Commit Graph

1063 Commits (fb2d26f1cc4a97eb737d3f409763730172b1b1d4)

Author SHA1 Message Date
MostInterestingBotInTheWorld bdb372cfb4
Dashboard Content Enhancements (#4475)
Dashboard Content Enhancements
2022-05-23 17:29:29 -04:00
Prince Chaddha 3d331f5154
Update selenium-exposure.yaml 2022-05-24 00:57:09 +05:30
Prince Chaddha 3cd7bf4c5a
Update selenium-exposure.yaml 2022-05-24 00:53:21 +05:30
Prince Chaddha 0c5b2efe65
Create selenium-exposure.yaml 2022-05-24 00:51:42 +05:30
MostInterestingBotInTheWorld 809e87987c
Dashboard Content Enhancements (#4456)
Dashboard Content Enhancements
2022-05-20 17:38:52 -04:00
Prince Chaddha f97215e84a
Update and rename misconfiguration/oracle-ebusiness-registration-enabled.yaml to cves/2022/CVE-2022-21500.yaml 2022-05-20 17:50:05 +05:30
sandeep 3db129c6bf additional path for haproxy 2022-05-20 01:11:36 +05:30
forgedhallpass efddaed4bd
Do not report missing headers in case of HTTP redirects (#4425) 2022-05-18 02:19:08 +05:30
Prince Chaddha 7c7b0a7479
Update xss-deprecated-header.yaml 2022-05-17 13:36:53 +05:30
Josh Larsen b1833adc69 remove extra line 2022-05-16 15:02:43 -04:00
Josh Larsen 3c828b8ac0 detect deprecated XSS Protection headers 2022-05-16 12:12:06 -04:00
Prince Chaddha 3f9ce9fb44
Update oracle-ebusiness-registration-enabled.yaml 2022-05-16 18:50:40 +05:30
Prince Chaddha 4896151afd
Update and rename oracle-ebusiness-registration.yaml to oracle-ebusiness-registration-enabled.yaml 2022-05-16 12:55:50 +05:30
Prince Chaddha 8cda6eed4d
Update and rename oracle-misconfiguration.yaml to oracle-ebusiness-registration.yaml 2022-05-16 12:45:30 +05:30
Arman 14b68df4d1
Update oracle-misconfiguration.yaml 2022-05-15 16:33:02 -04:00
Arman a67aa8f07d
Create oracle-misconfiguration.yaml 2022-05-15 16:13:32 -04:00
Prince Chaddha 443d4d238b
Create unauth-wavink-panel.yaml 2022-05-15 18:20:37 +05:30
MostInterestingBotInTheWorld 581b7a627b
Dashboard Content Enhancements (#4381)
Dashboard Content Enhancements
2022-05-13 16:26:43 -04:00
Ritik Chaddha 27a039a70c
Update metadata query (#4350)
* Update adobe-component-login.yaml

* Update cold-fusion-cfcache-map.yaml

* Update unpatched-coldfusion.yaml

* Update coldfusion-debug-xss.yaml

* Update CVE-2020-11978.yaml

* Update CVE-2020-13927.yaml

* Update CVE-2021-38540.yaml

* Update CVE-2021-44451.yaml

* Update CVE-2022-24288.yaml

* Update airflow-debug.yaml

* Update airflow-detect.yaml

* Update CVE-2010-0219.yaml

* Update apache-axis-detect.yaml

* Update CVE-2020-11991.yaml

* Update apache-cocoon-detect.yaml

* Update CVE-2021-21402.yaml

* Update jellyfin-detect.yaml

* Update CVE-2021-21402.yaml

* Update CVE-2021-21402.yaml

* Update ecology-arbitrary-file-upload.yaml

* Update ecology-v8-sqli.yaml

* Update ecology-syncuserinfo-sqli.yaml

* Update ecology-filedownload-directory-traversal.yaml

* Update CNVD-2021-15822.yaml

* Update dedecms-carbuyaction-fileinclude.yaml

* Update dedecms-openredirect.yaml

* Update tamronos-rce.yaml

* Update natshell-path-traversal.yaml
2022-05-12 19:48:36 +05:30
Prince Chaddha 46187a047f
Update and rename default-logins/others/h3c-secparh-default-login.yaml to misconfiguration/unauthorized-h3csecparh-login.yaml 2022-05-12 15:36:08 +05:30
MostInterestingBotInTheWorld d05c7052e9
Restoring Empty Lines (#4340)
* Enhancement: cves/2021/CVE-2021-34473.yaml by mp

* Enhancement: cves/2021/CVE-2021-34621.yaml by mp

* Enhancement: cves/2021/CVE-2021-35336.yaml by mp

* Enhancement: cves/2021/CVE-2021-35464.yaml by mp

* Enhancement: cves/2021/CVE-2021-35587.yaml by mp

* Enhancement: cves/2021/CVE-2021-3577.yaml by mp

* Enhancement: cves/2021/CVE-2021-36260.yaml by mp

* Enhancement: cves/2021/CVE-2021-36380.yaml by mp

* Enhancement: cves/2021/CVE-2021-40323.yaml by mp

* Enhancement: cves/2021/CVE-2021-39226.yaml by mp

* Enhancement: cves/2021/CVE-2021-38647.yaml by mp

* Enhancement: cves/2021/CVE-2021-37580.yaml by mp

* Enhancement: cves/2021/CVE-2021-37538.yaml by mp

* Enhancement: cves/2021/CVE-2021-34473.yaml by mp

* Enhancement: cves/2021/CVE-2021-35336.yaml by mp

* Enhancement: cves/2021/CVE-2021-3577.yaml by mp

* Enhancement: cves/2021/CVE-2021-36260.yaml by mp

* Enhancement: cves/2021/CVE-2021-36380.yaml by mp

* Enhancement: cves/2021/CVE-2021-37538.yaml by mp

* Enhancement: cves/2021/CVE-2021-37580.yaml by mp

* Spacing and spelling

* remove blank lines introduced by dashboard

* Enhancement: cves/2019/CVE-2019-1821.yaml by mp

* Enhancement: cves/2019/CVE-2019-18394.yaml by mp

* Enhancement: cves/2019/CVE-2019-18818.yaml by mp

* Enhancement: cves/2019/CVE-2019-19781.yaml by mp

* Enhancement: cves/2019/CVE-2019-2725.yaml by mp

* Enhancement: cves/2019/CVE-2019-3396.yaml by mp

* Enhancement: cves/2019/CVE-2019-3929.yaml by mp

* Enhancement: cves/2019/CVE-2019-5127.yaml by mp

* Enhancement: cves/2019/CVE-2019-7238.yaml by mp

* Enhancement: cves/2019/CVE-2019-7256.yaml by mp

* Enhancement: cves/2019/CVE-2019-7609.yaml by mp

* Enhancement: cves/2019/CVE-2019-8982.yaml by mp

* Enhancement: cves/2019/CVE-2019-9618.yaml by mp

* Enhancement: cves/2019/CVE-2019-9670.yaml by mp

* Enhancement: cves/2019/CVE-2019-1821.yaml by mp

* Enhancement: cves/2019/CVE-2019-18394.yaml by mp

* Enhancement: cves/2019/CVE-2019-19781.yaml by mp

* Enhancement: cves/2019/CVE-2019-2725.yaml by mp

* Enhancement: cves/2019/CVE-2019-2725.yaml by mp

* Enhancement: cves/2019/CVE-2019-5127.yaml by mp

* Enhancement: cves/2019/CVE-2019-9618.yaml by mp

* Enhancement: cves/2019/CVE-2019-9670.yaml by mp

* Enhancement: cves/2005/CVE-2005-2428.yaml by mp

* Enhancement: cves/2019/CVE-2019-2579.yaml by mp

* Enhancement: cves/2019/CVE-2019-2578.yaml by mp

* Enhancement: cves/2019/CVE-2019-6112.yaml by mp

* Enhancement: cves/2019/CVE-2019-9733.yaml by mp

* Enhancement: cves/2020/CVE-2020-11034.yaml by mp

* Enhancement: cves/2020/CVE-2020-11529.yaml by mp

* Enhancement: cves/2020/CVE-2020-11546.yaml by mp

* Enhancement: cves/2020/CVE-2020-12116.yaml by mp

* Enhancement: cves/2020/CVE-2020-12447.yaml by mp

* Enhancement: cves/2020/CVE-2020-17453.yaml by mp

* Enhancement: cves/2020/CVE-2020-19360.yaml by mp

* Enhancement: cves/2020/CVE-2020-2140.yaml by mp

* Enhancement: cves/2020/CVE-2020-23575.yaml by mp

* Enhancement: cves/2020/CVE-2020-24223.yaml by mp

* Enhancement: cves/2019/CVE-2019-2578.yaml by mp

* Enhancement: cves/2019/CVE-2019-2579.yaml by mp

* Enhancement: cves/2019/CVE-2019-2578.yaml by mp

* Enhancement: cves/2019/CVE-2019-6112.yaml by mp

* Enhancement: cves/2019/CVE-2019-9733.yaml by mp

* Enhancement: cves/2020/CVE-2020-11034.yaml by mp

* Enhancement: cves/2020/CVE-2020-11529.yaml by mp

* Enhancement: cves/2020/CVE-2020-12116.yaml by mp

* Enhancement: cves/2020/CVE-2020-12447.yaml by mp

* Enhancement: cves/2020/CVE-2020-2140.yaml by mp

* Enhancement: cves/2020/CVE-2020-14092.yaml by mp

* Enhancement: cves/2021/CVE-2021-20090.yaml by mp

* standardizing enhanced by tag

* standardizing enhanced by tag

* Fix spacing. Add classification->cve

* Enhancement: cves/2021/CVE-2021-20158.yaml by mp

* Enhancement: cves/2021/CVE-2021-20167.yaml by mp

* Typo

* Enhancement: cves/2021/CVE-2021-20837.yaml by mp

* Enhancement: cves/2021/CVE-2021-21307.yaml by mp

* Enhancement: cves/2021/CVE-2021-21479.yaml by mp

* Enhancement: cves/2021/CVE-2021-21881.yaml by mp

* Enhancement: cves/2021/CVE-2021-21972.yaml by mp

* Enhancement: cves/2021/CVE-2021-21978.yaml by mp

* Enhancement: cves/2021/CVE-2021-22005.yaml by mp

* Enhancement: cves/2021/CVE-2021-22205.yaml by mp

* Enhancement: cves/2021/CVE-2021-22986.yaml by mp

* Enhancement: cves/2021/CVE-2021-24285.yaml by mp

* Enhancement: cves/2021/CVE-2021-24472.yaml by mp

* Enhancement: cves/2021/CVE-2021-20090.yaml by mp

* Enhancement: cves/2021/CVE-2021-20167.yaml by mp

* Enhancement: cves/2021/CVE-2021-21307.yaml by mp

* Enhancement: cves/2021/CVE-2021-21978.yaml by mp

* Enhancement: cves/2021/CVE-2021-21985.yaml by mp

* Enhancement: cves/2021/CVE-2021-21972.yaml by mp

* Enhancement: cves/2021/CVE-2021-22205.yaml by mp

* Enhancement: cves/2021/CVE-2021-22986.yaml by mp

* Enhancement: cves/2021/CVE-2021-24285.yaml by mp

* Restore empty lines

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: vulnerabilities/other/3cx-management-console.yaml by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Remove unnecessary file

* Restore content after bad dashboard edit

* Enhancement: undefined by cs

* Spacing issues

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: undefined by cs

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Delete null file created by dashboard

* Remove improper Enhanced tag

* Spacing issues

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Remove test dashboard commits

* Enhancement: cves/2014/CVE-2014-9618.yaml by mp

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Enhancement: cnvd/2019/CNVD-2019-19299.yaml by cs

* Not really enhanced

* Add classification->cve-id

* Restore content from dashboard mess up

* Enhancement: cves/2014/CVE-2014-9618.yaml by mp

* Enhancement: cves/2014/CVE-2014-9618.yaml by mp

* Restore newlines

Co-authored-by: sullo <sullo@cirt.net>
2022-05-10 12:35:15 +05:30
MostInterestingBotInTheWorld 9ff9285916
Dashboard Content Enhancements (#4338)
Dashboard Content Enhancements
2022-05-09 12:12:52 -04:00
sandeep 95f4bef801 meta data update 2022-05-09 15:13:18 +05:30
Prince Chaddha ddb9f0a8dc
Update insecure-firebase-database.yaml 2022-05-08 17:48:27 +05:30
Prince Chaddha bac486a802
Create insecure-firebase-database.yaml 2022-05-08 17:47:11 +05:30
Sandeep Singh b37f2dbff5
Added Nginx Dashboard (#4318) 2022-05-08 00:05:22 +05:30
Prince Chaddha be5984676a
Update aem-xss-childlist-selector.yaml 2022-05-01 02:04:56 +05:30
Dhiyaneshwaran 76e40c222e
Update aem-xss-childlist-selector.yaml 2022-05-01 00:46:35 +05:30
pussycat0x ccc7835baf
Sucuri Website Firewall - Not Configured Default page (#4254)
* Add files via upload

* Auto Generated CVE annotations [Wed Mar 16 11:29:14 UTC 2022] 🤖

* Auto Generated New Template Addition List [Wed Mar 16 13:48:01 UTC 2022] 🤖

* moving templates into jolokia directory

* duplicate of jolokia-unauthenticated-lfi

* merged similar templates into one with updated matchers

* Auto Generated New Template Addition List [Wed Mar 23 10:21:57 UTC 2022] 🤖

* Delete .new-additions

* Auto Generated New Template Addition List [Wed Mar 23 10:22:29 UTC 2022] 🤖

* conflict update

* Auto Generated New Template Addition List [Wed Mar 23 10:23:39 UTC 2022] 🤖

* Auto Generated New Template Addition List [Wed Mar 23 10:26:51 UTC 2022] 🤖

* Add files via upload

* Auto Generated New Template Addition List [Thu Apr 28 11:25:25 UTC 2022] 🤖

* Auto Generated CVE annotations [Thu Apr 28 11:25:55 UTC 2022] 🤖

* Update and rename sucuri-webs-firewall-default-page-detect.yaml to sucuri-notconfigured-page-detect.yaml

* Auto Generated New Template Addition List [Thu Apr 28 20:25:56 UTC 2022] 🤖

* mise update

Co-authored-by: GitHub Action <action@github.com>
Co-authored-by: sandeep <sandeep@projectdiscovery.io>
Co-authored-by: Prince Chaddha <prince@projectdiscovery.io>
2022-04-29 12:14:52 +05:30
sandeep 03a8c16f71 tags update 2022-04-27 03:06:21 +05:30
MostInterestingBotInTheWorld aa888bca8d
Dashboard Content Enhancements (#4238)
Dashboard Content Enhancements
2022-04-25 10:35:07 -04:00
forgedhallpass 209538baa6 refactor: Description field uniformization
* info field reorder
* reference values refactored to list
* added new lines after the id and before the protocols
* removed extra new lines
* split really long descriptions to multiple lines (part 1)
* other minor fixes
2022-04-22 13:38:41 +03:00
MostInterestingBotInTheWorld 31312b1c19
Dashboard Content Enhancements (#4191)
Dashboard Content Enhancements
2022-04-21 17:16:41 -04:00
sandeep 338d4622bf parts update to use response instead of all 2022-04-20 20:08:07 +05:30
Prince Chaddha 58e78efb02
Update unauthenticated-popup-upload.yaml 2022-04-20 01:12:40 +04:00
MostInterestingBotInTheWorld 5730781afa
Dashboard Content Enhancements (#4157)
* Enhancement: exposures/files/joomla-file-listing.yaml by cs

* Enhancement: cves/2019/CVE-2019-5418.yaml by mp

* Enhancement: cves/2016/CVE-2016-10940.yaml by mp

* Enhancement: cves/2015/CVE-2015-4694.yaml by mp

* Enhancement: cves/2016/CVE-2016-10960.yaml by mp

* Enhancement: cves/2021/CVE-2021-20091.yaml by mp

* Enhancement: cves/2021/CVE-2021-20092.yaml by mp

* Enhancement: vulnerabilities/other/solar-log-authbypass.yaml by mp

* Enhancement: vulnerabilities/wordpress/churchope-lfi.yaml by mp

* Enhancement: vulnerabilities/other/solar-log-authbypass.yaml by mp

* Enhancement: cves/2017/CVE-2017-10075.yaml by mp

* Enhancement: cves/2021/CVE-2021-27358.yaml by mp

* Enhancement: cves/2017/CVE-2017-9833.yaml by mp

* Enhancement: vulnerabilities/wordpress/wordpress-accessible-wpconfig.yaml by mp

* Enhancement: vulnerabilities/wordpress/wp-spot-premium-lfi.yaml by mp

* Enhancement: misconfiguration/symfony-debugmode.yaml by mp

* Enhancement: cves/2016/CVE-2016-10940.yaml by mp

* Enhancement: cves/2015/CVE-2015-4694.yaml by mp

* Enhancement: cves/2016/CVE-2016-10960.yaml by mp

* Enhancement: cves/2015/CVE-2015-4694.yaml by mp

* Enhancement: vulnerabilities/wordpress/churchope-lfi.yaml by mp

* Enhancement: cves/2017/CVE-2017-10075.yaml by mp

* Enhancement: cves/2021/CVE-2021-27358.yaml by mp

* Enhancement: vulnerabilities/wordpress/wordpress-accessible-wpconfig.yaml by mp

* Enhancement: vulnerabilities/wordpress/wp-spot-premium-lfi.yaml by mp

* Enhancement: vulnerabilities/wordpress/newsletter-open-redirect.yaml by mp

* Enhancement: vulnerabilities/wordpress/newsletter-open-redirect.yaml by mp

* Enhancement: vulnerabilities/wordpress/pieregister-open-redirect.yaml by mp

* Enhancement: cves/2021/CVE-2021-25055.yaml by mp

* Enhancement: cves/2021/CVE-2021-25028.yaml by mp

* Enhancement: vulnerabilities/wordpress/noptin-open-redirect.yaml by mp

* Enhancement: vulnerabilities/wordpress/elex-woocommerce-xss.yaml by mp

* Enhancement: vulnerabilities/wordpress/my-chatbot-xss.yaml by mp

* Enhancement: vulnerabilities/wordpress/wp-adaptive-xss.yaml by mp

* Enhancement: cves/2021/CVE-2021-24947.yaml by mp

* Enhancement: cves/2021/CVE-2021-24406.yaml by mp

* Enhancement: vulnerabilities/wordpress/elementorpage-open-redirect.yaml by mp

* Enhancement: cves/2016/CVE-2016-10033.yaml by mp

* Enhancement: cves/2021/CVE-2021-31682.yaml by mp

* Enhancement: vulnerabilities/wordpress/wp-woocommerce-file-download.yaml by mp

* Enhancement: cves/2021/CVE-2021-22986.yaml by mp

* Enhancement: vulnerabilities/wordpress/newsletter-open-redirect.yaml by mp

* Enhancement: vulnerabilities/wordpress/pieregister-open-redirect.yaml by mp

* Enhancement: cves/2021/CVE-2021-25055.yaml by mp

* Enhancement: cves/2021/CVE-2021-25028.yaml by mp

* Enhancement: vulnerabilities/wordpress/noptin-open-redirect.yaml by mp

* Enhancement: vulnerabilities/wordpress/elex-woocommerce-xss.yaml by mp

* Enhancement: cves/2021/CVE-2021-24947.yaml by mp

* Enhancement: cves/2021/CVE-2021-24406.yaml by mp

* Enhancement: cves/2021/CVE-2021-22986.yaml by mp

* Enhancement: cves/2016/CVE-2016-10033.yaml by mp

* Enhancement: vulnerabilities/wordpress/elementorpage-open-redirect.yaml by mp

* Enhancement: cves/2021/CVE-2021-24406.yaml by mp

* Relocating to CVE folder

* Enhancement: cves/2017/CVE-2017-14651.yaml by mp

* Enhancement: cves/2020/CVE-2020-24589.yaml by mp

* Enhancement: vulnerabilities/confluence/confluence-ssrf-sharelinks.yaml by mp

* Enhancement: cves/2019/CVE-2019-2729.yaml by mp

* Enhancement: cves/2018/CVE-2018-2893.yaml by mp

* Enhancement: cves/2018/CVE-2018-2628.yaml by mp

* Enhancement: cves/2018/CVE-2018-3238.yaml by mp

* Enhancement: cves/2018/CVE-2018-3238.yaml by mp

* Enhancement: cves/2017/CVE-2017-3528.yaml by mp

* Enhancement: cves/2019/CVE-2019-2588.yaml by mp

* Enhancement: cves/2021/CVE-2021-31755.yaml by mp

* Enhancement: cves/2021/CVE-2021-42071.yaml by mp

* Enhancement: misconfiguration/zabbix-dashboards-access.yaml by mp

* Enhancement: cves/2017/CVE-2017-14651.yaml by mp

* Enhancement: cves/2020/CVE-2020-24589.yaml by mp

* Enhancement: vulnerabilities/confluence/confluence-ssrf-sharelinks.yaml by mp

* Enhancement: cves/2019/CVE-2019-2729.yaml by mp

* Enhancement: cves/2018/CVE-2018-2893.yaml by mp

* Enhancement: cves/2018/CVE-2018-3238.yaml by mp

* Enhancement: cves/2017/CVE-2017-3528.yaml by mp

* Enhancement: cves/2021/CVE-2021-42071.yaml by mp

* Syntax corrections
Added some cve-id fields
Removed duplicate dashboard comments

* Tag typo

Co-authored-by: sullo <sullo@cirt.net>
2022-04-15 12:39:44 -04:00
MostInterestingBotInTheWorld a24ef794b7
Dashboard Content Enhancements (#4031)
Dashboard Content Enhancements
2022-04-07 09:53:15 -04:00
Prince Chaddha cc8e2e1bc5
Delete mikrotik-graph.yaml 2022-04-04 23:35:52 +05:30
idealphase 7963a563af
Updated mikrotik-graph.yaml
Added how many interface graph exposure extractors
2022-04-03 13:57:40 +07:00
sandeep 7b83c9990a minor updates to template names 2022-03-27 22:13:08 +05:30
Prince Chaddha 76cf7b463a
Update elasticsearch.yaml 2022-03-24 17:56:22 +05:30
Prince Chaddha a16430b81f
Update elasticsearch.yaml 2022-03-24 17:55:39 +05:30
Prince Chaddha 2c6feda7f8
Update jolokia-info-disclosure.yaml 2022-03-24 16:52:03 +05:30
pussycat0x c6e264a04e
New Templates added (#3913)
* Add files via upload

* Auto Generated CVE annotations [Wed Mar 16 11:29:14 UTC 2022] 🤖

* Auto Generated New Template Addition List [Wed Mar 16 13:48:01 UTC 2022] 🤖

* moving templates into jolokia directory

* duplicate of jolokia-unauthenticated-lfi

* merged similar templates into one with updated matchers

* Auto Generated New Template Addition List [Wed Mar 23 10:21:57 UTC 2022] 🤖

* Delete .new-additions

* Auto Generated New Template Addition List [Wed Mar 23 10:22:29 UTC 2022] 🤖

* conflict update

* Auto Generated New Template Addition List [Wed Mar 23 10:23:39 UTC 2022] 🤖

Co-authored-by: GitHub Action <action@github.com>
Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2022-03-23 15:56:30 +05:30
sandeep ec99241f0e Updated "/etc/passwd" regex to avoid possible false positive results. 2022-03-22 13:31:31 +05:30
MostInterestingBotInTheWorld 9663595dd1
Dashboard Text Enhancements (#3948)
Dashboard content enhancements
2022-03-21 23:48:47 -04:00
Xeldax 10b23118aa
add airflow cve-2022-24288 (#3873)
* add airflow cve-2022-24288

* lint update

* template request + matcher + metadata update

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2022-03-19 15:59:17 +05:30
Dhiyaneshwaran f60ea48e4c
AEM XSS - Childlist (#3916)
* Create xss-childlist-selector.yaml

* Update xss-childlist-selector.yaml

* Rename xss-childlist-selector.yaml to aem-xss-childlist-selector.yaml

* adding metadata

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2022-03-17 14:23:26 +05:30
Sandeep Singh cca29dd553
Merge pull request #3866 from dolevf/master
GraphQL Nuclei Templates
2022-03-15 19:13:28 +05:30
sandeep 1df275d0ae update: more matchers + description + reference 2022-03-15 18:43:35 +05:30
Sandeep Singh 2877624443
Merge pull request #3888 from DhiyaneshGeek/master
Additional Paths Added
2022-03-14 20:56:22 +05:30
Dhiyaneshwaran 8301e80261
Update aem-login-status.yaml 2022-03-12 14:26:52 +05:30
Dhiyaneshwaran e910091f08
Update aem-login-status.yaml 2022-03-12 14:26:27 +05:30
Dhiyaneshwaran 32bcbecd43
Update aem-querybuilder-json-servlet.yaml 2022-03-12 14:23:17 +05:30
Dhiyaneshwaran f767a6d027
Update aem-default-get-servlet.yaml 2022-03-12 14:10:53 +05:30
sandeep a2fa2d60d4 added stop at first match support 2022-03-11 21:53:23 +05:30
aaditya rengarajan 2b876bb213
added more URLs to scrape 2022-03-11 19:28:52 +05:30
sandeep a003e24add moving templates around 2022-03-09 18:27:29 +05:30
sandeep 9f5cc1ca80 added gitlab metadata 2022-03-04 19:20:03 +05:30
sandeep a874d9ff02 template updates
- moved template to misconfiguration directory
2022-03-04 18:52:23 +05:30
MostInterestingBotInTheWorld 66f1023114
Merge branch 'projectdiscovery:master' into dashboard 2022-03-03 08:52:54 -05:00
MostInterestingBotInTheWorld d5556d3a75 Enhancement: default-logins/cobbler/cobbler-default-login.yaml by mp 2022-03-03 08:27:48 -05:00
sandeep 6d32b81b2a GitLab metadata update 2022-03-02 13:05:29 +05:30
MostInterestingBotInTheWorld da31d88a9f Enhancement: misconfiguration/proxy/metadata-openstack.yaml by cs 2022-02-28 13:38:21 -05:00
MostInterestingBotInTheWorld 25938bc625
Dashboard (#3706)
* Enhancement: cves/2010/CVE-2010-1353.yaml by mp

* Enhancement: cves/2010/CVE-2010-1352.yaml by mp

* Enhancement: cves/2010/CVE-2010-1345.yaml by mp

* Enhancement: cves/2010/CVE-2010-1340.yaml by mp

* Enhancement: cves/2010/CVE-2010-1345.yaml by mp

* Enhancement: cves/2010/CVE-2010-1315.yaml by mp

* Enhancement: cves/2010/CVE-2010-1314.yaml by mp

* Enhancement: cves/2010/CVE-2010-1313.yaml by mp

* Enhancement: cves/2010/CVE-2010-1312.yaml by mp

* Enhancement: cves/2010/CVE-2010-1308.yaml by mp

* Enhancement: cves/2010/CVE-2010-1307.yaml by mp

* Enhancement: cves/2010/CVE-2010-1306.yaml by mp

* Enhancement: cves/2010/CVE-2010-1305.yaml by mp

* Enhancement: cves/2010/CVE-2010-1304.yaml by mp

* Enhancement: cves/2010/CVE-2010-1302.yaml by mp

* Enhancement: cves/2010/CVE-2010-1219.yaml by mp

* Enhancement: cves/2010/CVE-2010-1352.yaml by mp

* Enhancement: cves/2010/CVE-2010-1354.yaml by mp

* Enhancement: cves/2010/CVE-2010-1461.yaml by mp

* Enhancement: cves/2010/CVE-2010-1469.yaml by mp

* Enhancement: cves/2010/CVE-2010-1470.yaml by mp

* Enhancement: cves/2010/CVE-2010-1471.yaml by mp

* Enhancement: cves/2010/CVE-2010-1472.yaml by mp

* Enhancement: cves/2010/CVE-2010-1473.yaml by mp

* Enhancement: cves/2010/CVE-2010-1474.yaml by mp

* Enhancement: cves/2010/CVE-2010-1475.yaml by mp

* Enhancement: cves/2010/CVE-2010-1476.yaml by mp

* Enhancement: cves/2010/CVE-2010-1478.yaml by mp

* Enhancement: cves/2010/CVE-2010-1491.yaml by mp

* Enhancement: cves/2010/CVE-2010-1494.yaml by mp

* Enhancement: cves/2010/CVE-2010-1495.yaml by mp

* Enhancement: cves/2010/CVE-2010-1531.yaml by mp

* Enhancement: cves/2010/CVE-2010-1473.yaml by mp

* Enhancement: misconfiguration/proxy/metadata-alibaba.yaml by cs

* Enhancement: misconfiguration/proxy/metadata-openstack.yaml by cs

* Enhancement: misconfiguration/proxy/metadata-oracle.yaml by cs

* Enhancement: cves/2016/CVE-2016-4975.yaml by cs

* Enhancement: misconfiguration/proxy/metadata-openstack.yaml by cs

* Enhancement: misconfiguration/proxy/metadata-oracle.yaml by cs

* Enhancement: misconfiguration/proxy/metadata-openstack.yaml by cs

* Enhancement: misconfiguration/proxy/metadata-digitalocean.yaml by cs

* Enhancement: misconfiguration/proxy/metadata-alibaba.yaml by cs

* Enhancement: misconfiguration/proxy/metadata-hetzner.yaml by cs

* Enhancement: misconfiguration/proxy/metadata-aws.yaml by cs

* Enhancement: misconfiguration/proxy/metadata-google.yaml by cs

* Enhancement: misconfiguration/proxy/metadata-azure.yaml by cs

* Enhancement: misconfiguration/proxy/open-proxy-localhost.yaml by cs

* Enhancement: misconfiguration/proxy/open-proxy-internal.yaml by cs

* Enhancement: cves/2021/CVE-2021-1497.yaml by cs

* Spacing fixes and enhancement to CNVD-2019-01348.yaml

* Spacing fixes, and enhancement to CNVD-2019-01348.yaml

* Merge artifact

* Spacing

Co-authored-by: sullo <sullo@cirt.net>
2022-02-15 11:39:56 +05:30
sandeep fcec6a8a59 additional path for phpmyadmin setup page 2022-02-15 11:22:01 +05:30
Sandeep Singh 99c131b1a6
Added Cobbler provisioning server Templates (#3698)
Co-Authored-By: csh <25989137+c-sh0@users.noreply.github.com>

Co-authored-by: csh <25989137+c-sh0@users.noreply.github.com>
2022-02-14 22:50:32 +05:30
sullo 9891b971cb
Merge pull request #3604 from MostInterestingBotInTheWorld/master
Enhancement: Replace nonstandard ascii chars with chars we like better
2022-01-26 10:38:24 -05:00
Dhiyaneshwaran 7bd14d5cbc
OpenBMCS Info Disclosure & SSRF Unauth (#3603)
* Create gophish-login.yaml

* Create gophish-workflow.yaml

* Update gophish-workflow.yaml

* Create openbmcs-secret-disclosure.yaml

* Create openbmcs-ssrf.yaml

* Added additional matcher

* Added missing header + matcher update

Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
Co-authored-by: root <root@3gzk.l.time4vps.cloud>
2022-01-26 16:56:40 +05:30
Sullo 9a8482172d Remove:
- various nonstandard ascii chars in favor of the standard ones (mostly quotes)
 - spaces after : in some files
2022-01-25 14:38:53 -05:00
edoardottt 78795e9a51 update Zipkin template 2022-01-24 10:13:09 +01:00
gilfoyle97 afd4f13580
Update unauthenticated-zippkin.yaml 2022-01-24 10:11:18 +01:00
sandeep e84a105f79 lint fix 2022-01-22 14:34:50 +05:30
sullo 0229c3f001 Enhancement: misconfiguration/proxy/open-proxy-portscan.yaml by Chris 2022-01-21 14:06:29 -05:00
Sandeep Singh fafd43e090
Added Misconfigured Concrete5 (#3563) 2022-01-19 16:28:00 +05:30
Sandeep Singh 05d78b896e
updated tags 2022-01-19 15:45:06 +05:30
Dhiyaneshwaran 0e8b34f776
New Templates & Workflow (#3556)
* Create secure-login-panel.yaml

* Create geo-webserver.yaml

* Create hp-virtual-connect-manager.yaml

* Create microsoft-azure-error.yaml

* Create microsoft-iis-8.yaml

* Create veeam-backup-azure-panel.yaml

* Create user-control-panel.yaml

* Create kafka-consumer-monitor.yaml

* Update kafka-consumer-monitor.yaml

* Create kafka-connect-ui-exposure.yaml

* misc updates

* duplicate template

existing one - `exposed-panels/kafka-connect-ui.yaml`

* Create kafka-cruise-control.yaml

* Create kafka-center-default-login.yaml

* Create kafka-center-login.yaml

* minor update

* Create azure-kubernetes-service.yaml

* Update azure-kubernetes-service.yaml

* Update azure-kubernetes-service.yaml

* Create barracuda-panel.yaml

* Update barracuda-panel.yaml

* Update barracuda-panel.yaml

* Create CVE-2021-24891.yaml

* template meta info update

* Delete CVE-2021-24891.yaml

* Create caddy-open-redirect.yaml

* Create concrete5-panel.yaml

* Create concrete-workflow.yaml

* updated matcher to avoid false negative results

* misc updates

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2022-01-19 13:21:15 +05:30
Sandeep Singh 6f84c96e5b
Add cloud metadata checks for reverse proxies (#3528)
* Add cloud metadata checks (proxied) for:
- Amazon AWS
- Alibaba Cloud
- Microsoft Azure
- DigitalOcean
- Hetzner Cloud
- OpenStack
- Oracle Cloud

* fixup! Add cloud metadata checks (proxied) for: - Amazon AWS - Alibaba Cloud - Microsoft Azure - DigitalOcean - Hetzner Cloud - OpenStack - Oracle Cloud

* Fix URL

* Remove unnecessary Flavor header

* Add cgi as a file type

* syntax fix

* syntax update

* moving files around

* tags update

* matchers update

* * Added CVSS scores
* Updated metadata tests to latest versions
* Added generic proxy tests

* * Update to latest versions
* Remove empty lines to pass lint

* removing sniper to use default attacktype

* minor syntax fix

* minor updates

Co-authored-by: sullo <sullo@ziggy.local>
Co-authored-by: sullo <sullo@cirt.net>
2022-01-16 17:55:28 +05:30
Guillaume Granjus 2070860a50
Add Browserless Debugger Template (#3537)
* "Add Browserless Debugger Template"

* minor update

* lint fixes

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2022-01-14 11:55:08 +05:30
Pathtaga e281e5bf88
Updated all templates tags with technologies (#3478)
* Updated tags for template sonicwall-email-security-detect.yaml

* Updated tags for template detect-sentry.yaml

* Updated tags for template kong-detect.yaml

* Updated tags for template openam-detect.yaml

* Updated tags for template shiro-detect.yaml

* Updated tags for template iplanet-web-server.yaml

* Updated tags for template graylog-api-browser.yaml

* Updated tags for template prtg-detect.yaml

* Updated tags for template node-red-detect.yaml

* Updated tags for template abyss-web-server.yaml

* Updated tags for template geo-webserver.yaml

* Updated tags for template autobahn-python-detect.yaml

* Updated tags for template default-lighttpd-page.yaml

* Updated tags for template microsoft-iis-8.yaml

* Updated tags for template lucee-detect.yaml

* Updated tags for template php-proxy-detect.yaml

* Updated tags for template jenkins-detect.yaml

* Updated tags for template cockpit-detect.yaml

* Updated tags for template csrfguard-detect.yaml

* Updated tags for template dwr-index-detect.yaml

* Updated tags for template netsweeper-webadmin-detect.yaml

* Updated tags for template weblogic-detect.yaml

* Updated tags for template s3-detect.yaml

* Updated tags for template tileserver-gl.yaml

* Updated tags for template springboot-actuator.yaml

* Updated tags for template terraform-detect.yaml

* Updated tags for template redmine-cli-detect.yaml

* Updated tags for template mrtg-detect.yaml

* Updated tags for template tableau-server-detect.yaml

* Updated tags for template magmi-detect.yaml

* Updated tags for template oidc-detect.yaml

* Updated tags for template tor-socks-proxy.yaml

* Updated tags for template synology-web-station.yaml

* Updated tags for template herokuapp-detect.yaml

* Updated tags for template gunicorn-detect.yaml

* Updated tags for template sql-server-reporting.yaml

* Updated tags for template google-bucket-service.yaml

* Updated tags for template kubernetes-mirantis.yaml

* Updated tags for template kubernetes-enterprise-manager.yaml

* Updated tags for template oracle-iplanet-web-server.yaml

* Updated tags for template dell-idrac7-detect.yaml

* Updated tags for template dell-idrac6-detect.yaml

* Updated tags for template dell-idrac9-detect.yaml

* Updated tags for template dell-idrac8-detect.yaml

* Updated tags for template apache-guacamole.yaml

* Updated tags for template aws-cloudfront-service.yaml

* Updated tags for template aws-bucket-service.yaml

* Updated tags for template nginx-linux-page.yaml

* Updated tags for template telerik-fileupload-detect.yaml

* Updated tags for template telerik-dialoghandler-detect.yaml

* Updated tags for template htaccess-config.yaml

* Updated tags for template microsoft-azure-error.yaml

* Updated tags for template detect-options-method.yaml

* Updated tags for template unpatched-coldfusion.yaml

* Updated tags for template moodle-changelog.yaml

* Updated tags for template detect-dns-over-https.yaml

* Updated tags for template CVE-2019-19134.yaml

* Updated tags for template CVE-2019-3929.yaml

* Updated tags for template CVE-2019-19908.yaml

* Updated tags for template CVE-2019-10475.yaml

* Updated tags for template CVE-2019-17382.yaml

* Updated tags for template CVE-2019-16332.yaml

* Updated tags for template CVE-2019-14974.yaml

* Updated tags for template CVE-2019-19368.yaml

* Updated tags for template CVE-2019-12725.yaml

* Updated tags for template CVE-2019-15501.yaml

* Updated tags for template CVE-2019-9733.yaml

* Updated tags for template CVE-2019-14322.yaml

* Updated tags for template CVE-2019-9955.yaml

* Updated tags for template CVE-2019-0230.yaml

* Updated tags for template CVE-2019-10232.yaml

* Updated tags for template CVE-2019-17506.yaml

* Updated tags for template CVE-2019-8449.yaml

* Updated tags for template CVE-2019-12593.yaml

* Updated tags for template CVE-2019-10092.yaml

* Updated tags for template CVE-2019-1821.yaml

* Updated tags for template CVE-2019-3401.yaml

* Updated tags for template CVE-2019-16662.yaml

* Updated tags for template CVE-2019-5418.yaml

* Updated tags for template CVE-2016-4975.yaml

* Updated tags for template CVE-2016-1000137.yaml

* Updated tags for template CVE-2016-7552.yaml

* Updated tags for template CVE-2016-10956.yaml

* Updated tags for template CVE-2016-1000146.yaml

* Updated tags for template CVE-2013-2251.yaml

* Updated tags for template CVE-2013-1965.yaml

* Updated tags for template CVE-2014-2323.yaml

* Updated tags for template CVE-2014-5111.yaml

* Updated tags for template CVE-2014-2962.yaml

* Updated tags for template CVE-2014-4561.yaml

* Updated tags for template CVE-2014-4558.yaml

* Updated tags for template CVE-2014-3120.yaml

* Updated tags for template CVE-2007-5728.yaml

* Updated tags for template CVE-2009-4679.yaml

* Updated tags for template CVE-2009-1558.yaml

* Updated tags for template CVE-2009-4202.yaml

* Updated tags for template CVE-2009-0932.yaml

* Updated tags for template CVE-2015-2068.yaml

* Updated tags for template CVE-2015-8813.yaml

* Updated tags for template CVE-2015-7450.yaml

* Updated tags for template CVE-2015-2067.yaml

* Updated tags for template CVE-2015-3306.yaml

* Updated tags for template CVE-2015-3337.yaml

* Updated tags for template CVE-2015-1427.yaml

* Updated tags for template CVE-2015-1503.yaml

* Updated tags for template CVE-2015-1880.yaml

* Updated tags for template CVE-2018-3810.yaml

* Updated tags for template CVE-2018-18069.yaml

* Updated tags for template CVE-2018-17246.yaml

* Updated tags for template CVE-2018-10141.yaml

* Updated tags for template CVE-2018-16341.yaml

* Updated tags for template CVE-2018-18777.yaml

* Updated tags for template CVE-2018-15138.yaml

* Updated tags for template CVE-2018-11784.yaml

* Updated tags for template CVE-2018-16299.yaml

* Updated tags for template CVE-2018-7251.yaml

* Updated tags for template CVE-2018-1273.yaml

* Updated tags for template CVE-2018-1271.yaml

* Updated tags for template CVE-2018-11759.yaml

* Updated tags for template CVE-2018-3167.yaml

* Updated tags for template CVE-2018-7490.yaml

* Updated tags for template CVE-2018-2628.yaml

* Updated tags for template CVE-2018-13380.yaml

* Updated tags for template CVE-2018-2893.yaml

* Updated tags for template CVE-2018-5316.yaml

* Updated tags for template CVE-2018-20985.yaml

* Updated tags for template CVE-2018-10818.yaml

* Updated tags for template CVE-2018-1000861.yaml

* Updated tags for template CVE-2018-0296.yaml

* Updated tags for template CVE-2018-19458.yaml

* Updated tags for template CVE-2018-3760.yaml

* Updated tags for template CVE-2018-12998.yaml

* Updated tags for template CVE-2018-9118.yaml

* Updated tags for template CVE-2018-1000130.yaml

* Updated tags for template CVE-2008-6668.yaml

* Updated tags for template CVE-2017-7269.yaml

* Updated tags for template CVE-2017-1000170.yaml

* Updated tags for template CVE-2017-16877.yaml

* Updated tags for template CVE-2017-1000486.yaml

* Updated tags for template CVE-2017-9822.yaml

* Updated tags for template CVE-2017-0929.yaml

* Updated tags for template CVE-2017-7921.yaml

* Updated tags for template CVE-2017-14535.yaml

* Updated tags for template CVE-2017-5521.yaml

* Updated tags for template CVE-2017-12637.yaml

* Updated tags for template CVE-2017-12635.yaml

* Updated tags for template CVE-2017-11610.yaml

* Updated tags for template CVE-2021-20114.yaml

* Updated tags for template CVE-2021-40856.yaml

* Updated tags for template CVE-2021-21972.yaml

* Updated tags for template CVE-2021-31602.yaml

* Updated tags for template CVE-2021-41773.yaml

* Updated tags for template CVE-2021-37704.yaml

* Updated tags for template CVE-2021-45046.yaml

* Updated tags for template CVE-2021-26084.yaml

* Updated tags for template CVE-2021-27931.yaml

* Updated tags for template CVE-2021-24291.yaml

* Updated tags for template CVE-2021-41648.yaml

* Updated tags for template CVE-2021-37216.yaml

* Updated tags for template CVE-2021-22005.yaml

* Updated tags for template CVE-2021-37573.yaml

* Updated tags for template CVE-2021-31755.yaml

* Updated tags for template CVE-2021-43287.yaml

* Updated tags for template CVE-2021-24274.yaml

* Updated tags for template CVE-2021-33564.yaml

* Updated tags for template CVE-2021-22145.yaml

* Updated tags for template CVE-2021-24237.yaml

* Updated tags for template CVE-2021-44848.yaml

* Updated tags for template CVE-2021-25646.yaml

* Updated tags for template CVE-2021-21816.yaml

* Updated tags for template CVE-2021-41649.yaml

* Updated tags for template CVE-2021-41291.yaml

* Updated tags for template CVE-2021-41293.yaml

* Updated tags for template CVE-2021-21801.yaml

* Updated tags for template CVE-2021-29156.yaml

* Updated tags for template CVE-2021-34370.yaml

* Updated tags for template CVE-2021-27132.yaml

* Updated tags for template CVE-2021-28151.yaml

* Updated tags for template CVE-2021-26812.yaml

* Updated tags for template CVE-2021-21985.yaml

* Updated tags for template CVE-2021-43778.yaml

* Updated tags for template CVE-2021-25281.yaml

* Updated tags for template CVE-2021-40539.yaml

* Updated tags for template CVE-2021-36749.yaml

* Updated tags for template CVE-2021-21234.yaml

* Updated tags for template CVE-2021-33221.yaml

* Updated tags for template CVE-2021-42013.yaml

* Updated tags for template CVE-2021-33807.yaml

* Updated tags for template CVE-2021-44228.yaml

* Updated tags for template CVE-2012-0896.yaml

* Updated tags for template CVE-2012-0991.yaml

* Updated tags for template CVE-2012-0392.yaml

* Updated tags for template CVE-2012-4940.yaml

* Updated tags for template CVE-2012-1226.yaml

* Updated tags for template CVE-2012-4878.yaml

* Updated tags for template CVE-2010-1304.yaml

* Updated tags for template CVE-2010-1217.yaml

* Updated tags for template CVE-2010-0759.yaml

* Updated tags for template CVE-2010-2307.yaml

* Updated tags for template CVE-2010-4231.yaml

* Updated tags for template CVE-2010-2861.yaml

* Updated tags for template CVE-2010-4282.yaml

* Updated tags for template CVE-2010-1302.yaml

* Updated tags for template CVE-2010-1461.yaml

* Updated tags for template CVE-2020-4463.yaml

* Updated tags for template CVE-2020-1943.yaml

* Updated tags for template CVE-2020-36289.yaml

* Updated tags for template CVE-2020-17518.yaml

* Updated tags for template CVE-2020-12800.yaml

* Updated tags for template CVE-2020-10770.yaml

* Updated tags for template CVE-2020-17506.yaml

* Updated tags for template CVE-2020-11547.yaml

* Updated tags for template CVE-2020-11034.yaml

* Updated tags for template CVE-2020-24589.yaml

* Updated tags for template CVE-2020-9054.yaml

* Updated tags for template CVE-2020-28976.yaml

* Updated tags for template CVE-2020-16952.yaml

* Updated tags for template CVE-2020-24312.yaml

* Updated tags for template CVE-2020-8512.yaml

* Updated tags for template CVE-2020-14179.yaml

* Updated tags for template CVE-2020-6308.yaml

* Updated tags for template CVE-2020-35846.yaml

* Updated tags for template CVE-2020-7318.yaml

* Updated tags for template CVE-2020-2140.yaml

* Updated tags for template CVE-2020-5410.yaml

* Updated tags for template CVE-2020-5777.yaml

* Updated tags for template CVE-2020-13700.yaml

* Updated tags for template CVE-2020-5775.yaml

* Updated tags for template CVE-2020-13167.yaml

* Updated tags for template CVE-2020-35848.yaml

* Updated tags for template CVE-2020-9484.yaml

* Updated tags for template CVE-2020-15505.yaml

* Updated tags for template CVE-2020-9047.yaml

* Updated tags for template CVE-2020-17519.yaml

* Updated tags for template CVE-2020-17505.yaml

* Updated tags for template CVE-2020-9376.yaml

* Updated tags for template CVE-2020-8497.yaml

* Updated tags for template CVE-2020-14092.yaml

* Updated tags for template CVE-2020-10148.yaml

* Updated tags for template CVE-2020-35847.yaml

* Updated tags for template CVE-2020-12116.yaml

* Updated tags for template CVE-2020-11930.yaml

* Updated tags for template CVE-2020-24186.yaml

* Updated tags for template CVE-2020-9496.yaml

* Updated tags for template CVE-2020-35489.yaml

* Updated tags for template CVE-2020-26413.yaml

* Updated tags for template CVE-2020-2096.yaml

* misc updates

* misc update

* more updates

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2022-01-05 01:04:16 +05:30
PR3R00T 1110c6095f
Update solr-query-dashboard.yaml (#3475)
changed to lower case "high" to be in line with all other templates case sensitivity.
2022-01-04 16:02:45 +05:30
Dhiyaneshwaran eb2624580d
Kafka Center Default Login , Panel , Kafka Cruise Control UI Dashboard (#3472)
* Create secure-login-panel.yaml

* Create geo-webserver.yaml

* Create hp-virtual-connect-manager.yaml

* Create microsoft-azure-error.yaml

* Create microsoft-iis-8.yaml

* Create veeam-backup-azure-panel.yaml

* Create user-control-panel.yaml

* Create kafka-consumer-monitor.yaml

* Update kafka-consumer-monitor.yaml

* Create kafka-connect-ui-exposure.yaml

* misc updates

* duplicate template

existing one - `exposed-panels/kafka-connect-ui.yaml`

* Create kafka-cruise-control.yaml

* Create kafka-center-default-login.yaml

* Create kafka-center-login.yaml

* minor update

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2022-01-03 23:52:26 +05:30
ImNightmaree 9923e91348
Create glpi-directory-listing.yaml (#3439)
* Create glpi-directory-listing.yaml

* Linting

* Linting

Adds ``part: header``

* Update glpi-directory-listing.yaml

* Update glpi-directory-listing.yaml

* Update glpi-directory-listing.yaml

* Update glpi-directory-listing.yaml

* Update glpi-directory-listing.yaml

* Update glpi-directory-listing.yaml

* Update glpi-directory-listing.yaml

Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io>
Co-authored-by: Prince Chaddha <prince@projectdiscovery.io>
2021-12-30 14:05:45 +05:30
Gabriel Barros ce97393f95
Adding permission-policy header (#3447)
* Adding permission-policy header

* lint fix

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2021-12-29 20:06:58 +05:30
Sandeep Singh de9c4d605c
Apache Tomcat Template improvements (#3446)
* Improved Tomcat matchers / extractors / paths

* removed duplicate detections / matchers

* removed duplicate template

* Added missing tomcat tags
2021-12-29 19:10:59 +05:30
Prince Chaddha 015f19a596
Merge pull request #3389 from DhiyaneshGeek/master
New 4 Templates
2021-12-22 13:54:30 +05:30
Prince Chaddha cbe73160de
Update dgraph-dashboard-exposure.yaml 2021-12-22 13:01:22 +05:30
Prince Chaddha a7b70eb953
Update dgraph-dashboard-exposure.yaml 2021-12-22 12:44:35 +05:30
pussycat0x 8a77db7919
unauthorized Puppet Node Manager (#3388)
* Add files via upload

* Update unauthorized-puppet-node-manager-detect.yaml

* Add files via upload

* Add files via upload

* Update CVE-2021-40859.yaml

* misc updates

* minor updates

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2021-12-22 12:16:05 +05:30
Dhiyaneshwaran b23e95abe8
Create dgraph-dashboard-exposure.yaml 2021-12-21 21:50:43 +05:30
Wyatt Dahlenburg 1619ee4566
Spring Boot Gateway Actuator (#3384)
* Adding the springboot gateway actuator

* minor update

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2021-12-21 10:54:13 +05:30
Prince Chaddha 7aafd1741a
Create formalms-install.yaml 2021-12-13 14:22:46 +05:30
sandeep b4b6d9a220 update: added additional path 2021-12-05 16:48:49 +05:30
Dhiyaneshwaran 7b7d6e1654
jolokia-unauthenticated-lfi (#3268)
* Create jolokia-unauthenticated-lfi.yaml

* update: added more reference to template

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
2021-12-05 16:12:46 +05:30
ImNightmaree 3efb8332f9
Change ID to match filename (#3267) 2021-12-05 12:02:46 +05:30
Sandeep Singh 9057161fa5
Added AEM setPreferences XSS (#3264)
* Added AEM setPreferences XSS

* Added shodan query
2021-12-04 17:32:37 +05:30
sandeep 0425b36e10 moving templates around 2021-11-28 03:39:10 +05:30
Sandeep Singh 3fb2bf4644
Merge pull request #3174 from DhiyaneshGeek/master
Version Control Templates
2021-11-21 14:55:24 +05:30
sandeep d16fb02b21 minor updates to template 2021-11-21 14:53:15 +05:30
sandeep b7682eda16 Added condition in matchers 2021-11-21 14:30:09 +05:30
sandeep 54a182518a Added reference 2021-11-21 14:29:10 +05:30
sandeep 80db01c68c moving apache templates to apache directory 2021-11-21 14:26:39 +05:30
Dhiyaneshwaran 5dd998395f
Create git-web-interface.yaml 2021-11-20 17:46:52 +05:30
Dhiyaneshwaran f79c4bf7f9
Create gitlist-disclosure.yaml 2021-11-20 17:35:54 +05:30
PikPikcU 45073c7b88
Create apache-hbase-unauth.yaml 2021-11-20 07:27:56 +07:00
PikPikcU 03999c42cd
Create apache-storm-unauth.yaml 2021-11-20 06:40:32 +07:00
Prince Chaddha 8198ba6711
Merge pull request #3140 from deFr0ggy/master
AMPPS - Directory Listing Misconfiguration
2021-11-17 23:03:11 +05:30
Frog Man 0a27557981
Update ampps-dirlisting.yaml 2021-11-17 22:24:40 +05:00
Prince Chaddha 887872dab2
Update ampps-dirlisting.yaml 2021-11-17 13:57:51 +05:30
Kamran Saifullah (Frog Man) f046a10576
AMPPS - Directory Listing Misconfiguration 2021-11-14 14:33:51 +05:00
Sandeep Singh 7b1cc1bcd7
Merge pull request #3134 from pussycat0x/master
Unauthentication InfluxDB Detection
2021-11-13 14:18:20 +05:30
sandeep 6dbf6233be lint fix 2021-11-13 14:16:19 +05:30
sandeep 5981681f65 misc updates 2021-11-13 14:14:06 +05:30
pussycat0x 2051ea65ea
Add files via upload 2021-11-13 12:26:47 +05:30
sandeep 878a74647c misc updates 2021-11-11 22:04:45 +05:30
Sullo e43e20880d Move miscellaneous/phpmyadmin-setup.yaml to misconfiguration/phpmyadmin/phpmyadmin-setup.yaml 2021-11-11 11:14:21 -05:00
Sullo 02ad4e81b0 Removing misconfiguration/phpmyadmin/phpmyadmin-setup.yaml
in favor of miscellaneous/phpmyadmin-setup.yaml
2021-11-11 11:13:45 -05:00
Prince Chaddha d19093dcc8
Merge pull request #3117 from pussycat0x/master
unauthorized hp officepro printer
2021-11-11 12:51:25 +05:30
Prince Chaddha 58c224e3a5
Update unauthorized-hp-officepro-printer.yaml 2021-11-11 11:14:52 +05:30
Prince Chaddha 1a15d91764
Update and rename misconfiguration/unauthorized-hp-officepro-printer.yaml to misconfiguration/hp/unauthorized-hp-officepro-printer.yaml 2021-11-11 11:10:36 +05:30
pussycat0x f9263c047a
Update unauthorized-hp-officepro-printer.yaml 2021-11-10 17:58:59 +05:30
pussycat0x cb0b495fe0
Add files via upload 2021-11-10 17:46:34 +05:30
Sandeep Singh 037d974e8b
Merge pull request #3095 from projectdiscovery/CVE-2020-26413
Create CVE-2020-26413.yaml
2021-11-06 22:38:14 +05:30
sandeep dbbb08e40c misc updates 2021-11-06 22:36:37 +05:30
Sandeep Singh 199d7061f7
Update gocd-encryption-key.yaml 2021-11-06 18:45:55 +05:30
Pradeepch99 32e666d1f0
Update gocd-encryption-key.yaml 2021-11-06 18:24:24 +05:30
sandeep a6d228ad50 misc updates 2021-11-06 16:27:38 +05:30
sandeep 5fa10c4b64 cves update 2021-11-06 12:34:04 +05:30
sandeep b2eceeff1a syntax update 2021-11-05 02:56:16 +05:30
Dhiyaneshwaran 3736a5ccc9
Update gocd-unauth-dashboard.yaml 2021-11-05 02:51:56 +05:30
Dhiyaneshwaran 2e4ca64ca7
Update gocd-server-configuration.yaml 2021-11-05 02:51:48 +05:30
Dhiyaneshwaran 2e4e27cb69
Update gocd-encryption-key.yaml 2021-11-05 02:51:39 +05:30
Dhiyaneshwaran 134c27219d
Update gocd-arbitrary-file.yaml 2021-11-05 02:51:18 +05:30
sandeep 99ba23f9af misc update 2021-11-05 02:29:38 +05:30
Dhiyaneshwaran 62a629cda9
Create gocd-unauth-dashboard.yaml 2021-11-05 02:27:08 +05:30
Dhiyaneshwaran bb2e3b1d38
Create gocd-encryption-key.yaml 2021-11-05 02:22:06 +05:30
Dhiyaneshwaran fd9ffceacd
Update and rename go-cd-arbitrary-file.yaml to gocd-arbitrary-file.yaml 2021-11-05 02:13:15 +05:30
Dhiyaneshwaran 5d7e8f72de
Update gocd-server-configuration.yaml 2021-11-05 02:12:33 +05:30
Dhiyaneshwaran 2e7ab374eb
Create gocd-server-configuration.yaml 2021-11-05 01:54:26 +05:30
Dhiyaneshwaran db91642c3d
Rename pre-auth-rce-gocd.yaml to go-cd-arbitrary-file.yaml 2021-11-05 01:48:25 +05:30
Dhiyaneshwaran 7a60f45431
Update pre-auth-rce-gocd.yaml 2021-11-05 01:46:11 +05:30
Dhiyaneshwaran 0ac7e92ac9
Update pre-auth-rce-gocd.yaml 2021-11-05 01:41:25 +05:30
Dhiyaneshwaran 3eff5e541d
Create pre-auth-rce-gocd.yaml 2021-11-05 01:30:11 +05:30
sandeep 421624d732 Added missing tags 2021-11-04 15:13:32 +05:30
Dhiyaneshwaran be871b155c
Create sitecore-debug-page.yaml 2021-11-03 23:16:23 +05:30
sandeep b83e79a8fe moving files around 2021-11-01 19:36:21 +05:30
sandeep f650961021 Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates into gitlab-updates 2021-11-01 19:21:55 +05:30
Prince Chaddha a229a2e822
Merge pull request #2986 from projectdiscovery/wildcard-postmessage
Added Wildcard postMessage detection
2021-11-01 15:46:00 +05:30
Prince Chaddha ec2907e6b0
Update wildcard-postmessage.yaml 2021-11-01 14:54:51 +05:30
Prince Chaddha 4d58562095
Update umbraco-base-ssrf.yaml 2021-10-30 22:06:04 +05:30
Prince Chaddha 40340c89c6
Update and rename misconfiguration/umbraco-base-ssrf.yaml to misconfiguration/vulnerabilities/other/umbraco-base-ssrf.yaml 2021-10-30 17:33:53 +05:30
Dhiyaneshwaran 9e1f9859d8
Create umbraco-base-ssrf.yaml 2021-10-30 11:03:14 +05:30
sandeep e91e2e6e27 Added missing tag 2021-10-28 17:44:58 +05:30
Prince Chaddha cd9195b7e4
Update wildcard-postmessage.yaml 2021-10-26 23:48:28 +05:30
Prince Chaddha d43c694da7
Delete docker-version-detect.yaml 2021-10-26 23:41:28 +05:30
sandeep 0de8bc19f8 misc template updates 2021-10-26 17:39:26 +05:30
Prince Chaddha e4a646f9d4
Update and rename misconfiguration/unauth-securityspy-camera-detect.yaml to exposed-panels/securityspy-detect.yaml 2021-10-25 15:00:32 +05:30
pussycat0x a7c02f99dc
Update unauth-securityspy-camera-detect.yaml 2021-10-25 10:34:24 +05:30
pussycat0x 2b4356dcc1
Add files via upload 2021-10-25 08:34:17 +05:30
pussycat0x 854016684c
Add files via upload 2021-10-24 18:05:09 +05:30
sandeep 80301e3f63 Added Wildcard postMessage detection 2021-10-23 23:34:49 +05:30
sandeep c849b7d51a metadata update 2021-10-22 23:22:36 +05:30
Sandeep Singh fc1b7a658c
Merge pull request #2956 from CristiVlad25/misconfig
Created app.yaml Template
2021-10-22 22:38:45 +05:30
sandeep 62dc0c0c31 misc update 2021-10-22 22:19:12 +05:30
Dhiyaneshwaran 444fa88b24
Create jaeger-ui-dashboard.yaml 2021-10-22 22:15:57 +05:30
Cristi Vlad 8632760893 Created app.yaml Template 2021-10-22 12:17:44 +03:00
Sufijen Bani ac9f713d97 Merge PHP Errors Templates
There was an extra error template for PHP warnings although there was
another template holding that already.

The status code check (500) is a step that would make sense for all of
the checks. This is not limited to warnings. Though I think that error
code 500 shrinks the result set too much in this case. That's why I
would leave it out.
2021-10-21 10:46:04 +02:00
Prince Chaddha 52e498506e
Update zenphoto-sensitive-info.yaml 2021-10-19 17:45:19 +05:30
Philippe Delteil 69953cf73e
Update zenphoto-sensitive-info.yaml 2021-10-18 23:18:31 -03:00
sandeep 33badb66d1 oob tags update 2021-10-19 02:10:26 +05:30
Prince Chaddha f86ef5382b
Merge pull request #2783 from pikpikcu/patch-295
Added skycaiji
2021-10-17 22:23:07 +05:30
sandeep acda6fdb53 added missing slash 2021-10-16 01:10:48 +05:30
sandeep 196cc292b8 adding tags 2021-10-16 01:09:19 +05:30
sandeep 5e2c52f803 Merge branch 'misconfiguration' of https://github.com/CristiVlad25/nuclei-templates into pr/2900 2021-10-16 01:07:50 +05:30
sandeep dd106dcb8f misc update and moving files around 2021-10-16 01:06:37 +05:30
sandeep 10b4076f88 misc update 2021-10-14 00:14:29 +05:30
Divya 0102fad1a9
Add hpe-system-management-anonymous.yaml
Detect anonymous HPE System Management instance
2021-10-12 18:11:25 -04:00
sandeep 673a9107c5 misc updates 2021-10-11 01:38:44 +05:30
Divya 3e3e64c20e
Add unauthenticated-lansweeper.yaml
Detect unauthenticated Lansweeper instance
2021-10-10 13:03:46 -04:00
Prince Chaddha 0ed37945d6
Update skycaiji-install.yaml 2021-10-08 12:06:44 +05:30
Roman Ananyev f1e4a2b15f
Added one more status page for NGINX 2021-10-06 12:12:13 +04:00
Prince Chaddha 179e265f8a
Update and rename misconfiguration/iotawatt-configuration-app.yaml to iot/iotawatt-app-exposure.yaml 2021-10-06 11:07:51 +05:30
pussycat0x a71096bcd8
Add files via upload 2021-10-05 22:28:16 +05:30
Prince Chaddha bfb3d70662
Update and rename misconfiguration/hp-switch-default-creds.yaml to default-logins/hp/hp-switch-default-login.yaml 2021-10-05 15:19:15 +05:30
pussycat0x 6a38a61321
Update hp-switch-default-creds.yaml 2021-10-05 01:56:47 +05:30
pussycat0x f0a572eae8
Update hp-switch-default-creds.yaml 2021-10-05 01:43:14 +05:30
pussycat0x 30c447d42b
Add files via upload 2021-10-05 01:25:35 +05:30
sandeep 55b0673d27 Added IBM Websphere Friendly Path Exposure
Co-Authored-By: clarkvoss <32307041+clarkvoss@users.noreply.github.com>
2021-10-03 16:49:06 +05:30
Sullo 3878138bfe * Added Host headers where needed (validated via disclosures/posts)
* Added CVE simple-employee-rce.yaml
2021-09-30 12:52:05 -04:00
PikPikcU 553772ab8a
Create skycaiji-install.yaml 2021-09-30 23:49:10 +07:00
Prince Chaddha 807920c0ac clean-up 2021-09-21 17:16:53 +05:30
sullo b57620cce2 Typo and language corrections 2021-09-20 15:25:11 -04:00
Prince Chaddha 6564d0fca4
Merge pull request #2708 from pussycat0x/master
New templates
2021-09-20 14:18:41 +05:30
Prince Chaddha 27572bcc92
Update and rename service-pwd-expose.yaml to service-pwd.yaml 2021-09-18 12:11:19 +05:30
Prince Chaddha 4d2d1f35d6
Update service-pwd-expose.yaml 2021-09-18 12:08:32 +05:30
Prince Chaddha 6ff85169c3
Update service-pwd-expose.yaml 2021-09-18 12:03:17 +05:30
pussycat0x b49aee881b
Add files via upload 2021-09-18 10:38:21 +05:30
Sandeep Singh 117c59094b
Merge pull request #2704 from geeknik/patch-28
Update shell-history.yaml
2021-09-17 23:37:56 +05:30
Prince Chaddha 7223d54eea
Merge pull request #2649 from pussycat0x/master
Glowroot-anonymous-access
2021-09-17 22:32:06 +05:30
Geeknik Labs 7f5dd080cc
Update shell-history.yaml
Follow-up fix for comment in #2129
2021-09-17 10:00:22 -05:00
Prince Chaddha ab4e6a4dd6
Merge pull request #2696 from DhiyaneshGeek/master
New Templates Added
2021-09-17 16:29:58 +05:30
Prince Chaddha 5858e3a01c
Update and rename exposures/logs/database-error.yaml to misconfiguration/database-error.yaml 2021-09-17 13:33:54 +05:30
Prince Chaddha 769a6ea059
Update zabbix-error.yaml 2021-09-17 13:01:57 +05:30
Prince Chaddha 52162716e5
Update and rename exposures/logs/zabbix-error.yaml to misconfiguration/zabbix-error.yaml 2021-09-17 13:00:35 +05:30
Prince Chaddha 317c941340
Update php-errors.yaml 2021-09-17 12:59:34 +05:30
Sandeep Singh f47c4da9e8
Merge pull request #2694 from geeknik/geeknik-patch-1
MIscellaneous updates
2021-09-17 02:22:26 +05:30
Sandeep Singh 067247401b
Merge pull request #2442 from pdelteil/patch-38
Create springboot-info.yaml
2021-09-17 02:22:08 +05:30
sandeep 74871a7412 Update springboot-info.yaml 2021-09-17 02:21:49 +05:30
Geeknik Labs fd768f4b2c
Update rack-mini-profiler.yaml 2021-09-16 15:18:31 -05:00
Sandeep Singh 0ab82749ef
Create unauthenticated-glowroot.yaml 2021-09-15 13:28:43 +05:30
Prince Chaddha 2790f5ff9f
Update glowroot-anonymous-access.yaml 2021-09-14 15:35:52 +05:30
pussycat0x 9c5a43e25d
Glowroot-anonymous-access 2021-09-13 23:58:56 +05:30
Sandeep Singh cf4ef2ac5a
Merge pull request #2622 from projectdiscovery/missing-tags 2021-09-10 12:32:47 +05:30
sandeep bd24dc198e Coverage for all templates using tags 2021-09-09 19:08:13 +05:30
Sandeep Singh 54c9f08233
Merge pull request #2612 from projectdiscovery/cleanups
Removed extra headers not required for template
2021-09-09 14:50:00 +05:30
sandeep 39a0ffd0a5 Update python-metrics.yaml 2021-09-08 18:19:15 +05:30
Dhiyaneshwaran 664ac52065
Update python-metrics.yaml 2021-09-08 18:09:15 +05:30
Dhiyaneshwaran 85adcd95be
Update python-metrics.yaml 2021-09-08 17:58:43 +05:30
Dhiyaneshwaran 6fee9b2b1b
Create python-metrics.yaml 2021-09-08 17:48:54 +05:30
sandeep 609705f676 removed extra headers not required for template 2021-09-08 17:47:19 +05:30
sandeep 7e601216b9 Added additional path 2021-09-08 13:01:42 +05:30
sullo ef1f7c5e92 Updates across many templates for clarity, spelling, and grammar. 2021-09-05 17:13:45 -04:00
sandeep 63ce5e0b77 Nextcloud templates 2021-09-05 22:52:45 +05:30
Sandeep Singh ac558b2887
Merge pull request #2568 from pussycat0x/master
New Templates added
2021-09-04 15:56:17 +05:30
sandeep 969e08f12e moving files around 2021-09-04 15:54:24 +05:30
sandeep 4a9a339feb misc update 2021-09-04 15:40:34 +05:30
sandeep b74dffae92 misc update 2021-09-04 15:23:49 +05:30
Sandeep Singh d10439c29f
Merge pull request #2565 from geeknik/patch-25
Update php-errors.yaml
2021-09-04 00:43:26 +05:30
Geeknik Labs 735b1df1c5
Update php-errors.yaml 2021-09-03 12:09:59 -05:00
sandeep 32fed54169 removing duplicate templates and few updates 2021-09-03 22:35:58 +05:30
sandeep d27dadb79e updated matchers 2021-09-03 22:24:11 +05:30
pussycat0x 6ba8cb040d
Update overview-kubernetes-resource-report.yaml 2021-09-03 22:23:59 +05:30
Geeknik Labs ac4bce9ca5
Update php-errors.yaml
Made better through use of regex extractors. More useful information is displayed on-screen.
2021-09-03 11:28:42 -05:00
pussycat0x 6e2816be3e
Add files via upload 2021-09-03 20:12:53 +05:30
sandeep 90f8caf302 Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates into pr/2481 2021-09-03 14:55:30 +05:30
sandeep c266084621 Added stop-at-first-match in applicable templates 2021-09-02 17:29:10 +05:30
Prince Chaddha bec1c542cd
Update unauthenticated-mongo-express.yaml 2021-08-31 13:32:56 +05:30
Prince Chaddha 212072fad2
Update unauthenticated-mongo-express.yaml 2021-08-31 13:31:48 +05:30
forgedhallpass 419a957409 Fixing errors in templates
Related nuclei tickets:
* #259 - dynamic key-value field support for template information
* #940 - new infos in template
* #834
* RES-84
2021-08-27 10:43:24 +03:00
socketz ddd3ef8493 Merge branch 'master' of github.com:socketz/nuclei-templates 2021-08-25 14:32:22 +02:00
socketz c766a8454d Fixed yaml linting errors 2021-08-25 14:09:42 +02:00
Prince Chaddha 0ef631dce1
Update http-missing-security-headers.yaml 2021-08-25 16:52:35 +05:30
socketz de76c65d01
Merge branch 'projectdiscovery:master' into master 2021-08-24 13:10:56 +02:00
forgedhallpass 296edfc37b Merge remote-tracking branch 'origin' into dynamic_attributes 2021-08-23 14:40:33 +03:00
sandeep 76c9bbee20 minor update 2021-08-21 15:53:06 +05:30
Philippe Delteil b013ef69df
Create springboot-threaddump.yaml
Testing 

nuclei -t springboot-threaddump.yaml -u https://folhaponto.cmm.pr.gov.br/
nuclei -t springboot-threaddump.yaml -u https://ctacte.realechile.cl/
2021-08-21 00:42:49 -04:00
sandeep d3552cc6e3 Update springboot-info.yaml 2021-08-21 01:20:10 +05:30
forgedhallpass dc4cc62629 Merge remote-tracking branch 'origin/master' into dynamic_attributes 2021-08-20 15:35:17 +03:00
Philippe Delteil a5c7f36781
Update springboot-env.yaml 2021-08-20 03:12:53 -04:00
Philippe Delteil e6029630f4
Create springboot-info.yaml 2021-08-20 03:08:19 -04:00
sandeep 3f803deb28 more updates 2021-08-20 02:14:42 +05:30
sandeep 20d1f0a54f Added intrusive tag
Added intrusive tag for identification / exclusion as discussed here - https://github.com/projectdiscovery/nuclei/discussions/551
2021-08-19 22:59:45 +05:30
sandeep 4f1e61f021 Adding unique prefix for identification 2021-08-19 22:39:56 +05:30
sandeep 247b07a76a Added grafana-public-signup 2021-08-19 22:11:11 +05:30
forgedhallpass 77103bc629 Satisfying the linter (all errors and warnings)
* whitespace modifications only
2021-08-19 17:44:46 +03:00
forgedhallpass f55d6b75e1 Removed pipe (|) character from references, because the structure requires it to be a string slice, not a string
Related nuclei tickets:
* #259 - dynamic key-value field support for template information
* #940 - new infos in template
* #834
* RES-84
2021-08-19 16:59:12 +03:00
forgedhallpass 7b29be739e Merge branch 'master' into dynamic_attributes 2021-08-19 16:23:26 +03:00
forgedhallpass ffaff64565 Changes fixes/around dynamic attributes ("additional-fields")
Related nuclei tickets:
* #259 - dynamic key-value field support for template information
* #940 - new infos in template
* #834
* RES-84
2021-08-19 16:17:27 +03:00
Geeknik Labs 6a8d9e0687
Update and rename misconfiguration/sidekiq-dashboard.yaml to exposed-panels/sidekiq-dashboard.yaml
Added references.
Moved template to exposed-panels.
2021-08-18 14:44:12 -05:00
forgedhallpass cdf9451158 Removed pipe (|) character from references, because the structure requires it to be a string slice, not a string
Related nuclei tickets:
* #259 - dynamic key-value field support for template information
* #940 - new infos in template
* #834
* RES-84
2021-08-18 14:44:27 +03:00
sandeep 8c48ca97d2 matcher + payload + regex updates 2021-08-09 21:58:28 +05:30
Sandeep Singh c4f9a2e32d
Merge pull request #2325 from pussycat0x/master
springboot Actuator
2021-08-06 21:05:54 +05:30
sandeep 1a043cc846 minor update 2021-08-06 21:02:50 +05:30
sandeep 32709de987 misc updates 2021-08-06 20:48:32 +05:30
sandeep b20ba6754d minor update 2021-08-05 16:31:01 +05:30
sandeep 1140b9117a updated matchers 2021-08-05 16:29:52 +05:30
Dhiyaneshwaran dbab8fb57a
Create office365-open-redirect.yaml 2021-08-05 15:25:08 +05:30
pussycat0x 2ad4805bcd
Add files via upload 2021-08-04 22:43:45 +05:30
pussycat0x ed8ba1451d
Update springboot-metrics.yaml 2021-08-04 22:17:33 +05:30
pussycat0x cb63ec5176
Update springboot-dump.yaml 2021-08-04 22:17:01 +05:30
pussycat0x 4715314c2b
Add files via upload 2021-08-04 22:08:47 +05:30
sandeep 89ce8da31c template update 2021-08-02 16:10:05 +05:30
Sandeep Singh ee06aea64d
Merge pull request #2262 from DhiyaneshGeek/master
New Template
2021-07-31 22:50:25 +05:30
sandeep 83a1769c04 Added Open Akamai ARL XSS Detection 2021-07-31 00:53:25 +05:30
Sandeep Singh 918a6deead
Merge pull request #2265 from pussycat0x/master
zabbix-dashboards-access
2021-07-30 02:37:02 +05:30
sandeep 6b02fb31ed updated matcher 2021-07-30 02:33:01 +05:30
pussycat0x 3caeca71ab
Add files via upload 2021-07-29 23:36:59 +05:30
Dhiyaneshwaran c8e11b8254
Create viewpoint-system-status.yaml 2021-07-29 19:08:40 +05:30
Prince Chaddha c49a4b32f1
Update android-debug-database-exposed.yaml 2021-07-29 10:47:01 +05:30
Dhiyaneshwaran 9f93ea0eba
Update android-debug-database-exposed.yaml 2021-07-28 21:37:19 +05:30
socketz 71a27da891 Added security headers templates 2021-07-28 14:40:20 +02:00
Dhiyaneshwaran bbc34b011b
Create android-debug-database-exposed.yaml 2021-07-28 17:46:31 +05:30
sandeep 1b437d300a Additional matcher for Symfony debug mode 2021-07-26 17:21:46 +05:30
sandeep bfd40054e4 matcher update 2021-07-26 15:18:10 +05:30
Pham Sy Minh 934d899f5e
Reduce false positives 2021-07-26 12:53:34 +07:00
Sandeep Singh a57bcda074
Merge pull request #2111 from pikpikcu/patch-203
Update hadoop-unauth.yaml
2021-07-26 01:35:34 +05:30
sandeep 3fc8626874 Update hadoop-unauth.yaml 2021-07-26 01:33:02 +05:30
Sandeep Singh b905a91cdc
Merge pull request #2129 from geeknik/patch-6
Update shell-history.yaml
2021-07-26 01:08:46 +05:30
sandeep bb8a22401b Separating service detection + SSRF detection 2021-07-25 15:22:09 +05:30
Pham Sy Minh cff60a04b5
Fix false positive 2021-07-25 12:14:24 +07:00
sandeep 6ccc5f8792 matcher update to handle edge cases 2021-07-25 03:05:55 +05:30
Sandeep Singh 4b444af3c4
Merge pull request #2125 from DhiyaneshGeek/master
17 New Templates Added
2021-07-24 03:26:09 +05:30
sandeep b1d8ab1193 more matchers update 2021-07-24 03:13:09 +05:30
Sandeep Singh 327819a037
Update misconfiguration/clockwork-dashboard-exposure.yaml
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
2021-07-24 00:52:24 +05:30
Sandeep Singh f8a1c2c2b5
Update misconfiguration/clockwork-dashboard-exposure.yaml
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
2021-07-24 00:52:09 +05:30
Prince Chaddha 1754aecb5e
Update wamp-server-configuration.yaml 2021-07-22 17:54:19 +05:30
Geeknik Labs d354d50bb9
Update shell-history.yaml
fix false positive
2021-07-21 12:26:20 -05:00
Prince Chaddha ff374372e0
Update clockwork-dashboard-exposure.yaml 2021-07-21 17:23:40 +05:30
Dhiyaneshwaran c9852b62dd
Create clockwork-dashboard-exposure.yaml 2021-07-21 11:02:36 +05:30
PikPikcU 9c8e154b5a
Update hadoop-unauth.yaml 2021-07-20 19:29:10 +07:00
Dhiyaneshwaran 525ffdefcc
Update unauthenticated-popup-upload.yaml 2021-07-15 13:52:06 +05:30
sandeep 6dd92167eb minor updates 2021-07-13 19:35:58 +05:30
Dhiyaneshwaran 4822208487
Merge pull request #71 from projectdiscovery/master
Updation
2021-07-13 14:54:00 +05:30
Dhiyaneshwaran 51d6477505
Create unauthenticated-alert-manager.yaml 2021-07-13 14:10:37 +05:30
Sandeep Singh 920255635b
Merge pull request #1876 from pussycat0x/master
web-ftp
2021-07-13 01:53:15 +05:30
Sandeep Singh 8ec1767561
Rename hp-printer-unanuthorized-access.yaml to unauthorized-hp-printer.yaml 2021-07-13 01:45:40 +05:30
sandeep 567096e97f matcher update 2021-07-13 01:42:15 +05:30
sandeep 3b13abc7f2 matcher update 2021-07-13 01:30:58 +05:30
pussycat0x 647677f0ab
Update hp-printer-unanuthorized-access.yaml 2021-07-11 23:49:17 +05:30
pussycat0x 09b002134d
Add files via upload 2021-07-11 23:44:34 +05:30
Sandeep Singh 22421fd38e
Merge pull request #1843 from DhiyaneshGeek/master
Update AEM CRX bypass , AEM Debug XSS and Java sean debug page, Jetty showcontexts enable , jfrog-unauth-build-exposed Templates Added
2021-07-04 01:23:20 +05:30
sandeep afcbe4cfe4 minor updates 2021-07-04 01:22:08 +05:30
sandeep a5f8175017 Update unauthorized-plastic-scm.yaml 2021-07-03 16:39:59 +05:30
sandeep 5d7388f0ae Added Unauthorized Access to Plastic Admin Console 2021-07-03 16:37:11 +05:30
Dhiyaneshwaran 31a10ebfb7
Update jetty-showcontexts-enable.yaml 2021-07-02 20:50:15 +05:30
sandeep 5b91ef07a6 Update unauthenticated-glances.yaml 2021-07-02 17:15:32 +05:30
sandeep db61d85e75 minor updates 2021-07-02 17:14:03 +05:30
Dhiyaneshwaran 5f779266bc
Create jetty-showcontexts-enable.yaml 2021-07-02 08:16:57 +05:30
Dhiyaneshwaran 39eb91a582
Update aem-crx-bypass.yaml 2021-07-01 22:23:08 +05:30
Petko D. Petkov 7c39ab8c79 Check if json. 2021-06-30 12:03:47 +00:00
sandeep e8ffd4ea06 Update aem-crx-bypass.yaml 2021-06-28 20:45:41 +05:30
sandeep eaa5d7600f Added more strict matchers 2021-06-28 20:44:24 +05:30
Dhiyaneshwaran e53b262283
Update aem-crx-bypass.yaml 2021-06-28 20:23:11 +05:30
Dhiyaneshwaran 91b673ad17
Create aem-crx-bypass.yaml 2021-06-28 20:20:58 +05:30
sandeep 2a7d45fa1f more strict matcher 2021-06-26 19:42:11 +05:30
Prince Chaddha 89b4fdf8ed
Merge pull request #1757 from pussycat0x/master
New template added
2021-06-24 02:02:42 +05:30
Prince Chaddha 5fa51dd043
Update phpmyadmin-sql.php-server.yaml 2021-06-24 01:26:51 +05:30
sandeep 134a23aeab Some fixes (WIP)
- Added missing matcher condition
- Updated severity to lowercase, as it's case sensitive
2021-06-24 01:03:41 +05:30
pussycat0x 2dd0ce2664
Update phpmyadmin-sql.php-server.yaml 2021-06-23 21:37:14 +05:30
pussycat0x 5ae899a66f
Update phpmyadmin-sql.php-server.yaml 2021-06-23 21:34:13 +05:30
pussycat0x bb251938c8
Add files via upload 2021-06-22 20:40:53 +05:30
sandeep 49f9b67827 Added reference 2021-06-20 16:39:47 +05:30
Prince Chaddha bd4b43bbce
Merge pull request #995 from pikpikcu/patch-101
Create zhiyuan-oa-unauthorized
2021-06-19 12:53:24 +05:30
Prince Chaddha 5463655627
Update zhiyuan-oa-unauthorized.yaml 2021-06-19 12:52:35 +05:30
sandeep f0b67ef56b Few template updates 2021-06-18 15:53:49 +05:30
sandeep 6081edd83f Added reference 2021-06-18 12:16:27 +05:30
sandeep f9d068a105 Added ssrf-via-oauth-misconfig 2021-06-18 12:15:13 +05:30
sandeep b1e401ff9c Delete adobe-connect-xss.yaml 2021-06-15 15:54:19 +05:30
sandeep 891e8374b1 misc changes 2021-06-14 20:32:21 +05:30
Dhiyaneshwaran 629b655ef1
Create adobe-connect-xss.yaml 2021-06-13 23:54:48 +05:30
Dhiyaneshwaran afec528d82
Create adobe-connect-version.yaml 2021-06-13 23:40:58 +05:30
Dhiyaneshwaran 6e727805c1
Create adobe-connect-username-exposure.yaml 2021-06-13 23:25:39 +05:30
sandeep 8d35960831 Strict matchers 2021-06-10 21:18:38 +05:30
Sandeep Singh 13090ace75
Merge pull request #1659 from WillD96/IIS-Internal-IP-Disclosure
Created IIS Internal IP Disclosure Template
2021-06-10 00:02:02 +05:30
r3naissance aa9e899dd2
Added conditional word in body
I found this be a valid finding /actuator/env on a production host but was missing additional words to check which was causing a false negative. 'activeProfiles' allows this test to pass on the instance that I came across.
2021-06-09 11:36:54 -06:00
sandeep 3c6aa9da0c misc updates 2021-06-09 22:15:55 +05:30
Will Davison cd06c6137f Fixed trailing spaces 2021-06-09 16:04:53 +01:00
Will Davison ad8d064bf9 Fixed linting error. 2021-06-09 15:40:06 +01:00
Will Davison 6279e1fb70 Added template for IIS Internal IP Disclosure
By sending a HTTP 1.0 request to the root of the webserver, sometimes an internal IP address is disclosed in the Location header of the 302 response.
2021-06-09 15:30:59 +01:00
Prince Chaddha 83ce809e8d Updated author names 2021-06-09 17:50:56 +05:30
Prince Chaddha 0013f94807
Merge pull request #1631 from projectdiscovery/sap_update
SAP NetWeaver update
2021-06-09 14:17:51 +05:30
sandeep 1851068721 Updated matcher 2021-06-08 00:33:06 +05:30
sandeep 0fe0d327b0 moving files around 2021-06-07 19:57:59 +05:30
Dhiyaneshwaran 52adac2e12
Create firebase-urls.yaml 2021-06-06 19:38:51 +05:30
Dhiyaneshwaran 158914d4db
Create artifactory-anonymous-deploy.yaml 2021-06-06 19:37:32 +05:30
Prince Chaddha 1d07ace8a5
Merge pull request #1634 from DhiyaneshGeek/master
Exposed jQuery File Upload
2021-06-06 17:58:25 +05:30
Prince Chaddha 6649abf131
Update exposed-jquery-file-upload.yaml 2021-06-06 17:55:05 +05:30
Sandeep Singh fae9755374
Merge pull request #1639 from pdelteil/patch-9
Update shell-history.yaml
2021-06-06 13:40:47 +05:30
sandeep 0cf8ffdc57 misc changes 2021-06-06 13:39:16 +05:30
sandeep e2eaedc6a1 misc updates 2021-06-06 13:19:01 +05:30
Philippe Delteil 652da29f9a
Update shell-history.yaml
There are two problems with this template, it only checks for chmod commands but most importantly doesn't check for html tags. A real history file the response doesn't include html tags at all. 

So, I'm adding two rules: Check for another possible commands (from real example) and adding a negative rule to discard false positives like this one:

nuclei -debug -t /home/kali/nuclei-templates/misconfiguration/shell-history.yaml -u http://777.urbanup.com
2021-06-05 22:06:30 -04:00
Philippe Delteil 9014a4b0a2
Update aws-object-listing.yaml
Added extractor that retrieves the name of the s3 bucket. 

Test
nuclei -t nuclei-templates/misconfiguration/aws-object-listing.yaml -u http://img.secnews.gr


[2021-06-06 01:19:10] [aws-object-listing] [http] [low] http://imgcdn.secnews.gr [img.secnews.gr]
2021-06-05 21:27:44 -04:00
Dhiyaneshwaran 0d82660f90
Create exposed-jquery-file-upload.yaml 2021-06-05 22:04:09 +05:30
sandeep a85c1dd35a Moving files around + duplicate remove 2021-06-05 15:57:13 +05:30
sandeep ae8c130668 Moving files around 2021-06-05 15:55:01 +05:30
sandeep edcc35d604 Added Private key exposure via helper detector 2021-06-04 20:46:19 +05:30
sandeep 0c436e35aa Added airflow-debug 2021-06-03 19:39:51 +05:30
sandeep 0c4f75d3ad Duplicate template 2021-06-03 18:44:50 +05:30
sandeep bdc803fd4b Added CVE-2020-13927 2021-06-03 14:23:34 +05:30
Prince Chaddha f63cd48c79
Update alibaba-mongoshake-unauth.yaml 2021-06-02 01:16:41 +05:30
PikPikcU 9f8852572e
Create alibaba-mongoshake-unauth.yaml 2021-06-01 10:53:26 +00:00
Prince Chaddha cf0a3f69c6
Update kubernetes-pods.yaml 2021-05-27 02:45:50 +05:30
Prince Chaddha 8d65ab7958
Update exposed-docker-api.yaml 2021-05-27 02:44:54 +05:30
Prince Chaddha da49c78c7c
Update docker-registry.yaml 2021-05-27 02:44:33 +05:30
Prince Chaddha 0ed9fe6fa3
Update misconfigured-docker.yaml 2021-05-27 02:42:11 +05:30
Sandeep Singh 6e23c0c207
Merge pull request #1528 from projectdiscovery/DhiyaneshGeek/master
Dhiyanesh geek/master
2021-05-24 01:28:15 +05:30
sandeep 8a182ff0cc misc changes 2021-05-24 01:26:48 +05:30
Dhiyaneshwaran 22812d2112
Create cx-cloud-upload-detect.yaml 2021-05-23 17:07:30 +05:30
Geeknik Labs c83785f916
Update server-status-localhost.yaml
OCD
2021-05-22 13:46:31 -05:00
Dhiyaneshwaran 7499faff02
Create kubeflow-dashboard-unauth.yaml 2021-05-22 20:05:32 +05:30
Dhiyaneshwaran 4fc7bd61fe
Create pinpoint-unauth.yaml 2021-05-22 20:01:28 +05:30
TheConciergeDev a1c283da87
Update java-melody-exposed.yaml 2021-05-21 15:42:46 +02:00
TheConciergeDev 8e5255c407
updated tags
The affected technology is JavaMelody - the given services in the tag help to mitigate the problem, however are not the affected technology themselves. 

Ref: https://www.acunetix.com/vulnerabilities/web/javamelody-publicly-accessible/
2021-05-21 15:42:29 +02:00
Ajaysen R 842d62bb40
Create springboot-beans.yaml 2021-05-20 01:39:21 +05:30
Ajaysen R aabf384e39
Update springboot-httptrace.yaml
It can be accessed via a path like /httptrace also.
2021-05-19 12:36:42 +05:30
sandeep 0f13cd506c misc changes 2021-05-16 21:04:58 +05:30
Dhiyaneshwaran b01fc7c9d7
Create tensorflow-unauth.yaml 2021-05-16 18:34:43 +05:30
sandeep 5488370527 Handling edge cases 2021-05-16 15:19:19 +05:30
Sandeep Singh ffe61049e7
Merge pull request #1465 from geeknik/patch-92
Create apache-filename-brute-force.yaml
2021-05-14 21:24:21 +05:30
sandeep 3203754361 Workflow and tags update 2021-05-14 19:37:13 +05:30
sandeep 450254cd3d Adding "max-size" to avoid timeout error due to response size 2021-05-14 19:22:08 +05:30
sandeep 92c742a890 severity updates 2021-05-14 18:55:06 +05:30
Geeknik Labs f5771466c1
Update apache-filename-brute-force.yaml 2021-05-12 20:31:52 +00:00
Geeknik Labs 00af677408
Create apache-filename-brute-force.yaml 2021-05-12 20:30:15 +00:00
Sandeep Singh 27ed8be9dd
Merge pull request #1444 from DhiyaneshGeek/master
PHP Debug bar,SAP Directory Listing,Unauthenticated Netdata,Zippkin Unauth
2021-05-11 23:07:35 +05:30
sandeep 915501175a file updates 2021-05-11 21:14:40 +05:30
sandeep 5b102e02ef Improved matcher 2021-05-11 21:12:10 +05:30
sandeep a854fec546 Improved matcher 2021-05-11 21:09:56 +05:30
sandeep f495d36958 minor update 2021-05-09 20:36:52 +05:30
sandeep 252e4dc2fa Adding cloudflare-image-ssrf 2021-05-09 20:26:24 +05:30
Dhiyaneshwaran a53286b201
Create zippkin-unauth.yaml 2021-05-09 12:47:14 +05:30
Dhiyaneshwaran 8093e13f63
Create sap-directory-listing.yaml 2021-05-09 12:20:03 +05:30
Dhiyaneshwaran ab93cda4ae
Create unauth-netdata.yaml 2021-05-09 11:47:58 +05:30
sandeep c062651789 minor update 2021-05-07 14:41:52 +05:30
Dhiyaneshwaran 103df33af8
Create exposed-kafdrop.yaml 2021-05-06 00:23:22 +05:30
sandeep b10918510c Adding strict matcher 2021-05-05 17:39:31 +05:30
Sandeep Singh 500ce9544b
Merge pull request #1411 from geeknik/patch-82
Create nginx-vhost-traffic-status.yaml
2021-05-05 14:29:26 +05:30
sandeep e0c99aea6a misc changes 2021-05-05 14:28:46 +05:30
sandeep 399fc675a6 improved matcher 2021-05-04 16:32:53 +05:30
Noam Rathaus 20a67faa4a Description 2021-05-02 09:13:37 +03:00
sandeep c5f24e5692 misc updates 2021-04-28 15:50:24 +05:30
sandeep 269cc168c5 Improved matcher 2021-04-28 15:13:16 +05:30
sandeep 06c5cd45fa minor update 2021-04-27 16:13:28 +05:30
Dhiyaneshwaran d9c8057fe2
Create aem-login-status.yaml 2021-04-26 22:09:26 +05:30
Dhiyaneshwaran 21cf3a8e27
Create aem-bg-servlet.yaml 2021-04-26 22:08:54 +05:30
Geeknik Labs d59cf643a9
Create spidercontrol-scada-server-info.yaml 2021-04-24 17:22:22 +00:00
Dhiyaneshwaran 17d556feeb
Create unauthenticated-popup-upload.yaml 2021-04-22 02:11:41 +05:30
Sandeep Singh 4637798845
Merge pull request #1196 from notsoevilweasel/add-laravel-debug
Added new check for  Laravel debug mode enabled.
2021-04-18 21:14:27 +05:30
sandeep acdad9f812 tags and name update 2021-04-18 21:11:40 +05:30
sandeep 8c791c59dd moving files around 2021-04-17 22:25:22 +05:30
sandeep 11e515daad Update drupal-user-enum-ajax.yaml 2021-04-17 22:23:49 +05:30
sandeep fd15b5e030 Update seeyon-unauth.yaml 2021-04-17 20:59:30 +05:30
sandeep 6dff922033 Improved path 2021-04-17 19:05:45 +05:30
Techbrunch 8338edcb59
Update java-melody-exposed.yaml
Fix trailing whitespace
2021-04-14 18:19:31 +02:00
Techbrunch 70fa457a16
Update java-melody-exposed.yaml
Add description, references and tags
2021-04-14 18:15:35 +02:00
PD-Team 5aa52a1760
Rename phpMyAdmin-setup.yaml to phpmyadmin-setup.yaml 2021-04-14 17:49:18 +05:30
sandeep e9b036a4f7 duplicate of CVE-2009-1151 2021-04-14 17:48:33 +05:30
sandeep 829ab1e3a6 Update sonarqube-public-projects.yaml 2021-04-14 15:58:18 +05:30
sandeep baf3132a71 Update sonarqube-public-projects.yaml 2021-04-14 15:54:40 +05:30
sandeep a5977604a4 Added sonarqube-public-projects 2021-04-14 15:49:06 +05:30
sandeep e0387a7c5d typo 2021-04-14 13:48:46 +05:30
sandeep c604dc07d7 Update aem-userinfo-servlet.yaml 2021-04-14 02:01:02 +05:30
PD-Team e049fd7281
Merge pull request #1273 from DhiyaneshGeek/master
7 AEM new Templates and AEM workflow added
2021-04-14 01:29:42 +05:30
sandeep 88037019ce Minor improvements 2021-04-14 01:24:00 +05:30
Dhiyaneshwaran c329b35af2
Update aem-gql-servlet.yaml
Mades some changes in matcher to reduce false positive
2021-04-13 14:45:17 +05:30
Dhiyaneshwaran 88633dd011
Create aem-wcm-suggestions-servlet.yaml 2021-04-13 14:20:43 +05:30
Dhiyaneshwaran ea51a4f891
Create aem-userinfo-servlet.yaml 2021-04-13 14:20:14 +05:30
Dhiyaneshwaran 2a7cc19767
Create aem-merge-metadata-servlet.yaml 2021-04-13 14:19:49 +05:30
Dhiyaneshwaran ac72ee76a9
Create aem-querybuilder-json-servlet.yaml 2021-04-13 14:19:23 +05:30
Dhiyaneshwaran 8efb2cf408
Create aem-gql-servlet.yaml 2021-04-13 14:18:59 +05:30
Dhiyaneshwaran d0af9ae01e
Create aem-default-get-servlet.yaml 2021-04-13 14:18:34 +05:30
Dhiyaneshwaran 295ae55058
Create aem-querybuilder-feed-servlet.yaml 2021-04-13 14:17:44 +05:30
PikPikcU 1c59b2e7f6
Update seeyon-unauth.yaml 2021-04-13 06:17:52 +00:00
PikPikcU 397eca6945
Create seeyon-unauth.yaml 2021-04-13 05:44:44 +00:00
sandeep 0d85374b64 Update unautneicated-cache-purge.yaml 2021-04-11 21:13:24 +05:30
sandeep bae3ee19e6 template update 2021-04-11 20:50:42 +05:30
sandeep 9a4d880b88 Update aws-object-listing.yaml 2021-04-07 17:45:49 +05:30
sandeep 76dcebcf85 Added AWS Bucket Object listing detection 2021-04-07 17:45:12 +05:30
notsoevilweasel 0db4abb862
Added word matchers 2021-04-07 06:22:28 +12:00
sandeep c19ad562fc lint fix 2021-04-06 14:20:26 +05:30
sandeep 8fdfc64e54 misc tag updates 2021-04-06 12:16:11 +05:30
PD-Team 7427eb2e50
Merge pull request #1204 from DhiyaneshGeek/master
AEM internal File read
2021-04-05 23:56:20 +05:30
sandeep d34ca6773b misc changes 2021-04-05 23:55:18 +05:30
PD-Team a73d7f855c
Merge pull request #1200 from pikpikcu/patch-138
Create gitlab-infoleak
2021-04-05 23:46:11 +05:30
sandeep a0d6838672 Minor updates and Gitlab workflow 2021-04-05 23:45:14 +05:30
Dhiyaneshwaran a395f7cd60
Create aem-querybuilder-internal-path-read.yaml 2021-04-05 23:12:25 +05:30
sandeep 477a783790 Added aem-jcr-querybuilder 2021-04-05 22:45:48 +05:30
sandeep db580f47c8 Update aem-hash-querybuilder.yaml 2021-04-05 22:37:57 +05:30
sandeep ab1a3a2e4d matcher update 2021-04-05 22:36:51 +05:30
sandeep 0622a53cfc moving files around 2021-04-05 22:18:31 +05:30
Dhiyaneshwaran e00521bb3a
Update aem-hash-querybuilder.yaml 2021-04-05 18:47:02 +05:30
Dhiyaneshwaran 6001b0680a
Update aem-hash-querybuilder.yaml 2021-04-05 18:45:09 +05:30
Dhiyaneshwaran 78813c6858
Update aem-hash-querybuilder.yaml 2021-04-05 18:44:00 +05:30
Dhiyaneshwaran 20450a808b
Update aem-hash-querybuilder.yaml 2021-04-05 18:42:41 +05:30
Dhiyaneshwaran 21d72cd017
Create aem-hash-querybuilder.yaml 2021-04-05 18:40:29 +05:30
Christopher Berry 1b0cb16b08 Added new check for Laravel debug mode enabled. Current one in repo doesn\'t work 2021-04-04 10:52:49 +12:00
sandeep 5e1302377d Update phpMyAdmin-setup.yaml 2021-04-01 13:46:56 +05:30
sandeep 981103545a minor updates 2021-04-01 13:45:12 +05:30
Naveen J 075451bdab
Create phpMyAdmin-setup.yaml
Check phpMyAdmin setup page
2021-04-01 13:15:18 +05:30
sandeep bf359a6ee4 Update put-method-enabled.yaml 2021-03-26 17:56:04 +05:30
sandeep e60c7453b8 Updating gitlab-public-snippets 2021-03-25 19:28:05 +05:30
Mzack9999 351167e91f removing redundant boolean check 2021-03-25 00:28:50 +01:00
sandeep 3252d3c5d3 Update gitlab-public-signup.yaml 2021-03-23 04:03:38 +05:30
sandeep a9d97b16b2 Adding public gitlab signups 2021-03-23 03:52:19 +05:30
sandeep c686b26b02 misc changes 2021-03-21 20:24:45 +05:30
Dhiyaneshwaran 754407699a
Create exposed-sqlite-manager.yaml 2021-03-20 20:47:20 +05:30
savik fc0c050127
Update gitlab-snippets.yaml 2021-03-18 11:09:58 +03:00
sandeep ad84ecb792 tag improvements 2021-03-18 13:24:36 +05:30
sandeep 6288ad8275 moving files around 2021-03-17 15:55:11 +05:30
PD-Team 39f495cd98
Merge pull request #1093 from DhiyaneshGeek/master
ePMP 2000 Login , Pandora FMS Console , ContaCam , HP LaserJet
2021-03-17 15:53:26 +05:30
Dhiyaneshwaran a8a09a3c44
Create hp-laserjet-detect.yaml 2021-03-16 22:20:51 +05:30
sandeep 9ac8e36094 Moving few templates under IOT 2021-03-16 22:17:55 +05:30
Dhiyaneshwaran 6b950424ee
Create contacam.yaml 2021-03-16 22:06:54 +05:30
Dhiyaneshwaran 6fbc7cf353
Create panasonic-network-management.yaml 2021-03-15 11:51:25 +05:30
savik ce41df0bfb
Update gitlab-snippets.yaml
exclude empty snippets page
2021-03-12 19:01:24 +03:00
sandeep f012eba951 adding tags to misconfiguration 2021-03-12 14:27:14 +05:30
sandeep 952eec228a moving files around 2021-03-12 13:40:33 +05:30
sandeep 51faee82ff Update gitlab-public-repos.yaml 2021-03-12 12:28:45 +05:30
Louis Dion-Marcil 2a50c876f8 Added gitlab-public-repos 2021-03-11 23:45:35 -05:00
Dwi Siswanto a88453a932 Fix comments-indentation linter 2021-03-11 23:16:43 +07:00
sandeep d3ee173ade Adding updated syntax 2021-03-11 19:47:22 +05:30
Prince Chaddha 152957b3a6 Update http-etcd-unauthenticated-api-data-leak.yaml 2021-03-09 14:34:36 +05:30
Dhiyaneshwaran 22d8c53714
Create http-etcd-unauthenticated-api-data-leak.yaml 2021-03-09 01:38:32 +05:30
Dhiyaneshwaran e4c22f147e
Create solr-query-dashboard.yaml 2021-03-07 19:16:57 +05:30
Dhiyaneshwaran f13243b743
Create unauthenticated-mongo-express.yaml 2021-03-07 19:16:30 +05:30
sandeep 2f328cecd2 Added gitlab-snippets 2021-03-07 18:50:45 +05:30
sandeep 74e63203b7 Update d-link-arbitary-fileread.yaml 2021-03-02 21:14:29 +05:30
Dhiyaneshwaran 85126a1a84
Create d-link-arbitary-fileread.yaml 2021-03-02 19:39:19 +05:30
PikPikcU 66f9dc25f7
Create zhiyuan-oa-unauthorized.yaml 2021-03-02 00:20:55 +00:00
PD-Team 214d6899f0
Rename phpmyadmin-wooYun.yaml to phpmyadmin-wooyun.yaml 2021-02-27 17:55:59 +05:30
sandeep bf798cda41 Update phpmyadmin-wooYun.yaml 2021-02-27 14:21:07 +05:30
Dhiyaneshwaran 0723b21963
Create phpmyadmin-wooYun.yaml 2021-02-26 23:56:21 +05:30
PD-Team c916f5f306
Merge pull request #955 from pikpikcu/patch-87
Update unauthenticated-nacos-access.yaml
2021-02-26 11:15:39 +05:30
sandeep 892c25e4d0 Update unauthenticated-nacos-access.yaml 2021-02-26 11:14:18 +05:30
PikPikcU b05c058a56
Update unauthenticated-nacos-access.yaml 2021-02-26 01:56:25 +00:00
PikPikcU 82fa1598cf
Update unauthenticated-airflow.yaml 2021-02-26 00:47:11 +00:00
sandeep d9c42a9c61 Removing duplicate template 2021-02-24 22:58:13 +05:30
sandeep e66eb0fdc3 misc changes 2021-02-24 22:55:41 +05:30
Dhiyaneshwaran 8cc50e8881
Update ups-status.yaml 2021-02-24 12:45:19 +05:30
Dhiyaneshwaran fbb02de2a1
Update ups-status.yaml 2021-02-24 12:40:54 +05:30
Dhiyaneshwaran 67f92df712
Update webalizer-statistics-exposed.yaml 2021-02-24 12:23:48 +05:30
Dhiyaneshwaran dbc65c59b4
Update webalizer-statistics-exposed.yaml 2021-02-24 12:22:03 +05:30
Dhiyaneshwaran 4a51398426
Update webalizer-statistics-exposed.yaml 2021-02-24 12:13:16 +05:30
Dhiyaneshwaran 1727b923be
Create webalizer-statistics-exposed.yaml 2021-02-24 12:07:08 +05:30
Dhiyaneshwaran 128d2cb205
Create ups-status.yaml 2021-02-24 12:06:29 +05:30
Dhiyaneshwaran cc963db47f
Create tcpconfig.yaml 2021-02-24 12:06:02 +05:30
Dhiyaneshwaran 68c7a957b4
Create java-melody-exposed.yaml 2021-02-24 12:05:37 +05:30
Dhiyaneshwaran fc163a4dad
Create haproxy-status.yaml 2021-02-24 12:05:05 +05:30
sandeep bff0e4c132 Update horde-unauthenticated.yaml 2021-02-23 14:03:44 +05:30
PikPikcU 3ae4fced09
Create horde-unauthenticated.yaml 2021-02-23 08:07:05 +00:00
sandeep 554de94ffe Fixing weak matcher 2021-02-14 23:21:42 +05:30
sandeep 45f694228c Update unauthenticated-prtg.yaml 2021-02-13 19:30:20 +05:30
sandeep dd7b29885f Update jboss-status.yaml 2021-02-13 16:38:00 +05:30
Dhiyaneshwaran 0b32b3ef8f
Create unauthenticated-prtg.yaml 2021-02-13 13:02:16 +05:30
Dhiyaneshwaran d180b4eb63
Create mikrotik-graph.yaml 2021-02-13 13:00:49 +05:30
Dhiyaneshwaran fb392d44d9
Create jboss-status.yaml 2021-02-13 12:59:31 +05:30
sandeep 44fbc886e0 misc changes 2021-02-10 20:37:28 +05:30
sandeep 01dde0e3f4 Update misconfigured-docker.yaml 2021-02-10 16:47:48 +05:30
PikPikcU 380b4e68f5
Fix front-page-misconfig (#826) 2021-02-08 19:34:29 +05:30
Binit Ghimire 064ff876e8
Update nginx-status.yaml (#818) 2021-02-07 19:05:49 +05:30
PD-Team 00d26c0608
Added tags to cves 😎 (#813)
* Added tags to cves 😎
2021-02-06 01:14:41 +05:30
Dhiyaneshwaran 32be639b5f
Update misconfigured-docker.yaml 2021-02-04 00:01:47 +05:30
Dhiyaneshwaran 2dd821bd18
Update misconfigured-docker.yaml 2021-02-03 23:59:33 +05:30
Dhiyaneshwaran 1d8ed33ebb
Update misconfigured-docker.yaml 2021-02-03 23:57:24 +05:30
Dhiyaneshwaran c5ab6a9a3f
Create misconfigured-docker.yaml 2021-02-03 23:48:23 +05:30
Dhiyaneshwaran d623fc14fa
Delete misconfigured-docker.yaml 2021-02-03 23:37:02 +05:30
Dhiyaneshwaran 061ce35b34
Update misconfigured-docker.yaml 2021-02-03 23:28:19 +05:30
Dhiyaneshwaran f46ae21079
Create misconfigured-docker.yaml 2021-02-03 23:23:05 +05:30
PD-Team aad1cc2924 Update salesforce-aura-misconfig.yaml 2021-01-31 15:51:25 +05:30
PD-Team 064f084dee misc changes 2021-01-29 23:53:50 +05:30
PD-Team 675c576b86
Merge pull request #757 from wdahlenburg/split_spring_boot_detect
Split up springboot-detect
2021-01-29 00:07:17 +05:30
PD-Team 40e1df8493 few fixes 2021-01-29 00:06:15 +05:30
PD-Team 663de70127 workflow updates 2021-01-28 23:47:22 +05:30
PD-Team 225aae6bb8 Delete springboot-detect.yaml 2021-01-28 23:30:34 +05:30
PD-Team 2fd6ae31cb Delete springboot-logfile.yaml 2021-01-28 23:27:15 +05:30
PD-Team 21bfead0b1 renaming few templates 2021-01-28 23:13:50 +05:30
PD-Team a9c9809283 Adding springboot-detect-logfile 2021-01-28 21:35:48 +05:30
PD-Team 0eee24b932 Adding springboot-detect-loggers 2021-01-28 21:26:38 +05:30
PD-Team c762044d29 updating incorrect file permissions 2021-01-21 23:28:32 +05:30
PD-Team a922262352 moving files around 2021-01-21 20:31:16 +05:30