Commit Graph

9624 Commits (eec690a6804093da98de9235091944935a02c299)

Author SHA1 Message Date
Sandeep Singh eec690a680
Merge pull request #2769 from projectdiscovery/CVE-2021-1497
Add CVE 2021 1497
2021-10-02 05:26:12 +05:30
sandeep aec246bf5b Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates into CVE-2021-1497 2021-10-02 05:18:04 +05:30
Sandeep Singh 0b99d0f3d7
Merge pull request #2789 from geeknik/patch-30
Update php-scanner.yaml
2021-10-02 05:05:18 +05:30
Sandeep Singh 545c222aef
Merge pull request #2798 from projectdiscovery/vmware-version-detect
Update vmware-version-detect.yaml
2021-10-02 05:04:29 +05:30
Sandeep Singh dcfc4fb9a3
Merge pull request #2800 from daffainfo/patch-232
Create CVE-2021-40960.yaml
2021-10-02 04:55:06 +05:30
Sandeep Singh 5d1a695054
Merge pull request #2795 from PR3R00T/patch-12
Samba SWAT panel
2021-10-02 04:52:14 +05:30
Sandeep Singh 5ae63fd57d
Merge pull request #2801 from geeknik/patch-31
Create tugboat-config-exposure.yaml
2021-10-02 04:41:59 +05:30
sandeep e08ccf85db adding missing condition 2021-10-02 04:37:10 +05:30
GitHub Action fa947061ee Auto Generated CVE annotations [Fri Oct 1 23:05:32 UTC 2021] 🤖 2021-10-01 23:05:32 +00:00
Sandeep Singh f820ed994d
Merge pull request #2803 from j-rolf/CVE_2018_0127
Added CVE-2018-0127 template.
2021-10-02 04:34:09 +05:30
sandeep 2f99b4165a misc update 2021-10-02 04:33:14 +05:30
Jackson Rolf 2b477061e8 Added CVE-2018-0127 template. 2021-10-01 15:30:31 -04:00
Geeknik Labs bdbf73cd34
Update tugboat-config-exposure.yaml 2021-10-01 13:21:58 -05:00
Geeknik Labs c05df76ed2
Create tugboat-config-exposure.yaml
Create tugboat-config-exposure.yaml
2021-10-01 13:13:35 -05:00
Muhammad Daffa 3af984c55d
Create CVE-2021-40960.yaml 2021-10-01 21:52:29 +07:00
Prince Chaddha e0ba32c350
Update vmware-version-detect.yaml 2021-10-01 19:48:03 +05:30
Prince Chaddha 4682d7b790
Merge pull request #2790 from TheBinitGhimire/master
Create amazon-sns-topic.yaml
2021-10-01 17:14:08 +05:30
Prince Chaddha 3e2937db15
Update and rename amazon-sns-topic.yaml to amazon-sns-token.yaml 2021-10-01 16:42:05 +05:30
Prince Chaddha 4dc168520c
Merge pull request #2791 from pdelteil/patch-59
Update and rename wordpress-emails-verification-for-woocommerce.yaml …
2021-10-01 16:33:44 +05:30
Prince Chaddha d7e6cb313e
Update wp-woocommerce-email-verification.yaml 2021-10-01 16:31:50 +05:30
Prince Chaddha f7533d4d89
Merge pull request #2794 from gy741/rule-add-v63
Rule add v63
2021-10-01 16:30:47 +05:30
Prince Chaddha 58fd372498
Update and rename qihang-media-web-lfi.yaml to qihang-media-lfi.yaml 2021-10-01 16:28:20 +05:30
Prince Chaddha ea71661d79
Update and rename qihang-media-web-credentials-disclosure.yaml to qihang-media-disclosure.yaml 2021-10-01 16:26:25 +05:30
Prince Chaddha f84a1659ab
Update samba-swat-panel.yaml 2021-10-01 16:21:20 +05:30
Prince Chaddha 8b4653b236
Update samba-swat-panel.yaml 2021-10-01 16:18:08 +05:30
PR3R00T 0566c702ef
Samba SWAT panel 2021-10-01 08:40:33 +01:00
GwanYeong Kim f750bf5ba5 Create qihang-media-web-credentials-disclosure.yaml
The application suffers from clear-text credentials disclosure vulnerability that allows an unauthenticated attacker to issue a request to an unprotected directory that hosts an XML file /xml/User/User.xml and obtain administrative login information that allows for a successful authentication bypass attack.

Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-10-01 15:42:48 +09:00
GwanYeong Kim 90138f44d1 Create qihang-media-web-lfi.yaml
The application suffers from an unauthenticated file disclosure vulnerability when input passed thru the filename parameter when using the download action or thru path parameter when using the getAll action is not properly verified before being used. This can be exploited to disclose contents of files and directories from local resources.

Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-10-01 15:35:12 +09:00
Philippe Delteil 145f1a643d
Update and rename wordpress-emails-verification-for-woocommerce.yaml to wp-woocommerce-email-verification.yaml
- name changed to match template id. 
- added  stop-at-first-match condition.
2021-09-30 22:49:21 -03:00
Sandeep Singh c4e6e7a8a0
Merge pull request #2788 from projectdiscovery/cves-cleanup
Cves cleanup
2021-10-01 04:57:22 +05:30
Binit Ghimire ae01477806
Create amazon-sns-topic.yaml 2021-10-01 04:57:28 +05:45
Geeknik Labs 06e1e81f5e
Update php-scanner.yaml 2021-09-30 17:58:15 -05:00
Geeknik Labs 5028b76fb3
Update php-scanner.yaml
fixing more matchers
2021-09-30 17:51:17 -05:00
Geeknik Labs aeba0ba1cd
Update php-scanner.yaml
Fixed the GLOBALS matchers, so that a case like https://srcincite.io/blog/2021/09/30/chasing-a-dream-pwning-the-biggest-cms-in-china.html wouldn't be missed.
2021-09-30 17:43:42 -05:00
Sullo fe5fdf989e Merge branch 'cves-cleanup' of https://github.com/projectdiscovery/nuclei-templates into cves-cleanup 2021-09-30 17:16:34 -04:00
Sullo 1bc4c2dffb add cve classification 2021-09-30 17:16:15 -04:00
Sandeep Singh 974493daaa
Update CVE-2016-4975.yaml 2021-10-01 01:34:54 +05:30
Sandeep Singh 1c9238b972
Rename CVE-2016-4975.yml to CVE-2016-4975.yaml 2021-10-01 01:33:50 +05:30
GitHub Action 93c2fafc77 Auto README Update [Thu Sep 30 19:57:24 UTC 2021] 🤖 2021-09-30 19:57:24 +00:00
GitHub Action 278367597e Auto Generated Templates Stats [Thu Sep 30 19:57:03 UTC 2021] 🤖 2021-09-30 19:57:03 +00:00
Sullo 9f04b0abd8 Fix field names vs values 2021-09-30 15:56:52 -04:00
Sullo f1f6fbe26f Move deprecated-sshv1-detection.yaml to 2001/CVE-2001-1473.yaml 2021-09-30 15:49:47 -04:00
Sullo a28eb3f3e9 Add information for CVE-2001-1473 2021-09-30 15:48:27 -04:00
Sullo 0c4dd95bf6 Move openssh5.3-detect.yaml to cves/2016/CVE-2016-6210.yaml 2021-09-30 15:43:00 -04:00
Sullo 37920b7a88 Add CVE information 2021-09-30 15:42:07 -04:00
Sullo 7adfd01163 Moving listserv_maestro_rce.yaml to cves folder 2021-09-30 15:39:45 -04:00
Sullo d34e6c1145 Add information for CVE-2010-1870 2021-09-30 15:38:59 -04:00
Sullo 3c012b137d Break CVE-2016-4975 into its own template 2021-09-30 15:35:17 -04:00
Sandeep Singh 8b15ed3268
Merge pull request #2784 from sullo/master
Adding Host headers to some raw requests. Added a CVE.
2021-09-30 23:58:44 +05:30
sullo c0003f8731
Update CVE-2020-29453.yaml 2021-09-30 14:27:12 -04:00