Commit Graph

1502 Commits (efd99ab3be74354b0436c6eb5c4e393a06c44f8c)

Author SHA1 Message Date
Dhiyaneshwaran d8a8d393eb
Update default-spx-key.yaml 2023-04-21 17:10:42 +05:30
Ritik Chaddha e88ef4ab35
updated matchers 2023-04-20 02:03:58 +05:30
Ritik Chaddha a9d63232b8
Update thinkphp-errors.yaml 2023-04-19 23:14:31 +05:30
j4vaovo 88cf71f984
Update thinkphp-errors.yaml 2023-04-18 16:20:14 +08:00
j4vaovo 8fd63929b6
Create thinkphp-errors.yaml 2023-04-18 16:06:55 +08:00
Prince Chaddha d0bcbe0a2e
Update lvm-exporter-metrics.yaml 2023-04-17 09:33:44 +05:30
Ritik Chaddha 6ceaae08a6
Update springboot-env.yaml 2023-04-15 22:05:52 +05:30
j4vaovo 16f0e59481
Update springboot-env.yaml 2023-04-14 16:54:10 +08:00
Ritik Chaddha da9cb3dbb7
Merge pull request #7015 from j4vaovo/patch-7
Create apollo-adminservice-unauth.yaml
2023-04-13 23:48:09 +05:30
Vagner Rodrigues c609d44dd0 fix parameters 2023-04-11 16:12:33 -03:00
Dhiyaneshwaran 07db12d4a2
Merge pull request #7002 from j4vaovo/patch-6
Create jupyter-lab-unauth.yaml
2023-04-04 07:38:51 +05:30
Dhiyaneshwaran a95e201b0a
added content-type 2023-04-04 07:36:32 +05:30
Dhiyaneshwaran a7d6be11e0
Merge pull request #7013 from sec-fx/laravel-horizon-unauth
Create laravel-horizon-unauth.yaml
2023-04-04 07:14:26 +05:30
Vagner Rodrigues 407930143b add pussycat0x updates 2023-04-03 11:49:45 -03:00
pussycat0x 850d646c8d
minor -update 2023-04-03 16:09:14 +05:30
pussycat0x 46c056295c
file -move 2023-04-03 14:14:30 +05:30
Dhiyaneshwaran 192229cdc1
fix template 2023-04-03 07:17:53 +05:30
j4vaovo c0d89c2036
Create apollo-adminservice-unauth.yaml 2023-04-01 06:30:08 +08:00
Vagner Rodrigues 0a24471dd6 Create laravel-horizon-unauth.yaml 2023-03-31 13:00:27 -03:00
Prince Chaddha bdca637718 Update ssrf-via-oauth-misconfig.yaml 2023-03-31 17:12:54 +05:30
Prince Chaddha f75f623b08 Revert "Delete ssrf-via-oauth-misconfig.yaml"
This reverts commit 9eb3d4a300.
2023-03-31 17:04:14 +05:30
Prince Chaddha 9eb3d4a300
Delete ssrf-via-oauth-misconfig.yaml 2023-03-31 16:59:35 +05:30
Prince Chaddha 2915092570 templates added 2023-03-31 16:58:24 +05:30
j4vaovo 68186fb6f3
Create jupyter-lab-unauth.yaml 2023-03-31 15:30:12 +08:00
Ritik Chaddha 8ad8f38646
Merge pull request #6971 from projectdiscovery/pussycat0x-patch-5
Etcd Server - Unauthenticated Access - enhancement
2023-03-28 17:32:23 +05:30
Dhiyaneshwaran c41ee58200
Merge pull request #6970 from projectdiscovery/pussycat0x-patch-4
Mlflow - Unauthenticated Access
2023-03-28 12:19:14 +05:30
pussycat0x 69dbbd9ef3
enhancement 2023-03-28 01:39:28 +05:30
pussycat0x 74fcb82444
minor -update 2023-03-28 00:50:42 +05:30
MostInterestingBotInTheWorld 186745475b
dos2unix conversions (#6969)
* Add description and enhance one where the UI failed to save properly.
dos2unix on a template

* Change cvedetails link to nvd

* make severities match

* Enhancement: cves/2015/CVE-2015-2863.yaml by md

* Enhancement: cves/2017/CVE-2017-14524.yaml by md

* Enhancement: cves/2017/CVE-2017-5638.yaml by md

* Enhancement: cves/2019/CVE-2019-16759.yaml by md

* Enhancement: cves/2021/CVE-2021-22986.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24155.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24347.yaml by md

* Enhancement: cves/2021/CVE-2021-25003.yaml by md

* Enhancement: cves/2021/CVE-2021-25296.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-25296.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-25298.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-28151.yaml by md

* Enhancement: cves/2021/CVE-2021-30128.yaml by md

* Enhancement: cves/2022/CVE-2022-0824.yaml by md

* Enhancement: cves/2022/CVE-2022-0824.yaml by md

* Enhancement: cves/2022/CVE-2022-0885.yaml by md

* Enhancement: cves/2022/CVE-2022-21587.yaml by md

* Enhancement: cves/2022/CVE-2022-2314.yaml by md

* Enhancement: cves/2022/CVE-2022-24816.yaml by md

* Enhancement: cves/2022/CVE-2022-31499.yaml by md

* Enhancement: cves/2022/CVE-2022-21587.yaml by md

* Enhancement: cves/2021/CVE-2021-24155.yaml by md

* Enhancement: cves/2017/CVE-2017-5638.yaml by md

* Enhancement: cves/2015/CVE-2015-2863.yaml by md

* Enhancement: cves/2022/CVE-2022-33901.yaml by md

* Enhancement: cves/2022/CVE-2022-2314.yaml by md

* Enhancement: cves/2022/CVE-2022-33901.yaml by md

* Enhancement: cves/2022/CVE-2022-34753.yaml by md

* Enhancement: cves/2022/CVE-2022-39952.yaml by md

* Enhancement: cves/2022/CVE-2022-4060.yaml by md

* Enhancement: cves/2022/CVE-2022-44877.yaml by md

* Enhancement: cves/2023/CVE-2023-0669.yaml by md

* Enhancement: cves/2023/CVE-2023-26255.yaml by md

* Enhancement: cves/2023/CVE-2023-26256.yaml by md

* Enhancement: exposures/files/salesforce-credentials.yaml by md

* Enhancement: misconfiguration/hadoop-unauth-rce.yaml by md

* Enhancement: misconfiguration/installer/nopcommerce-installer.yaml by md

* Enhancement: network/backdoor/backdoored-zte.yaml by md

* Enhancement: network/detection/ibm-d2b-database-server.yaml by md

* Enhancement: network/detection/ibm-d2b-database-server.yaml by md

* Enhancement: technologies/oracle/oracle-atg-commerce.yaml by md

* Enhancement: token-spray/api-abuseipdb.yaml by md

* Enhancement: token-spray/api-abuseipdb.yaml by md

* Enhancement: token-spray/api-dbt.yaml by md

* Enhancement: vulnerabilities/avaya/avaya-aura-rce.yaml by md

* Enhancement: vulnerabilities/avaya/avaya-aura-xss.yaml by md

* Enhancement: vulnerabilities/cisco/cisco-cloudcenter-suite-rce.yaml by md

* Enhancement: vulnerabilities/froxlor-xss.yaml by md

* Enhancement: vulnerabilities/jamf/jamf-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/mobileiron/mobileiron-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/jamf/jamf-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/opencpu/opencpu-rce.yaml by md

* Enhancement: vulnerabilities/other/academy-lms-xss.yaml by md

* Enhancement: vulnerabilities/other/caucho-resin-info-disclosure.yaml by md

* Enhancement: vulnerabilities/other/ckan-dom-based-xss.yaml by md

* Enhancement: vulnerabilities/other/couchdb-adminparty.yaml by md

* Enhancement: vulnerabilities/other/graylog-log4j.yaml by md

* Enhancement: vulnerabilities/mobileiron/mobileiron-log4j-jndi-rce.yaml by md

* Initial cleanups for syntax errors

* dashboard gremlins

* Add log4j back to name

* Enhancement: exposures/files/salesforce-credentials.yaml by cs

* Enhancement: misconfiguration/installer/nopcommerce-installer.yaml by cs

* Enhancement: network/backdoor/backdoored-zte.yaml by cs

* Enhancement: vulnerabilities/other/couchdb-adminparty.yaml by cs

* Sev and other info tweaks

* Merge conflict

* Run dos2unix against all templates

* too many newlines error

* Fix too many blank lines error

* Fix severity mismatches
Cleanup language on a new test

---------

Co-authored-by: sullo <sullo@cirt.net>
2023-03-27 14:22:40 -04:00
pussycat0x 30f34da4f6
Mlflow - Unauthenticated Access 2023-03-27 23:31:20 +05:30
pussycat0x 333fe06d7b
Mlflow - Unauthenticated Access 2023-03-27 23:28:07 +05:30
MostInterestingBotInTheWorld 301fddaeb0
Dashboard Content Enhancements (#6965)
* Add description and enhance one where the UI failed to save properly.
dos2unix on a template

* Change cvedetails link to nvd

* make severities match

* Enhancement: cves/2015/CVE-2015-2863.yaml by md

* Enhancement: cves/2017/CVE-2017-14524.yaml by md

* Enhancement: cves/2017/CVE-2017-5638.yaml by md

* Enhancement: cves/2019/CVE-2019-16759.yaml by md

* Enhancement: cves/2021/CVE-2021-22986.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24155.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24347.yaml by md

* Enhancement: cves/2021/CVE-2021-25003.yaml by md

* Enhancement: cves/2021/CVE-2021-25296.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-25296.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-25298.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-28151.yaml by md

* Enhancement: cves/2021/CVE-2021-30128.yaml by md

* Enhancement: cves/2022/CVE-2022-0824.yaml by md

* Enhancement: cves/2022/CVE-2022-0824.yaml by md

* Enhancement: cves/2022/CVE-2022-0885.yaml by md

* Enhancement: cves/2022/CVE-2022-21587.yaml by md

* Enhancement: cves/2022/CVE-2022-2314.yaml by md

* Enhancement: cves/2022/CVE-2022-24816.yaml by md

* Enhancement: cves/2022/CVE-2022-31499.yaml by md

* Enhancement: cves/2022/CVE-2022-21587.yaml by md

* Enhancement: cves/2021/CVE-2021-24155.yaml by md

* Enhancement: cves/2017/CVE-2017-5638.yaml by md

* Enhancement: cves/2015/CVE-2015-2863.yaml by md

* Enhancement: cves/2022/CVE-2022-33901.yaml by md

* Enhancement: cves/2022/CVE-2022-2314.yaml by md

* Enhancement: cves/2022/CVE-2022-33901.yaml by md

* Enhancement: cves/2022/CVE-2022-34753.yaml by md

* Enhancement: cves/2022/CVE-2022-39952.yaml by md

* Enhancement: cves/2022/CVE-2022-4060.yaml by md

* Enhancement: cves/2022/CVE-2022-44877.yaml by md

* Enhancement: cves/2023/CVE-2023-0669.yaml by md

* Enhancement: cves/2023/CVE-2023-26255.yaml by md

* Enhancement: cves/2023/CVE-2023-26256.yaml by md

* Enhancement: exposures/files/salesforce-credentials.yaml by md

* Enhancement: misconfiguration/hadoop-unauth-rce.yaml by md

* Enhancement: misconfiguration/installer/nopcommerce-installer.yaml by md

* Enhancement: network/backdoor/backdoored-zte.yaml by md

* Enhancement: network/detection/ibm-d2b-database-server.yaml by md

* Enhancement: network/detection/ibm-d2b-database-server.yaml by md

* Enhancement: technologies/oracle/oracle-atg-commerce.yaml by md

* Enhancement: token-spray/api-abuseipdb.yaml by md

* Enhancement: token-spray/api-abuseipdb.yaml by md

* Enhancement: token-spray/api-dbt.yaml by md

* Enhancement: vulnerabilities/avaya/avaya-aura-rce.yaml by md

* Enhancement: vulnerabilities/avaya/avaya-aura-xss.yaml by md

* Enhancement: vulnerabilities/cisco/cisco-cloudcenter-suite-rce.yaml by md

* Enhancement: vulnerabilities/froxlor-xss.yaml by md

* Enhancement: vulnerabilities/jamf/jamf-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/mobileiron/mobileiron-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/jamf/jamf-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/opencpu/opencpu-rce.yaml by md

* Enhancement: vulnerabilities/other/academy-lms-xss.yaml by md

* Enhancement: vulnerabilities/other/caucho-resin-info-disclosure.yaml by md

* Enhancement: vulnerabilities/other/ckan-dom-based-xss.yaml by md

* Enhancement: vulnerabilities/other/couchdb-adminparty.yaml by md

* Enhancement: vulnerabilities/other/graylog-log4j.yaml by md

* Enhancement: vulnerabilities/mobileiron/mobileiron-log4j-jndi-rce.yaml by md

* Initial cleanups for syntax errors

* dashboard gremlins

* Add log4j back to name

* Enhancement: exposures/files/salesforce-credentials.yaml by cs

* Enhancement: misconfiguration/installer/nopcommerce-installer.yaml by cs

* Enhancement: network/backdoor/backdoored-zte.yaml by cs

* Enhancement: vulnerabilities/other/couchdb-adminparty.yaml by cs

* Sev and other info tweaks

* Merge conflict

---------

Co-authored-by: sullo <sullo@cirt.net>
2023-03-27 23:16:47 +05:30
pussycat0x 5165e27927
Merge pull request #6756 from MrHarshvardhan/patch-3
Create http-only-cookies.yaml
2023-03-23 20:09:10 +05:30
Ritik Chaddha 28e9d14fa0
updated name 2023-03-23 17:13:03 +05:30
Ritik Chaddha adfde6f30f
update matchers,info 2023-03-23 17:12:27 +05:30
Dhiyaneshwaran e5892f7b47
removed duplicate endpoint 2023-03-23 15:38:43 +05:30
Abdelrhman Allam 179a846e0e
Update phpmyadmin-setup.yaml
Reference: [https://twitter.com/GodfatherOrwa/status/1638141648029855745](https://twitter.com/GodfatherOrwa/status/1638141648029855745)
2023-03-23 11:28:14 +02:00
ThePirateWhoSmellsOfSunflowers c5d0fc8593 Add new path in misconfiguration/phpmyadmin/phpmyadmin-setup.yaml 2023-03-22 15:27:14 +01:00
Dhiyaneshwaran 201984b6a2
Merge pull request #6912 from Esonhugh/template_branch_nacos_bypass_authentication
Add nacos default jwt secret bypass auth Template
2023-03-22 09:12:07 +05:30
Ritik Chaddha 0c605920b8
updated info,path 2023-03-22 01:55:37 +05:30
Prince Chaddha b1c353f53c
Update phpmyadmin-setup.yaml 2023-03-21 19:40:04 +05:30
pussycat0x 07feb2848a
metadata -update 2023-03-21 14:14:15 +05:30
pussycat0x bdfca5962c
file name -update 2023-03-21 14:09:52 +05:30
Esonhugh a529fd061c
update nacos bypass authentication 2023-03-21 16:34:06 +08:00
Prince Chaddha dd2b2085c6 Merge branch 'main' of https://github.com/projectdiscovery/nuclei-templates 2023-03-18 16:09:38 -06:00
Prince Chaddha fb23d66717 templates added 2023-03-18 16:07:09 -06:00
sandeep 23b23995a4 moving files around 2023-03-18 14:26:12 +05:30
Ritik Chaddha c0f5558d81
added metadata 2023-03-17 21:41:11 +05:30
MostInterestingBotInTheWorld 7677e07dec
Merge branch 'main' into dashboard 2023-03-17 11:24:28 -04:00
sullo 7cbbcde121 Too many spaces after : 2023-03-17 10:08:26 -04:00