Commit Graph

619 Commits (efd99ab3be74354b0436c6eb5c4e393a06c44f8c)

Author SHA1 Message Date
sullo 0126f9426e
Replace google-dork with google-query in all templates (#5328)
* dos2unix to standardize line endings

* Replace google-dork with google-query
2022-09-09 04:09:14 +05:30
MostInterestingBotInTheWorld 554c11c57b
Dashboard Content Enhancements (#5324)
Dashboard Content Enhancements
* dos2nix on several templates
* replacing some cvedetails links with NIST
2022-09-08 09:28:46 -04:00
Ritik Chaddha 3cedf0bd5f
Update 3DPrint-arbitrary-file-upload.yaml 2022-09-07 11:29:34 +05:30
Ritik Chaddha 963ae9342c
Create 3DPrint-arbitrary-file-upload.yaml 2022-09-07 11:26:34 +05:30
Prince Chaddha 9044284100
Merge branch 'master' into fileupload 2022-09-01 16:21:29 +05:30
Dhiyaneshwaran 81111ebb5e
Update wordpress-rce-simplefilelist.yaml 2022-09-01 01:32:51 +05:30
Dhiyaneshwaran fc7afa9f73
Update ait-csv-import-export-rce.yaml 2022-09-01 01:30:11 +05:30
Dhiyaneshwaran d1186e3718
Update ait-csv-import-export-rce.yaml 2022-09-01 00:57:03 +05:30
Prince Chaddha 3f7a72b318
Update wordpress-accessible-wpconfig.yaml 2022-09-01 00:05:57 +05:30
MostInterestingBotInTheWorld 36cf9b2f61
Dashboard Enhancements + Severity Matching (#5245)
Dashboard Enhancements + Severity Matching
2022-08-29 16:21:30 -04:00
GitHub Action bc21497f99 Auto Generated CVE annotations [Sat Aug 27 04:41:18 UTC 2022] 🤖 2022-08-27 04:41:18 +00:00
Prince Chaddha 9838347cc3
Merge pull request #5027 from akincibor/wp-enhancement
Update Wordpress templates: typo, cve-id, ref & remove dupe
2022-08-25 14:12:13 +05:30
Prince Chaddha fadf1ba975
Merge pull request #5005 from projectdiscovery/wp-blogroll-fun-xss
Create wp-blogroll-fun-xss.yaml
2022-08-10 09:35:43 -07:00
Prince Chaddha 6899066085
Update wp-blogroll-fun-xss.yaml 2022-08-10 09:32:23 -07:00
Ritik Chaddha 98f75b6390
Update and rename vulnerabilities/wordpress/wp-church-admin-xss.yaml to cves/2015/CVE-2015-4127.yaml 2022-08-10 15:01:50 +05:30
Ritik Chaddha 0ba0e74aa1
Update wp-ambience-xss.yaml 2022-08-10 14:50:05 +05:30
Ritik Chaddha 0bbe2ff881
Update wordpress-zebra-form-xss.yaml 2022-08-10 14:48:17 +05:30
Ritik Chaddha 9f0b259e75
Update wordpress-social-metrics-tracker.yaml 2022-08-10 14:45:01 +05:30
Ritik Chaddha 37c98909c9
Update w3c-total-cache-ssrf.yaml 2022-08-10 14:43:01 +05:30
Ritik Chaddha 0ebe9f0b8f
Update sassy-social-share.yaml 2022-08-10 14:38:35 +05:30
Ritik Chaddha d817811a58
Update nativechurch-wp-theme-lfd.yaml 2022-08-10 14:36:49 +05:30
Ritik Chaddha 61f94b90d8
Update eatery-restaurant-open-redirect.yaml 2022-08-10 14:32:39 +05:30
Ritik Chaddha 62f10760af
Update brandfolder-open-redirect.yaml 2022-08-10 14:27:59 +05:30
Ritik Chaddha 33d108ee76
Update advanced-access-manager-lfi.yaml 2022-08-10 14:19:57 +05:30
Ritik Chaddha 4c9182c73e
Update ad-widget-lfi.yaml 2022-08-10 14:18:06 +05:30
Ritik Chaddha 88f642a48a
Update wp-woocommerce-email-verification.yaml 2022-08-10 14:00:37 +05:30
Ritik Chaddha 8377f56550
Update wp-woocommerce-file-download.yaml 2022-08-10 13:58:11 +05:30
Prince Chaddha 518d92e567
Rename vulnerabilities/wordpress/wp-install.yaml to exposed-panels/wordpress/wp-install.yaml 2022-08-09 14:39:07 -07:00
Prince Chaddha 19b9eae7fe
Merge pull request #5018 from scent2d/CVE-2020-8772
Create CVE-2020-8772.yaml
2022-08-09 12:18:44 -07:00
Prince Chaddha ef71f15309
Merge pull request #5050 from pussycat0x/master
CVE-2019-10692
2022-08-09 02:20:37 -07:00
Ritik Chaddha 3ca2ec0945
Update CVE-2019-10692.yaml 2022-08-08 19:11:01 +05:30
Ritik Chaddha 3964e22f69
Update CVE-2019-10692.yaml 2022-08-08 19:08:44 +05:30
pussycat0x 383ed21913
Add files via upload 2022-08-08 18:36:30 +05:30
Prince Chaddha 3950e8304c
Update wp-blogroll-fun-xss.yaml 2022-08-06 10:36:51 -07:00
Akincibor db12feeead Update Wordpress templates: typo, cve-id, ref & remove dupe 2022-08-06 19:19:49 +02:00
Akincibor db692605d4 Update Wordpress templates: typo, cve-id, ref & remove dupe 2022-08-06 18:54:58 +02:00
Prince Chaddha 9e4645961c
Delete wordpress-infinitewp-auth-bypass.yaml 2022-08-06 00:09:02 -07:00
MostInterestingBotInTheWorld b2e886f09b
Dashboard Content Enhancements (#5009)
Dashboard Content Enhancements
2022-08-05 09:57:51 -04:00
pussycat0x e9974fe5ad
Delete wp-revslider-release-log-detect.yaml 2022-08-05 18:46:53 +05:30
Prince Chaddha 3ef2eea48f
Merge pull request #5004 from projectdiscovery/wp-avchat-3-xss
Create wp-avchat-3-xss.yaml
2022-08-05 07:57:58 +04:00
Prince Chaddha e2d0cfed57
Update and rename wp-avchat-3-xss.yaml to avchat-video-chat-xss.yaml 2022-08-05 07:54:15 +04:00
Prince Chaddha 5538c251dd
Update and rename wp-athlon-manage-calameo-publications-xss.yaml to calameo-publications-xss.yaml 2022-08-05 07:48:41 +04:00
Dhiyaneshwaran 738df35bfc
Create wp-blogroll-fun-xss.yaml 2022-08-04 22:23:16 +05:30
Dhiyaneshwaran 9128955363
Delete wp-blogroll-fun-xss.yaml 2022-08-04 22:22:52 +05:30
Dhiyaneshwaran aa4bec9d62
Create wp-blogroll-fun-xss.yaml 2022-08-04 22:21:53 +05:30
Dhiyaneshwaran 404f1d56eb
Create wp-avchat-3-xss.yaml 2022-08-04 22:10:29 +05:30
Dhiyaneshwaran 94dcb8f006
Create wp-athlon-manage-calameo-publications-xss.yaml 2022-08-04 22:01:49 +05:30
Dhiyaneshwaran 4bc8d0fa91
Delete wp-athlon-manage-calameo-publications-xss.yaml 2022-08-04 22:01:14 +05:30
Dhiyaneshwaran a02733dcbc
Create wp-athlon-manage-calameo-publications-xss.yaml 2022-08-04 21:55:50 +05:30
Dhiyaneshwaran b103fb9ef0
Update wp-revslider-release-log-detect.yaml 2022-08-02 15:00:54 +05:30
Dhiyaneshwaran 0963069a3c
Update and rename wp-revslider-release_log-detect.yaml to wp-revslider-release-log-detect.yaml 2022-08-02 14:47:17 +05:30
pussycat0x 76a55fc884
Add files via upload 2022-08-02 11:48:19 +05:30
MostInterestingBotInTheWorld 8c3ab6c654
Dashboard Content Enhancements (#4943)
Dashboard Content Enhancements
2022-07-29 10:04:23 -04:00
Ritik Chaddha efcd51e82c
Create analytify-plugin-xss.yaml 2022-07-27 16:46:12 +05:30
Prince Chaddha 58bd909659
Create members-list-xss.yaml 2022-07-09 18:42:35 +05:30
Prince Chaddha 78304fd30b
Merge pull request #4762 from projectdiscovery/curcy-xss
Create curcy-xss.yaml
2022-07-06 16:32:05 +05:30
Prince Chaddha 68eb6586c3
Merge pull request #4764 from projectdiscovery/clearfy-cache-xss
Create clearfy-cache-xss.yaml
2022-07-06 16:31:43 +05:30
Prince Chaddha 81ef0bdbcf
Merge pull request #4765 from projectdiscovery/checkout-fields-manager-xss
Create checkout-fields-manager-xss.yaml
2022-07-06 16:31:22 +05:30
Prince Chaddha edf09d30b6
Create 404-to-301-xss.yaml 2022-07-06 16:16:17 +05:30
Prince Chaddha 11dda1d89e
Create checkout-fields-manager-xss.yaml 2022-07-06 16:12:13 +05:30
Prince Chaddha 154f19ed6d
Create clearfy-cache-xss.yaml 2022-07-06 16:04:32 +05:30
Prince Chaddha 2b1284f34c
Create curcy-xss.yaml 2022-07-06 15:52:41 +05:30
Prince Chaddha 5692419f40
Merge pull request #4760 from projectdiscovery/modula-image-gallery-xss
Create modula-image-gallery-xss.yaml
2022-07-06 15:38:05 +05:30
Prince Chaddha 7bd3b7ffec
Update shortpixel-image-optimizer-xss.yaml 2022-07-06 15:37:10 +05:30
Prince Chaddha 6adcefe3ac
Update modula-image-gallery-xss.yaml 2022-07-06 15:36:43 +05:30
Prince Chaddha 865cced275
Merge pull request #4759 from projectdiscovery/shortpixel-image-optimizer-xss
Create shortpixel-image-optimizer-xss.yaml
2022-07-06 15:35:19 +05:30
Prince Chaddha 6a0c3c9892
Create modula-image-gallery-xss.yaml 2022-07-06 15:32:14 +05:30
Prince Chaddha 0509c8c372
Update woocommerce-pdf-invoices-xss.yaml 2022-07-06 15:31:47 +05:30
Prince Chaddha 85976d219f
Update shortpixel-image-optimizer-xss.yaml 2022-07-06 15:31:26 +05:30
Prince Chaddha 067658568e
Create shortpixel-image-optimizer-xss.yaml 2022-07-06 15:26:41 +05:30
Prince Chaddha 9353c41e78
Update woocommerce-pdf-invoices-xss.yaml 2022-07-06 15:25:31 +05:30
Prince Chaddha fac95562b9
Update woocommerce-pdf-invoices-xss.yaml 2022-07-06 15:19:30 +05:30
Prince Chaddha daca40f05e
Create woocommerce-pdf-invoices-xss.yaml 2022-07-06 15:13:25 +05:30
Prince Chaddha 1dccc86c88
Create wp-insert-php-xss.yaml 2022-07-04 17:31:46 +05:30
Prince Chaddha 255b2cf91d Revert "Create wp-insert-php-xss.yaml"
This reverts commit 415ba61d73.
2022-07-04 17:30:26 +05:30
Prince Chaddha 415ba61d73
Create wp-insert-php-xss.yaml 2022-07-04 17:29:53 +05:30
Prince Chaddha 123746b30e
Update and rename sym404.yaml to wp-sym404.yaml 2022-07-02 09:22:28 +05:30
Prince Chaddha 66cb988803
Update wp-all-export-xss.yaml 2022-07-01 23:56:05 +05:30
Prince Chaddha f5fe9bd9c0
Create wp-all-export-xss.yaml 2022-07-01 23:54:26 +05:30
Prince Chaddha a55edcdca4
Create wpify-woo-czech-xss.yaml 2022-06-28 08:00:31 +05:30
Prince Chaddha 17e1643c64 Revert "Create wpify-woo-czech-xss.yaml"
This reverts commit 6d44b2ee90.
2022-06-28 07:59:11 +05:30
Prince Chaddha 6d44b2ee90
Create wpify-woo-czech-xss.yaml 2022-06-28 07:57:59 +05:30
Prince Chaddha 3f4a9f8783
Merge pull request #4667 from projectdiscovery/new-user-approve-xss
Create new-user-approve-xss.yaml
2022-06-25 14:54:51 +05:30
Prince Chaddha 0c4c64ed5c
Create new-user-approve-xss.yaml 2022-06-25 14:11:05 +05:30
Ritik Chaddha 101b139dfd
Update sym404.yaml 2022-06-25 01:02:35 +05:30
Prince Chaddha 4880b0fa67
Update sym404.yaml 2022-06-25 00:36:26 +05:30
Prince Chaddha de213e905d
Update sym404.yaml 2022-06-25 00:15:02 +05:30
Dhiyaneshwaran 5b0461286c
Update sym404.yaml 2022-06-24 15:25:56 +01:00
Dhiyaneshwaran f348eae9d1
Create sym404.yaml 2022-06-23 17:39:44 +01:00
sullo 9bb6b91ba3
Remove Links for Dead sites (#4554)
* Deleted buffalo-config-injection.yaml
Add reference from buffalo-config-injection.yaml to CVE-2021-20091.yaml

* Delete vulnerabilities/other/buffalo-config-injection.yaml

* Remove/replace links to dead sites:
* archives.neohapsis.com
* osvdb.org
* securityfocus.com
2022-06-08 02:20:59 +05:30
Prince Chaddha 7ada510859
Fixed possible FPs in open redirect templates (#4544)
* Fixed possible FPs in open redirect templates

We have replaced example.com with interact.sh since few domains redirect to example.com, which results in FP results.

* updated example domain

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2022-06-06 16:10:15 +05:30
MostInterestingBotInTheWorld 5da580f9c2
Dashboard Content Enhancements (#4519)
Dashboard Content Enhancements
2022-06-03 15:12:31 -04:00
Prince Chaddha b2be30c340
Update ait-csv-import-export-rce.yaml 2022-05-23 14:04:27 +05:30
GwanYeong Kim aacb8f738f Create ait-csv-import-export-rce.yaml
The AIT CSV Import/Export plugin <= 3.0.3 allows unauthenticated remote attackers to upload and execute arbitrary PHP code.  The upload-handler does not require authentication, nor validates the uploaded content.

Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2022-05-22 10:12:09 +09:00
sandeep 22ab0f9d53 minor matcher update 2022-05-15 04:48:52 +05:30
Dhiyaneshwaran a3ce25a5a6
Authenticated Wordpress XSS Templates (#4398)
* Create CVE-2021-25075.yaml

* Create seo-redirection-xss.yaml
2022-05-15 04:32:53 +05:30
MostInterestingBotInTheWorld 581b7a627b
Dashboard Content Enhancements (#4381)
Dashboard Content Enhancements
2022-05-13 16:26:43 -04:00
Prince Chaddha a584def0e1
Create age-gate-open-redirect.yaml 2022-05-11 02:14:39 +05:30
Prince Chaddha f7fd0efead
Create wp-under-construction-ssrf.yaml 2022-05-10 15:00:09 +05:30
Prince Chaddha 91a4cd3fa0
Create newsletter-manager-open-redirect.yaml 2022-05-10 14:44:58 +05:30