Commit Graph

567 Commits (e2778058fbd7fe81313395b1e73f2bc58562ac2a)

Author SHA1 Message Date
Prince Chaddha 2407b57779
Update wp-revslider-file-download.yaml 2021-11-23 08:09:29 +04:00
sandeep fdb0cc0277 lint fix + moving template to wp folder 2021-11-22 22:55:00 +05:30
Sandeep Singh 6eea2f5ec3
Merge pull request #3170 from pussycat0x/master
new templates
2021-11-21 14:44:52 +05:30
sandeep bb5dcd79ac moved templates to correct directory/location 2021-11-21 14:40:48 +05:30
sandeep fbf50f1109 format fixing 2021-11-15 21:00:17 +05:30
Prince Chaddha b66427b7c1
Update and rename wp-plugin-ad-widget-lfi.yaml to vulnerabilities/wordpress/ad-widget-lfi.yaml 2021-11-06 00:06:13 +05:30
sandeep 915bb09a82 updating file name 2021-11-04 15:43:49 +05:30
Prince Chaddha c4b7bb3bd2
Merge pull request #3032 from r3dg33k/wordpress-rdf-user-enum
wordpress-rdf-user-enum
2021-11-01 15:43:00 +05:30
Prince Chaddha 7b20a25fc6
Update and rename wordpress-rdf-user-enum.yaml to rdf-user-enumeration.yaml 2021-11-01 15:37:58 +05:30
Prince Chaddha a862dc3a6f
Update wordpress-rdf-user-enum.yaml 2021-11-01 15:33:06 +05:30
Prince Chaddha ff5b68a343
Update wordpress-rdf-user-enum.yaml 2021-11-01 15:30:54 +05:30
Prince Chaddha 3decaed012
Merge pull request #3036 from Akokonunes/patch-64
Create wp-theme-diarise-lfi.yaml
2021-11-01 14:54:58 +05:30
Prince Chaddha 756ed2c443
Update and rename wp-theme-diarise-lfi.yaml to vulnerabilities/wordpress/diarise-theme-lfi.yaml 2021-11-01 14:37:16 +05:30
Noam Rathaus d277d83c8e Add description 2021-10-31 15:58:17 +02:00
r3dg33k 2925226122
Update wordpress-rdf-user-enum.yaml 2021-10-30 13:58:24 +03:00
r3dg33k f3a44a7f50
Update wordpress-rdf-user-enum.yaml 2021-10-30 13:57:53 +03:00
r3dg33k f75fcde7a9
Update wordpress-rdf-user-enum.yaml 2021-10-30 13:56:04 +03:00
r3dg33k 2d50cb52c6
Add files via upload 2021-10-30 13:46:56 +03:00
Prince Chaddha ac70e14788
Merge pull request #2995 from Akokonunes/patch-63
Create wp-tinymce-thumbnail-plugin-lfi.yaml
2021-10-27 00:13:01 +05:30
Prince Chaddha b928d9a269
Update and rename wp-tinymce-thumbnail-plugin-lfi.yaml to wp-tinymce-lfi.yaml 2021-10-27 00:11:48 +05:30
Prince Chaddha 7abaf59c18
Merge pull request #2993 from Akokonunes/patch-61
Create wp-javospot-premium-theme-lfi.yaml
2021-10-27 00:02:00 +05:30
Prince Chaddha ab633f8675
Update and rename wp-javospot-premium-theme-lfi.yaml to vulnerabilities/wordpress/wp-javospot-lfi.yaml 2021-10-26 23:55:34 +05:30
Noam Rathaus 058d859cd8 Add description 2021-10-26 12:45:23 +03:00
sandeep 423584f1b7 moving files around 2021-10-26 15:08:26 +05:30
Noam Rathaus fb81f4ca36 Better description 2021-10-26 12:35:56 +03:00
Noam Rathaus c9e9c04f37 Add description 2021-10-25 12:54:00 +03:00
Noam Rathaus 6a6ba60aad Description 2021-10-25 12:53:22 +03:00
Noam Rathaus a96bfc3992 Add description 2021-10-25 12:52:58 +03:00
Noam Rathaus 2bffa26635 Advisory description 2021-10-25 10:09:13 +03:00
Noam Rathaus 66a811c3c2 Better description 2021-10-25 10:06:50 +03:00
Prince Chaddha 9ab9cd2a25
Merge pull request #2953 from Akokonunes/patch-59
Create aspose-importer-exporter-file-download.yaml
2021-10-22 22:03:37 +05:30
Prince Chaddha 82ca4a8c43
Update and rename aspose-file-download.yaml to aspose-ie-file-download.yaml 2021-10-22 15:59:44 +05:30
Prince Chaddha 5118c00e24
Update aspose-pdf-file-download.yaml 2021-10-22 15:58:02 +05:30
Prince Chaddha aa77769481
Rename aspose-pdf-file-download.yaml to vulnerabilities/wordpress/aspose-pdf-file-download.yaml 2021-10-22 15:49:18 +05:30
Noam Rathaus 0cb293abca Add description 2021-10-21 14:25:28 +03:00
sandeep 33badb66d1 oob tags update 2021-10-19 02:10:26 +05:30
Prince Chaddha 48588a6b81
Merge pull request #2887 from Akokonunes/patch-56
Create aspose-words-exporter-file-download.yaml
2021-10-17 17:04:08 +05:30
Prince Chaddha ef16ad713b
Update and rename wp-aspose-cloud-ebook-plugin-file-download.yaml to vulnerabilities/wordpress/aspose-file-download.yaml 2021-10-17 07:49:46 +05:30
Noam Rathaus d1105f1d79 Add description 2021-10-14 15:35:52 +03:00
Noam Rathaus e599ba1261 Add description 2021-10-14 15:35:47 +03:00
Noam Rathaus 4275cce69a Add description 2021-10-14 15:35:42 +03:00
Noam Rathaus 5453f2ccdb Add description 2021-10-14 15:35:37 +03:00
Prince Chaddha 02d0071660
Update and rename aspose-words-exporter-file-download.yaml to vulnerabilities/wordpress/aspose-words-file-download.yaml 2021-10-14 16:33:38 +05:30
Prince Chaddha 4ce3559d58
Update and rename wp-cherry-plugin-file-download.yaml to vulnerabilities/wordpress/cherry-file-download.yaml 2021-10-14 16:29:47 +05:30
Prince Chaddha da08f02913
Update and rename advanced-access-manager-plugin-lfi.yaml to vulnerabilities/wordpress/advanced-access-manager-lfi.yaml 2021-10-11 16:52:28 +05:30
sandeep ecca8374fc moving file around 2021-10-08 19:19:29 +05:30
Prince Chaddha 3ce3718a5e
Merge pull request #2835 from Akokonunes/patch-49
Create ultimatemember-plugin-open-redirect.yaml
2021-10-06 11:04:54 +05:30
Prince Chaddha 183af8b95b
Update and rename ultimatemember-plugin-open-redirect.yaml to vulnerabilities/wordpress/ultimatemember-open-redirect.yaml 2021-10-06 10:59:48 +05:30
Prince Chaddha f1130595ce
Update and rename wptouch-plugin-open-redirect.yaml to vulnerabilities/wordpress/wptouch-open-redirect.yaml 2021-10-06 10:46:16 +05:30
Prince Chaddha 5b5e764b48
Merge pull request #2787 from mr-rizwan-syed/master
wp-config-file and aws-s3-access-key-leak
2021-10-05 18:25:04 +05:30
Prince Chaddha 6e7b91f6dc
Update wordpress-accessible-wpconfig.yaml 2021-10-05 18:02:50 +05:30
Philippe Delteil e3947fbfeb
Update wp-plugin-1-flashgallery-listing.yaml 2021-10-02 03:29:17 -03:00
Prince Chaddha d7e6cb313e
Update wp-woocommerce-email-verification.yaml 2021-10-01 16:31:50 +05:30
Philippe Delteil 145f1a643d
Update and rename wordpress-emails-verification-for-woocommerce.yaml to wp-woocommerce-email-verification.yaml
- name changed to match template id. 
- added  stop-at-first-match condition.
2021-09-30 22:49:21 -03:00
Rizwan Syed 4065f6a493
Update wordpress-accessible-wpconfig.yaml 2021-09-30 23:15:18 +05:30
Prince Chaddha 5c80f9dc4c
Update and rename wp-church-admin-lfi.yaml to vulnerabilities/wordpress/church-admin-lfi.yaml 2021-09-28 15:38:03 +05:30
Prince Chaddha 93b6f3a799
Merge pull request #2743 from Akokonunes/patch-43
Create wp-brandfolder-plugin-open-redirect.yaml
2021-09-25 00:55:20 +05:30
Prince Chaddha d0ee5cbe02
Merge pull request #2744 from Akokonunes/patch-44
Create wp-brandfolder-plugin-lfi.yaml
2021-09-25 00:54:30 +05:30
Prince Chaddha f70cc70c26
Update and rename wp-brandfolder-plugin-open-redirect.yaml to vulnerabilities/wordpress/brandfolder-open-redirect.yaml 2021-09-25 00:54:03 +05:30
Prince Chaddha 624c722c5a
Update and rename wp-brandfolder-plugin-lfi.yaml to vulnerabilities/wordpress/brandfolder-lfi.yaml 2021-09-25 00:51:56 +05:30
Prince Chaddha e832a50401
Update issuu-panel-lfi.yaml 2021-09-25 00:49:53 +05:30
Prince Chaddha f35db18633
Update and rename wp-plugin-issuu-panel-lfi.yaml to vulnerabilities/wordpress/issuu-panel-lfi.yaml 2021-09-25 00:47:37 +05:30
sandeep a898a6c3a6 Update wp-woocommerce-file-download.yaml 2021-09-22 18:19:25 +05:30
sandeep dfa85833e2 misc update 2021-09-22 18:18:21 +05:30
Sandeep Singh a5982b8f32
Merge pull request #2721 from nerrorsec/patch-1
Added a path
2021-09-21 15:32:42 +05:30
Prince Chaddha ff4811e085
Create wordpress-git-config.yaml 2021-09-21 15:21:16 +05:30
sandeep 10a6436f6f Added Wordpress XMLRPC Pingback detection 2021-09-21 15:18:49 +05:30
Prince Chaddha 6564d0fca4
Merge pull request #2708 from pussycat0x/master
New templates
2021-09-20 14:18:41 +05:30
Prince Chaddha e183b518db
Update wp-altair-listing.yaml 2021-09-18 14:11:17 +05:30
Prince Chaddha d0c5083632
Update wp-altair-listing.yaml 2021-09-18 14:09:59 +05:30
Prince Chaddha 0523d46ed2 Revert "Delete wp-altair-listing.yaml"
This reverts commit 05dd3affce.
2021-09-18 13:54:03 +05:30
Prince Chaddha 05dd3affce
Delete wp-altair-listing.yaml 2021-09-18 13:51:28 +05:30
Prince Chaddha 893f8d3bc6
Update wp-altair-listing.yaml 2021-09-18 12:01:47 +05:30
pussycat0x 10b3bc327d
Add files via upload 2021-09-18 10:37:16 +05:30
Prince Chaddha b00b70c150
Merge pull request #2697 from Akokonunes/patch-39
Create attitude-wp-theme-open-redirect.yaml
2021-09-17 15:12:21 +05:30
Prince Chaddha 5cac00bada
Merge pull request #2698 from Akokonunes/patch-40
Create eatery-restaurant-wp-theme-open-redirect.yaml
2021-09-17 15:12:09 +05:30
Prince Chaddha a40530d9d4
Update and rename eatery-restaurant-wp-theme-open-redirect.yaml to vulnerabilities/wordpress/eatery-restaurant-open-redirect.yaml 2021-09-17 15:10:30 +05:30
Prince Chaddha 69e546ea4d
Update attitude-theme-open-redirect.yaml 2021-09-17 15:10:23 +05:30
Prince Chaddha c5ccf9d991
Update and rename attitude-wp-theme-open-redirect.yaml to vulnerabilities/wordpress/attitude-theme-open-redirect.yaml 2021-09-17 15:08:59 +05:30
Prince Chaddha 2e8329b645
Update and rename weekender-newspaper-wp-theme-open-redirect.yaml to vulnerabilities/wordpress/weekender-newspaper-open-redirect.yaml 2021-09-17 15:06:13 +05:30
sandeep 34bba4e794 misc update 2021-09-12 17:10:52 +05:30
Noam Rathaus 46b16bcfa2 Incomplete title 2021-09-12 14:16:01 +03:00
Noam Rathaus 59525a5846 Working reference 2021-09-12 13:02:41 +03:00
Noam Rathaus e602575ae0 Working reference 2021-09-12 12:58:48 +03:00
Noam Rathaus fb2f89bc86 References 2021-09-12 12:58:43 +03:00
Noam Rathaus 624162cca7 Working reference 2021-09-12 12:50:53 +03:00
Philippe Delteil c41f64987b
Update wordpress-db-repair.yaml
Solves this false positive (different encoding) 

nuclei -debug -t   nuclei-templates/vulnerabilities/wordpress/wordpress-db-repair.yaml -u https://try.walmart.com

<p><code>define(&#39;WP_ALLOW_REPAIR&#39;, true);
2021-09-10 17:18:15 -03:00
Prince Chaddha 576499034d
Update wordpress-rce-simplefilelist.yaml 2021-09-09 12:09:13 +05:30
sandeep 609705f676 removed extra headers not required for template 2021-09-08 17:47:19 +05:30
sandeep c266084621 Added stop-at-first-match in applicable templates 2021-09-02 17:29:10 +05:30
forgedhallpass a4250b8f2f Merge remote-tracking branch 'origin' into dynamic_attributes 2021-08-26 15:04:14 +03:00
sandeep 05305904ef more strict matchers 2021-08-26 02:43:53 +05:30
forgedhallpass 110f9c9ddd Merge remote-tracking branch 'origin' into dynamic_attributes 2021-08-24 20:38:11 +03:00
Sandeep Singh ee37e34f54
Update wp-woocommerce-pdf-invoice-listing.yaml 2021-08-24 17:48:31 +05:30
forgedhallpass 296edfc37b Merge remote-tracking branch 'origin' into dynamic_attributes 2021-08-23 14:40:33 +03:00
sandeep 62530eafc2 Update wp-slideshow-xss.yaml 2021-08-23 15:15:26 +05:30
forgedhallpass 77103bc629 Satisfying the linter (all errors and warnings)
* whitespace modifications only
2021-08-19 17:44:46 +03:00
forgedhallpass 97d4f8705b Fixed mistakes/typos
Related nuclei tickets:
* #259 - dynamic key-value field support for template information
* #940 - new infos in template
* #834
* RES-84
2021-08-19 16:59:55 +03:00
forgedhallpass f55d6b75e1 Removed pipe (|) character from references, because the structure requires it to be a string slice, not a string
Related nuclei tickets:
* #259 - dynamic key-value field support for template information
* #940 - new infos in template
* #834
* RES-84
2021-08-19 16:59:12 +03:00
forgedhallpass 7b29be739e Merge branch 'master' into dynamic_attributes 2021-08-19 16:23:26 +03:00
forgedhallpass 0b432b341b Added comments with URLs under the "references" field
Related nuclei tickets:
* #259 - dynamic key-value field support for template information
* #940 - new infos in template
* #834
* RES-84
2021-08-19 16:15:35 +03:00
forgedhallpass cdf9451158 Removed pipe (|) character from references, because the structure requires it to be a string slice, not a string
Related nuclei tickets:
* #259 - dynamic key-value field support for template information
* #940 - new infos in template
* #834
* RES-84
2021-08-18 14:44:27 +03:00
forgedhallpass 4c920b2552 Rename "references" to "reference" to match the expected template info structure
Related nuclei tickets:
* #259 - dynamic key-value field support for template information
* #940 - new infos in template
* #834
* RES-84
2021-08-18 14:29:20 +03:00
sandeep 3ac7a756fc Added woocommerce-pdf-invoice-listing 2021-08-16 15:37:07 +05:30
Sandeep Singh 3918071875
Merge pull request #2348 from Akokonunes/patch-25
Create grimag-open-redirect.yaml
2021-08-08 12:38:24 +05:30
sandeep d7b8760231 minor update 2021-08-08 12:29:11 +05:30
sandeep 4c057dcb1e minor update 2021-08-08 12:26:34 +05:30
Sandeep Singh 918a6deead
Merge pull request #2265 from pussycat0x/master
zabbix-dashboards-access
2021-07-30 02:37:02 +05:30
sandeep 0d7dfa1713 Update wp-upload-data.yaml 2021-07-30 02:36:18 +05:30
Prince Chaddha 576b42b412
Update wp-upload-data.yaml 2021-07-29 00:09:11 +05:30
pussycat0x 7038617c86
Add files via upload 2021-07-28 23:56:51 +05:30
sandeep 6ccc5f8792 matcher update to handle edge cases 2021-07-25 03:05:55 +05:30
Sandeep Singh 59f90ffffa
Merge pull request #2150 from pussycat0x/master
New templates added
2021-07-24 00:09:43 +05:30
sandeep 79e15e7123 Update wordpress-wpcourses-info-disclosure.yaml 2021-07-24 00:07:50 +05:30
sandeep 43dccef185 generic improvements 2021-07-24 00:06:13 +05:30
sandeep 97aa239d52 Merge branch 'master' of https://github.com/pussycat0x/nuclei-templates into pr/2037 2021-07-24 00:00:55 +05:30
sandeep 3960d1f295 strict matchers 2021-07-23 23:59:54 +05:30
Sandeep Singh 38c2b6d4a9
Update vulnerabilities/wordpress/wp-idx-broker-platinum-listing.yaml
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
2021-07-23 23:49:58 +05:30
Sandeep Singh bdfee95603
Update vulnerabilities/wordpress/wp-idx-broker-platinum-listing.yaml
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
2021-07-23 23:49:33 +05:30
Sandeep Singh 6ebd1a36e0
Update vulnerabilities/wordpress/wp-email-subscribers-listing.yaml
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
2021-07-23 23:49:28 +05:30
Sandeep Singh edc62d15a4
Update vulnerabilities/wordpress/wp-email-subscribers-listing.yaml
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
2021-07-23 23:49:20 +05:30
Sandeep Singh 5170f4962b
Update vulnerabilities/wordpress/wp-arforms-listing.yaml
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
2021-07-23 23:49:14 +05:30
Sandeep Singh 1feaaded28
Update vulnerabilities/wordpress/wp-idx-broker-platinum-listing.yaml
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
2021-07-23 23:41:26 +05:30
Sandeep Singh 750a86c500
Update vulnerabilities/wordpress/wp-iwp-client-listing.yaml
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
2021-07-23 23:41:14 +05:30
Sandeep Singh 04b71d9335
Update vulnerabilities/wordpress/wp-iwp-client-listing.yaml
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
2021-07-23 23:41:06 +05:30
Sandeep Singh b82ac4b3fc
Update vulnerabilities/wordpress/wp-iwp-client-listing.yaml
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
2021-07-23 23:40:56 +05:30
sandeep 28d7d26953 Update wp-sfwd-lms-listing.yaml 2021-07-23 23:39:46 +05:30
pussycat0x d3ff29daaa
Update vulnerabilities/wordpress/wp-arforms-listing.yaml
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
2021-07-23 00:32:13 +05:30
pussycat0x 6987e1ffee
Update vulnerabilities/wordpress/wp-arforms-listing.yaml
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
2021-07-23 00:32:05 +05:30
pussycat0x eac08288e8
Update vulnerabilities/wordpress/wp-sfwd-lms-listing.yaml
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
2021-07-23 00:31:33 +05:30
pussycat0x 05846a34c7
Update vulnerabilities/wordpress/wp-sfwd-lms-listing.yaml
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
2021-07-23 00:31:13 +05:30
pussycat0x a81e3b53cb
Add files via upload 2021-07-22 19:42:25 +05:30
Prince Chaddha 5455222476
Merge pull request #2140 from pussycat0x/master
New templates added
2021-07-22 17:53:25 +05:30
Prince Chaddha c17763ac20
Update and rename wp-plugineasy-media-gallery-pro-listing.yaml to easy-media-gallery-pro-listing.yaml 2021-07-22 17:45:43 +05:30
pussycat0x f00f5eeaa9
Add files via upload 2021-07-22 08:04:21 +05:30
Muhammad Daffa 21809132da
Renamed to CVE-2021-24340.yaml 2021-07-20 13:36:04 +07:00
sandeep 13e5528c46 duplicate update 2021-07-20 11:40:23 +05:30
Muhammad Daffa d27fb4c3b0
Renamed CVE-2020-8771.yaml 2021-07-20 12:49:16 +07:00
sandeep 4dbf36813d removing duplicate template 2021-07-20 00:43:39 +05:30
Sandeep Singh 6eee57115c
Merge pull request #2083 from projectdiscovery/fixing-xss-matchers
fixing-xss-matchers
2021-07-20 00:28:01 +05:30
Muhammad Daffa 68efee3702
Merge branch 'projectdiscovery:master' into master 2021-07-19 19:48:57 +07:00
Muhammad Daffa 7a99c2db48
Rename to CVE-2018-16283 2021-07-19 19:47:31 +07:00
sandeep 96d7a23ccd removed duplicate 2021-07-19 18:15:42 +05:30
sandeep a88710e503 Removed duplicate template 2021-07-19 16:56:45 +05:30
Prince Chaddha 574245af0d
Update wp-socialfit-xss.yaml 2021-07-19 11:43:07 +05:30
Prince Chaddha 5fcbd0e446
Update wp-slideshow-xss.yaml 2021-07-19 11:42:34 +05:30
Prince Chaddha f77f66d1e6
Update wp-phpfreechat-xss.yaml 2021-07-19 11:41:40 +05:30
Prince Chaddha 4df08a33c4
Update wp-nextgen-xss.yaml 2021-07-19 11:41:15 +05:30
Prince Chaddha 0329b1b2fb
Update wp-knews-xss.yaml 2021-07-19 11:40:45 +05:30
Prince Chaddha e14b31489b
Update wp-flagem-xss.yaml 2021-07-19 11:40:14 +05:30
Prince Chaddha 705f431c1c
Update wp-finder-xss.yaml 2021-07-19 11:39:33 +05:30
Prince Chaddha 57c3f3ec20
Update wp-custom-tables-xss.yaml 2021-07-19 11:38:50 +05:30
Prince Chaddha ac66db36f3
Update wp-church-admin-xss.yaml 2021-07-19 11:38:22 +05:30
sandeep fc38b27176 minor update 2021-07-17 16:32:15 +05:30
sandeep 6d27a6fe8e payload update 2021-07-16 00:34:38 +05:30
SaN ThosH 07db6737e5
Update wordpress-woocommerce-sqli.yaml 2021-07-16 00:08:42 +05:30
Prince Chaddha 9b7a57bf15
Update wordpress-woocommerce-sqli.yaml 2021-07-15 23:35:02 +05:30
sandeep 382534fedc Update wordpress-woocommerce-sqli.yaml 2021-07-15 22:58:43 +05:30
rootxharsh ede6df8fa4 Add WooCommerce SQLi Template 2021-07-15 17:02:19 +00:00
Prince Chaddha ba64446d08
Update nativechurch-wp-theme-lfd.yaml 2021-07-15 17:43:45 +05:30
Prince Chaddha a95133ee3d
Update and rename nativechurch-wp-theme-lfd.yaml to vulnerabilities/wordpress/nativechurch-wp-theme-lfd.yaml 2021-07-15 15:16:37 +05:30
Prince Chaddha 615db88ce6
Merge pull request #2004 from daffainfo/patch-49
Create wp-custom-tables-xss.yaml
2021-07-15 14:53:41 +05:30
Prince Chaddha 7cecd5aa3e
Update wp-custom-tables-xss.yaml 2021-07-15 14:34:40 +05:30
Prince Chaddha 22ecd2a192
Merge pull request #2016 from DhiyaneshGeek/master
Severity Update
2021-07-15 14:14:38 +05:30
Prince Chaddha 887e7bcfab
Update wordpress-updraftplus-pem-key.yaml 2021-07-15 14:13:25 +05:30
Dhiyaneshwaran 69b04c8a98
Update wordpress-updraftplus-pem-key.yaml 2021-07-15 13:51:19 +05:30
Muhammad Daffa ad3f81bc95
Create wp-custom-tables-xss.yaml 2021-07-15 06:21:50 +07:00
Sandeep Singh 11dc9db49e
Merge pull request #1997 from skar4444/sassy-update
Update-sassy-social-share-xss
2021-07-14 20:56:57 +05:30
sandeep 117b0558a9 Update sassy-social-share.yaml 2021-07-14 20:55:05 +05:30
Prince Chaddha ecd98c6403
Merge pull request #1967 from daffainfo/patch-31
Create wp-slideshow-xss.yaml
2021-07-14 19:15:07 +05:30
Prince Chaddha 55ea2242b7
Rename vulnerabilities/wp-slideshow-xss.yaml to vulnerabilities/wordpress/wp-slideshow-xss.yaml 2021-07-14 19:14:06 +05:30
Prince Chaddha 9fb7e17c0d
Merge pull request #1966 from daffainfo/patch-30
Create wp-nextgen-xss.yaml
2021-07-14 19:10:26 +05:30
Suman Kar 00f1e65d50 Update-sassy-social-share-xss 2021-07-14 17:01:59 +05:30
Muhammad Daffa 62cb5ce2bc
Create wp-nextgen-xss.yaml 2021-07-13 18:17:14 +07:00
Muhammad Daffa c751aca059
Create wp-flagem-xss.yaml 2021-07-13 18:15:43 +07:00
Sandeep Singh e167cf0ab9
Merge pull request #1937 from daffainfo/patch-20
Create wp-phpfreechat-xss.yaml
2021-07-13 15:45:53 +05:30
Sandeep Singh df0e4b7117
Merge pull request #1938 from daffainfo/patch-21
Create wp-finder-xss.yaml
2021-07-13 15:42:29 +05:30
Sandeep Singh 67a679860e
Update wp-finder-xss.yaml 2021-07-13 15:41:44 +05:30
Sandeep Singh 500f0b70f8
Merge pull request #1936 from daffainfo/patch-19
Create wp-knews-xss.yaml
2021-07-13 15:36:57 +05:30
Sandeep Singh 08f2cfea0b
Merge pull request #1924 from daffainfo/master
WordPress Plugin SocialFit - 'msg' Cross-Site Scripting
2021-07-13 15:29:49 +05:30
sandeep a8be22ad0a Removed as it requires admin login 2021-07-13 15:28:48 +05:30
Sandeep Singh 5a2d81e578
Merge pull request #1935 from daffainfo/patch-18
Create wp-church-admin-xss.yaml
2021-07-13 15:22:31 +05:30
sandeep 06efff9ddd minor update 2021-07-13 15:21:26 +05:30
Sandeep Singh cb32c05cfa
Merge pull request #1953 from Akokonunes/patch-17
Create wordpress-wordfence-lfi.yaml
2021-07-13 15:00:01 +05:30
sandeep 47a07b533b moving files around 2021-07-13 14:59:11 +05:30
Sandeep Singh 920255635b
Merge pull request #1876 from pussycat0x/master
web-ftp
2021-07-13 01:53:15 +05:30
sandeep 8b8663970f minor update 2021-07-13 01:44:24 +05:30
sandeep 81f1f8badc minor update 2021-07-13 01:43:52 +05:30
pussycat0x a1d3678a70
Add files via upload 2021-07-12 23:24:24 +05:30
Muhammad Daffa 0e195c4138
Merge branch 'projectdiscovery:master' into master 2021-07-12 14:58:59 +07:00
pussycat0x 0f46d27b60
Add files via upload 2021-07-11 23:45:02 +05:30
Muhammad Daffa 64bdaee44e
Create wp-finder-xss.yaml 2021-07-11 13:23:51 +07:00
Muhammad Daffa d3f21f1793
Create wp-phpfreechat-xss.yaml 2021-07-11 13:19:01 +07:00
Muhammad Daffa e6272bf44c
Create wp-knews-xss.yaml 2021-07-11 13:11:03 +07:00
Muhammad Daffa 8a6e78934c
Create wp-church-admin-xss.yaml 2021-07-11 13:07:34 +07:00
Prince Chaddha 361a641483
Update wp-socialfit-xss.yaml 2021-07-11 10:16:24 +05:30
Prince Chaddha 5366b70077
Merge pull request #1931 from daffainfo/patch-16
Create wp-securimage-xss.yaml
2021-07-11 10:08:02 +05:30
Prince Chaddha b830f86384
Update wp-securimage-xss.yaml 2021-07-11 10:02:30 +05:30
Prince Chaddha b1f755466b
Update wp-ambience-xss.yaml 2021-07-11 09:57:44 +05:30
Muhammad Daffa cc165287fd
Create wp-ambience-xss.yaml 2021-07-11 09:16:13 +07:00
Muhammad Daffa ab85fd5eba
Create wp-securimage-xss.yaml 2021-07-11 09:10:35 +07:00
Muhammad Daffa d0ec1acc76
Create wp-socialfit-xss.yaml 2021-07-11 07:41:04 +07:00
Muhammad Daffa 05bc6366f3
Rename wp-supsystic-backup-lfi to wp-supsystic-backup-lfi.yaml 2021-07-11 07:24:41 +07:00
Muhammad Daffa 04e5e30051
Update and rename wp-upsystic-backup-lfi to wp-supsystic-backup-lfi 2021-07-11 07:24:27 +07:00
Muhammad Daffa e26b467c76
Create wp-upsystic-backup-lfi 2021-07-11 07:22:38 +07:00
Sandeep Singh 6a99a183cd
Merge pull request #1920 from projectdiscovery/wordpress-user-enum
Added wordpress-user-enum
2021-07-10 21:56:17 +05:30
sandeep b228b35f83 Added wordpress-user-enum 2021-07-10 21:54:31 +05:30
sandeep fc68a95803 Template Name/ID update as per assigned CVE 2021-07-06 12:07:53 +05:30
sandeep fd13654972 Merge branch 'patch-1' of https://github.com/johnjhacking/nuclei-templates into pr/1827 2021-07-06 12:04:00 +05:30
sandeep 192201c27c condition update as per new bypass 2021-07-06 12:03:51 +05:30
John Jackson a2f283c51b
CVE number was assigned
As stated.
2021-07-06 00:32:35 -06:00
John Jackson 601a192703
Added bypass for 1.9.2
Another payload was identified, as a bypass in version 1.9.2. This bypass caused the vendor to upgrade to 1.9.3

I have added the bypass and the matcher above. Let me know what you think.
2021-07-05 18:39:25 -06:00
Prince Chaddha ce43643e00
Update and rename wp-vault-lfi.yaml to vulnerabilities/wordpress/wp-vault-lfi.yaml 2021-07-05 21:06:50 +05:30
Sandeep Singh f02befc6f7
Merge pull request #1834 from pussycat0x/master
wp-plugin-1-flash-gallery.yaml
2021-07-02 13:56:53 +05:30
sandeep f983baba38 misc changes 2021-07-02 13:55:32 +05:30
pussycat0x 89eff74128
Add files via upload 2021-06-30 21:33:39 +05:30
sandeep 5affbf47b3 misc changes 2021-06-30 18:24:34 +05:30
John Jackson d2df3303c6
Add Marmoset Viewer XSS Vulnerability
Reference:
https://wordpress.org/plugins/marmoset-viewer/#developers
2021-06-30 01:12:12 -06:00
sandeep 2a1772d78c misc changes 2021-06-28 23:58:31 +05:30
SaN ThosH 59e24ab8a7
Create multiple-theme-ssrf.yaml 2021-06-26 13:38:26 +05:30
Prince Chaddha 89b4fdf8ed
Merge pull request #1757 from pussycat0x/master
New template added
2021-06-24 02:02:42 +05:30
Prince Chaddha c383c120b7 moved to wordpress folder 2021-06-24 01:39:09 +05:30
Sandeep Singh 161204c20e
Rename wordpress-123ContactForm.yaml to wp-123contactform-plugin-listing.yaml 2021-06-24 01:13:42 +05:30
sandeep 8f247c03c0 Removed trailing spaces 2021-06-24 01:11:14 +05:30
sandeep a4e439024e Added missing condition 2021-06-24 01:10:33 +05:30
pussycat0x c1f5c60700
Update wordpress-123ContactForm.yaml 2021-06-23 21:31:03 +05:30
pussycat0x 418de400a7
Add files via upload 2021-06-23 21:27:43 +05:30
sandeep 27287e473b Update wordpress-woocommerce-listing.yaml 2021-06-21 18:11:30 +05:30
sandeep 3844df9fc8 misc changes 2021-06-21 18:09:16 +05:30
Dhiyaneshwaran 9ba613b509
Create wordpress-gtranslate-plugin.yaml 2021-06-21 15:00:25 +05:30
Dhiyaneshwaran f5ef733bd8
Update wp-gtranslate-open-redirect.yaml 2021-06-21 14:48:53 +05:30
Dhiyaneshwaran 402d5eb9f3
Update wp-gtranslate-open-redirect.yaml 2021-06-21 14:45:43 +05:30
Dhiyaneshwaran c990105b0d
Update wp-gtranslate-open-redirect.yaml 2021-06-21 14:41:57 +05:30
Dhiyaneshwaran 401a26eefd
Update wp-gtranslate-open-redirect.yaml 2021-06-21 14:39:42 +05:30
Dhiyaneshwaran d5afd2831f
Create wp-gtranslate-open-redirect.yaml 2021-06-21 14:37:29 +05:30
Dhiyaneshwaran 2d91148f39
Create wordpress-bbpress-plugin.yaml 2021-06-21 13:50:11 +05:30
Dhiyaneshwaran 08f9cf9de6
Update wordpress-woocommerce-plugin.yaml 2021-06-21 13:48:15 +05:30
Dhiyaneshwaran b2bc8d61a1
Create wordpress-woocommerce-plugin.yaml 2021-06-21 13:03:20 +05:30
Dhiyaneshwaran fbd53598d6
Create wordpress-elementor-plugin.yaml 2021-06-21 12:29:50 +05:30
Sandeep Singh 00a0b17bf5
Merge pull request #1744 from pussycat0x/master
Add files via upload
2021-06-21 01:43:48 +05:30
sandeep 788fc31fd3 Adding additional condition 2021-06-21 01:40:01 +05:30
pussycat0x 82e23a03e3
Add files via upload 2021-06-21 00:26:48 +05:30
sandeep 0ec921ef4f misc changes 2021-06-21 00:09:04 +05:30
Dhiyaneshwaran 5d01e7b235
Create wordpress-updraftplus-pem-key.yaml 2021-06-20 23:03:52 +05:30
Dhiyaneshwaran 42c937d730
Create wpmudev-my-calender-xss.yaml 2021-06-20 22:45:15 +05:30
Dhiyaneshwaran 40dfa6d6fe
Create wpmudev-pub-keys.yaml 2021-06-20 22:38:20 +05:30
Dhiyaneshwaran dbd72a33e0
Create wordpress-redirection-listing.yaml 2021-06-20 22:26:23 +05:30
Prince Chaddha fecae7747e
Merge pull request #1691 from DhiyaneshGeek/master
2 new template
2021-06-13 20:57:19 +05:30
Prince Chaddha 1e77410799
Update wpdm-cache-session.yaml 2021-06-13 20:56:28 +05:30
Dhiyaneshwaran dab25e2df3
Create wpdm-cache-session.yaml 2021-06-13 17:43:24 +05:30
sandeep cb342f8564 misc changes 2021-06-13 17:28:10 +05:30
Suman Kar 641e0c0672 Wordpress DB Backup 2021-06-12 20:13:29 +05:30
sandeep 69ded42e3a Template rename / update 2021-06-10 21:57:07 +05:30
sandeep 181647cb77 Added binary matcher + max-size 2021-06-10 21:39:40 +05:30
Prince Chaddha 83ce809e8d Updated author names 2021-06-09 17:50:56 +05:30
sandeep c273587fa9 Adding more conditions 2021-06-09 01:34:02 +05:30
sandeep 1fab4f8dbf Duplicate with - wordpress-directory-listing 2021-06-04 21:14:20 +05:30
sandeep 1557b782e9 Added WordPress Popup Plugin listing 2021-06-04 20:57:01 +05:30
sandeep 76bd8824a5 Added WordPress Mailchimp 4 Debug Log Exposure 2021-06-04 20:36:33 +05:30
Sandeep Singh fdd2103fa1
Merge pull request #1576 from Udyz/patch-1
Create wp-statistics-blindsql.yaml
2021-06-01 11:36:42 +05:30
sandeep 8d3f2e3604 misc changes 2021-05-31 17:29:52 +05:30
sandeep 5fed1d3432 Improved matcher 2021-05-31 13:31:13 +05:30
lulz 2b1a39cbab
Update wp-statistics-blindsql.yaml 2021-05-31 14:39:15 +07:00
lulz e89760c89c
Create wp-statistics-blindsql.yaml 2021-05-31 14:23:44 +07:00
sandeep 1f5c65d4c0 Added Wordpress Exposed DB Repair 2021-05-31 11:35:30 +05:30
Prince Chaddha aaae0a8214
Merge pull request #1540 from projectdiscovery/wp-lfi
Adding Wordpress Plugin LFI Templates
2021-05-28 17:03:27 +05:30
Prince Chaddha b54a107deb
Delete wp-supsystic-backup-lfi.yaml 2021-05-28 17:01:06 +05:30
Prince Chaddha b53a99109a
Delete wp-loco-translate-lfi.yaml 2021-05-28 17:00:56 +05:30
sandeep 2348650a50 misc changes 2021-05-28 08:41:58 +05:30
sandeep 4358f69b52 misc changes 2021-05-28 02:43:04 +05:30
sandeep ca83581cd2 misc updates 2021-05-27 08:58:03 +05:30
sandeep 9c1e801ade Adding Wordpress Plugin LFI Templates 2021-05-27 08:45:53 +05:30
sandeep 7019946599 Improved matcher 2021-05-11 00:29:01 +05:30
Noam Rathaus 3bdb2fdbd4 Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates 2021-04-27 14:02:16 +03:00
Noam Rathaus f55bb45e75 Give some description 2021-04-27 14:02:08 +03:00
Prince Chaddha 427f99b0c1
Update wordpress-rce-simplefilelist.yaml 2021-04-27 15:25:28 +05:30
Noam Rathaus 4cc6b3bdb0 Reduce FP due to not actually execution of the PHP but rather it being returned as is (the content) 2021-04-27 09:42:41 +03:00
sandeep 6cd5b9d35c CVE update 2021-04-23 08:47:52 +05:30
sandeep 476bb7806f minor update and workflow update 2021-04-23 08:38:45 +05:30
Robbie ddc321794f
Create wp-modern-events-calendar-lite.yml 2021-04-22 20:15:52 +01:00
sandeep 5b4c21c7fa Update wordpress-wordfence-waf-bypass-xss.yaml 2021-04-20 15:25:04 +05:30
sandeep 36195f82a0 Added wordpress-wordfence-waf-bypass-xss 2021-04-20 15:23:05 +05:30
Noam Rathaus 38b3359803 reference 2021-04-18 16:11:49 +03:00
Noam Rathaus ba15cabf57 Uncomment description and reference 2021-04-18 16:11:30 +03:00
Noam Rathaus bea9027bde Reference and description 2021-04-18 16:09:44 +03:00
Noam Rathaus 29caaefe8d No need for " 2021-04-18 16:09:38 +03:00
Prince Chaddha ccb620bf73
Update wordpress-rce-simplefilelist.yaml 2021-04-13 18:26:30 +05:30
sandeep e4b9397b06 Adding missing wordpress tags 2021-04-06 13:19:32 +05:30
sandeep b5c4ed0e2e Update wordpress-rce-simplefilelist.yaml 2021-03-25 19:21:30 +05:30
Prince Chaddha c04d699985 wordpress-infinitewp-auth-bypass 2021-03-19 02:10:02 +05:30
sandeep ad84ecb792 tag improvements 2021-03-18 13:24:36 +05:30
sandeep 9ff6adff73 Update wordpress-accessible-wpconfig.yaml 2021-03-12 17:58:35 +05:30
sandeep 28b0636f2d syntax update 2021-03-12 17:32:16 +05:30
PD-Team c35ed8a408
Merge branch 'master' into wordpress-cves 2021-03-12 17:25:27 +05:30
sandeep 06945d56a8 fixing typos 2021-03-10 19:33:49 +05:30
Prince Chaddha de3b1d27ea added templates 2021-03-10 17:06:11 +05:30
Prince Chaddha ce919375eb Create wordpress-auth-bypass-wptimecapsule.yaml 2021-03-10 12:29:08 +05:30
PD-Team 4fb3b338a0
Merge pull request #954 from daffainfo/patch-2
Update wordpress-user-enumeration.yaml
2021-02-26 11:22:23 +05:30
sandeep 36694ceec9 wp workflow update 2021-02-26 11:21:15 +05:30
Muhammad Daffa 1f3b105490
Update wordpress-user-enumeration.yaml 2021-02-26 08:36:34 +07:00