daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
14,470 Commits
17 Branches
0 Tags
165 MiB
Commit Graph

538 Commits (e62f03cbccd7ed5f6e104ebfa7f830f15859475d)

Author SHA1 Message Date
sandeep 95f4bef801 meta data update 2022-05-09 15:13:18 +05:30
Prince Chaddha ddb9f0a8dc
Update insecure-firebase-database.yaml 2022-05-08 17:48:27 +05:30
Prince Chaddha bac486a802
Create insecure-firebase-database.yaml 2022-05-08 17:47:11 +05:30
Sandeep Singh b37f2dbff5
Added Nginx Dashboard (#4318) 2022-05-08 00:05:22 +05:30
Prince Chaddha be5984676a
Update aem-xss-childlist-selector.yaml 2022-05-01 02:04:56 +05:30
Dhiyaneshwaran 76e40c222e
Update aem-xss-childlist-selector.yaml 2022-05-01 00:46:35 +05:30
pussycat0x ccc7835baf
Sucuri Website Firewall - Not Configured Default page (#4254) 
* Add files via upload

* Auto Generated CVE annotations [Wed Mar 16 11:29:14 UTC 2022] 🤖

* Auto Generated New Template Addition List [Wed Mar 16 13:48:01 UTC 2022] 🤖

* moving templates into jolokia directory

* duplicate of jolokia-unauthenticated-lfi

* merged similar templates into one with updated matchers

* Auto Generated New Template Addition List [Wed Mar 23 10:21:57 UTC 2022] 🤖

* Delete .new-additions

* Auto Generated New Template Addition List [Wed Mar 23 10:22:29 UTC 2022] 🤖

* conflict update

* Auto Generated New Template Addition List [Wed Mar 23 10:23:39 UTC 2022] 🤖

* Auto Generated New Template Addition List [Wed Mar 23 10:26:51 UTC 2022] 🤖

* Add files via upload

* Auto Generated New Template Addition List [Thu Apr 28 11:25:25 UTC 2022] 🤖

* Auto Generated CVE annotations [Thu Apr 28 11:25:55 UTC 2022] 🤖

* Update and rename sucuri-webs-firewall-default-page-detect.yaml to sucuri-notconfigured-page-detect.yaml

* Auto Generated New Template Addition List [Thu Apr 28 20:25:56 UTC 2022] 🤖

* mise update

Co-authored-by: GitHub Action <action@github.com>
Co-authored-by: sandeep <sandeep@projectdiscovery.io>
Co-authored-by: Prince Chaddha <prince@projectdiscovery.io>
 2022-04-29 12:14:52 +05:30
sandeep 03a8c16f71 tags update 2022-04-27 03:06:21 +05:30
MostInterestingBotInTheWorld aa888bca8d
Dashboard Content Enhancements (#4238) 
Dashboard Content Enhancements
 2022-04-25 10:35:07 -04:00
forgedhallpass 209538baa6 refactor: Description field uniformization 
* info field reorder
* reference values refactored to list
* added new lines after the id and before the protocols
* removed extra new lines
* split really long descriptions to multiple lines (part 1)
* other minor fixes
 2022-04-22 13:38:41 +03:00
MostInterestingBotInTheWorld 31312b1c19
Dashboard Content Enhancements (#4191) 
Dashboard Content Enhancements
 2022-04-21 17:16:41 -04:00
sandeep 338d4622bf parts update to use response instead of all 2022-04-20 20:08:07 +05:30
Prince Chaddha 58e78efb02
Update unauthenticated-popup-upload.yaml 2022-04-20 01:12:40 +04:00
MostInterestingBotInTheWorld 5730781afa
Dashboard Content Enhancements (#4157) 
* Enhancement: exposures/files/joomla-file-listing.yaml by cs

* Enhancement: cves/2019/CVE-2019-5418.yaml by mp

* Enhancement: cves/2016/CVE-2016-10940.yaml by mp

* Enhancement: cves/2015/CVE-2015-4694.yaml by mp

* Enhancement: cves/2016/CVE-2016-10960.yaml by mp

* Enhancement: cves/2021/CVE-2021-20091.yaml by mp

* Enhancement: cves/2021/CVE-2021-20092.yaml by mp

* Enhancement: vulnerabilities/other/solar-log-authbypass.yaml by mp

* Enhancement: vulnerabilities/wordpress/churchope-lfi.yaml by mp

* Enhancement: vulnerabilities/other/solar-log-authbypass.yaml by mp

* Enhancement: cves/2017/CVE-2017-10075.yaml by mp

* Enhancement: cves/2021/CVE-2021-27358.yaml by mp

* Enhancement: cves/2017/CVE-2017-9833.yaml by mp

* Enhancement: vulnerabilities/wordpress/wordpress-accessible-wpconfig.yaml by mp

* Enhancement: vulnerabilities/wordpress/wp-spot-premium-lfi.yaml by mp

* Enhancement: misconfiguration/symfony-debugmode.yaml by mp

* Enhancement: cves/2016/CVE-2016-10940.yaml by mp

* Enhancement: cves/2015/CVE-2015-4694.yaml by mp

* Enhancement: cves/2016/CVE-2016-10960.yaml by mp

* Enhancement: cves/2015/CVE-2015-4694.yaml by mp

* Enhancement: vulnerabilities/wordpress/churchope-lfi.yaml by mp

* Enhancement: cves/2017/CVE-2017-10075.yaml by mp

* Enhancement: cves/2021/CVE-2021-27358.yaml by mp

* Enhancement: vulnerabilities/wordpress/wordpress-accessible-wpconfig.yaml by mp

* Enhancement: vulnerabilities/wordpress/wp-spot-premium-lfi.yaml by mp

* Enhancement: vulnerabilities/wordpress/newsletter-open-redirect.yaml by mp

* Enhancement: vulnerabilities/wordpress/newsletter-open-redirect.yaml by mp

* Enhancement: vulnerabilities/wordpress/pieregister-open-redirect.yaml by mp

* Enhancement: cves/2021/CVE-2021-25055.yaml by mp

* Enhancement: cves/2021/CVE-2021-25028.yaml by mp

* Enhancement: vulnerabilities/wordpress/noptin-open-redirect.yaml by mp

* Enhancement: vulnerabilities/wordpress/elex-woocommerce-xss.yaml by mp

* Enhancement: vulnerabilities/wordpress/my-chatbot-xss.yaml by mp

* Enhancement: vulnerabilities/wordpress/wp-adaptive-xss.yaml by mp

* Enhancement: cves/2021/CVE-2021-24947.yaml by mp

* Enhancement: cves/2021/CVE-2021-24406.yaml by mp

* Enhancement: vulnerabilities/wordpress/elementorpage-open-redirect.yaml by mp

* Enhancement: cves/2016/CVE-2016-10033.yaml by mp

* Enhancement: cves/2021/CVE-2021-31682.yaml by mp

* Enhancement: vulnerabilities/wordpress/wp-woocommerce-file-download.yaml by mp

* Enhancement: cves/2021/CVE-2021-22986.yaml by mp

* Enhancement: vulnerabilities/wordpress/newsletter-open-redirect.yaml by mp

* Enhancement: vulnerabilities/wordpress/pieregister-open-redirect.yaml by mp

* Enhancement: cves/2021/CVE-2021-25055.yaml by mp

* Enhancement: cves/2021/CVE-2021-25028.yaml by mp

* Enhancement: vulnerabilities/wordpress/noptin-open-redirect.yaml by mp

* Enhancement: vulnerabilities/wordpress/elex-woocommerce-xss.yaml by mp

* Enhancement: cves/2021/CVE-2021-24947.yaml by mp

* Enhancement: cves/2021/CVE-2021-24406.yaml by mp

* Enhancement: cves/2021/CVE-2021-22986.yaml by mp

* Enhancement: cves/2016/CVE-2016-10033.yaml by mp

* Enhancement: vulnerabilities/wordpress/elementorpage-open-redirect.yaml by mp

* Enhancement: cves/2021/CVE-2021-24406.yaml by mp

* Relocating to CVE folder

* Enhancement: cves/2017/CVE-2017-14651.yaml by mp

* Enhancement: cves/2020/CVE-2020-24589.yaml by mp

* Enhancement: vulnerabilities/confluence/confluence-ssrf-sharelinks.yaml by mp

* Enhancement: cves/2019/CVE-2019-2729.yaml by mp

* Enhancement: cves/2018/CVE-2018-2893.yaml by mp

* Enhancement: cves/2018/CVE-2018-2628.yaml by mp

* Enhancement: cves/2018/CVE-2018-3238.yaml by mp

* Enhancement: cves/2018/CVE-2018-3238.yaml by mp

* Enhancement: cves/2017/CVE-2017-3528.yaml by mp

* Enhancement: cves/2019/CVE-2019-2588.yaml by mp

* Enhancement: cves/2021/CVE-2021-31755.yaml by mp

* Enhancement: cves/2021/CVE-2021-42071.yaml by mp

* Enhancement: misconfiguration/zabbix-dashboards-access.yaml by mp

* Enhancement: cves/2017/CVE-2017-14651.yaml by mp

* Enhancement: cves/2020/CVE-2020-24589.yaml by mp

* Enhancement: vulnerabilities/confluence/confluence-ssrf-sharelinks.yaml by mp

* Enhancement: cves/2019/CVE-2019-2729.yaml by mp

* Enhancement: cves/2018/CVE-2018-2893.yaml by mp

* Enhancement: cves/2018/CVE-2018-3238.yaml by mp

* Enhancement: cves/2017/CVE-2017-3528.yaml by mp

* Enhancement: cves/2021/CVE-2021-42071.yaml by mp

* Syntax corrections
Added some cve-id fields
Removed duplicate dashboard comments

* Tag typo

Co-authored-by: sullo <sullo@cirt.net>
 2022-04-15 12:39:44 -04:00
MostInterestingBotInTheWorld a24ef794b7
Dashboard Content Enhancements (#4031) 
Dashboard Content Enhancements
 2022-04-07 09:53:15 -04:00
Prince Chaddha cc8e2e1bc5
Delete mikrotik-graph.yaml 2022-04-04 23:35:52 +05:30
idealphase 7963a563af
Updated mikrotik-graph.yaml 
Added how many interface graph exposure extractors
 2022-04-03 13:57:40 +07:00
sandeep 7b83c9990a minor updates to template names 2022-03-27 22:13:08 +05:30
Prince Chaddha 76cf7b463a
Update elasticsearch.yaml 2022-03-24 17:56:22 +05:30
Prince Chaddha a16430b81f
Update elasticsearch.yaml 2022-03-24 17:55:39 +05:30
Prince Chaddha 2c6feda7f8
Update jolokia-info-disclosure.yaml 2022-03-24 16:52:03 +05:30
pussycat0x c6e264a04e
New Templates added (#3913) 
* Add files via upload

* Auto Generated CVE annotations [Wed Mar 16 11:29:14 UTC 2022] 🤖

* Auto Generated New Template Addition List [Wed Mar 16 13:48:01 UTC 2022] 🤖

* moving templates into jolokia directory

* duplicate of jolokia-unauthenticated-lfi

* merged similar templates into one with updated matchers

* Auto Generated New Template Addition List [Wed Mar 23 10:21:57 UTC 2022] 🤖

* Delete .new-additions

* Auto Generated New Template Addition List [Wed Mar 23 10:22:29 UTC 2022] 🤖

* conflict update

* Auto Generated New Template Addition List [Wed Mar 23 10:23:39 UTC 2022] 🤖

Co-authored-by: GitHub Action <action@github.com>
Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2022-03-23 15:56:30 +05:30
sandeep ec99241f0e Updated "/etc/passwd" regex to avoid possible false positive results. 2022-03-22 13:31:31 +05:30
MostInterestingBotInTheWorld 9663595dd1
Dashboard Text Enhancements (#3948) 
Dashboard content enhancements
 2022-03-21 23:48:47 -04:00
Xeldax 10b23118aa
add airflow cve-2022-24288 (#3873) 
* add airflow cve-2022-24288

* lint update

* template request + matcher + metadata update

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2022-03-19 15:59:17 +05:30
Dhiyaneshwaran f60ea48e4c
AEM XSS - Childlist (#3916) 
* Create xss-childlist-selector.yaml

* Update xss-childlist-selector.yaml

* Rename xss-childlist-selector.yaml to aem-xss-childlist-selector.yaml

* adding metadata

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
 2022-03-17 14:23:26 +05:30
Sandeep Singh cca29dd553
Merge pull request #3866 from dolevf/master 
GraphQL Nuclei Templates
 2022-03-15 19:13:28 +05:30
sandeep 1df275d0ae update: more matchers + description + reference 2022-03-15 18:43:35 +05:30
Sandeep Singh 2877624443
Merge pull request #3888 from DhiyaneshGeek/master 
Additional Paths Added
 2022-03-14 20:56:22 +05:30
Dhiyaneshwaran 8301e80261
Update aem-login-status.yaml 2022-03-12 14:26:52 +05:30
Dhiyaneshwaran e910091f08
Update aem-login-status.yaml 2022-03-12 14:26:27 +05:30
Dhiyaneshwaran 32bcbecd43
Update aem-querybuilder-json-servlet.yaml 2022-03-12 14:23:17 +05:30
Dhiyaneshwaran f767a6d027
Update aem-default-get-servlet.yaml 2022-03-12 14:10:53 +05:30
sandeep a2fa2d60d4 added stop at first match support 2022-03-11 21:53:23 +05:30
aaditya rengarajan 2b876bb213
added more URLs to scrape 2022-03-11 19:28:52 +05:30
sandeep a003e24add moving templates around 2022-03-09 18:27:29 +05:30
sandeep 9f5cc1ca80 added gitlab metadata 2022-03-04 19:20:03 +05:30
sandeep a874d9ff02 template updates 
- moved template to misconfiguration directory
 2022-03-04 18:52:23 +05:30
MostInterestingBotInTheWorld 66f1023114
Merge branch 'projectdiscovery:master' into dashboard 2022-03-03 08:52:54 -05:00
MostInterestingBotInTheWorld d5556d3a75 Enhancement: default-logins/cobbler/cobbler-default-login.yaml by mp 2022-03-03 08:27:48 -05:00
sandeep 6d32b81b2a GitLab metadata update 2022-03-02 13:05:29 +05:30
MostInterestingBotInTheWorld da31d88a9f Enhancement: misconfiguration/proxy/metadata-openstack.yaml by cs 2022-02-28 13:38:21 -05:00
MostInterestingBotInTheWorld 25938bc625
Dashboard (#3706) 
* Enhancement: cves/2010/CVE-2010-1353.yaml by mp

* Enhancement: cves/2010/CVE-2010-1352.yaml by mp

* Enhancement: cves/2010/CVE-2010-1345.yaml by mp

* Enhancement: cves/2010/CVE-2010-1340.yaml by mp

* Enhancement: cves/2010/CVE-2010-1345.yaml by mp

* Enhancement: cves/2010/CVE-2010-1315.yaml by mp

* Enhancement: cves/2010/CVE-2010-1314.yaml by mp

* Enhancement: cves/2010/CVE-2010-1313.yaml by mp

* Enhancement: cves/2010/CVE-2010-1312.yaml by mp

* Enhancement: cves/2010/CVE-2010-1308.yaml by mp

* Enhancement: cves/2010/CVE-2010-1307.yaml by mp

* Enhancement: cves/2010/CVE-2010-1306.yaml by mp

* Enhancement: cves/2010/CVE-2010-1305.yaml by mp

* Enhancement: cves/2010/CVE-2010-1304.yaml by mp

* Enhancement: cves/2010/CVE-2010-1302.yaml by mp

* Enhancement: cves/2010/CVE-2010-1219.yaml by mp

* Enhancement: cves/2010/CVE-2010-1352.yaml by mp

* Enhancement: cves/2010/CVE-2010-1354.yaml by mp

* Enhancement: cves/2010/CVE-2010-1461.yaml by mp

* Enhancement: cves/2010/CVE-2010-1469.yaml by mp

* Enhancement: cves/2010/CVE-2010-1470.yaml by mp

* Enhancement: cves/2010/CVE-2010-1471.yaml by mp

* Enhancement: cves/2010/CVE-2010-1472.yaml by mp

* Enhancement: cves/2010/CVE-2010-1473.yaml by mp

* Enhancement: cves/2010/CVE-2010-1474.yaml by mp

* Enhancement: cves/2010/CVE-2010-1475.yaml by mp

* Enhancement: cves/2010/CVE-2010-1476.yaml by mp

* Enhancement: cves/2010/CVE-2010-1478.yaml by mp

* Enhancement: cves/2010/CVE-2010-1491.yaml by mp

* Enhancement: cves/2010/CVE-2010-1494.yaml by mp

* Enhancement: cves/2010/CVE-2010-1495.yaml by mp

* Enhancement: cves/2010/CVE-2010-1531.yaml by mp

* Enhancement: cves/2010/CVE-2010-1473.yaml by mp

* Enhancement: misconfiguration/proxy/metadata-alibaba.yaml by cs

* Enhancement: misconfiguration/proxy/metadata-openstack.yaml by cs

* Enhancement: misconfiguration/proxy/metadata-oracle.yaml by cs

* Enhancement: cves/2016/CVE-2016-4975.yaml by cs

* Enhancement: misconfiguration/proxy/metadata-openstack.yaml by cs

* Enhancement: misconfiguration/proxy/metadata-oracle.yaml by cs

* Enhancement: misconfiguration/proxy/metadata-openstack.yaml by cs

* Enhancement: misconfiguration/proxy/metadata-digitalocean.yaml by cs

* Enhancement: misconfiguration/proxy/metadata-alibaba.yaml by cs

* Enhancement: misconfiguration/proxy/metadata-hetzner.yaml by cs

* Enhancement: misconfiguration/proxy/metadata-aws.yaml by cs

* Enhancement: misconfiguration/proxy/metadata-google.yaml by cs

* Enhancement: misconfiguration/proxy/metadata-azure.yaml by cs

* Enhancement: misconfiguration/proxy/open-proxy-localhost.yaml by cs

* Enhancement: misconfiguration/proxy/open-proxy-internal.yaml by cs

* Enhancement: cves/2021/CVE-2021-1497.yaml by cs

* Spacing fixes and enhancement to CNVD-2019-01348.yaml

* Spacing fixes, and enhancement to CNVD-2019-01348.yaml

* Merge artifact

* Spacing

Co-authored-by: sullo <sullo@cirt.net>
 2022-02-15 11:39:56 +05:30
sandeep fcec6a8a59 additional path for phpmyadmin setup page 2022-02-15 11:22:01 +05:30
Sandeep Singh 99c131b1a6
Added Cobbler provisioning server Templates (#3698) 
Co-Authored-By: csh <25989137+c-sh0@users.noreply.github.com>

Co-authored-by: csh <25989137+c-sh0@users.noreply.github.com>
 2022-02-14 22:50:32 +05:30
sullo 9891b971cb
Merge pull request #3604 from MostInterestingBotInTheWorld/master 
Enhancement: Replace nonstandard ascii chars with chars we like better
 2022-01-26 10:38:24 -05:00
Dhiyaneshwaran 7bd14d5cbc
OpenBMCS Info Disclosure & SSRF Unauth (#3603) 
* Create gophish-login.yaml

* Create gophish-workflow.yaml

* Update gophish-workflow.yaml

* Create openbmcs-secret-disclosure.yaml

* Create openbmcs-ssrf.yaml

* Added additional matcher

* Added missing header + matcher update

Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
Co-authored-by: root <root@3gzk.l.time4vps.cloud>
 2022-01-26 16:56:40 +05:30
Sullo 9a8482172d Remove: 
- various nonstandard ascii chars in favor of the standard ones (mostly quotes)
 - spaces after : in some files
 2022-01-25 14:38:53 -05:00
edoardottt 78795e9a51 update Zipkin template 2022-01-24 10:13:09 +01:00
gilfoyle97 afd4f13580
Update unauthenticated-zippkin.yaml 2022-01-24 10:11:18 +01:00