Commit Graph

887 Commits (ec8829904adbf1cef536baa6dd769661bc806b5c)

Author SHA1 Message Date
edoardottt 74a69107bb Add CVE-2022-0381 2022-03-07 19:19:41 +01:00
sandeep 71410871c6 more strict matchers + extractor 2022-03-06 13:47:52 +05:30
cckuailong 4023282a2d add CVE-2022-23779 2022-03-06 09:38:26 +08:00
sandeep 103826f041 strict matchers for CVE-2022-22536 2022-03-05 20:57:11 +05:30
Sandeep Singh 541568a74c
Merge pull request #3835 from Akokonunes/patch-124
Create CVE-2022-0692.yaml
2022-03-04 22:24:46 +05:30
sandeep a3345c34ae template location update 2022-03-04 22:17:44 +05:30
sandeep 657c4cc1f7 matcher update 2022-03-04 20:46:40 +05:30
GwanYeong Kim 834c5a8c64 Create CVE-2022-24260.yaml
A SQL injection vulnerability in Voipmonitor GUI before v24.96 allows attackers to escalate privileges to the Administrator level.

Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2022-03-04 10:18:40 +09:00
GitHub Action dbdfd6858a Auto Generated CVE annotations [Thu Mar 3 21:20:41 UTC 2022] 🤖 2022-03-03 21:20:41 +00:00
Sandeep Singh 09b90a84a4
Merge pull request #3776 from projectdiscovery/CVE-2022-22536
Added CVE-2022-22536 (SAP Memory Pipes(MPI) Desynchronization) Detection
2022-03-04 02:50:01 +05:30
sandeep 51af63b9ab misc update 2022-03-04 02:48:25 +05:30
Prince Chaddha 698bfa993e
Update CVE-2022-23808.yaml 2022-03-03 17:09:21 +05:30
Prince Chaddha 2e71889e88
Merge pull request #3799 from cckuailong/test2
add CVE-2022-24124
2022-03-03 16:16:57 +05:30
sandeep 496c66f6a4 minor updates 2022-03-03 02:44:27 +05:30
sandeep 9ba37cacfd Spring Cloud Gateway Code Injection (CVE-2022-22947) 2022-03-02 14:15:10 +05:30
sullo f2cc6fdf18 Merge branch 'dashboard' of https://github.com/MostInterestingBotInTheWorld/nuclei-templates into dashboard 2022-02-28 17:41:23 -05:00
sullo ec90d215b0 Merge branch 'dashboard' of https://github.com/MostInterestingBotInTheWorld/nuclei-templates into dashboard 2022-02-28 17:36:39 -05:00
sullo 93e9c04f38 Merge branch 'dashboard' of https://github.com/MostInterestingBotInTheWorld/nuclei-templates into dashboard 2022-02-28 17:31:38 -05:00
MostInterestingBotInTheWorld 390fe3b65f Enhancement: cves/2021/CVE-2021-45380.yaml by mp 2022-02-28 17:19:33 -05:00
Prince Chaddha fa10201d68
Update CVE-2022-24124.yaml 2022-03-01 03:31:40 +05:30
MostInterestingBotInTheWorld 121157cc78 Enhancement: cves/2022/CVE-2022-23808.yaml by mp 2022-02-28 16:30:49 -05:00
MostInterestingBotInTheWorld ae590f67d4 Enhancement: cves/2022/CVE-2022-23178.yaml by mp 2022-02-28 16:29:50 -05:00
MostInterestingBotInTheWorld 4296ac8ca7 Enhancement: cves/2022/CVE-2022-23131.yaml by mp 2022-02-28 16:20:42 -05:00
MostInterestingBotInTheWorld 746893454c Enhancement: cves/2022/CVE-2022-0653.yaml by mp 2022-02-28 16:13:26 -05:00
MostInterestingBotInTheWorld 48713e4d81 Enhancement: cves/2022/CVE-2022-0432.yaml by mp 2022-02-28 16:02:00 -05:00
MostInterestingBotInTheWorld 2737158259 Enhancement: cves/2022/CVE-2022-0378.yaml by mp 2022-02-28 15:58:49 -05:00
MostInterestingBotInTheWorld 1b502ef844 Enhancement: cves/2022/CVE-2022-0281.yaml by mp 2022-02-28 15:41:31 -05:00
MostInterestingBotInTheWorld e577bcf9fa Enhancement: cves/2022/CVE-2022-0218.yaml by mp 2022-02-28 15:38:39 -05:00
MostInterestingBotInTheWorld bd4ee10ac1 Enhancement: cves/2022/CVE-2022-0149.yaml by mp 2022-02-28 15:09:45 -05:00
MostInterestingBotInTheWorld c4a91ea72f Enhancement: cves/2022/CVE-2022-25369.yaml by cs 2022-02-28 14:31:36 -05:00
cckuailong 2f98ce8700 add CVE-2022-24124 2022-02-28 21:53:30 +08:00
Sandeep Singh e83c971ca5
Merge pull request #3625 from projectdiscovery/CVE-2022-21371
Added CVE-2022-21371
2022-02-26 22:56:53 +05:30
sandeep de14074dff using unsafe request and matcher update 2022-02-26 22:48:17 +05:30
GitHub Action 070e52ee3e Auto Generated CVE annotations [Fri Feb 25 18:40:49 UTC 2022] 🤖 2022-02-25 18:40:49 +00:00
sandeep 6bda604a36 additional path support 2022-02-26 00:09:07 +05:30
sandeep d8ae26f711 misc updates 2022-02-26 00:00:48 +05:30
sandeep 1ba756d00a Added CVE-2022-22536 (SAP Memory Pipes(MPI) Desynchronization) Detection 2022-02-25 23:29:02 +05:30
Daniel Santos 907f4d865f CVE-2022-23134 template 2022-02-25 10:00:40 -06:00
sandeep 322bc31df5 metadata update 2022-02-25 17:33:39 +05:30
sandeep c56ee59d51 Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates 2022-02-25 05:04:11 +05:30
sandeep c81f2e05da Reference update 2022-02-25 05:04:03 +05:30
GitHub Action 52ede2665a Auto Generated CVE annotations [Thu Feb 24 23:32:18 UTC 2022] 🤖 2022-02-24 23:32:18 +00:00
Sandeep Singh 90211a94db
Merge pull request #3736 from For3stCo1d/CVE-2022-23131
Create CVE-2022-23131.yaml
2022-02-25 04:57:52 +05:30
sandeep 9aa0e6be8a metadata update 2022-02-25 04:53:48 +05:30
sandeep ae6d460743 added metadata 2022-02-25 04:19:23 +05:30
Sandeep Singh 9032d8ec19
Merge pull request #3765 from projectdiscovery/dynamicweb
Dynamicweb (CVE-2022-25369)
2022-02-25 00:25:57 +05:30
Dhiyaneshwaran 1f9c5311ab
CVE-2022-0653 Wordpress Profile Builder – User Profile & User Registration Forms (#3761)
* Auto Generated New Template Addition List [Wed Feb 23 16:10:39 UTC 2022] 🤖

* Create CVE-2022-0653.yaml

* Auto Generated New Template Addition List [Wed Feb 23 16:13:51 UTC 2022] 🤖

* misc updates

* Auto Generated New Template Addition List [Thu Feb 24 11:29:05 UTC 2022] 🤖

Co-authored-by: GitHub Action <action@github.com>
Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2022-02-24 17:03:20 +05:30
sandeep e400d6f1bb Added CVE-2022-25369 2022-02-24 13:44:58 +05:30
东方有鱼名为咸 3ec6f5a27b
add CVE-2022-24112.yaml (#3751)
* Create CVE-2022-24112.yaml

* minor improvements

* misc update

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2022-02-23 13:25:27 +05:30
sandeep 736e7427d6 added missing tags 2022-02-22 19:53:43 +05:30
Prince Chaddha 22f35f3e23
Merge pull request #3730 from DhiyaneshGeek/master
10 New Wordpress Template
2022-02-22 14:47:20 +05:30
Prince Chaddha fd011250b3
Update CVE-2022-25323.yaml 2022-02-22 14:09:05 +05:30
Prince Chaddha 363bc051a5
Update CVE-2022-0149.yaml 2022-02-22 13:33:56 +05:30
Prince Chaddha 87961281a8
Update CVE-2022-0149.yaml 2022-02-22 13:33:25 +05:30
林寒 56713b8175
Create CVE-2022-23131.yaml 2022-02-20 20:37:19 +08:00
PikPikcU 280de89a19
Update CVE-2022-25323.yaml 2022-02-19 17:32:56 -05:00
PikPikcU 2ca53695ca
Create CVE-2022-25323.yaml 2022-02-19 17:32:01 -05:00
GitHub Action 1fdab1ebfb Auto Generated CVE annotations [Sat Feb 19 11:22:51 UTC 2022] 🤖 2022-02-19 11:22:51 +00:00
Dhiyaneshwaran 45aacdad8c
Create CVE-2022-0149.yaml 2022-02-19 16:51:38 +05:30
cckuailong 5e5d294656
add CVE-2022-23808 (#3697)
* add CVE-2022-23808

* Update CVE-2022-23808.yaml

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2022-02-14 17:13:04 +05:30
GitHub Action c548ca9f59 Auto Generated CVE annotations [Wed Feb 9 19:42:28 UTC 2022] 🤖 2022-02-09 19:42:28 +00:00
Prince Chaddha c065716a94
Merge pull request #3672 from pikpikcu/patch-321
Create CVE-2022-0432
2022-02-10 01:10:52 +05:30
Prince Chaddha f8a31448f9
Update CVE-2022-0432.yaml 2022-02-10 01:06:59 +05:30
Prince Chaddha 9e26df67b3
Update CVE-2022-0432.yaml 2022-02-10 00:58:51 +05:30
GitHub Action 94ac089ed7 Auto Generated CVE annotations [Sun Feb 6 18:32:16 UTC 2022] 🤖 2022-02-06 18:32:16 +00:00
sandeep 574acfaddc minor template update 2022-02-06 23:59:47 +05:30
PikPikcU 0d5e0e891d
Update CVE-2022-0378.yaml 2022-02-06 05:18:24 -05:00
PikPikcU 0d311a72c3
Update CVE-2022-0281.yaml 2022-02-06 05:17:40 -05:00
PikPikcU 9e641734a3
Create CVE-2022-0432.yaml 2022-02-06 01:04:17 -05:00
PikPikcU 4f8a0ac62c
Create CVE-2022-0378.yaml 2022-02-06 00:41:20 -05:00
PikPikcU a12753c7fe
Create CVE-2022-0281.yaml 2022-02-06 00:28:32 -05:00
sandeep d34ca992d3 Added CVE-2022-21371 2022-01-28 16:59:22 +05:30
sandeep 57d742bfb4 Removing temporarily due to limited information 2022-01-28 16:58:30 +05:30
sandeep 9fa97d4221 path update 2022-01-28 16:55:45 +05:30
Prince Chaddha dfdfc369d1
Merge pull request #3597 from paradessia/master
CVE-2022-21371
2022-01-28 11:14:44 +05:30
cckuailong 5b424fafe1
add CVE-2022-23944 (#3605)
* add CVE-2022-23944

* fix CVE-2021-23944 matcher type

* Update CVE-2022-23944.yaml

* minor updates

Co-authored-by: Prince Chaddha <prince@projectdiscovery.io>
Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2022-01-27 15:59:26 +05:30
Sullo 9a8482172d Remove:
- various nonstandard ascii chars in favor of the standard ones (mostly quotes)
 - spaces after : in some files
2022-01-25 14:38:53 -05:00
Prince Chaddha 97b38b98b4
Update CVE-2022-21371.yaml 2022-01-25 21:06:14 +05:30
GitHub Action 48add9c36b Auto Generated CVE annotations [Tue Jan 25 11:06:39 UTC 2022] 🤖 2022-01-25 11:06:39 +00:00
Prince Chaddha 2460dceff3
Update CVE-2022-21371.yaml 2022-01-25 16:36:10 +05:30
GitHub Action 5f2efaf5df Auto Generated CVE annotations [Tue Jan 25 09:56:37 UTC 2022] 🤖 2022-01-25 09:56:37 +00:00
on abfbfe29ae CVE-2022-21371.yaml 2022-01-25 12:48:56 +03:00
GitHub Action e035a797c6 Auto Generated CVE annotations [Tue Jan 25 09:41:31 UTC 2022] 🤖 2022-01-25 09:41:31 +00:00
Prince Chaddha 5511ff1efd
Merge pull request #3578 from hexcat/add-wp-html-mail-xss
Added wp-html-mail-xss template
2022-01-24 14:21:06 +05:30
Prince Chaddha 6dd35d6491
Update and rename vulnerabilities/wordpress/wp-html-mail-xss.yaml to cves/2022/CVE-2022-0218.yaml 2022-01-24 14:17:01 +05:30
Prince Chaddha e9897bddaa
Update CVE-2022-23178.yaml 2022-01-24 12:37:55 +05:30
GwanYeong Kim 2d53221aea Create CVE-2022-23178.yaml
An issue was discovered on Crestron HD-MD4X2-4K-E 1.0.0.2159 devices. When the administrative web interface of the HDMI switcher is accessed unauthenticated, user credentials are disclosed that are valid to authenticate to the web interface. Specifically, aj.html sends a JSON document with uname and upassword fields.

Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2022-01-23 20:28:25 +09:00