18:54:27 +05:30
Prince Chaddha 69596d5341
Update seacms-rce.yaml 2022-11-02 18:52:01 +05:30
Prince Chaddha 81123b89ea
Update seacms-rce.yaml 2022-11-02 18:50:37 +05:30
Prince Chaddha 2a580638a3
Update thinkphp-501-rce.yaml 2022-11-02 18:47:41 +05:30
Prince Chaddha 2496b86eea
Update thinkphp-509-information-disclosure.yaml 2022-11-02 18:39:28 +05:30
Prince Chaddha a3f01fc9a3
Delete ruijie-networks-rce.yaml 2022-11-01 18:55:12 +05:30
Prince Chaddha c0a00cde10
Update steve-xss.yaml 2022-10-28 19:44:06 +05:30
Ritik Chaddha 09a119584e
Rename steve-xss-noauth.yaml to steve-xss.yaml 2022-10-27 00:20:39 +05:30
Ritik Chaddha f554be63b5
Update steve-xss-noauth.yaml 2022-10-26 22:29:39 +05:30
clem9669 2a20e69976
Create steve-xss-noauth.yaml 2022-10-26 16:09:38 +00:00
GitHub Action 2bc756b7e1 Auto Generated CVE annotations [Tue Oct 25 14:05:39 UTC 2022] 🤖 2022-10-25 14:05:39 +00:00
Prince Chaddha 9ed84adaa6 fix-conflict 2022-10-25 19:10:49 +05:30
Prince Chaddha dc21ca4bce
Merge pull request #5494 from projectdiscovery/xenmobile-server-log4j 
Create xenmobile-server-log4j.yaml
 2022-10-21 16:12:02 +05:30
GitHub Action ef50a5c534 Auto Generated CVE annotations [Fri Oct 21 10:28:44 UTC 2022] 🤖 2022-10-21 10:28:44 +00:00
Prince Chaddha c586ccf80b
Merge pull request #5750 from shivampand3y/patch-1 
Create aerocms-sqli.yaml
 2022-10-21 15:39:50 +05:30
Dhiyaneshwaran fd196d9159
Update xenmobile-server-log4j.yaml 2022-10-21 14:04:41 +05:30
Prince Chaddha b88af7cb01
Delete jamf-pro-log4j.yaml 2022-10-21 14:01:53 +05:30
Prince Chaddha db9c08e2d5
Rename vulnerabilities/log4j/jamf-pro-log4j-rce.yaml to vulnerabilities/apache/log4j/jamf-pro-log4j-rce.yaml 2022-10-21 14:01:23 +05:30
Prince Chaddha e6029be860
Create jamf-pro-log4j-rce.yaml 2022-10-21 13:59:33 +05:30
Prince Chaddha bb066bd79f
Merge pull request #5744 from projectdiscovery/fix-fp-vmware-siterecovery-log4j-rce 
Update vmware-siterecovery-log4j-rce.yaml
 2022-10-21 13:42:23 +05:30
Prince Chaddha f3021b97af
Merge pull request #5743 from projectdiscovery/fix-fp-vmware-operation-manager-log4j 
Update vmware-operation-manager-log4j.yaml
 2022-10-21 13:39:56 +05:30
Prince Chaddha a3c81d7df1
Merge pull request #5742 from projectdiscovery/fix-fp-graylog-log4j 
Update graylog-log4j.yaml
 2022-10-21 13:38:38 +05:30
Prince Chaddha 47e2557bbd
Merge pull request #5741 from projectdiscovery/fix-fp-jamf-log4j-jndi-rce 
Update jamf-log4j-jndi-rce.yaml
 2022-10-21 13:36:55 +05:30
Prince Chaddha 2cc6587ba9
Merge pull request #5740 from projectdiscovery/fix-fp-mobileiron-log4j-jndi-rce 
Update mobileiron-log4j-jndi-rce.yaml
 2022-10-21 13:35:31 +05:30
Prince Chaddha 7d0ede17b3
Merge pull request #5739 from projectdiscovery/fix-fp-cisco-vmanage-log4j 
Update cisco-vmanage-log4j.yaml
 2022-10-21 13:31:13 +05:30
Ritik Chaddha 054f0c4872
Update aerocms-sqli.yaml 2022-10-20 12:59:46 +05:30
Ritik Chaddha dced04fd39
Update aerocms-sqli.yaml 2022-10-20 12:45:34 +05:30
shivampand3y 9fe5faac71
Create aerocms-sqli.yaml 2022-10-20 12:23:03 +05:30
Dhiyaneshwaran fcc232c77d
Update vmware-siterecovery-log4j-rce.yaml 2022-10-20 03:13:37 +05:30
Dhiyaneshwaran 851ecc1685
Update vmware-operation-manager-log4j.yaml 2022-10-20 03:08:41 +05:30
GitHub Action 3e72210539 Auto Generated CVE annotations [Wed Oct 19 21:30:41 UTC 2022] 🤖 2022-10-19 21:30:41 +00:00
Dhiyaneshwaran 8a8cc79de1
Update graylog-log4j.yaml 2022-10-20 02:59:52 +05:30
Dhiyaneshwaran 214d2c50ed
Update jamf-log4j-jndi-rce.yaml 2022-10-20 02:55:05 +05:30
MostInterestingBotInTheWorld 0b1a79f39d
Dashboard Content Enhancements (#5704) 
Dashboard Content Enhancements
 2022-10-19 17:11:27 -04:00
Dhiyaneshwaran 4eff79955e
Update mobileiron-log4j-jndi-rce.yaml 2022-10-20 02:38:01 +05:30
Dhiyaneshwaran 00acbe2bbb
Update cisco-vmanage-log4j.yaml 2022-10-20 02:30:56 +05:30
Prince Chaddha 2a411bef99
Merge pull request #5734 from projectdiscovery/fix-fp-rundeck-log4j 
Update rundeck-log4j.yaml
 2022-10-19 22:48:46 +05:30
Prince Chaddha 1e62e0720b
Merge pull request #5733 from projectdiscovery/fix-fp-metabase-log4j 
Update metabase-log4j.yaml
 2022-10-19 22:44:00 +05:30
Dhiyaneshwaran 499432b36a
Update rundeck-log4j.yaml 2022-10-19 17:43:25 +05:30
Dhiyaneshwaran 0b345ce6c7
Update metabase-log4j.yaml 2022-10-19 16:44:22 +05:30
Prince Chaddha 04846d28d2
Update vmware-nsx-log4j.yaml 2022-10-19 16:30:06 +05:30
Dhiyaneshwaran 6d591d01c4
Update vmware-nsx-log4j.yaml 2022-10-19 16:15:30 +05:30
Joshua Rogers 86bb38b96d
Fix typo in unaunthenticated-jenkin.yaml (#5724) 
* Fix typo in unaunthenticated-jenkin.yaml

* Rename unaunthenticated-jenkin.yaml to unauthenticated-jenkins.yaml
 2022-10-19 03:54:33 +05:30
Prince Chaddha c6cc78bcf1
Delete omnia-mpx-lfi.yaml 2022-10-17 13:03:17 +05:30
Prince Chaddha 75fdd023c5
Update flatpress-xss.yaml 2022-10-14 17:13:39 +05:30
Ritik Chaddha 2411426ed1
Update flatpress-xss.yaml 2022-10-14 11:41:59 +05:30
Ritik Chaddha 1878bae200
Update flatpress-xss.yaml 2022-10-13 16:26:36 +05:30
Arafat Ansari e4682184c2
Update flatpress-xss.yaml 2022-10-13 16:12:51 +05:30
Arafat Ansari ed83463ff3
Create flatpress-xss.yaml 2022-10-13 16:11:15 +05:30
GitHub Action 3fba7301e0 Auto Generated CVE annotations [Wed Oct 12 10:44:42 UTC 2022] 🤖 2022-10-12 10:44:42 +00:00
Prince Chaddha fa56e9eca9
Update vmware-operation-manager-log4j.yaml 2022-10-12 15:01:48 +05:30
Prince Chaddha 714813c445
Update vmware-hcx-log4j.yaml 2022-10-12 15:01:02 +05:30
Prince Chaddha 8be5694398
Update jamf-pro-log4j.yaml 2022-10-12 15:00:26 +05:30
Prince Chaddha fe3921231f
Update graylog-log4j.yaml 2022-10-12 14:59:44 +05:30
Prince Chaddha 9dccfb90ae
Update cisco-unified-communications-log4j.yaml 2022-10-12 14:59:13 +05:30
Prince Chaddha bf451ad15a
Update vmware-nsx-log4j.yaml 2022-10-12 14:58:33 +05:30
Prince Chaddha e0bf6d8e07
Update opennms-log4j-jndi-rce.yaml 2022-10-12 14:57:53 +05:30
Prince Chaddha a62dffe4bb
Update cisco-vmanage-log4j.yaml 2022-10-12 14:57:15 +05:30
Prince Chaddha 847d2b9631
Update rundeck-log4j.yaml 2022-10-12 14:56:48 +05:30
Prince Chaddha 386b4da10b
Update rundeck-log4j.yaml 2022-10-12 14:56:33 +05:30
Prince Chaddha cc897f6980
Update metabase-log4j.yaml 2022-10-12 14:55:31 +05:30
GitHub Action 6ab6aa6aa3 Auto Generated CVE annotations [Mon Oct 10 20:06:39 UTC 2022] 🤖 2022-10-10 20:06:39 +00:00
MostInterestingBotInTheWorld bcd4ae950d
Standardize Log4j Entries (#5634) 
* Standardize Log4j name and classification fields

Co-authored-by: sullo <sullo@cirt.net>
 2022-10-10 15:51:42 -04:00
GitHub Action a8c023abc4 Auto Generated CVE annotations [Mon Oct 10 19:40:25 UTC 2022] 🤖 2022-10-10 19:40:25 +00:00
MostInterestingBotInTheWorld 5892582899
Dashboard Content Enhancements (#5582) 
Dashboard Content Enhancements
 2022-10-10 15:22:59 -04:00
Sandeep Singh 712264db7e
Using "host-redirects" instead of "redirects" to avoid scanning 3rd party / out of scope hosts. (#5491) 2022-10-08 02:57:25 +05:30
Prince Chaddha 66059c01e2
Update unauthenticated-duplicator-disclosure.yaml 2022-10-01 20:59:50 +05:30
Ritik Chaddha 6f2f9abaa8
Update unauthenticated-duplicator-disclosure.yaml 2022-10-01 02:56:16 +05:30
Arman d19b29dc55
Create unauthenticated-duplicator-disclosure.yaml 2022-09-30 17:06:18 -04:00
GitHub Action cc11df1ede Auto Generated CVE annotations [Thu Sep 29 13:52:24 UTC 2022] 🤖 2022-09-29 13:52:24 +00:00
MostInterestingBotInTheWorld 1fa47500e4
Dashboard Content Enhancements (#5497) 
Dashboard Content Enhancements
 2022-09-29 09:38:41 -04:00
Dhiyaneshwaran fe3ba681b1
Create xenmobile-server-log4j.yaml 2022-09-29 12:14:52 +05:30
Sandeep Singh 34234c7a14
Added Web Page Test - Server Side Request Forgery (SSRF) (#5456) 2022-09-24 19:17:03 +05:30
GitHub Action 0851e093dc Auto Generated CVE annotations [Fri Sep 23 18:06:19 UTC 2022] 🤖 2022-09-23 18:06:19 +00:00
MostInterestingBotInTheWorld 529582c200
Dashboard Content Enhancements (#5455) 
Dashboard Content Enhancements
 2022-09-23 13:53:08 -04:00
GitHub Action daf007b79b Auto Generated CVE annotations [Fri Sep 23 11:36:52 UTC 2022] 🤖 2022-09-23 11:36:52 +00:00
Prince Chaddha 8ae53a1e66
Update age-gate-xss.yaml 2022-09-23 16:51:01 +05:30
Ritik Chaddha 0c79fc2594
Create age-gate-xss.yaml 2022-09-23 16:48:11 +05:30
st0fm 34a9d5d4ee
fix [WRN] [cors-misconfig] unresolved variables found: path (#5435) 
* fix [WRN] [cors-misconfig] Could not make http request for..  unresolved variables found: path

* Additional path fix

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2022-09-22 11:40:37 +05:30
GitHub Action 0920762894 Auto Generated CVE annotations [Wed Sep 21 21:56:03 UTC 2022] 🤖 2022-09-21 21:56:03 +00:00
MostInterestingBotInTheWorld 1437dc1f59
Dashboard Content Enhancements (#5436) 
Dashboard Content Enhancements
 2022-09-21 17:42:27 -04:00
MostInterestingBotInTheWorld 3bc2e26e40
Dashboard Content Enhancements (#5372) 
Dashboard Content Enhancements
 2022-09-16 15:50:10 -04:00
Prince Chaddha 9addaee48f
Merge pull request #5365 from arafatansari/patch-89 
Create hms-xss-2.yaml
 2022-09-15 17:44:59 +05:30
Prince Chaddha d634588031
Merge pull request #5364 from arafatansari/patch-88 
Create hms-xss.yaml
 2022-09-15 17:43:14 +05:30
Prince Chaddha 28d456386c
Merge pull request #5352 from For3stCo1d/wapples-firewall-lfi 
Create wapples-firewall-lfi.yaml
 2022-09-15 17:28:44 +05:30
Prince Chaddha abe1487a4d
Update and rename 3DPrint-arbitrary-file-upload.yaml to 3dprint-arbitrary-file-upload.yaml 2022-09-15 15:51:34 +05:30
GitHub Action 84abeba9f8 Auto Generated CVE annotations [Thu Sep 15 09:30:23 UTC 2022] 🤖 2022-09-15 09:30:23 +00:00
Prince Chaddha aba55a3dd6
Merge pull request #5325 from projectdiscovery/3DPrint-arbitrary-file-upload 
Create 3DPrint-arbitrary-file-upload.yaml
 2022-09-15 14:51:59 +05:30
Prince Chaddha 6e98f462f7
Update 3DPrint-arbitrary-file-upload.yaml 2022-09-15 14:50:10 +05:30
Ritik Chaddha 8c672ef591
Update and rename hms-xss-2.yaml to hospital-management-xss2.yaml 2022-09-15 14:02:02 +05:30
Ritik Chaddha d7d164bd18
Update and rename hms-xss.yaml to hospital-management-xss.yaml 2022-09-15 13:57:26 +05:30
Arafat Ansari 99e5365479
Update hms-xss-2.yaml 2022-09-14 18:47:17 +05:30
Arafat Ansari b287e54f25
Update hms-xss.yaml 2022-09-14 18:38:44 +05:30
Arafat Ansari 9f3ed18b28
Create hms-xss-2.yaml 2022-09-14 18:37:11 +05:30
Arafat Ansari 1b9b7e3ac0
Create hms-xss.yaml 2022-09-14 18:31:55 +05:30
Ritik Chaddha 64fc8aaba0
Update wapples-firewall-lfi.yaml 2022-09-14 16:12:34 +05:30
林寒 b1eb1e3ef9
Create wapples-firewall-lfi.yaml 2022-09-14 12:13:52 +08:00
0x08 2c51f8ec00
Merge branch 'projectdiscovery:master' into patch-1 2022-09-12 15:22:21 +03:00
GitHub Action 724269bac5 Auto Generated CVE annotations [Mon Sep 12 11:34:28 UTC 2022] 🤖 2022-09-12 11:34:28 +00:00
Prince Chaddha 86d7f1b84a
Merge branch 'master' into patch-1 2022-09-12 16:56:13 +05:30
Prince Chaddha 9cad294004
Merge branch 'master' into patch-2 2022-09-12 16:41:45 +05:30
Prince Chaddha 56ec9d8200
Merge pull request #5339 from Akokonunes/patch-181 
Create schneider-electric-pelco-videoxpert-core-admin-portal-lfi.yaml
 2022-09-12 16:23:56 +05:30
Prince Chaddha 6b488e508b
Update videoxpert-lfi.yaml 2022-09-12 16:21:21 +05:30
Dhiyaneshwaran d04f55721c
Update videoxpert-lfi.yaml 2022-09-12 16:20:19 +05:30
Dhiyaneshwaran 0b062a58e8
Update videoxpert-lfi.yaml 2022-09-12 15:20:52 +05:30
Dhiyaneshwaran d1d0f8e65b
Update and rename schneider-electric-pelco-videoxpert-core-admin-portal-lfi.yaml to vulnerabilities/videoxpert-lfi.yaml 2022-09-12 14:03:36 +05:30
dave 2ad1894537 fix template description 2022-09-11 19:48:17 +02:00
GitHub Action a6dee5c3c4 Auto Generated CVE annotations [Sat Sep 10 02:12:57 UTC 2022] 🤖 2022-09-10 02:12:57 +00:00
MostInterestingBotInTheWorld 800648aa7e
Dashboard Merge Issues Resolution (#5337) 
* Auto Generated CVE annotations [Wed Sep  7 15:59:37 UTC 2022] 🤖
* Fixed merge issues from previous PR
* moved vulnerabilities/wordpress/CVE-2019-10692.yaml to cves dir
* Fix CVSS information and other minor merge issues

Co-authored-by: Sullo <sullo@cirt.net>
 2022-09-09 21:55:52 -04:00
sullo b65c24c45e
Normalization of Cross-Site Scripting names (#5329) 2022-09-09 23:04:37 +05:30
Moayad Almalat 10febf172b
update wp-sym404.yaml 
Changed High to high, :) i.e. lowercase
 2022-09-09 10:21:36 +02:00
sullo 0126f9426e
Replace google-dork with google-query in all templates (#5328) 
* dos2unix to standardize line endings

* Replace google-dork with google-query
 2022-09-09 04:09:14 +05:30
MostInterestingBotInTheWorld 554c11c57b
Dashboard Content Enhancements (#5324) 
Dashboard Content Enhancements
* dos2nix on several templates
* replacing some cvedetails links with NIST
 2022-09-08 09:28:46 -04:00
Ritik Chaddha 3cedf0bd5f
Update 3DPrint-arbitrary-file-upload.yaml 2022-09-07 11:29:34 +05:30
Ritik Chaddha 963ae9342c
Create 3DPrint-arbitrary-file-upload.yaml 2022-09-07 11:26:34 +05:30
Prince Chaddha db22c1efa6
Update brightsign-dsdws-ssrf.yaml 2022-09-06 00:41:39 +05:30
Dhiyaneshwaran 3f930c57ac
Update brightsign-dsdws-ssrf.yaml 2022-09-02 11:30:44 +05:30
Dhiyaneshwaran 35d2ca68f9
Rename brightsign-dsdws-ssrf.yaml to vulnerabilities/other/brightsign-dsdws-ssrf.yaml 2022-09-02 11:28:57 +05:30
Prince Chaddha b0aaf21c36
Merge pull request #5266 from projectdiscovery/update-generic-linux-lfi 
Update generic-linux-lfi.yaml
 2022-09-02 10:22:44 +05:30
Prince Chaddha f0d0eff9ca
Update generic-linux-lfi.yaml 2022-09-02 01:48:37 +05:30
Dhiyaneshwaran 5e0f3a4229
Update generic-linux-lfi.yaml 2022-09-02 01:42:47 +05:30
Prince Chaddha 20a8a768d7
Update thinkcmf-arbitrary-code-execution.yaml 2022-09-02 01:38:27 +05:30
Prince Chaddha 931ca5c86f
Merge pull request #5268 from projectdiscovery/generic-windows-lfi 
Update generic-windows-lfi.yaml
 2022-09-02 01:19:13 +05:30
Prince Chaddha 9044284100
Merge branch 'master' into fileupload 2022-09-01 16:21:29 +05:30
Ritik Chaddha 471ae0fdce
Update generic-windows-lfi.yaml 2022-09-01 14:10:45 +05:30
Dhiyaneshwaran ea617f1ca3
Update dixell-xweb500-filewrite.yaml 2022-09-01 01:38:57 +05:30
Dhiyaneshwaran b839a4cb52
Update powercreator-cms-rce.yaml 2022-09-01 01:38:38 +05:30
Dhiyaneshwaran 028974759f
Update core-chuangtian-cloud-rce.yaml 2022-09-01 01:34:08 +05:30
Dhiyaneshwaran 81111ebb5e
Update wordpress-rce-simplefilelist.yaml 2022-09-01 01:32:51 +05:30
Dhiyaneshwaran fc7afa9f73
Update ait-csv-import-export-rce.yaml 2022-09-01 01:30:11 +05:30
Dhiyaneshwaran 23c86be97b
Update oa-v9-uploads-file.yaml 2022-09-01 01:29:39 +05:30
Dhiyaneshwaran ab10ad02cf
Update zhiyuan-file-upload.yaml 2022-09-01 01:28:54 +05:30
Dhiyaneshwaran 48ae8a32ff
Update cisco-rv-series-rce.yaml 2022-09-01 01:00:07 +05:30
Dhiyaneshwaran 25b136bf87
Update dixell-xweb500-filewrite.yaml 2022-09-01 00:57:38 +05:30
Dhiyaneshwaran d1186e3718
Update ait-csv-import-export-rce.yaml 2022-09-01 00:57:03 +05:30
Dhiyaneshwaran 82a860e347
Update core-chuangtian-cloud-rce.yaml 2022-09-01 00:56:04 +05:30
Dhiyaneshwaran 00b623d6a3
Update zhiyuan-file-upload.yaml 2022-09-01 00:45:27 +05:30
Dhiyaneshwaran 1ae6897871
Update oa-v9-uploads-file.yaml 2022-09-01 00:41:57 +05:30
Prince Chaddha 3f7a72b318
Update wordpress-accessible-wpconfig.yaml 2022-09-01 00:05:57 +05:30
Ritik Chaddha 3a939783b8
Update generic-windows-lfi.yaml 2022-08-31 23:12:58 +05:30
Ritik Chaddha b34b02ebd4 Revert "Update generic-windows-lfi.yaml" 
This reverts commit a3076a43ac.
 2022-08-31 23:11:07 +05:30
Ritik Chaddha 8c20c20328 Revert "Revert "Update generic-windows-lfi.yaml"" 
This reverts commit 2d626ef0fe.
 2022-08-31 23:09:04 +05:30
Ritik Chaddha 2d626ef0fe Revert "Update generic-windows-lfi.yaml" 
This reverts commit a3076a43ac.
 2022-08-31 23:08:24 +05:30
Ritik Chaddha a3076a43ac
Update generic-windows-lfi.yaml 2022-08-31 23:05:41 +05:30
Dhiyaneshwaran 2dea6ed916
Update generic-linux-lfi.yaml 2022-08-31 22:03:32 +05:30
Dhiyaneshwaran 234b6a417a
Update generic-linux-lfi.yaml 2022-08-31 22:01:15 +05:30
its0x08 d634bb63d7 chore: Add reference to the template 2022-08-31 00:02:32 +02:00
0x08 0ea1df844a
fix: Update the template to avoid false positives 
While testing I got a false positive. The `phpinfo();` was one `index.php` and any parameter appended did not affect the output. So I got a false positive because the template tests for `phpinfo();`. So I propose that the test string is updated to something random and if there is execution the string will show on the output.
 2022-08-31 00:03:36 +03:00
MostInterestingBotInTheWorld 36cf9b2f61
Dashboard Enhancements + Severity Matching (#5245) 
Dashboard Enhancements + Severity Matching
 2022-08-29 16:21:30 -04:00
GitHub Action bc21497f99 Auto Generated CVE annotations [Sat Aug 27 04:41:18 UTC 2022] 🤖 2022-08-27 04:41:18 +00:00
Prince Chaddha 9838347cc3
Merge pull request #5027 from akincibor/wp-enhancement 
Update Wordpress templates: typo, cve-id, ref & remove dupe
 2022-08-25 14:12:13 +05:30
Prince Chaddha 15dbade56b
Merge pull request #5191 from arafatansari/patch-70 
Create gnuboard5-rxss.yaml
 2022-08-25 12:39:34 +05:30
Prince Chaddha ff82f4311d
Rename vulnerabilities/other/gnuboard5-rxss.yaml to vulnerabilities/gnuboard/gnuboard5-rxss.yaml 2022-08-25 12:27:51 +05:30
Prince Chaddha 409b655062
Rename vulnerabilities/other/gnuboard-sms-xss.yaml to vulnerabilities/gnuboard/gnuboard-sms-xss.yaml 2022-08-25 11:58:06 +05:30
Prince Chaddha 080906ab35
Update and rename vulnerabilities/other/gnuboard5-xss.yaml to vulnerabilities/gnuboard/gnuboard5-xss.yaml 2022-08-25 11:57:28 +05:30
Ritik Chaddha 3497197092
Update gnuboard5-rxss.yaml 2022-08-24 12:29:34 +05:30
Ritik Chaddha f7e6c4d03d
Update gnuboard5-xss.yaml 2022-08-24 12:23:48 +05:30
Arafat Ansari f5a80bcfe3
Create gnuboard5-rxss.yaml 2022-08-24 00:36:54 +05:30
Arafat Ansari 7dfd3a4edd
Create gnuboard5-xss.yaml 2022-08-24 00:21:46 +05:30
HJLee 660e8d3214 Modify spacing between id and info 2022-08-22 16:17:05 +09:00
Prince Chaddha 6bded3407c
Merge pull request #5117 from projectdiscovery/thruk-xss 
Update thruk-xss.yaml
 2022-08-16 18:03:41 -07:00
Prince Chaddha 486845f91f
Update thruk-xss.yaml 2022-08-17 05:00:25 +04:00
Prince Chaddha d90538043f
Merge pull request #5104 from djoevanka/patch-1 
Added concrete-xss
 2022-08-15 15:23:44 -07:00
Prince Chaddha 7269960168
Delete concrete-xss.yaml 2022-08-15 15:05:45 -07:00
Prince Chaddha 9f5ebd2182
Update concrete-xss.yaml 2022-08-15 14:55:19 -07:00
Ritik Chaddha 962bd2a744
Update thruk-xss.yaml 2022-08-15 14:27:04 +05:30
djojoe 5a3a34e4e2
Create concrete-xss.yaml 2022-08-14 20:18:48 +07:00
Prince Chaddha 0bdb85d570
Merge pull request #5091 from arafatansari/patch-52 
Create dzzoffice-xss.yaml
 2022-08-13 21:45:36 -07:00
Prince Chaddha 3b5c473606
Merge pull request #5081 from arafatansari/patch-51 
Create kavita-lfi.yaml
 2022-08-12 16:33:40 -07:00
Prince Chaddha 000c7c42d6
Update kavita-lfi.yaml 2022-08-12 16:23:16 -07:00
Prince Chaddha 338271dd97
Update and rename reddittoprss-xss.yaml to reddittop-rss-xss.yaml 2022-08-12 16:16:37 -07:00
Ritik Chaddha 12a76141a2
Update dzzoffice-xss.yaml 2022-08-13 00:37:24 +05:30
Arafat Ansari dc778f626a
Create dzzoffice-xss.yaml 2022-08-12 23:41:26 +05:30
Ritik Chaddha 5c867517d0
Update kavita-lfi.yaml 2022-08-12 16:14:39 +05:30
Ritik Chaddha aa8da9ab43
Update reddittoprss-xss.yaml 2022-08-12 15:55:22 +05:30
Arafat Ansari 6b6e82d232
Create kavita-lfi.yaml 2022-08-12 12:41:00 +05:30
Arafat Ansari 4b007e87d2
Create reddittoprss-xss.yaml 2022-08-12 12:39:23 +05:30
Prince Chaddha 9f4e720ba5
Merge pull request #4991 from projectdiscovery/log4j 
Log4j
 2022-08-10 09:56:15 -07:00
Prince Chaddha b67e15d02e
Update vmware-operation-manager-log4j.yaml 2022-08-10 09:41:22 -07:00
Prince Chaddha 1623e617b9
Update vmware-nsx-log4j.yaml 2022-08-10 09:41:02 -07:00
Prince Chaddha 39b7f16853
Update vmware-hcx-log4j.yaml 2022-08-10 09:40:49 -07:00
Prince Chaddha ea0315c4f2
Update rundeck-log4j.yaml 2022-08-10 09:40:35 -07:00
Prince Chaddha df1984890a
Update metabase-log4j.yaml 2022-08-10 09:40:16 -07:00
Prince Chaddha 2836673718
Update jamf-pro-log4j.yaml 2022-08-10 09:40:00 -07:00
Prince Chaddha 8a17b91ddd
Update graylog-log4j.yaml 2022-08-10 09:39:30 -07:00