v9.7.5 - Local Privilege Escalation

🔥 Release Highlights 🔥

In our latest release, we have added a significant number of trending CVEs and are excited to announce the addition of new local privilege escalation templates. These valuable contributions come from our community, with a notable contribution from @daffainfo, and are available at Local Privilege Escalation Templates. These templates utilize the newly introduced code protocol, enhancing their capability to detect vulnerabilities more effectively.

It's important to note that these templates are specifically designed for local execution to identify privilege escalation vulnerabilities. For security reasons, they are not executed as part of the default Nuclei scan. We ensure the security and authenticity of these templates by signing them officially. To run these templates, users need to provide the -code flag along with -itags local. These additions are particularly useful for penetration testing and red-teaming focusing on privilege escalation, and we plan to further expand their coverage in future updates. Following are the other highlights of this release:

• javascript/cves/2024/CVE-2024-23897.yaml by @iamnoooob,@rootxharsh,@pdresearch 🔥
• http/cves/2024/CVE-2024-0204.yaml by @dhiyaneshdk 🔥
• http/cves/2023/CVE-2023-47211.yaml by @gy741 🔥
• http/cves/2023/CVE-2023-22527.yaml by @Iamnooob,@rootxharsh,@pdresearch 🔥
• http/cves/2023/CVE-2023-6875.yaml by @iamnoooob,@rootxharsh,@pdresearch 🔥
• http/cves/2019/CVE-2019-16469.yaml by @DomenicoVeneziano 🔥

What's Changed

New Templates Added: 106 | CVEs Added: 14 | First-time contributions: 14

• javascript/cves/2024/CVE-2024-23897.yaml by @iamnoooob,@rootxharsh,@pdresearch 🔥
• http/cves/2024/CVE-2024-0204.yaml by @dhiyaneshdk 🔥
• http/cves/2023/CVE-2023-48023.yaml by @cookiehanhoan,@harryha
• http/cves/2023/CVE-2023-47643.yaml by @isacaya
• http/cves/2023/CVE-2023-47211.yaml by @gy741 🔥
• http/cves/2023/CVE-2023-44352.yaml by @pwnwithlove
• http/cves/2023/CVE-2023-27640.yaml by @mastercho
• http/cves/2023/CVE-2023-27639.yaml by @mastercho
• http/cves/2023/CVE-2023-22527.yaml by @Iamnooob,@rootxharsh,@pdresearch 🔥
• http/cves/2023/CVE-2023-6977.yaml by @gy741
• http/cves/2023/CVE-2023-6875.yaml by @iamnoooob,@rootxharsh,@pdresearch 🔥
• http/cves/2023/CVE-2023-6023.yaml by @M0ck3d,@cookiehanhoan
• http/cves/2019/CVE-2019-16469.yaml by @DomenicoVeneziano 🔥
• http/cves/2018/CVE-2018-10942.yaml by @mastercho
• http/vulnerabilities/apache/apache-nifi-rce.yaml by @arliya
• http/vulnerabilities/juniper/junos-xss.yaml by @dhiyaneshdk
• http/vulnerabilities/prestashop/prestashop-blocktestimonial-file-upload.yaml by @mastercho
• http/vulnerabilities/vbulletin/vbulletin-backdoor.yaml by @mastercho
• code/privilege-escalation/linux/binary/privesc-aa-exec.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-ash.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-awk.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-bash.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-cdist.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-choom.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-cpulimit.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-csh.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-csvtool.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-dash.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-dc.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-distcc.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-elvish.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-enscript.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-env.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-expect.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-find.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-fish.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-flock.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-gawk.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-grc.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-ionice.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-julia.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-lftp.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-ltrace.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-lua.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-mawk.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-multitime.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-mysql.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-nawk.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-nice.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-node.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-nsenter.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-perl.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-pexec.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-php.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-posh.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-python.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-rake.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-rc.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-rlwrap.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-rpm.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-rpmdb.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-rpmverify.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-ruby.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-run-parts.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-sash.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-slsh.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-socat.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-softlimit.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-sqlite3.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-ssh-agent.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-sshpass.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-stdbuf.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-strace.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-tar.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-tcsh.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-time.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-timeout.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-tmate.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-torify.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-torsocks.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-unshare.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-vi.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-view.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-vim.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-xargs.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-xdg-user-dir.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-yash.yaml by @daffainfo
• code/privilege-escalation/linux/binary/privesc-zsh.yaml by @daffainfo
• code/privilege-escalation/linux/rw-shadow.yaml by @daffainfo
• code/privilege-escalation/linux/rw-sudoers.yaml by @daffainfo
• code/privilege-escalation/linux/sudo-nopasswd.yaml by @daffainfo
• code/privilege-escalation/linux/writable-etc-passwd.yaml by @daffainfo
• http/default-logins/node-red/nodered-default-login.yaml by @savik
• http/default-logins/powershell/powershell-default-login.yaml by @ap3r
• http/exposed-panels/autoset-detect.yaml by @mastercho
• http/exposed-panels/compalex-panel-detect.yaml by @mastercho
• http/exposed-panels/doris-panel.yaml by @ritikchaddha
• http/exposed-panels/lomnido-panel.yaml by @righettod
• http/exposures/configs/vbulletin-path-disclosure.yaml by @mastercho
• http/exposures/logs/go-pprof-debug.yaml by @w8ay
• http/miscellaneous/defacement-detect.yaml by @ricardomaia
• http/misconfiguration/doris-dashboard.yaml by @ritikchaddha
• http/misconfiguration/springboot/springboot-integrationgraph.yaml by @ELSFA7110
• http/misconfiguration/springboot/springboot-startup.yaml by @ELSFA7110
• http/technologies/tibco-businessconnect-detect.yaml by @righettod
• dns/dns-rebinding.yaml by @ricardomaia

New Contributors

• @PhillipoTF2 made their first contribution in #8965
• @sea-god made their first contribution in #7042
• @jmoraissec made their first contribution in #8966
• @hieuha made their first contribution in #8978
• @shivamsaraswat made their first contribution in #8919
• @dkasak made their first contribution in #8974
• @boy-hack made their first...

v9.7.4

🔥 Release Highlights 🔥

• http/cves/2020/CVE-2020-27838.yaml by @mchklt 🔥
• http/cves/2022/CVE-2022-47501.yaml by @your3cho 🔥
• http/cves/2023/CVE-2023-46805.yaml by @dhiyaneshdk 🔥
• http/cves/2023/CVE-2023-50290.yaml by @banana69,@dhiyaneshdk 🔥
• http/cves/2023/CVE-2023-6634.yaml by @iamnoooob,@rootxharsh,@pdresearch 🔥
• http/cves/2024/CVE-2024-21887.yaml by @pdresearch,@parthmalhotra,@iamnoooob 🔥

Full Changelog: v9.7.3...v9.7.4

v9.7.3

🔥 Release Highlights 🔥

• code/cves/2019/CVE-2019-14287.yaml by @daffainfo 🔥
• code/cves/2021/CVE-2021-3156.yaml by @pussycat0x 🔥
• http/cves/2023/CVE-2023-44353.yaml by @Salts 🔥
• http/cves/2023/CVE-2023-50917.yaml by @dhiyaneshdk 🔥
• http/cves/2023/CVE-2023-50968.yaml by @your3cho 🔥
• http/cves/2023/CVE-2023-51467.yaml by @your3cho 🔥
• http/cves/2023/CVE-2023-6063.yaml by @dhiyaneshdk 🔥
• http/cves/2023/CVE-2023-7028.yaml by @dhiyaneshdk,@rootxharsh,@Iamnooob,@pdresearch 🔥

What's Changed

New Templates Added: 45 | CVEs Added: 16 | First-time contributions: 6

• code/cves/2019/CVE-2019-14287.yaml by @daffainfo 🔥
• code/cves/2021/CVE-2021-3156.yaml by @pussycat0x 🔥
• http/cves/2015/CVE-2015-2794.yaml by @1337kro
• http/cves/2020/CVE-2020-12124.yaml by @dhiyaneshdk
• http/cves/2023/CVE-2023-41109.yaml by @princechaddha
• http/cves/2023/CVE-2023-42343.yaml by @dhiyaneshdk
• http/cves/2023/CVE-2023-44353.yaml by @Salts 🔥
• http/cves/2023/CVE-2023-46574.yaml by @dhiyaneshdk
• http/cves/2023/CVE-2023-50917.yaml by @dhiyaneshdk 🔥
• http/cves/2023/CVE-2023-50968.yaml by @your3cho 🔥
• http/cves/2023/CVE-2023-51467.yaml by @your3cho 🔥
• http/cves/2023/CVE-2023-6063.yaml by @dhiyaneshdk 🔥
• http/cves/2023/CVE-2023-6379.yaml by @msegoviag
• http/cves/2023/CVE-2023-6623.yaml by @iamnoooob,@rootxharsh,@pdresearch,@coldfish
• http/cves/2023/CVE-2023-7028.yaml by @dhiyaneshdk,@rootxharsh,@Iamnooob,@pdresearch 🔥
• http/cves/2024/CVE-2024-0352.yaml by @cookiehanhoan,@babybash,@samuelsamuelsamuel
• http/vulnerabilities/dahua/dahua-icc-backdoor-user.yaml by @dhiyaneshdk
• http/vulnerabilities/dlink/dlink-netgear-xss.yaml by @gtrrnr,@vulnspace
• http/vulnerabilities/ruijie/ruijie-nmc-sync-rce.yaml by @dhiyaneshdk
• http/vulnerabilities/ruijie/ruijie-rg-eg-web-mis-rce.yaml by @dhiyaneshdk
• http/vulnerabilities/wanhu/wanhuoa-downloadservlet-lfi.yaml by @wpsec
• http/vulnerabilities/yonyou/yonyou-ksoa-dept-sqli.yaml by @dhiyaneshdk
• javascript/network/smb/smb-anonymous-access.yaml by @pussycat0x
• javascript/network/smb/smb-shares.yaml by @pussycat0x
• javascript/network/smb/smb-signing-not-required.yaml by @pussycat0x
• javascript/network/smb/smb2-capabilities.yaml by @pussycat0x
• http/misconfiguration/apache/apache-server-status.yaml by @Thabisocn
• http/misconfiguration/cookies-without-httponly-secure.yaml by @princechaddha,@Mr.Bobo HP
• http/misconfiguration/php/php-composer-binary.yaml by @mayank_pandey01
• network/misconfig/erlang-daemon.yaml by @pussycat0x
• http/default-logins/camunda/camunda-default-login.yaml by @bhutch
• http/exposed-panels/goodjob-dashboard.yaml by @hahwul
• http/exposed-panels/onlyoffice-login-panel.yaml by @eremit4
• http/exposures/docker-daemon-exposed.yaml by @arm!tage
• http/osint/piratebay.yaml by @philippedelteil
• cloud/enum/aws-app-enum.yaml by @initstring
• cloud/enum/aws-s3-bucket-enum.yaml by @initstring
• cloud/enum/azure-db-enum.yaml by @initstring
• cloud/enum/azure-vm-cloud-enum.yaml by @initstring
• cloud/enum/azure-website-enum.yaml by @initstring
• cloud/enum/gcp-app-engine-enum.yaml by @initstring
• cloud/enum/gcp-bucket-enum.yaml by @initstring
• cloud/enum/gcp-firebase-app-enum.yaml by @initstring
• cloud/enum/gcp-firebase-rtdb-enum.yaml by @initstring
• http/technologies/cisco-asa-detect.yaml by @sdcampbell

New Contributors

• @Blackbird594 made their first contribution in #8858
• @malacupa made their first contribution in #8812
• @fail-open made their first contribution in #8896
• @mailler0xa made their first contribution in #8925
• @juicewrldxxx made their first contribution in #8924
• @wpsec made their first contribution in #8931

Full Changelog: v9.7.2...v9.7.3

v9.7.2

🔥 Release Highlights 🔥

• javascript/cves/2023/CVE-2023-46604.yaml by @Ice3man,@Mzack9999,@pdresearch 🔥
• code/cves/2023/CVE-2023-49105.yaml by @ChristianPoeschl,@FlorianDewald,@usdAG 🔥
• http/cves/2021/CVE-2021-29200.yaml by @your3cho 🔥
• http/cves/2023/CVE-2023-26035.yaml by @Unblvr1,@whotwagner 🔥
• http/cves/2023/CVE-2023-3368.yaml by @dwisiswant0 🔥
• http/cves/2023/CVE-2023-41265.yaml by @adamcrosser 🔥
• http/cves/2023/CVE-2023-43177.yaml by @iamnoooob,@rootxharsh,@pdresearch 🔥
• http/cves/2023/CVE-2023-49070.yaml by @your3cho 🔥
• http/cves/2023/CVE-2023-6553.yaml by @flx 🔥

What's Changed

New Templates Added: 61 | CVEs Added: 25 | First-time contributions: 8

• javascript/cves/2023/CVE-2023-46604.yaml by @Ice3man,@Mzack9999,@pdresearch 🔥
• code/cves/2023/CVE-2023-49105.yaml by @ChristianPoeschl,@FlorianDewald,@usdAG 🔥
• headless/cves/2018/CVE-2018-25031.yaml by @dhiyaneshdk
• http/cves/2018/CVE-2018-8823.yaml by @mastercho
• http/cves/2021/CVE-2021-29200.yaml by @your3cho 🔥
• http/cves/2021/CVE-2021-44910.yaml by @lbb
• http/cves/2022/CVE-2022-0087.yaml by @ShivanshKhari
• http/cves/2023/CVE-2023-22232.yaml by @1337kro
• http/cves/2023/CVE-2023-26035.yaml by @Unblvr1,@whotwagner 🔥
• http/cves/2023/CVE-2023-30534.yaml by @k0pak4
• http/cves/2023/CVE-2023-3368.yaml by @dwisiswant0 🔥
• http/cves/2023/CVE-2023-36144.yaml by @gy741
• http/cves/2023/CVE-2023-39002.yaml by @herry
• http/cves/2023/CVE-2023-41265.yaml by @adamcrosser 🔥
• http/cves/2023/CVE-2023-41266.yaml by @adamcrosser 🔥
• http/cves/2023/CVE-2023-43177.yaml by @iamnoooob,@rootxharsh,@pdresearch 🔥
• http/cves/2023/CVE-2023-46359.yaml by @mlec
• http/cves/2023/CVE-2023-49070.yaml by @your3cho 🔥
• http/cves/2023/CVE-2023-5556.yaml by @shankaracharya
• http/cves/2023/CVE-2023-6018.yaml by @byt3bl33d3r
• http/cves/2023/CVE-2023-6020.yaml by @byt3bl33d3r
• http/cves/2023/CVE-2023-6021.yaml by @byt3bl33d3r
• http/cves/2023/CVE-2023-6038.yaml by @DanMcInerney,@byt3bl33d3r
• http/cves/2023/CVE-2023-6380.yaml by @miguelsegoviagil
• http/cves/2023/CVE-2023-6553.yaml by @flx 🔥
• http/default-logins/dataease/dataease-default-login.yaml by @dhiyaneshdk
• http/default-logins/splunk/splunk-default-login.yaml by @pussycat0x
• http/exposed-panels/dataease-panel.yaml by @dhiyaneshdk
• http/exposed-panels/reportico-admin-panel.yaml by @geeknik
• http/exposed-panels/tailon-panel.yaml by @ritikchaddha
• http/exposed-panels/vue-pacs-panel.yaml by @righettod
• http/exposed-panels/woodwing-panel.yaml by @pdteam
• http/exposures/configs/dompdf-config.yaml by @kazet
• http/misconfiguration/aws/cdn-cache-poisoning.yaml by @0xcharan
• http/misconfiguration/h2o/h2o-arbitary-file-read.yaml by @DanMcInerney,@byt3bl33d3r
• http/misconfiguration/h2o/h2o-dashboard.yaml by @byt3bl33d3r
• http/misconfiguration/installer/businesso-installer.yaml by @ritikchaddha
• http/misconfiguration/installer/chamilo-installer.yaml by @dhiyaneshdk
• http/misconfiguration/installer/espocrm-installer.yaml by @dhiyaneshdk
• http/misconfiguration/installer/knowledgetree-installer.yaml by @ritikchaddha
• http/misconfiguration/installer/phpgedview-installer.yaml by @ritikchaddha
• http/misconfiguration/installer/wowcms-installer.yaml by @ritikchaddha
• http/misconfiguration/mixed-active-content.yaml by @Liwermor
• http/misconfiguration/mixed-passive-content.yaml by @Liwermor
• http/misconfiguration/secnet-info-leak.yaml by @dhiyaneshdk
• http/misconfiguration/woodwing-git.yaml by @pdteam
• http/misconfiguration/woodwing-phpinfo.yaml by @pdteam
• http/technologies/bamboo-detect.yaml by @bhutch
• http/technologies/element-web-detect.yaml by @davidegirardi
• http/technologies/iparapheur-detect.yaml by @righettod
• http/technologies/matrix-homeserver-detect.yaml by @davidegirardi
• http/vulnerabilities/dahua/dahua-wpms-lfi.yaml by @dhiyaneshdk
• http/vulnerabilities/dahua/dahua-wpms-rce.yaml by @dhiyaneshdk
• http/vulnerabilities/ecstatic/node-ecstatic-internal-path.yaml by @dhiyaneshdk
• http/vulnerabilities/ecstatic/node-ecstatic-listing.yaml by @dhiyaneshdk
• http/vulnerabilities/huawei/huawei-authhttp-lfi.yaml by @dhiyaneshdk
• http/vulnerabilities/jinhe/jinhe-jc6-sqli.yaml by @Ky9oss
• http/vulnerabilities/other/sslvpn-client-rce.yaml by @dhiyaneshdk
• http/vulnerabilities/other/yibao-sqli.yaml by @dhiyaneshdk
• http/vulnerabilities/other/yunanbao-rce.yaml by @dhiyaneshdk
• http/vulnerabilities/vbulletin/vbulletin-ajaxreg-sqli.yaml by @mastercho

New Contributors

• @davidegirardi made their first contribution in #8721
• @jfbes made their first contribution in #8726
• @invisiblethreat made their first contribution in #8719
• @your3ch0 made their first contribution in #8774
• @knavesec made their first contribution in #8784
• @RegularITCat made their first contribution in #8806
• @chrisusdag made their first contribution in #8835
• @Liwermor made their first contribution in #8838

Full Changelog: v9.7.1...v9.7.2

v9.7.1

What's Changed

• Removed logging statement from ssh template by @ehsandeep in #8736
• Updated CVE-2023-49103 to include htaccess rule bypass by @ehsandeep in #8737

Full Changelog: v9.7.0...v9.7.1

v9.7.0

🔥 Release Highlights 🔥

• code/cves/2023/CVE-2023-2640.yaml by @princechaddha 🔥
• http/cves/2023/CVE-2023-49103.yaml by @ritikchaddha 🔥
• http/cves/2023/CVE-2023-47246.yaml by @iamnoooob,@rootxharsh,@pdresearch 🔥
• http/cves/2021/CVE-2021-45382.yaml by @king-alexander 🔥
• http/cves/2021/CVE-2021-35395.yaml by @king-alexander 🔥
• http/cves/2021/CVE-2021-33690.yaml by DhiyaneshDK 🔥
• http/cves/2021/CVE-2021-26294.yaml by @johnk3r 🔥

What's Changed

New Templates Added: 51 | CVEs Added: 18 | First-time contributions: 7

• code/cves/2023/CVE-2023-2640.yaml by @princechaddha 🔥
• http/cves/2023/CVE-2023-49103.yaml by @ritikchaddha 🔥
• http/cves/2023/CVE-2023-47246.yaml by @iamnoooob,@rootxharsh,@pdresearch 🔥
• http/cves/2023/CVE-2023-45542.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-43326.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-43325.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-39796.yaml by @youngpope
• http/cves/2023/CVE-2023-30258.yaml by @gy741
• http/cves/2023/CVE-2023-26347.yaml by @Salts
• http/cves/2023/CVE-2023-5375.yaml by @shankaracharya
• http/cves/2022/CVE-2022-1170.yaml by @akincibor,@ritikchaddha
• http/cves/2021/CVE-2021-45382.yaml by @king-alexander 🔥
• http/cves/2021/CVE-2021-35395.yaml by @king-alexander 🔥
• http/cves/2021/CVE-2021-33690.yaml by DhiyaneshDK 🔥
• http/cves/2021/CVE-2021-26294.yaml by @johnk3r 🔥
• http/cves/2021/CVE-2021-26292.yaml by @johnk3r
• http/cves/2017/CVE-2017-7855.yaml by @r3Y3r53
• javascript/cves/2016/CVE-2016-8706.yaml by @pussycat0x
• http/vulnerabilities/other/xxljob-executor-unauth.yaml by @k3rwin
• http/default-logins/structurizr/structurizr-default-login.yaml by DhiyaneshDK
• http/exposed-panels/adhoc-transfer-panel.yaml by @johnk3r
• http/exposures/configs/jsconfig-json.yaml by DhiyaneshDk
• http/exposures/configs/phinx-config.yaml by DhiyaneshDk
• http/exposures/configs/vite-config.yaml by DhiyaneshDk
• http/exposures/files/apdisk-disclosure.yaml by DhiyaneshDk
• http/exposures/files/auth-json.yaml by DhiyaneshDk
• http/exposures/files/azuredeploy-json.yaml by DhiyaneshDk
• http/exposures/files/php-cs-cache.yaml by DhiyaneshDk
• http/exposed-panels/afterlogic-webmail-login.yaml by @johnk3r
• http/exposed-panels/structurizr-panel.yaml by DhiyaneshDk
• http/misconfiguration/installer/mosparo-install.yaml by DhiyaneshDK
• http/misconfiguration/ms-exchange-user-enum.yaml by @righettod
• http/misconfiguration/node-express-status.yaml by DhiyaneshDk
• http/misconfiguration/tomcat-stacktraces.yaml by @Lucky0x0D
• http/takeovers/clever-takeover.yaml by @supr4s
• javascript/enumeration/obsolete-ssh-version.yaml by @pussycat0x
• javascript/enumeration/ssh-cbc-mode-ciphers.yaml by @pussycat0x
• javascript/enumeration/ssh-diffie-hellman-logjam.yaml by @pussycat0x
• javascript/enumeration/ssh-sha1-hmac-algo.yaml by @pussycat0x
• javascript/enumeration/ssh-weak-algo-supported.yaml by @pussycat0x
• javascript/enumeration/ssh-weak-mac-algo.yaml by @pussycat0x
• javascript/enumeration/ssh-weak-public-key.yaml by @pussycat0x
• javascript/enumeration/ssh-weakkey-exchange-algo.yaml by @pussycat0x
• network/detection/aws-sftp-detect.yaml by @johnk3r
• network/detection/moveit-sftp-detect.yaml by @johnk3r
• file/keys/kubernetes/kubernetes-dockercfg-secret.yaml by @dwisiswant0
• file/keys/kubernetes/kubernetes-dockerconfigjson-secret.yaml by @dwisiswant0
• http/technologies/4D-detect.yaml by @righettod
• http/technologies/aws/aws-detect.yaml by @6mile
• http/technologies/silverback-detect.yaml by @nodauf
• http/technologies/wordpress/plugins/templately.yaml by @ricardomaia

New Contributors

• @fullstackpotato made their first contribution in #8599
• @wahyuhadi made their first contribution in #8597
• @l0pens made their first contribution in #8618
• @rtvkiz made their first contribution in #8645
• @joelczk made their first contribution in #8644
• @Mr-B0hl00l made their first contribution in #8648
• @Jaclyn6 made their first contribution in #8675

Full Changelog: v9.6.9...v9.7.0

v9.6.9

🔥 Release Highlights 🔥

• network/cves/2023/CVE-2023-46604.yaml by @Ice3man,@Mzack9999,@pdresearch 🔥
• javascript/cves/2023/CVE-2023-34039.yaml by @tarunKoyalwar 🔥
• code/cves/2023/CVE-2023-4911.yaml by @nybble04 🔥
• http/cves/2023/CVE-2023-43795.yaml by @dhiyaneshdk 🔥
• http/cves/2022/CVE-2022-35653.yaml by @iamnoooob,@pdresearch 🔥
• http/cves/2023/CVE-2023-22518.yaml by @iamnoooob,@rootxharsh,@pdresearch 🔥
• http/cves/2023/CVE-2023-20198.yaml by @iamnoooob,@rootxharsh,@pdresearch 🔥
• http/cves/2020/CVE-2020-24701.yaml by @dhiyaneshdk 🔥
• http/cves/2023/CVE-2023-1719.yaml by @dhiyaneshdk 🔥

What's Changed

New Templates Added: 73 | CVEs Added: 13 | First-time contributions: 7

• network/cves/2023/CVE-2023-46604.yaml by @Ice3man,@Mzack9999,@pdresearch 🔥
• javascript/cves/2023/CVE-2023-34039.yaml by @tarunKoyalwar 🔥
• code/cves/2023/CVE-2023-4911.yaml by @nybble04 🔥
• http/cves/2023/CVE-2023-43795.yaml by @dhiyaneshdk 🔥
• http/cves/2023/CVE-2023-40068.yaml by @E1A
• http/cves/2022/CVE-2022-35653.yaml by @iamnoooob,@pdresearch 🔥
• http/cves/2023/CVE-2023-34020.yaml by @LeDoubleTake
• http/cves/2023/CVE-2023-33629.yaml by @dhiyaneshdk
• http/cves/2023/CVE-2023-22518.yaml by @iamnoooob,@rootxharsh,@pdresearch 🔥
• http/cves/2023/CVE-2023-20198.yaml by @iamnoooob,@rootxharsh,@pdresearch 🔥
• http/cves/2020/CVE-2020-24701.yaml by @dhiyaneshdk 🔥
• http/cves/2023/CVE-2023-1719.yaml by @dhiyaneshdk 🔥
• http/cves/2023/CVE-2023-4169.yaml by @dhiyaneshdk
• http/cves/2023/CVE-2023-4415.yaml by @dhiyaneshdk
• http/default-logins/dell/dell-dpi-default-login.yaml by @MegaManSec
• http/default-logins/goip-default-login.yaml by @drfabiocastro
• http/exposed-panels/appsuite-panel.yaml by @dhiyaneshdk
• http/exposed-panels/cisco/cisco-ios-xe-panel.yaml by @bhutch
• http/exposed-panels/fusionauth-admin-panel.yaml by @ritikchaddha
• http/exposed-panels/homer-panel.yaml by @rxerium
• http/exposed-panels/kiteworks-pcn-panel.yaml by @righettod
• http/exposed-panels/librephotos-panel.yaml by @ritikchaddha
• http/exposed-panels/librespeed-panel.yaml by @ritikchaddha
• http/exposed-panels/office-webapps-panel.yaml by @dhiyaneshdk
• http/exposed-panels/overseerr-panel.yaml by @rxerium
• http/exposed-panels/plausible-panel.yaml by @rxerium
• http/exposed-panels/rdweb-panel.yaml by @rxerium,@sorrowx3
• http/exposed-panels/servicenow-panel.yaml by @righettod
• http/exposed-panels/truenas-scale-panel.yaml by @rxerium
• http/exposed-panels/unauth/tautulli-unauth.yaml by @ritikchaddha
• http/honeypot/citrix-honeypot-detect.yaml by @UnaPibaGeek
• http/honeypot/dionaea-http-honeypot-detect.yaml by @UnaPibaGeek
• http/honeypot/elasticpot-honeypot-detect.yaml by @UnaPibaGeek
• http/honeypot/snare-honeypot-detect.yaml by @UnaPibaGeek
• http/misconfiguration/fusionauth-admin-setup.yaml by @ritikchaddha
• http/misconfiguration/installer/cube-105-install.yaml by @ritikchaddha
• http/misconfiguration/installer/imprivata-installer.yaml by @ritikchaddha
• http/misconfiguration/installer/orangescrum-install.yaml by @ritikchaddha
• http/misconfiguration/installer/ruckus-smartzone-install.yaml by @ritikchaddha
• http/misconfiguration/installer/ruckus-unleashed-install.yaml by @ritikchaddha
• http/misconfiguration/installer/sugarcrm-install.yaml by @ritikchaddha
• http/misconfiguration/installer/tautulli-install.yaml by @ritikchaddha
• http/misconfiguration/installer/webcalendar-install.yaml by @ritikchaddha
• http/misconfiguration/installer/webtrees-install.yaml by @ritikchaddha
• http/misconfiguration/less-history.yaml by @kazet
• http/misconfiguration/mysql-history.yaml by @kazet
• http/misconfiguration/searchreplacedb2-exposure.yaml by @kazet
• http/misconfiguration/untangle-admin-setup.yaml by @ritikchaddha
• http/technologies/dell/dell-dpi-panel.yaml by @MegaManSec
• http/technologies/wordpress/plugins/hostinger.yaml by @ricardomaia
• http/technologies/wordpress/plugins/metform.yaml by @ricardomaia
• http/vulnerabilities/hikvision/hikvision-js-files-upload.yaml by @Xc1Ym
• http/vulnerabilities/microsoft/office-webapps-ssrf.yaml by @dhiyaneshdk
• http/vulnerabilities/other/podcast-generator-ssrf.yaml by @ritikchaddha,@MrHarshvardhan
• javascript/default-logins/mssql-default-logins.yaml by @Ice3man543,@tarunKoyalwar
• javascript/default-logins/postgres-default-logins.yaml by @Ice3man
• javascript/default-logins/redis-default-logins.yaml by @tarunKoyalwar
• javascript/default-logins/ssh-default-logins.yaml by @tarunKoyalwar
• javascript/detection/mssql-detect.yaml by @Ice3man543,@tarunKoyalwar
• javascript/detection/ssh-auth-methods.yaml by @Ice3man543
• javascript/enumeration/ssh-password-auth.yaml by @princechaddha
• javascript/enumeration/ssh-server-enumeration.yaml by @Ice3man543,@tarunKoyalwar
• network/honeypot/adbhoney-honeypot-cnxn-detect.yaml by @UnaPibaGeek
• network/honeypot/adbhoney-honeypot-shell-detect.yaml by @UnaPibaGeek
• network/honeypot/conpot-siemens-honeypot-detect.yaml by @UnaPibaGeek
• network/honeypot/cowrie-ssh-honeypot-detect.yaml by @UnaPibaGeek
• network/honeypot/dionaea-ftp-honeypot-detect.yaml by @UnaPibaGeek
• network/honeypot/dionaea-mqtt-honeypot-detect.yaml by @UnaPibaGeek
• network/honeypot/dionaea-mysql-honeypot-detect.yaml by @UnaPibaGeek
• network/honeypot/dionaea-smb-honeypot-detect.yaml by @UnaPibaGeek
• network/honeypot/gaspot-honeypot-detect.yaml by @UnaPibaGeek
• network/honeypot/mailoney-honeypot-detect.yaml by @UnaPibaGeek
• network/honeypot/redis-honeypot-detect.yaml by @UnaPibaGeek

New Contributors

• @k0z4c made their first contribution in #8468
• @byt3bl33d3r made their first contribution in #8457
• @0xorOne made their first contribution in #8500
• @jzr made their first contribution in #8546
• @Xc1Ym made their first contribution in #8548
• @adilsoybali made their first contribution in #8540
• @rumble773 made their first contribution in #8572

Full Changelog: v9.6.8...v9.6.9

v9.6.8

🔥 Release Highlights 🔥

• CVE-2023-46747 (F5 BIG-IP - Unauthenticated RCE via AJP Smuggling)
• CVE-2023-37679 (NextGen Mirth Connect - Remote Code Execution)
• CVE-2023-45852 (Viessmann Vitogate 300 - Remote Code Execution)
• CVE-2023-4966 (Citrix Bleed - Leaking Session Tokens)

---

What's Changed

New Templates Added: 79 (CVE: 33)

• http/cves/2023/CVE-2023-46747.yaml by @iamnoooob,@rootxharsh,@pdresearch
• http/cves/2023/CVE-2023-45852.yaml by @iamnoooob,@rootxharsh,@pdresearch
• http/cves/2023/CVE-2023-37679.yaml by @iamnoooob,@rootxharsh,@pdresearch
• http/cves/2023/CVE-2023-4966.yaml by @dhiyaneshdk
• http/cves/2022/CVE-2022-36553.yaml by @HUTA0
• http/cves/2017/CVE-2017-18566.yaml by @luisfelipe146
• http/cves/2017/CVE-2017-18565.yaml by @luisfelipe146
• http/cves/2017/CVE-2017-18564.yaml by @luisfelipe146
• http/cves/2017/CVE-2017-18562.yaml by @luisfelipe146
• http/cves/2017/CVE-2017-18558.yaml by @luisfelipe146
• http/cves/2017/CVE-2017-18557.yaml by @luisfelipe146
• http/cves/2017/CVE-2017-18556.yaml by @luisfelipe146
• http/cves/2017/CVE-2017-18542.yaml by @luisfelipe146
• http/cves/2017/CVE-2017-18537.yaml by @luisfelipe146
• http/cves/2017/CVE-2017-18532.yaml by @luisfelipe146
• http/cves/2017/CVE-2017-18530.yaml by @luisfelipe146
• http/cves/2017/CVE-2017-18529.yaml by @luisfelipe146
• http/cves/2017/CVE-2017-18528.yaml by @luisfelipe146
• http/cves/2017/CVE-2017-18527.yaml by @luisfelipe146
• http/cves/2017/CVE-2017-18518.yaml by @luisfelipe146
• http/cves/2017/CVE-2017-18517.yaml by @luisfelipe146
• http/cves/2017/CVE-2017-18516.yaml by @luisfelipe146
• http/cves/2017/CVE-2017-18505.yaml by @luisfelipe146
• http/cves/2017/CVE-2017-18502.yaml by @luisfelipe146
• http/cves/2017/CVE-2017-18501.yaml by @luisfelipe146
• http/cves/2017/CVE-2017-18500.yaml by @luisfelipe146
• http/cves/2017/CVE-2017-18496.yaml by @luisfelipe146
• http/cves/2017/CVE-2017-18494.yaml by @luisfelipe146
• http/cves/2017/CVE-2017-18493.yaml by @luisfelipe146
• http/cves/2017/CVE-2017-18492.yaml by @luisfelipe146
• http/cves/2017/CVE-2017-18491.yaml by @luisfelipe146
• http/cves/2017/CVE-2017-18490.yaml by @luisfelipe146
• http/cves/2017/CVE-2017-18487.yaml by @luisfelipe146
• http/misconfiguration/tiny-file-manager-unauth.yaml by @ritikchaddha,@HUTA0
• http/misconfiguration/unauth-opache-control-panel.yaml by @pussycat0x
• http/vulnerabilities/backdoor/cisco-implant-detect.yaml by @dhiyaneshdk,@rxerium
• http/vulnerabilities/cisco/cisco-broadworks-log4j-rce.yaml by @shaikhyaser
• http/vulnerabilities/cisco/cisco-webex-log4j-rce.yaml by @shaikhyaser
• http/vulnerabilities/other/citrix-xenapp-log4j-rce.yaml by @shaikhyaser
• http/vulnerabilities/other/f-secure-policymanager-log4j-rce.yaml by @shaikhyaser
• http/vulnerabilities/other/flexnet-log4j-rce.yaml by @shaikhyaser
• http/vulnerabilities/other/fortiportal-log4j-rce.yaml by @shaikhyaser
• http/vulnerabilities/other/jitsi-meet-log4j-rce.yaml by @shaikhyaser
• http/vulnerabilities/other/livebos-file-read.yaml by @Yusakie
• http/vulnerabilities/other/logstash-log4j-rce.yaml by @shaikhyaser
• http/vulnerabilities/other/manage-engine-dc-log4j-rce.yaml by @shaikhyaser
• http/vulnerabilities/other/okta-log4j-rce.yaml by @shaikhyaser
• http/vulnerabilities/other/openshift-log4j-rce.yaml by @shaikhyaser
• http/vulnerabilities/other/papercut-log4j-rce.yaml by @shaikhyaser
• http/vulnerabilities/other/pega-log4j-rce.yaml by @shaikhyaser
• http/vulnerabilities/other/sonicwall-nsm-log4j-rce.yaml by @shaikhyaser
• http/vulnerabilities/other/splunk-enterprise-log4j-rce.yaml by @shaikhyaser
• http/vulnerabilities/other/symantec-sepm-log4j-rce.yaml by @shaikhyaser
• http/vulnerabilities/wordpress/blog-designer-pack-rce.yaml by @iamnoooob,@rootxharsh,@pdresearch
• http/vulnerabilities/wordpress/wp-kadence-blocks-rce.yaml by @theamanrawat
• http/exposed-panels/authelia-panel.yaml by @rxerium
• http/exposed-panels/automatisch-panel.yaml by @rxerium
• http/exposed-panels/changedetection-panel.yaml by @rxerium
• http/exposed-panels/chronos-panel.yaml by @righettod
• http/exposed-panels/homebridge-panel.yaml by @rxerium
• http/exposed-panels/immich-panel.yaml by @rxerium
• http/exposed-panels/memos-panel.yaml by @rxerium
• http/exposed-panels/opentouch-multimediaservices-panel.yaml by @righettod
• http/exposed-panels/rcdevs-webadm-panel.yaml by @righettod
• http/exposed-panels/regify-panel.yaml by @righettod
• http/exposed-panels/scribble-diffusion-panel.yaml by @rxerium
• http/exposed-panels/security-onion-panel.yaml by @rxerium
• http/exposed-panels/solarwinds-arm-panel.yaml by @bhutch
• http/exposed-panels/speedtest-panel.yaml by @rxerium
• http/exposed-panels/tautulli-panel.yaml by @rxerium
• http/exposed-panels/vinchin-panel.yaml by @pussycat0x
• http/exposed-panels/webtitan-cloud-panel.yaml by @ritikchaddha
• http/technologies/atlassian-connect-descriptor.yaml by @pussycat0x
• http/technologies/mappproxy-detect.yaml by @philippedelteil
• http/technologies/orbit-telephone-detect.yaml by @HeeresS
• http/token-spray/api-onyphe.yaml by @0xpugazh
• headless/technologies/js-libraries-detect.yaml by @adamparsons,@cbadke,@ChetGan,@ErikOwen,@jacalynli
• javascript/detection/oracle-tns-listner.yaml by @pussycat0x
• javascript/enumeration/smb-enum.yaml by @pussycat0x

New Contributors

• @shaikhyaser made their first contribution in #8419
• @rxerium made their first contribution in #8427

Full Changelog: v9.6.7...v9.6.8

v9.6.7

What's Changed

• Added template sign workflow + signed all the templates by @ehsandeep in #8423
• Added CVE-2023-5360.yaml by @theamanrawat in #8409

Full Changelog: v9.6.6...v9.6.7

v9.6.6

🔥 Highlight of this release:

✅ [servicenow-widget-misconfig] ServiceNow Widget-Simple-List - Misconfiguration (@dhiyaneshdk) 🔥
✅ [CVE-2023-37979] Ninja Forms < 3.6.26 - Cross-Site Scripting (@r3y3r53) [medium] 🔥
✅ [CVE-2021-25016] Chaty < 2.8.2 - Cross-Site Scripting (@luisfelipe146) [medium] 🔥
✅ [CVE-2020-6950] Eclipse Mojarra - Local File Read (@iamnoooob,@pdresearch) [medium] 🔥
✅ [CVE-2023-4451] Cockpit - Cross-Site Scripting (@iamnoooob,@pdresearch) [medium] 🔥
✅ [CVE-2023-3710] Honeywell PM43 Printers - Command Injection (@win3zz) [critical] 🔥
✅ [CVE-2023-3219] EventON Lite < 2.1.2 - Arbitrary File Download (@r3y3r53) [medium] 🔥

---

What's Changed

New Templates Added : 161

New CVEs Added:99

• http/cves/2022/CVE-2022-47075.yaml by @r3Y3r53
• http/cves/2022/CVE-2022-44957.yaml by @theamanrawat
• http/cves/2022/CVE-2022-45365.yaml by @theamanrawat
• http/cves/2022/CVE-2022-44291.yaml by @theamanrawat
• http/cves/2022/CVE-2022-44290.yaml by @theamanrawat
• http/cves/2023/CVE-2023-41538.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-40779.yaml by @r3Y3r53
• http/cves/2022/CVE-2022-40032.yaml by @r3Y3r53
• http/cves/2022/CVE-2022-40047.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-40208.yaml by @theamanrawat
• http/cves/2023/CVE-2023-39700.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-39110.yaml by @theamanrawat
• http/cves/2023/CVE-2023-39109.yaml by @theamanrawat
• http/cves/2023/CVE-2023-39108.yaml by @theamanrawat
• http/cves/2023/CVE-2023-37979.yaml by @r3Y3r53 🔥
• http/cves/2023/CVE-2023-37728.yaml by @technicaljunkie,@r3Y3r53
• http/cves/2022/CVE-2022-34093.yaml by @r3Y3r53
• http/cves/2022/CVE-2022-34094.yaml by @r3Y3r53
• http/cves/2022/CVE-2022-39048.yaml by @theamanrawat
• http/cves/2023/CVE-2023-36306.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-34756.yaml by @theamanrawat
• http/cves/2023/CVE-2023-34755.yaml by @theamanrawat
• http/cves/2023/CVE-2023-34753.yaml by @theamanrawat
• http/cves/2023/CVE-2023-34752.yaml by @theamanrawat
• http/cves/2023/CVE-2023-34751.yaml by @theamanrawat
• http/cves/2023/CVE-2023-33584.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-29439.yaml by @theamanrawat
• http/cves/2021/CVE-2021-29006.yaml by @r3Y3r53
• http/cves/2021/CVE-2021-25079.yaml by @r3Y3r53
• http/cves/2021/CVE-2021-25016.yaml by @luisfelipe146 🔥
• http/cves/2021/CVE-2021-24979.yaml by @r3Y3r53
• http/cves/2021/CVE-2021-24915.yaml by @r3Y3r53
• http/cves/2021/CVE-2021-24791.yaml by @r3Y3r53
• http/cves/2021/CVE-2021-24627.yaml by @theamanrawat
• http/cves/2021/CVE-2021-24286.yaml by @r3Y3r53
• http/cves/2021/CVE-2021-24215.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-27922.yaml by @r3Y3r53
• http/cves/2022/CVE-2022-25148.yaml by @theamanrawat
• http/cves/2022/CVE-2022-25149.yaml by @theamanrawat
• http/cves/2023/CVE-2023-5244.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-4974.yaml by @theamanrawat
• http/cves/2023/CVE-2023-4547.yaml by @theamanrawat
• http/cves/2023/CVE-2023-4451.yaml by @iamnoooob,@pdresearch 🔥
• http/cves/2023/CVE-2023-4168.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-4148.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-4116.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-4115.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-4114.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-4113.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-4112.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-4111.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-4110.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-3849.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-3848.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-3847.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-3846.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-3845.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-3844.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-3843.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-3710.yaml by @win3zz 🔥
• http/cves/2023/CVE-2023-3219.yaml by @r3Y3r53 🔥
• http/cves/2023/CVE-2023-2779.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-2009.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-1880.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-1780.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-1408.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-1263.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-0947.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-0900.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-0777.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-0602.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-0600.yaml by @r3Y3r53
• http/cves/2023/CVE-2023-0334.yaml by @r3Y3r53
• http/cves/2022/CVE-2022-0228.yaml by @r3Y3r53
• http/cves/2022/CVE-2022-0533.yaml by @r3Y3r53
• http/cves/2022/CVE-2022-0597.yaml by @Farish
• http/cves/2022/CVE-2022-0651.yaml by @theamanrawat
• http/cves/2022/CVE-2022-0658.yaml by @theamanrawat
• http/cves/2022/CVE-2022-0787.yaml by @theamanrawat
• http/cves/2022/CVE-2022-0814.yaml by @r3Y3r53
• http/cves/2022/CVE-2022-0899.yaml by @r3Y3r53
• http/cves/2022/CVE-2022-2174.yaml by @r3Y3r53
• http/cves/2022/CVE-2022-2535.yaml by @r3Y3r53
• http/cves/2022/CVE-2022-3142.yaml by @r3Y3r53
• http/cves/2022/CVE-2022-3242.yaml by @r3Y3r53
• http/cves/2022/CVE-2022-4049.yaml by @theamanrawat
• http/cves/2022/CVE-2022-4059.yaml by @r3Y3r53
• http/cves/2022/CVE-2022-4305.yaml by @r3Y3r53
• http/cves/2021/CVE-2021-35323.yaml by @r3Y3r53
• http/cves/2021/CVE-2021-41749.yaml by @iamnoooob,@ritikchaddha
• http/cves/2020/CVE-2020-12256.yaml by @r3Y3r53
• http/cves/2020/CVE-2020-12259.yaml by @r3Y3r53
• http/cves/2020/CVE-2020-13638.yaml by @theamanrawat
• http/cves/2020/CVE-2020-13851.yaml by @theamanrawat
• http/cves/2020/CVE-2020-6950.yaml by @iamnoooob,@pdresearch 🔥
• http/cves/2020/CVE-2020-8615.yaml by @r3Y3r53
• http/cves/2019/CVE-2019-15829.yaml by @r3Y3r53
• http/cves/2018/CVE-2018-7282.yaml by @theamanrawat
• http/cves/2015/CVE-2015-20067.yaml by @r3Y3r53
• http/vulnerabilities/joomla/joomla-com-booking-component.yaml by @r3Y3r53
• http/vulnerabilities/joomla/joomla-iproperty-real-estate-xss.yaml by @r3Y3r53
• http/vulnerabilities/joomla/joomla-joombri-careers-xss.yaml by @r3Y3r53
• http/vulnerabilities/joomla/joomla-jvtwitter-xss.yaml by @r3Y3r53
• http/vulnerabilities/joomla/joomla-marvikshop-sqli.yaml by @r3Y3r53
• http/vulnerabilities/joomla/joomla-marvikshop-xss.yaml by @r3Y3r53
• http/vulnerabilities/joomla/joomla-solidres-xss.yaml by @r3Y3r53
• http/vulnerabilities/other/applezeed-sqli.yaml by @r3Y3r53
• http/vulnerabilities/other/beyond-trust-xss.yaml by @r3Y3r53
• http/vulnerabilities/other/csz-cms-sqli.yaml by @r3Y3r53
• http/vulnerabilities/other/doorgets-info-disclosure.yaml by @r3Y3r53
• http/vulnerabilities/other/ep-web-cms-xss.yaml by @r3Y3r53
• http/vulnerabilities/other/erensoft-sqli.yaml by @r3Y3r53
• http/vulnerabilities/other/groomify-sqli.yaml by @theamanrawat
• http/vulnerabilities/other/gz-forum-script-xss.yaml by @r3Y3r53
• http/vulnerabilities/other/indonasia-toko-cms-sql.yaml by @r3Y3r53
• http/vulnerabilities/other/joomla-jlex-review-xss.yaml by @r3Y3r53
• http/vulnerabilities/other/joomla-jmarket-xss.yaml by @r3Y3r53
• http/vulnerabilities/other/khodrochi-cms-xss.yaml by @r3Y3r53
• http/vulnerabilities/other/kingsoft-vgm-lfi.yaml by @abbas.heybati
• http/vulnerabilities/other/lokomedia-cms-lfi.yaml by @r3Y3r53
• http/vulnerabilities/other/news-script-xss.yaml by @r3Y3r53
• http/vulnerabilities/other/office-suite-xss.yaml by @r3Y3r53
• http/vulnerabilities/other/ozeki-10-sms-gateway.yaml by @r3Y3r53
• http/vulnerabilities/other/phuket-cms-sqli.yaml by @r3Y3r53
• http/vulnerabilities/other/phuket-cms-xss.yaml by @r3Y3r53
• http/vulnerabilities/other/pmb-sqli.yaml by @r3Y3r53
• http/vulnerabilities/other/rentequip-xss.yaml by @r3Y3r53
• http/vulnerabilities/other/shoowbiz-xss.yaml by @r3Y3r53
• http/vulnerabilities/other/sound4-impact-auth-bypass.yaml by @r3Y3r53
• http/vulnerabilities/other/sound4-impact-password-auth-bypass.yaml by @r3Y3r53
• http/vulnerabilities/other/stackposts-sqli.yaml by @r3Y3r53
• http/vulnerabilities/other/taiwanese-travel-lfi.yaml by @r3Y3r53
• http/vulnerabilities/other/talroo-jobs-xss.yaml by @r3Y3r53
• http/vulnerabilities/other/webigniter-xss.yaml by @theamanrawat
• http/vulnerabilities/wordpress/knr-widget-xss.yaml by @theamanrawat
• http/vulnerabilities/wordpress/photoblocks-grid-gallery-xss.yaml by @r3Y3r53
• http/vulnerabilities/wordpress/wp-adivaha-sqli.yaml by @theamanrawat
• http/vulnerabilities/wordpress/wp-adivaha-xss.yaml by @r3Y3r53
• http/vulnerabilities/wordpress/wp-ellipsis-xss.yaml by @r3Y3r53
• http/vulnerabilities/wordpress/wp-gallery-file-upload.yaml by @r3Y3r53
• http/vulnerabilities/wordpress/wp-googlemp3-lfi.yaml by @theamanrawat
• http/vulnerabilities/wordpress/wp-mega-theme.yaml by @r3Y3r53
• http/vulnerabilities/wordpress/wp-portrait-archiv-xss.yaml by @r3Y3r53
• http/vulnerabilities/wordpress/wp-qwiz-online-xss.yaml by @r3Y3r53
• http/vulnerabilities/wordpress/wp-reality-estate-theme.yaml by @r3Y3r53
• http/vulnerabilities/wordpress/wp-smart-manager-sqli.yaml by @r3Y3r53
• http/vulnerabilities/wordpress/wp-social-warfare-rce.yaml by @theamanrawat
• http/vulnerabilities/wordpress/wp-statistics-sqli.yaml by @r3Y3r53
• http/vulnerabilities/wordpress/wp-superstorefinder-misconfig.yaml by @r3Y3r53
• http/vulnerabilities/wordpress/wp-upward-theme-redirect.yaml by @r3Y3r53
• http/misconfiguration/servicenow-widget-misconfig.yaml by @dhiyaneshdk
• http/default-logins/batflat/batflat-default-login.yaml by @r3Y3r53
• http/default-logins/eurotel/etl3100-default-login.yaml by @r3Y3r53
• http/default-logins/franklin-fueling-default-login.yaml by @r3Y3r53
• http/default-logins/rconfig-default-login.yaml by @theamanrawat
• http/default-logins/timekeeper/timekeeper-default-login.yaml by @theamanrawat
• http/default-logins/wazuh-default-login.yaml by @theamanrawat
• http/exposures/logs/redv-super-logs.yaml by @r3Y3r53
• http/exposed-panels/sphinxonline-panel.yaml by @righettod
• http/exposed...