4889efb117
Create CVE-2019-14470.yaml
2021-07-11 08:06:14 +07:00
da45bdf0ef
Create CVE-2020-29395.yaml
2021-07-11 07:58:31 +07:00
d0ec1acc76
Create wp-socialfit-xss.yaml
2021-07-11 07:41:04 +07:00
05bc6366f3
Rename wp-supsystic-backup-lfi to wp-supsystic-backup-lfi.yaml
2021-07-11 07:24:41 +07:00
04e5e30051
Update and rename wp-upsystic-backup-lfi to wp-supsystic-backup-lfi
2021-07-11 07:24:27 +07:00
e26b467c76
Create wp-upsystic-backup-lfi
2021-07-11 07:22:38 +07:00
983995ba88
Auto Update README [Sat Jul 10 17:03:33 UTC 2021] 🤖
2021-07-10 17:03:33 +00:00
11debe0c91
Merge pull request #1923 from projectdiscovery/CVE-2021-34621
...
Added CVE-2021-34621
2021-07-10 22:33:17 +05:30
01ae482fe8
Added CVE-2021-34621
2021-07-10 22:31:08 +05:30
e44370be2f
Auto Update README [Sat Jul 10 16:53:15 UTC 2021] 🤖
2021-07-10 16:53:15 +00:00
2d3ed8daff
Merge pull request #1922 from alifathi-h1/master
...
Added Herokuapp Detection
2021-07-10 22:23:00 +05:30
f489d31e2d
Update herokuapp-detect.yaml
2021-07-10 22:22:27 +05:30
60a83e5792
Auto Update README [Sat Jul 10 16:40:27 UTC 2021] 🤖
2021-07-10 16:40:27 +00:00
c5964aa945
Merge pull request #1921 from projectdiscovery/codemeter-webadmin-panel
...
Added codemeter-webadmin-panel
2021-07-10 22:10:11 +05:30
7c15a743b8
typos
2021-07-10 22:06:59 +05:30
525fd7f8df
Added codemeter-webadmin-panel
2021-07-10 22:04:20 +05:30
9c0e218365
Added Herokuapp Detection
2021-07-11 00:31:09 +08:00
95ba356fdf
Auto Update README [Sat Jul 10 16:26:32 UTC 2021] 🤖
2021-07-10 16:26:32 +00:00
6a99a183cd
Merge pull request #1920 from projectdiscovery/wordpress-user-enum
...
Added wordpress-user-enum
2021-07-10 21:56:17 +05:30
b228b35f83
Added wordpress-user-enum
2021-07-10 21:54:31 +05:30
6195059497
Auto Update README [Sat Jul 10 16:20:34 UTC 2021] 🤖
2021-07-10 16:20:34 +00:00
357790b73a
Merge pull request #1875 from righettod/feature_add_oauth2_tpl
...
Add detection template for OAUTH2
2021-07-10 21:50:17 +05:30
7a1ac536d0
Additional matchers
2021-07-10 21:48:38 +05:30
4874ca4dcd
Auto Update README [Sat Jul 10 15:55:14 UTC 2021] 🤖
2021-07-10 15:55:14 +00:00
97023903a0
Merge pull request #1918 from gy741/rule-add-v19
...
Create Hongdian Vulnerability
2021-07-10 21:24:56 +05:30
67c60b057e
Auto Update README [Sat Jul 10 15:25:30 UTC 2021] 🤖
2021-07-10 15:25:30 +00:00
5ca472b43e
Merge pull request #1880 from gy741/rule-add-v13
...
Create CVE-2021-1497.yaml
2021-07-10 20:55:14 +05:30
1cd29628aa
more reference
2021-07-10 20:54:04 +05:30
7f37050361
Added HTTP check
2021-07-10 20:53:23 +05:30
dd9e85a29c
Added missing condition
2021-07-10 20:47:20 +05:30
1e8aa5288f
Update CVE-2021-1497.yaml
2021-07-10 20:45:00 +05:30
984338b657
Auto Update README [Sat Jul 10 14:58:30 UTC 2021] 🤖
2021-07-10 14:58:30 +00:00
c247dc15ed
Merge pull request #1919 from deFr0ggy/master
...
LabTech Login Panel - Exposed-Panels
2021-07-10 20:28:14 +05:30
cc8337e878
typos update
2021-07-10 20:25:51 +05:30
4133bf25e3
Added the suggested changes.
...
Added the suggested changes.
2021-07-10 19:46:05 +05:00
c52e666707
Add files via upload
2021-07-10 19:05:54 +05:00
767f173f88
minor updates
2021-07-10 18:45:09 +05:30
3bf1c929ed
Create Hongdian Vulnerability
...
CVE-2021-28149 : Hongdian H8922 3.0.5 devices allow Directory Traversal. The /log_download.cgi log export handler does not validate user input and allows a remote attacker with minimal privileges to download any file from the device by substituting ../ (e.g., ../../etc/passwd) This can be carried out with a web browser by changing the file name accordingly. Upon visiting log_download.cgi?type=../../etc/passwd and logging in, the web server will allow a download of the contents of the /etc/passwd file.
CVE-2021-28150 : Hongdian H8922 3.0.5 devices allow the unprivileged guest user to read cli.conf (with the administrator password and other sensitive data) via /backup2.cgi.
CVE-2021-28151 : Hongdian H8922 3.0.5 devices allow OS command injection via shell metacharacters into the ip-address (aka Destination) field to the tools.cgi ping command, which is accessible with the username guest and password guest.
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-07-10 21:16:35 +09:00
86fab87fdd
Merge pull request #1885 from Mah3Sec/master
...
git-logs
2021-07-10 15:12:25 +05:30
72781f8dfa
Merge branch 'master' into master
2021-07-10 15:07:33 +05:30
c4e6110a44
Auto Update README [Sat Jul 10 09:36:01 UTC 2021] 🤖
2021-07-10 09:36:01 +00:00
c5407b87fc
Merge pull request #1897 from abison1/patch-1
...
Create ceros-takeover.yaml
2021-07-10 15:05:43 +05:30
1c982979e4
Update ceros-takeover.yaml
2021-07-10 15:03:54 +05:30
152ef6f809
Update ceros-takeover.yaml
2021-07-10 14:56:54 +05:30
93225ca26d
Auto Update README [Sat Jul 10 08:38:42 UTC 2021] 🤖
2021-07-10 08:38:42 +00:00
89029e1aa7
Moving PR template to root
2021-07-10 14:08:20 +05:30
b014a621ef
Merge pull request #1917 from projectdiscovery/RCE_CEHCK_CVE-2021-3129
...
Updated complete RCE chain (CVE-2021-3129)
2021-07-10 14:00:53 +05:30
c2f87a94c6
Added complete RCE chain
2021-07-10 13:42:09 +05:30
6688aaca61
Auto Update README [Sat Jul 10 03:54:03 UTC 2021] 🤖
2021-07-10 03:54:03 +00:00
ba90f28231
Merge pull request #1909 from gy741/rule-add-v17
...
Create icewarp-webclient-rce.yaml
2021-07-10 09:23:50 +05:30
Muhammad Daffa
GitHub Action
Sandeep Singh
Ali Fathi Ali Sawehli
Frog Man
GwanYeong Kim
Prince Chaddha
Prince Chaddha