f9d235d579
fixing typo
2023-10-25 15:57:44 +05:30
0c9631bb2e
fix matcher
2023-10-25 15:39:27 +05:30
4a9aaa0dd9
Add: CVE-2022-36553
2023-10-25 16:50:46 +08:00
eca00fd866
Auto Template Signing [Wed Oct 25 07:33:43 UTC 2023] 🤖
2023-10-25 07:33:44 +00:00
ed598e1f27
Merge pull request #8431 from iamnoooob/main
...
Added CVE-2023-4582 Vitogate 300 Unauth RCE
2023-10-25 13:03:43 +05:30
18fcc55775
Merge pull request #8324 from luisfelipe146/main
...
Multiple XSS in BestWebSoft Plugins
2023-10-25 13:00:12 +05:30
2afa549894
Auto Template Signing [Wed Oct 25 07:11:32 UTC 2023] 🤖
2023-10-25 07:11:33 +00:00
e896e25912
lint fix
2023-10-25 12:35:03 +05:30
ec5e8252b6
Merge branch 'main' into main
2023-10-25 12:34:07 +05:30
4b2b968920
Merge branch 'main' of https://github.com/luisfelipe146/nuclei-templates into pr/8324
2023-10-25 12:31:04 +05:30
4b54644929
fix lint error
2023-10-25 12:30:43 +05:30
7ffc2c63eb
Merge remote-tracking branch 'origin' into pr/8431
2023-10-25 12:27:06 +05:30
f998197bcc
Merge branch 'main' into main
2023-10-25 12:26:58 +05:30
4474bf62a3
TemplateMan Update [Wed Oct 25 06:48:30 UTC 2023] 🤖
2023-10-25 06:48:31 +00:00
50229ad7fa
TemplateMan Update [Wed Oct 25 06:44:12 UTC 2023] 🤖
2023-10-25 06:44:14 +00:00
72df19dd8d
change in severity
2023-10-25 06:28:44 +05:30
cdaa35cf93
full exploit
2023-10-25 06:17:10 +05:30
b035ceffea
fix template
2023-10-25 04:05:46 +05:30
b815d23b90
metadata & matcher update
2023-10-24 17:15:08 +05:30
936e1caea8
Create CVE-2023-4966.yaml
2023-10-24 16:28:04 +05:30
8f5c7924d9
TemplateMan Update [Mon Oct 23 13:06:52 UTC 2023] 🤖
2023-10-23 13:06:53 +00:00
4607341bf2
Auto Template Signing [Mon Oct 23 13:05:19 UTC 2023] 🤖
2023-10-23 13:05:20 +00:00
82332a23cc
TemplateMan Update [Mon Oct 23 12:51:13 UTC 2023] 🤖
2023-10-23 12:51:13 +00:00
b13f72b186
Auto Template Signing [Mon Oct 23 12:42:35 UTC 2023] 🤖
2023-10-23 12:42:37 +00:00
72d5082a23
TemplateMan Update [Mon Oct 23 12:22:19 UTC 2023] 🤖
2023-10-23 12:22:20 +00:00
007a44905e
Auto Template Signing [Mon Oct 23 12:20:38 UTC 2023] 🤖
2023-10-23 12:20:39 +00:00
97faa2a09e
Merge pull request #8439 from HuTa0kj/dev/cve_2023_0297
...
Update CVE-2023-0297
2023-10-23 17:47:25 +05:30
73f773fdc0
Merge branch 'main' into main
2023-10-23 15:55:20 +05:30
a3700a6d4b
metadata - update
2023-10-23 15:13:49 +05:30
d4f8229728
Resolved all conflicts by accepting upcoming changes
2023-10-23 15:11:19 +05:30
fc86efd945
Auto Template Signing [Mon Oct 23 07:42:12 UTC 2023] 🤖
2023-10-23 07:42:12 +00:00
4fdd549ffc
Update CVE-2017-18501.yaml
2023-10-23 12:46:36 +05:30
003c1ae2da
TemplateMan Update [Mon Oct 23 07:14:06 UTC 2023] 🤖
2023-10-23 07:14:07 +00:00
7deba462f4
Update CVE-2023-0297
2023-10-23 15:12:52 +08:00
ec8536d7cb
Auto Template Signing [Mon Oct 23 07:04:05 UTC 2023] 🤖
2023-10-23 07:04:06 +00:00
6e505e114f
all template update
2023-10-22 18:05:42 +05:30
c1ebe4aa39
TemplateMan Update [Sun Oct 22 12:16:23 UTC 2023] 🤖
2023-10-22 12:16:25 +00:00
25ad1850f7
updated matcher
2023-10-20 21:06:05 +05:30
1f0c821f5d
Added CVE-2023-4582 Vitogate 300 RCE
2023-10-20 17:47:42 +04:00
aac65c12fb
Auto Template Signing [Fri Oct 20 12:31:56 UTC 2023] 🤖
2023-10-20 12:31:57 +00:00
b38e8bbebc
TemplateMan Update [Fri Oct 20 11:41:12 UTC 2023] 🤖
2023-10-20 11:41:16 +00:00
dd395fa0a8
Auto Template Signing [Thu Oct 19 14:45:53 UTC 2023] 🤖
2023-10-19 14:45:54 +00:00
23396a8bba
reverted log4j templates
2023-10-19 20:05:43 +05:30
40c9ecc610
Auto Template Signing [Thu Oct 19 13:36:25 UTC 2023] 🤖
2023-10-19 13:36:26 +00:00
b4e834b049
Auto Template Signing [Thu Oct 19 13:13:50 UTC 2023] 🤖
2023-10-19 13:13:52 +00:00
ccb6a4683f
TemplateMan Update [Thu Oct 19 11:40:01 UTC 2023] 🤖
2023-10-19 11:40:02 +00:00
de280482c4
TemplateMan Update [Thu Oct 19 10:38:58 UTC 2023] 🤖
2023-10-19 10:39:00 +00:00
74176631f8
TemplateMan Update [Wed Oct 18 16:27:25 UTC 2023] 🤖
2023-10-18 16:27:27 +00:00
e8ab162fd4
TemplateMan Update [Wed Oct 18 16:26:29 UTC 2023] 🤖
2023-10-18 16:26:31 +00:00
c077ec0bc3
Merge pull request #8409 from theamanrawat/patch-3
...
Create CVE-2023-5360.yaml
2023-10-18 21:51:22 +05:30
d4621f33d2
TemplateMan Update [Tue Oct 17 18:18:29 UTC 2023] 🤖
2023-10-17 18:18:29 +00:00
2dc1bd140c
TemplateMan Update [Tue Oct 17 17:52:25 UTC 2023] 🤖
2023-10-17 17:52:27 +00:00
7b1cd03956
Update CVE-2021-24627.yaml
2023-10-17 23:19:18 +05:30
1dd8251465
Merge pull request #8407 from projectdiscovery/cve-templates6
...
New CVEs Added
2023-10-17 23:17:17 +05:30
031fe06184
fix lint
2023-10-17 23:02:04 +05:30
52c71d0f5d
add metadata
2023-10-17 22:51:59 +05:30
ea20ad232b
fix weak matcher
2023-10-17 22:07:11 +05:30
15e9456960
fixed lint errors
2023-10-17 18:57:49 +05:30
22719a4c3e
minor update
2023-10-17 17:28:54 +05:30
1f7d855fe4
TemplateMan Update [Tue Oct 17 11:50:30 UTC 2023] 🤖
2023-10-17 11:50:31 +00:00
e3cad34cd3
Create CVE-2023-5360.yaml
2023-10-17 14:30:45 +05:30
c1b18b3f06
fixed errors
2023-10-17 13:46:05 +05:30
1b2fddb9cb
templates added
2023-10-17 12:50:28 +05:30
44cd028c80
TemplateMan Update [Tue Oct 17 06:29:44 UTC 2023] 🤖
2023-10-17 06:29:45 +00:00
9fc2fa1deb
Merge pull request #8399 from projectdiscovery/CVE-2022-0597
...
Create CVE-2022-0597.yaml
2023-10-17 11:53:15 +05:30
4d2cc38fb5
TemplateMan Update [Tue Oct 17 06:19:43 UTC 2023] 🤖
2023-10-17 06:19:44 +00:00
cbf1f18ee8
TemplateMan Update [Tue Oct 17 06:11:14 UTC 2023] 🤖
2023-10-17 06:11:15 +00:00
2bca87e397
Merge pull request #8401 from projectdiscovery/CVE-2023-37728
...
Create CVE-2023-37728.yaml
2023-10-17 11:35:48 +05:30
89f65c1671
TemplateMan Update [Tue Oct 17 06:05:26 UTC 2023] 🤖
2023-10-17 06:05:26 +00:00
bf122c0842
Create CVE-2021-25016.yaml
2023-10-17 00:07:06 +05:30
e2582d3dfc
Create CVE-2023-37728.yaml
2023-10-16 23:54:57 +05:30
fae99dea62
TemplateMan Update [Mon Oct 16 18:12:46 UTC 2023] 🤖
2023-10-16 18:12:47 +00:00
2cee507762
trailspace fix
2023-10-16 22:34:07 +05:30
12d4ff4229
Create CVE-2022-0597.yaml
2023-10-16 22:31:04 +05:30
698f3f9082
TemplateMan Update [Mon Oct 16 10:59:02 UTC 2023] 🤖
2023-10-16 10:59:04 +00:00
e51eecde1f
TemplateMan Update [Mon Oct 16 10:55:13 UTC 2023] 🤖
2023-10-16 10:55:15 +00:00
e291d54516
Merge pull request #8394 from win3zz/main
...
Create CVE-2023-3710.yaml
2023-10-16 16:24:17 +05:30
d1d121c46d
Merge pull request #8386 from iamnoooob/main
...
Added CVE-2020-6950.yaml
2023-10-16 16:20:35 +05:30
cec5e6ffa2
Update CVE-2023-3710.yaml
2023-10-16 16:20:20 +05:30
98ff890872
Update CVE-2020-6950.yaml
2023-10-16 15:20:11 +05:30
de3182946f
Update CVE-2020-6950.yaml
2023-10-16 14:15:07 +05:30
0b2573f839
minor update
2023-10-16 10:40:56 +05:30
3781881f10
Create CVE-2023-3710.yaml
...
Added CVE-2023-3710 Template
2023-10-15 19:27:25 +05:30
267796f8d6
TemplateMan Update [Sun Oct 15 09:28:03 UTC 2023] 🤖
2023-10-15 09:28:04 +00:00
468bb365f2
Merge branch 'main' into main
2023-10-14 17:45:08 -03:00
076aa6cafd
TemplateMan Update [Sat Oct 14 19:50:16 UTC 2023] 🤖
2023-10-14 19:50:16 +00:00
1ff0d90499
Merge branch 'projectdiscovery:main' into main
2023-10-14 14:07:13 -03:00
6067fa8d03
Delete http/cves/2021/CVE-2021-25016.yaml
2023-10-14 14:06:29 -03:00
5210becb8d
Create CVE-2021-25016.yaml
2023-10-14 13:57:47 -03:00
161b90353a
templateman update
2023-10-14 16:57:55 +05:30
44d59fe270
trail lint fix
2023-10-13 21:36:34 +05:30
a4de430746
Added CVE-2020-6950.yaml
2023-10-13 20:00:06 +04:00
67edfa63c5
Merge pull request #8383 from 0xPugazh/main
...
Update phpmyadmin-setup.yaml and CVE-2022-21500.yaml
2023-10-13 15:12:24 +05:30
6b4d582433
Update CVE-2022-21500.yaml
2023-10-13 15:08:25 +05:30
5dcf8c0e1a
update matcher
2023-10-13 13:58:39 +05:30
fff98181f3
Update CVE-2022-21500.yaml
2023-10-12 18:41:52 +05:30
46e7580827
Update CVE-2022-21500.yaml
2023-10-12 18:40:11 +05:30
fe6f534b69
Update CVE-2021-41749.yaml
2023-10-12 16:34:02 +05:30
438ecc5186
Added CraftCMS SEOMatic Plugin SSTI
2023-10-12 14:53:59 +04:00
310ae76f45
word matcher update
2023-10-12 02:01:05 +05:30
4d60c41b3e
Create CVE-2023-4451.yaml
2023-10-11 20:41:07 +05:30
17d3db3a62
Update CVE-2023-37474.yaml
2023-10-11 14:07:22 +05:30
57d5228626
Update CVE-2023-37474.yaml
2023-10-11 13:56:49 +05:30
fa141157db
Create CVE-2023-37474.yaml
2023-10-11 13:52:27 +05:30
dc3ea52a88
Merge pull request #8336 from projectdiscovery/updated-oast
...
updated oast matchers
2023-10-11 13:12:50 +05:30
c97b868a5d
Create CVE-2022-25568.yaml
2023-10-11 02:31:40 +05:30
96885dc6e8
Create CVE-2023-35813.yaml (Sitecore - Remote Code Execution 🔥 ) ( #8363 )
...
* Create CVE-2023-35813.yaml
* Update CVE-2023-35813.yaml
* improved matcher
---------
Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>
2023-10-10 23:26:29 +05:30
3bf6fce75a
meta update
2023-10-10 20:28:10 +05:30
b09a224654
improved matcher + variables
2023-10-10 20:22:53 +05:30
0471ab31c7
Added CVE-2023-22515
2023-10-10 18:50:42 +05:30
583beed216
updated protocol name
2023-10-10 15:13:10 +05:30
9db41d5400
Merge pull request #8293 from gy741/rule-add-v145
...
Create CVE-2023-30013.yaml
2023-10-10 12:25:13 +05:30
2a2cf9fe8d
minor - update
2023-10-10 12:14:27 +05:30
6e000d1c7c
Merge pull request #8342 from projectdiscovery/CVE-2023-31465
...
Create CVE-2023-31465.yaml
2023-10-10 10:42:41 +05:30
293264df1a
oast tag added
2023-10-10 10:39:53 +05:30
8898dafede
Create CVE-2023-31465.yaml
2023-10-09 14:48:51 +05:30
072802c4dc
Create CVE-2023-41642.yaml
2023-10-09 14:46:15 +05:30
a07b5f8b38
Fix Matcher and Panel Move around
2023-10-09 13:48:46 +05:30
2565ddf6be
Create CVE-2023-34259.yaml
...
CCRX has a Path Traversal vulnerability. Path Traversal is an attack on web applications. By manipulating the value of the file path, an attacker can gain access to the file system, including source code and critical system settings.
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2023-10-08 17:57:09 +09:00
213b63e42a
updated oast matchers
2023-10-08 13:24:05 +05:30
d28c19efa6
Update CVE-2020-8813.yaml
2023-10-08 12:48:55 +05:30
419a1c6224
Merge pull request #8290 from 5hank4r/main
...
CVE-2023-33405.yaml
2023-10-08 12:45:01 +05:30
aea032a150
Fix: CVE-2022-4321 ( #8330 )
...
* Fix: CVE-2022-4321
* added metadata
---------
Co-authored-by: rivers <HuTa0@HuTa0-MacBook-Pro.local>
Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>
2023-10-08 11:56:49 +05:30
9b1d7f3b71
Add files via upload
2023-10-05 15:36:49 -03:00
e48b398bf3
Merge pull request #8315 from ctflearner/CVE-2023-38501
...
Create CVE-2023-38501.YAML
2023-10-05 23:38:26 +05:30
b479f9abb6
Update and rename CVE-2023-38501.YAML to CVE-2023-38501.yaml
2023-10-05 20:38:15 +05:30
aec030bdaa
Merge pull request #8308 from luisfelipe146/main
...
Create CVE-2023-2224.yaml
2023-10-05 17:29:16 +05:30
00e5276685
TemplateMan Update [Thu Oct 5 11:56:54 UTC 2023] 🤖
2023-10-05 11:56:55 +00:00
a84dfa160c
Merge pull request #8316 from ctflearner/CVE-2022-48197
...
Create CVE-2022-48197.yaml
2023-10-05 17:24:51 +05:30
b40c62549b
matchers & info update
2023-10-05 13:15:20 +05:30
0f42303065
lint & format fix
2023-10-05 12:57:16 +05:30
7a7a867b7b
Update CVE-2023-2224.yaml
2023-10-05 11:35:30 +05:30
26d3cf0a94
Create CVE-2022-48197.yaml
2023-10-04 07:19:16 +05:30
6f37e9b554
Create CVE-2023-38501.YAML
2023-10-04 06:56:45 +05:30
751ddc980a
Create CVE-2023-33405.yaml
2023-10-03 18:33:29 +05:30
ac6bb1823c
Merge pull request #8272 from projectdiscovery/CVE-2023-22432
...
Create CVE-2023-22432.yaml
2023-10-03 13:40:06 +05:30
568b53ef70
Merge pull request #8295 from gy741/rule-add-v146
...
Create CVE-2023-30625.yaml
2023-10-03 13:33:19 +05:30
22c0b5891d
updated matcher & req
2023-10-03 13:32:34 +05:30
a334550a21
Merge pull request #8286 from jainiresh/patch-1
...
Update CVE-2019-6802.yaml
2023-10-03 13:19:37 +05:30
43fc4f3795
added status matcher
2023-10-03 13:18:23 +05:30
172150f538
TemplateMan Update [Tue Oct 3 06:50:17 UTC 2023] 🤖
2023-10-03 06:50:18 +00:00
e13ab6cfdd
Merge pull request #8301 from gy741/rule-add-v148
...
Create CVE-2023-33831.yaml
2023-10-03 12:18:01 +05:30
1e956367e0
Update CVE-2023-33831.yaml
2023-10-03 12:13:22 +05:30
63dcb68b75
Create CVE-2023-2224.yaml
2023-10-02 08:57:09 -03:00
fef8a38e22
Create CVE-2023-43261 ( #8300 )
...
* Auto WordPress Plugins Update [Sun Oct 1 04:12:23 UTC 2023] 🤖
* Create CVE-2023-43261.yaml
A critical security vulnerability has been identified in Milesight Industrial Cellular Routers, compromising the security of sensitive credentials and permitting unauthorized access. This vulnerability stems from a misconfiguration that results in directory listing being enabled on the router systems, rendering log files publicly accessible. These log files, while containing sensitive information such as admin and other user passwords (encrypted as a security measure), can be exploited by attackers via the router's web interface. The presence of a hardcoded AES secret key and initialization vector (IV) in the JavaScript code further exacerbates the situation, facilitating the decryption of these passwords. This chain of vulnerabilities allows malicious actors to gain unauthorized access to the router.
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
* Revert "Auto WordPress Plugins Update [Sun Oct 1 04:12:23 UTC 2023] 🤖 "
This reverts commit ceb38c80b0
2023-10-02 13:51:12 +05:30
ffa4a84ba9
added metadata and updated matcher
2023-10-02 00:47:23 +05:30
06674c9bca
Create CVE-2023-33831.yaml
...
A remote command execution (RCE) vulnerability in the /api/runscript endpoint of FUXA 1.1.13 allows attackers to execute arbitrary commands via a crafted POST request.
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2023-10-02 01:19:18 +09:00
48b3253a7e
added additional matcher
2023-10-01 13:59:50 +05:30
208ff38843
Create CVE-2023-30013.yaml
...
TOTOLINK X5000R V9.1.0u.6118_B20201102 and V9.1.0u.6369_B20230113 contain a command insertion vulnerability in setting/setTracerouteCfg. This vulnerability allows an attacker to execute arbitrary commands through the "command" parameter.
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2023-09-30 13:15:00 +09:00
ff450a65ba
strict matcher
2023-09-29 19:04:39 +05:30
Dhiyaneshwaran
rivers
GitHub Action
pussycat0x
Prince Chaddha
Ritik Chaddha
Ritik Chaddha
Rahul Maini
Prince Chaddha
Aman Rawat
Bipin Jitiya
Luis Felipe
sandeep
Pugalarasan
GwanYeong Kim
HuTa0
ctflearner