daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
29,360 Commits
17 Branches
0 Tags
165 MiB
Commit Graph

1508 Commits (f77746107408b468d8c7e8c01e56255229f11046)

Author SHA1 Message Date
Dhiyaneshwaran 222c7cf4e2
Merge pull request #6995 from eremit4/patch-1 
Create tomcat-exposed-examples.yaml
 2023-04-21 18:23:40 +05:30
Dhiyaneshwaran 16d04191c2
Merge pull request #7095 from kazet/sql-server-report-viewer-exposure 
Microsoft SQL Server Report Viewer exposure
 2023-04-21 17:59:32 +05:30
Dhiyaneshwaran 4cc0ba5b78
fix syntax 2023-04-21 17:33:14 +05:30
pussycat0x 43cddde16d Path - updates 2023-04-21 17:24:57 +05:30
Dhiyaneshwaran d8a8d393eb
Update default-spx-key.yaml 2023-04-21 17:10:42 +05:30
Ritik Chaddha 31bb5f11a8
rewrote template 2023-04-21 01:39:49 +05:30
Krzysztof Zając 445bde61f9 Microsoft SQL Server Report Viewer exposure 2023-04-20 10:17:10 +02:00
Ritik Chaddha e88ef4ab35
updated matchers 2023-04-20 02:03:58 +05:30
Ritik Chaddha a9d63232b8
Update thinkphp-errors.yaml 2023-04-19 23:14:31 +05:30
j4vaovo 88cf71f984
Update thinkphp-errors.yaml 2023-04-18 16:20:14 +08:00
j4vaovo 8fd63929b6
Create thinkphp-errors.yaml 2023-04-18 16:06:55 +08:00
Prince Chaddha d0bcbe0a2e
Update lvm-exporter-metrics.yaml 2023-04-17 09:33:44 +05:30
Ritik Chaddha 6ceaae08a6
Update springboot-env.yaml 2023-04-15 22:05:52 +05:30
j4vaovo 16f0e59481
Update springboot-env.yaml 2023-04-14 16:54:10 +08:00
Ritik Chaddha da9cb3dbb7
Merge pull request #7015 from j4vaovo/patch-7 
Create apollo-adminservice-unauth.yaml
 2023-04-13 23:48:09 +05:30
Vagner Rodrigues c609d44dd0 fix parameters 2023-04-11 16:12:33 -03:00
Dhiyaneshwaran 07db12d4a2
Merge pull request #7002 from j4vaovo/patch-6 
Create jupyter-lab-unauth.yaml
 2023-04-04 07:38:51 +05:30
Dhiyaneshwaran a95e201b0a
added content-type 2023-04-04 07:36:32 +05:30
Dhiyaneshwaran a7d6be11e0
Merge pull request #7013 from sec-fx/laravel-horizon-unauth 
Create laravel-horizon-unauth.yaml
 2023-04-04 07:14:26 +05:30
Vagner Rodrigues 407930143b add pussycat0x updates 2023-04-03 11:49:45 -03:00
pussycat0x 850d646c8d
minor -update 2023-04-03 16:09:14 +05:30
pussycat0x 46c056295c
file -move 2023-04-03 14:14:30 +05:30
Dhiyaneshwaran 192229cdc1
fix template 2023-04-03 07:17:53 +05:30
j4vaovo c0d89c2036
Create apollo-adminservice-unauth.yaml 2023-04-01 06:30:08 +08:00
Vagner Rodrigues 0a24471dd6 Create laravel-horizon-unauth.yaml 2023-03-31 13:00:27 -03:00
Prince Chaddha bdca637718 Update ssrf-via-oauth-misconfig.yaml 2023-03-31 17:12:54 +05:30
Prince Chaddha f75f623b08 Revert "Delete ssrf-via-oauth-misconfig.yaml" 
This reverts commit 9eb3d4a300.
 2023-03-31 17:04:14 +05:30
Prince Chaddha 9eb3d4a300
Delete ssrf-via-oauth-misconfig.yaml 2023-03-31 16:59:35 +05:30
Prince Chaddha 2915092570 templates added 2023-03-31 16:58:24 +05:30
j4vaovo 68186fb6f3
Create jupyter-lab-unauth.yaml 2023-03-31 15:30:12 +08:00
Ritik Chaddha 8ad8f38646
Merge pull request #6971 from projectdiscovery/pussycat0x-patch-5 
Etcd Server - Unauthenticated Access - enhancement
 2023-03-28 17:32:23 +05:30
Dhiyaneshwaran c41ee58200
Merge pull request #6970 from projectdiscovery/pussycat0x-patch-4 
Mlflow - Unauthenticated Access
 2023-03-28 12:19:14 +05:30
pussycat0x 69dbbd9ef3
enhancement 2023-03-28 01:39:28 +05:30
pussycat0x 74fcb82444
minor -update 2023-03-28 00:50:42 +05:30
MostInterestingBotInTheWorld 186745475b
dos2unix conversions (#6969) 
* Add description and enhance one where the UI failed to save properly.
dos2unix on a template

* Change cvedetails link to nvd

* make severities match

* Enhancement: cves/2015/CVE-2015-2863.yaml by md

* Enhancement: cves/2017/CVE-2017-14524.yaml by md

* Enhancement: cves/2017/CVE-2017-5638.yaml by md

* Enhancement: cves/2019/CVE-2019-16759.yaml by md

* Enhancement: cves/2021/CVE-2021-22986.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24155.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24347.yaml by md

* Enhancement: cves/2021/CVE-2021-25003.yaml by md

* Enhancement: cves/2021/CVE-2021-25296.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-25296.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-25298.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-28151.yaml by md

* Enhancement: cves/2021/CVE-2021-30128.yaml by md

* Enhancement: cves/2022/CVE-2022-0824.yaml by md

* Enhancement: cves/2022/CVE-2022-0824.yaml by md

* Enhancement: cves/2022/CVE-2022-0885.yaml by md

* Enhancement: cves/2022/CVE-2022-21587.yaml by md

* Enhancement: cves/2022/CVE-2022-2314.yaml by md

* Enhancement: cves/2022/CVE-2022-24816.yaml by md

* Enhancement: cves/2022/CVE-2022-31499.yaml by md

* Enhancement: cves/2022/CVE-2022-21587.yaml by md

* Enhancement: cves/2021/CVE-2021-24155.yaml by md

* Enhancement: cves/2017/CVE-2017-5638.yaml by md

* Enhancement: cves/2015/CVE-2015-2863.yaml by md

* Enhancement: cves/2022/CVE-2022-33901.yaml by md

* Enhancement: cves/2022/CVE-2022-2314.yaml by md

* Enhancement: cves/2022/CVE-2022-33901.yaml by md

* Enhancement: cves/2022/CVE-2022-34753.yaml by md

* Enhancement: cves/2022/CVE-2022-39952.yaml by md

* Enhancement: cves/2022/CVE-2022-4060.yaml by md

* Enhancement: cves/2022/CVE-2022-44877.yaml by md

* Enhancement: cves/2023/CVE-2023-0669.yaml by md

* Enhancement: cves/2023/CVE-2023-26255.yaml by md

* Enhancement: cves/2023/CVE-2023-26256.yaml by md

* Enhancement: exposures/files/salesforce-credentials.yaml by md

* Enhancement: misconfiguration/hadoop-unauth-rce.yaml by md

* Enhancement: misconfiguration/installer/nopcommerce-installer.yaml by md

* Enhancement: network/backdoor/backdoored-zte.yaml by md

* Enhancement: network/detection/ibm-d2b-database-server.yaml by md

* Enhancement: network/detection/ibm-d2b-database-server.yaml by md

* Enhancement: technologies/oracle/oracle-atg-commerce.yaml by md

* Enhancement: token-spray/api-abuseipdb.yaml by md

* Enhancement: token-spray/api-abuseipdb.yaml by md

* Enhancement: token-spray/api-dbt.yaml by md

* Enhancement: vulnerabilities/avaya/avaya-aura-rce.yaml by md

* Enhancement: vulnerabilities/avaya/avaya-aura-xss.yaml by md

* Enhancement: vulnerabilities/cisco/cisco-cloudcenter-suite-rce.yaml by md

* Enhancement: vulnerabilities/froxlor-xss.yaml by md

* Enhancement: vulnerabilities/jamf/jamf-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/mobileiron/mobileiron-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/jamf/jamf-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/opencpu/opencpu-rce.yaml by md

* Enhancement: vulnerabilities/other/academy-lms-xss.yaml by md

* Enhancement: vulnerabilities/other/caucho-resin-info-disclosure.yaml by md

* Enhancement: vulnerabilities/other/ckan-dom-based-xss.yaml by md

* Enhancement: vulnerabilities/other/couchdb-adminparty.yaml by md

* Enhancement: vulnerabilities/other/graylog-log4j.yaml by md

* Enhancement: vulnerabilities/mobileiron/mobileiron-log4j-jndi-rce.yaml by md

* Initial cleanups for syntax errors

* dashboard gremlins

* Add log4j back to name

* Enhancement: exposures/files/salesforce-credentials.yaml by cs

* Enhancement: misconfiguration/installer/nopcommerce-installer.yaml by cs

* Enhancement: network/backdoor/backdoored-zte.yaml by cs

* Enhancement: vulnerabilities/other/couchdb-adminparty.yaml by cs

* Sev and other info tweaks

* Merge conflict

* Run dos2unix against all templates

* too many newlines error

* Fix too many blank lines error

* Fix severity mismatches
Cleanup language on a new test

---------

Co-authored-by: sullo <sullo@cirt.net>
 2023-03-27 14:22:40 -04:00
pussycat0x 30f34da4f6
Mlflow - Unauthenticated Access 2023-03-27 23:31:20 +05:30
pussycat0x 333fe06d7b
Mlflow - Unauthenticated Access 2023-03-27 23:28:07 +05:30
MostInterestingBotInTheWorld 301fddaeb0
Dashboard Content Enhancements (#6965) 
* Add description and enhance one where the UI failed to save properly.
dos2unix on a template

* Change cvedetails link to nvd

* make severities match

* Enhancement: cves/2015/CVE-2015-2863.yaml by md

* Enhancement: cves/2017/CVE-2017-14524.yaml by md

* Enhancement: cves/2017/CVE-2017-5638.yaml by md

* Enhancement: cves/2019/CVE-2019-16759.yaml by md

* Enhancement: cves/2021/CVE-2021-22986.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24155.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24347.yaml by md

* Enhancement: cves/2021/CVE-2021-25003.yaml by md

* Enhancement: cves/2021/CVE-2021-25296.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-25296.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-25298.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-28151.yaml by md

* Enhancement: cves/2021/CVE-2021-30128.yaml by md

* Enhancement: cves/2022/CVE-2022-0824.yaml by md

* Enhancement: cves/2022/CVE-2022-0824.yaml by md

* Enhancement: cves/2022/CVE-2022-0885.yaml by md

* Enhancement: cves/2022/CVE-2022-21587.yaml by md

* Enhancement: cves/2022/CVE-2022-2314.yaml by md

* Enhancement: cves/2022/CVE-2022-24816.yaml by md

* Enhancement: cves/2022/CVE-2022-31499.yaml by md

* Enhancement: cves/2022/CVE-2022-21587.yaml by md

* Enhancement: cves/2021/CVE-2021-24155.yaml by md

* Enhancement: cves/2017/CVE-2017-5638.yaml by md

* Enhancement: cves/2015/CVE-2015-2863.yaml by md

* Enhancement: cves/2022/CVE-2022-33901.yaml by md

* Enhancement: cves/2022/CVE-2022-2314.yaml by md

* Enhancement: cves/2022/CVE-2022-33901.yaml by md

* Enhancement: cves/2022/CVE-2022-34753.yaml by md

* Enhancement: cves/2022/CVE-2022-39952.yaml by md

* Enhancement: cves/2022/CVE-2022-4060.yaml by md

* Enhancement: cves/2022/CVE-2022-44877.yaml by md

* Enhancement: cves/2023/CVE-2023-0669.yaml by md

* Enhancement: cves/2023/CVE-2023-26255.yaml by md

* Enhancement: cves/2023/CVE-2023-26256.yaml by md

* Enhancement: exposures/files/salesforce-credentials.yaml by md

* Enhancement: misconfiguration/hadoop-unauth-rce.yaml by md

* Enhancement: misconfiguration/installer/nopcommerce-installer.yaml by md

* Enhancement: network/backdoor/backdoored-zte.yaml by md

* Enhancement: network/detection/ibm-d2b-database-server.yaml by md

* Enhancement: network/detection/ibm-d2b-database-server.yaml by md

* Enhancement: technologies/oracle/oracle-atg-commerce.yaml by md

* Enhancement: token-spray/api-abuseipdb.yaml by md

* Enhancement: token-spray/api-abuseipdb.yaml by md

* Enhancement: token-spray/api-dbt.yaml by md

* Enhancement: vulnerabilities/avaya/avaya-aura-rce.yaml by md

* Enhancement: vulnerabilities/avaya/avaya-aura-xss.yaml by md

* Enhancement: vulnerabilities/cisco/cisco-cloudcenter-suite-rce.yaml by md

* Enhancement: vulnerabilities/froxlor-xss.yaml by md

* Enhancement: vulnerabilities/jamf/jamf-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/mobileiron/mobileiron-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/jamf/jamf-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/opencpu/opencpu-rce.yaml by md

* Enhancement: vulnerabilities/other/academy-lms-xss.yaml by md

* Enhancement: vulnerabilities/other/caucho-resin-info-disclosure.yaml by md

* Enhancement: vulnerabilities/other/ckan-dom-based-xss.yaml by md

* Enhancement: vulnerabilities/other/couchdb-adminparty.yaml by md

* Enhancement: vulnerabilities/other/graylog-log4j.yaml by md

* Enhancement: vulnerabilities/mobileiron/mobileiron-log4j-jndi-rce.yaml by md

* Initial cleanups for syntax errors

* dashboard gremlins

* Add log4j back to name

* Enhancement: exposures/files/salesforce-credentials.yaml by cs

* Enhancement: misconfiguration/installer/nopcommerce-installer.yaml by cs

* Enhancement: network/backdoor/backdoored-zte.yaml by cs

* Enhancement: vulnerabilities/other/couchdb-adminparty.yaml by cs

* Sev and other info tweaks

* Merge conflict

---------

Co-authored-by: sullo <sullo@cirt.net>
 2023-03-27 23:16:47 +05:30
pussycat0x 5165e27927
Merge pull request #6756 from MrHarshvardhan/patch-3 
Create http-only-cookies.yaml
 2023-03-23 20:09:10 +05:30
Ritik Chaddha 28e9d14fa0
updated name 2023-03-23 17:13:03 +05:30
Ritik Chaddha adfde6f30f
update matchers,info 2023-03-23 17:12:27 +05:30
Dhiyaneshwaran e5892f7b47
removed duplicate endpoint 2023-03-23 15:38:43 +05:30
Abdelrhman Allam 179a846e0e
Update phpmyadmin-setup.yaml 
Reference: [https://twitter.com/GodfatherOrwa/status/1638141648029855745](https://twitter.com/GodfatherOrwa/status/1638141648029855745)
 2023-03-23 11:28:14 +02:00
ThePirateWhoSmellsOfSunflowers c5d0fc8593 Add new path in misconfiguration/phpmyadmin/phpmyadmin-setup.yaml 2023-03-22 15:27:14 +01:00
Dhiyaneshwaran 201984b6a2
Merge pull request #6912 from Esonhugh/template_branch_nacos_bypass_authentication 
Add nacos default jwt secret bypass auth Template
 2023-03-22 09:12:07 +05:30
Ritik Chaddha 0c605920b8
updated info,path 2023-03-22 01:55:37 +05:30
Prince Chaddha b1c353f53c
Update phpmyadmin-setup.yaml 2023-03-21 19:40:04 +05:30
pussycat0x 07feb2848a
metadata -update 2023-03-21 14:14:15 +05:30
pussycat0x bdfca5962c
file name -update 2023-03-21 14:09:52 +05:30
Esonhugh a529fd061c
update nacos bypass authentication 2023-03-21 16:34:06 +08:00