Commit Graph

7088 Commits (fed682443e910c128906a458858734784773e59c)

Author SHA1 Message Date
Suman Kar 556a94136b Calendar Event Multi View < 1.4.01 - Unauthenticated Reflected Cross-Site Scripting (XSS) 2021-07-19 10:40:50 +05:30
GitHub Action 0cb3c9d6b5 Auto Update README [Sun Jul 18 18:01:12 UTC 2021] 🤖 2021-07-18 18:01:12 +00:00
Sandeep Singh e21422a385
Merge pull request #2078 from gy741/rule-add-v28
Create mirai-unknown-rce.yaml
2021-07-18 23:30:54 +05:30
GitHub Action 8d9b19651f Auto Update README [Sun Jul 18 17:56:01 UTC 2021] 🤖 2021-07-18 17:56:01 +00:00
Sandeep Singh 922555503b
Merge pull request #2073 from gy741/rule-add-v26
Create CVE-2020-27866.yaml
2021-07-18 23:25:43 +05:30
sandeep 965e6fcc00 minor update 2021-07-18 23:24:55 +05:30
Sandeep Singh cd63b0d01f
Merge pull request #2075 from pdelteil/patch-23
Update exposed-gitignore.yaml
2021-07-18 23:19:03 +05:30
GitHub Action e975b6edac Auto Update README [Sun Jul 18 17:48:01 UTC 2021] 🤖 2021-07-18 17:48:01 +00:00
Sandeep Singh f9c8314092
Merge pull request #2077 from gy741/rule-add-v27
Create Advantech R-SeeNet Multiple Reflected XSS vulnerabilities
2021-07-18 23:17:40 +05:30
sandeep c56680cef3 Additional matcher 2021-07-18 23:14:19 +05:30
Sandeep Singh 9971674b36
Update CVE-2021-21479.yaml 2021-07-18 22:54:34 +05:30
GitHub Action 27b8b08b42 Auto Update README [Sun Jul 18 17:13:47 UTC 2021] 🤖 2021-07-18 17:13:47 +00:00
Sandeep Singh 07266a7e8c
Merge pull request #2079 from DhiyaneshGeek/master
Adobe Lucee Complete Chain , GiveWP 2.9.7 Reflected Cross-Site Scripting , Cortex XSOAR Login Panel
2021-07-18 22:43:26 +05:30
sandeep be655ffd69 No more manual updates with tags support 2021-07-18 22:41:13 +05:30
sandeep 3088fb5431 Removing CVE-2021-24213
As per blog - https://bentl.ee/posts/cve-givewp/

> This vulnerability requires user interaction from an admin in order to be exploited.
2021-07-18 22:39:37 +05:30
sandeep 76e95ac1e5 Minor improvements 2021-07-18 22:36:15 +05:30
Dhiyaneshwaran 22fa4de8d8
Update CVE-2021-21307.yaml 2021-07-18 19:33:28 +05:30
Dhiyaneshwaran ce980acc50
Update CVE-2021-21307.yaml 2021-07-18 19:28:29 +05:30
Dhiyaneshwaran e692d81999
Update CVE-2021-21307.yaml 2021-07-18 19:24:46 +05:30
Dhiyaneshwaran c0ae7b8eda
Update lucee-workflow.yaml 2021-07-18 19:21:01 +05:30
Dhiyaneshwaran 0a8d2ffdcc
Create CVE-2021-21307.yaml 2021-07-18 19:19:19 +05:30
GwanYeong Kim 19fa522fec Create mirai-unknown-rce.yaml
The unknown exploit targets the login CGI script, where a key parameter is not properly sanitized leading to a command injection.

Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-07-18 22:44:29 +09:00
GwanYeong Kim 4414ff60db Create Advantech R-SeeNet Multiple Reflected XSS vulnerabilities
This vulnerability is present in device_graph_page.php script, which is a part of the Advantech R-SeeNet web applications. A specially crafted URL by an attacker and visited by a victim can lead to arbitrary JavaScript code execution.

Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-07-18 22:12:01 +09:00
Dhiyaneshwaran ed9418961d
Create cortex-xsoar-login.yaml 2021-07-18 17:24:04 +05:30
Dhiyaneshwaran 0a01f0cd79
Create CVE-2021-24213.yaml 2021-07-18 16:44:57 +05:30
Dhiyaneshwaran dd8f248892
Merge pull request #75 from projectdiscovery/master
Updation
2021-07-18 13:08:23 +05:30
Dwi Siswanto e4b2316bf0 Add CVE-2021-21479 2021-07-18 11:11:56 +07:00
Philippe Delteil aec3d87e72
Update exposed-gitignore.yaml
New conditions to avoid false positives.
2021-07-17 23:15:08 -04:00
GwanYeong Kim fb22fd40c5 Create CVE-2020-27866.yaml
This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6020, R6080, R6120, R6220, R6260, R6700v2, R6800, R6900v2, R7450, JNR3210, WNR2020, Nighthawk AC2100, and Nighthawk AC2400 routers. Authentication is not required to exploit this vulnerability.

Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2021-07-18 10:03:38 +09:00
Sandeep Singh 24042afb39
Merge pull request #2069 from 0xPrial/master
Updated Heroku and Netlify takeover detection
2021-07-17 23:58:35 +05:30
sandeep d2970f3529 misc changes 2021-07-17 23:55:56 +05:30
GitHub Action 14dac08171 Auto Update README [Sat Jul 17 18:23:29 UTC 2021] 🤖 2021-07-17 18:23:30 +00:00
Sandeep Singh a7a12fd6f3
Merge pull request #2072 from projectdiscovery/dell-emc-ecom-default-credentials
Added Dell EMC ECOM Default Credentials
2021-07-17 23:53:11 +05:30
sandeep 9e85e024d3 Added IDEMIA BIOMetrics Default Credentials 2021-07-17 23:51:55 +05:30
sandeep 78e7242792 Added Palo Alto Networks PAN-OS Default Credentials 2021-07-17 23:35:39 +05:30
sandeep 8030b46355 Added HortonWorks SmartSense Default Credentials 2021-07-17 23:30:55 +05:30
sandeep 0832491843 Added Dell EMC ECOM Default Credentials 2021-07-17 23:28:19 +05:30
GitHub Action f58d787724 Auto Update README [Sat Jul 17 17:53:56 UTC 2021] 🤖 2021-07-17 17:53:56 +00:00
Sandeep Singh 34557c377b
Merge pull request #2071 from projectdiscovery/visionhub-default-credential
Added VisionHub Default Credentials
2021-07-17 23:23:41 +05:30
sandeep 7ef332e9d0 Added VisionHub Default Credentials 2021-07-17 23:20:57 +05:30
Sandeep Singh b5585a2739
Merge pull request #2070 from projectdiscovery/showdoc-file-upload-rce
Payload + matcher update
2021-07-17 23:04:15 +05:30
sandeep 63ae086b67 Payload + matcher update 2021-07-17 23:02:43 +05:30
Prial Islam 9eabca6e4c Updated Heroku and netlify takeover detection 2021-07-17 22:55:19 +06:00
GitHub Action 0debdc4cd1 Auto Update README [Sat Jul 17 16:45:21 UTC 2021] 🤖 2021-07-17 16:45:21 +00:00
Sandeep Singh 4915c599a0
Merge pull request #1884 from Vladimir-Ivanov-Git/sap-igs-detect
Add SAP Internet Graphics Server (IGS) Detection
2021-07-17 22:15:07 +05:30
sandeep e4f51a0286 Update sap-igs-detect.yaml 2021-07-17 22:14:18 +05:30
GitHub Action 1212034229 Auto Update README [Sat Jul 17 16:40:05 UTC 2021] 🤖 2021-07-17 16:40:05 +00:00
Sandeep Singh 8b43c24a51
Merge pull request #1933 from gy741/rule-add-v20
Create ricoh-weak-password.yaml
2021-07-17 22:09:45 +05:30
GitHub Action e0bbc7f160 Auto Update README [Sat Jul 17 16:20:39 UTC 2021] 🤖 2021-07-17 16:20:40 +00:00
Sandeep Singh b707e46052
Merge pull request #1830 from random-robbie/patch-13
Create CVE-2013-3827.yaml
2021-07-17 21:50:24 +05:30