Skip to content

Commit

Permalink
20240714
Browse files Browse the repository at this point in the history
  • Loading branch information
@actions-user
actions-user committed Jul 14, 2024
1 parent 55f3235 commit ba213b9
Show file tree
Hide file tree
Showing 847 changed files with 417,483 additions and 4,554 deletions.
2 changes: 1 addition & 1 deletion date.txt
View file
Original file line number Diff line number Diff line change
@@ -1 +1 @@
20240713
20240714
42 changes: 42 additions & 0 deletions poc.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3395,6 +3395,7 @@
./poc/auth/jwt-detection.yaml
./poc/auth/jwt-token-8408.yaml
./poc/auth/jwt-token-8409.yaml
./poc/auth/jwt-token-8410.yaml
./poc/auth/jwt-token.yaml
./poc/auth/k8s-apiserver-unauthorized.yaml
./poc/auth/k8s-etcd-v3-unauthorized.yaml
Expand Down Expand Up @@ -4661,6 +4662,7 @@
./poc/auth/shopify-custom-token-11860.yaml
./poc/auth/shopify-custom-token.yaml
./poc/auth/shopify-legacy-private-app-token.yaml
./poc/auth/shopify-private-token(1).yaml
./poc/auth/shopify-private-token-10199.yaml
./poc/auth/shopify-private-token-11861.yaml
./poc/auth/shopify-private-token.yaml
Expand Down Expand Up @@ -39906,6 +39908,7 @@
./poc/cve/CVE-2024-5892-e23cd3e0ccd8a12c9764022d7c13bd45.yaml
./poc/cve/CVE-2024-5892.yaml
./poc/cve/CVE-2024-5902-26400ffd1e62768e7516b9e57829cd43.yaml
./poc/cve/CVE-2024-5902.yaml
./poc/cve/CVE-2024-5922-b984a1c54c16adf6618d5c2f67fc79a5.yaml
./poc/cve/CVE-2024-5922.yaml
./poc/cve/CVE-2024-5925-c47e7d583b73a1ae6d220d42e58e09d4.yaml
Expand Down Expand Up @@ -40091,6 +40094,7 @@
./poc/cve/CVE-2024-6447-1130432e15f90ec4bd6402483af13599.yaml
./poc/cve/CVE-2024-6447.yaml
./poc/cve/CVE-2024-6465-d52c13f1c1af4670bbeacda953709f34.yaml
./poc/cve/CVE-2024-6465.yaml
./poc/cve/CVE-2024-6495-7f7d4d9be9d13fb4035edaa3d3829c0a.yaml
./poc/cve/CVE-2024-6495.yaml
./poc/cve/CVE-2024-6550-879ce5421f391ab061ab24b1a7b2f495.yaml
Expand All @@ -40102,6 +40106,7 @@
./poc/cve/CVE-2024-6556-e46c1d6b4166141caff68ead52ec4cf7.yaml
./poc/cve/CVE-2024-6556.yaml
./poc/cve/CVE-2024-6574-68cd28df3333bf684373d07f58ab3cc5.yaml
./poc/cve/CVE-2024-6574.yaml
./poc/cve/CVE-2024-6588-af347ddbbf742df5b2786c5ede788153.yaml
./poc/cve/CVE-2024-6588.yaml
./poc/cve/CVE-2024-6624-3e8f54a8f5a599fccb32276f2c459503.yaml
Expand Down Expand Up @@ -40638,6 +40643,7 @@
./poc/cve/cve-2010-1532-1710.yaml
./poc/cve/cve-2010-1532-1711.yaml
./poc/cve/cve-2010-1532-1712.yaml
./poc/cve/cve-2010-1532.yaml
./poc/cve/cve-2010-1533-1713.yaml
./poc/cve/cve-2010-1533-1714.yaml
./poc/cve/cve-2010-1533-1715.yaml
Expand All @@ -40650,6 +40656,7 @@
./poc/cve/cve-2010-1534-1721.yaml
./poc/cve/cve-2010-1534-1722.yaml
./poc/cve/cve-2010-1534-1723.yaml
./poc/cve/cve-2010-1534.yaml
./poc/cve/cve-2010-1535-1724.yaml
./poc/cve/cve-2010-1535-1725.yaml
./poc/cve/cve-2010-1535-1726.yaml
Expand Down Expand Up @@ -42152,6 +42159,7 @@
./poc/cve/cve-2017-14849-2943.yaml
./poc/cve/cve-2017-14849-2944.yaml
./poc/cve/cve-2017-14849-2945.yaml
./poc/cve/cve-2017-14849.yaml
./poc/cve/cve-2017-15287-2946.yaml
./poc/cve/cve-2017-15287-2947.yaml
./poc/cve/cve-2017-15287.yaml
Expand Down Expand Up @@ -42504,6 +42512,7 @@
./poc/cve/cve-2018-10201-3165.yaml
./poc/cve/cve-2018-10201-3166.yaml
./poc/cve/cve-2018-10201-3167.yaml
./poc/cve/cve-2018-10201.yaml
./poc/cve/cve-2018-10230.yaml
./poc/cve/cve-2018-10562-3168.yaml
./poc/cve/cve-2018-10562-3169.yaml
Expand Down Expand Up @@ -43888,6 +43897,7 @@
./poc/cve/cve-2019-8451-4263.yaml
./poc/cve/cve-2019-8451-4264.yaml
./poc/cve/cve-2019-8451-4265.yaml
./poc/cve/cve-2019-8451.yaml
./poc/cve/cve-2019-8903-4266.yaml
./poc/cve/cve-2019-8903-4267.yaml
./poc/cve/cve-2019-8903-4268.yaml
Expand Down Expand Up @@ -44343,6 +44353,7 @@
./poc/cve/cve-2020-16139-4634.yaml
./poc/cve/cve-2020-16139-4635.yaml
./poc/cve/cve-2020-16139-4636.yaml
./poc/cve/cve-2020-16139.yaml
./poc/cve/cve-2020-16270-4637.yaml
./poc/cve/cve-2020-16270-4638.yaml
./poc/cve/cve-2020-16270-4639.yaml
Expand Down Expand Up @@ -44525,6 +44536,7 @@
./poc/cve/cve-2020-23517-4776.yaml
./poc/cve/cve-2020-23517-4777.yaml
./poc/cve/cve-2020-23517-4778.yaml
./poc/cve/cve-2020-23517.yaml
./poc/cve/cve-2020-23575-4779.yaml
./poc/cve/cve-2020-23575-4780.yaml
./poc/cve/cve-2020-23575-4781.yaml
Expand Down Expand Up @@ -44711,6 +44723,7 @@
./poc/cve/cve-2020-27191-4940.yaml
./poc/cve/cve-2020-27191-4941.yaml
./poc/cve/cve-2020-27191-4942.yaml
./poc/cve/cve-2020-27191.yaml
./poc/cve/cve-2020-27361-4943.yaml
./poc/cve/cve-2020-27361-4944.yaml
./poc/cve/cve-2020-27361-4945.yaml
Expand Down Expand Up @@ -45163,6 +45176,7 @@
./poc/cve/cve-2020-8209-5313.yaml
./poc/cve/cve-2020-8209-5314.yaml
./poc/cve/cve-2020-8209-5315.yaml
./poc/cve/cve-2020-8209.yaml
./poc/cve/cve-2020-8451(1).yaml
./poc/cve/cve-2020-8497-5316.yaml
./poc/cve/cve-2020-8497-5317.yaml
Expand Down Expand Up @@ -45290,6 +45304,7 @@
./poc/cve/cve-2020-9490-5415.yaml
./poc/cve/cve-2020-9490-5416.yaml
./poc/cve/cve-2020-9490-5417.yaml
./poc/cve/cve-2020-9490.yaml
./poc/cve/cve-2020-9496-5418.yaml
./poc/cve/cve-2020-9496-5419.yaml
./poc/cve/cve-2020-9496-5420.yaml
Expand Down Expand Up @@ -45417,6 +45432,7 @@
./poc/cve/cve-2021-21389-5512.yaml
./poc/cve/cve-2021-21389-5513.yaml
./poc/cve/cve-2021-21389-5514.yaml
./poc/cve/cve-2021-21389.yaml
./poc/cve/cve-2021-21402-1(1).yaml
./poc/cve/cve-2021-21402-2(1).yaml
./poc/cve/cve-2021-21402-5515.yaml
Expand Down Expand Up @@ -46137,6 +46153,7 @@
./poc/cve/cve-2021-3019-6045.yaml
./poc/cve/cve-2021-3019-6046.yaml
./poc/cve/cve-2021-3019-6047.yaml
./poc/cve/cve-2021-3019.yaml
./poc/cve/cve-2021-30213-6048.yaml
./poc/cve/cve-2021-30213-6049.yaml
./poc/cve/cve-2021-30213.yaml
Expand Down Expand Up @@ -46308,6 +46325,7 @@
./poc/cve/cve-2021-33564-6184.yaml
./poc/cve/cve-2021-33564-6185.yaml
./poc/cve/cve-2021-33564-6186.yaml
./poc/cve/cve-2021-33564.yaml
./poc/cve/cve-2021-3374-6187.yaml
./poc/cve/cve-2021-3374-6188.yaml
./poc/cve/cve-2021-3374-6189.yaml
Expand Down Expand Up @@ -46359,6 +46377,7 @@
./poc/cve/cve-2021-34473-6227.yaml
./poc/cve/cve-2021-34473-6228.yaml
./poc/cve/cve-2021-34473-6229.yaml
./poc/cve/cve-2021-34473.yaml
./poc/cve/cve-2021-34621-6230.yaml
./poc/cve/cve-2021-34621-6231.yaml
./poc/cve/cve-2021-34621-6232.yaml
Expand Down Expand Up @@ -46446,6 +46465,7 @@
./poc/cve/cve-2021-37573.yaml
./poc/cve/cve-2021-37580-6291.yaml
./poc/cve/cve-2021-37580-6292.yaml
./poc/cve/cve-2021-37580.yaml
./poc/cve/cve-2021-37589(1).yaml
./poc/cve/cve-2021-37589.yaml
./poc/cve/cve-2021-37704-2(1).yaml
Expand Down Expand Up @@ -46605,6 +46625,7 @@
./poc/cve/cve-2021-40978-6403.yaml
./poc/cve/cve-2021-40978-6404.yaml
./poc/cve/cve-2021-40978-6405.yaml
./poc/cve/cve-2021-40978.yaml
./poc/cve/cve-2021-41174-6406.yaml
./poc/cve/cve-2021-41174-6407.yaml
./poc/cve/cve-2021-41174-6408.yaml
Expand Down Expand Up @@ -46887,6 +46908,7 @@
./poc/cve/cve-2022-0149.yaml
./poc/cve/cve-2022-0165(1).yaml
./poc/cve/cve-2022-0165-6609.yaml
./poc/cve/cve-2022-0165.yaml
./poc/cve/cve-2022-0189-6610.yaml
./poc/cve/cve-2022-0189-6611.yaml
./poc/cve/cve-2022-0189.yaml
Expand Down Expand Up @@ -47000,6 +47022,7 @@
./poc/cve/cve-2022-1598.yaml
./poc/cve/cve-2022-1609(1).yaml
./poc/cve/cve-2022-1609-6655.yaml
./poc/cve/cve-2022-1609.yaml
./poc/cve/cve-2022-1713(1).yaml
./poc/cve/cve-2022-1713-6656.yaml
./poc/cve/cve-2022-1713.yaml
Expand Down Expand Up @@ -47165,6 +47188,7 @@
./poc/cve/cve-2022-27849-6741.yaml
./poc/cve/cve-2022-27849.yaml
./poc/cve/cve-2022-27927(1).yaml
./poc/cve/cve-2022-27927.yaml
./poc/cve/cve-2022-28079(1).yaml
./poc/cve/cve-2022-28079-6742.yaml
./poc/cve/cve-2022-28079.yaml
Expand Down Expand Up @@ -47217,11 +47241,13 @@
./poc/cve/cve-2022-31268(1).yaml
./poc/cve/cve-2022-31268-6756.yaml
./poc/cve/cve-2022-31268-6757.yaml
./poc/cve/cve-2022-31268.yaml
./poc/cve/cve-2022-31373(1).yaml
./poc/cve/cve-2022-31373.yaml
./poc/cve/cve-2022-31793(1).yaml
./poc/cve/cve-2022-31793.yaml
./poc/cve/cve-2022-32007(1).yaml
./poc/cve/cve-2022-32007.yaml
./poc/cve/cve-2022-32015(1).yaml
./poc/cve/cve-2022-32015.yaml
./poc/cve/cve-2022-32018(1).yaml
Expand Down Expand Up @@ -47298,6 +47324,7 @@
./poc/cve/exchange-cve-2021-26855-ssrf.yaml
./poc/cve/exchange-cve-2021-41349-xss.yaml
./poc/cve/exploit-CVE-2022-1388.yaml
./poc/cve/exploit-cve-2022-1388.yaml
./poc/cve/f5-cve-2021-22986.yaml
./poc/cve/f5-tmui-cve-2020-5902-rce.yaml
./poc/cve/flexpaper-cve-2018-11686.yaml
Expand All @@ -47315,6 +47342,7 @@
./poc/cve/gocd-cve-2021-43287.yaml
./poc/cve/gocd-cve-2021-43287.yml
./poc/cve/gradio-CVE-2024-1183.yaml
./poc/cve/gradio-CVE-2024-1561.yaml
./poc/cve/gradio-CVE-2024-1727.yaml
./poc/cve/gradio-CVE-2024-1728.yaml
./poc/cve/harbor-cve-2019-16097.yaml
Expand Down Expand Up @@ -53913,6 +53941,7 @@
./poc/injection/simple-crm-sql-injection.yaml
./poc/injection/site-map-sql-injection.yaml
./poc/injection/sitemap-sql-injection.yaml
./poc/injection/sql-injection-vulnerability.yaml
./poc/injection/sql-injection.yaml
./poc/injection/ssrf-injection.yaml
./poc/injection/stealth-media-ltd-sql-injection.yaml
Expand Down Expand Up @@ -54396,6 +54425,7 @@
./poc/java/tomcat-manager-default-creds.yaml
./poc/java/tomcat-manager-default.yaml
./poc/java/tomcat-manager-pathnormalization-1.yaml
./poc/java/tomcat-manager-pathnormalization-10796.yaml
./poc/java/tomcat-manager-pathnormalization-10797.yaml
./poc/java/tomcat-manager-pathnormalization-2.yaml
./poc/java/tomcat-manager-pathnormalization.yaml
Expand Down Expand Up @@ -56719,6 +56749,7 @@
./poc/microsoft/kevinlab-bems-backdoor.yaml
./poc/microsoft/kevinlab-bems-sqli-8457.yaml
./poc/microsoft/kevinlab-bems-sqli-8458.yaml
./poc/microsoft/kevinlab-bems-sqli-8459.yaml
./poc/microsoft/kevinlab-bems-sqli-8460.yaml
./poc/microsoft/kevinlab-bems-sqli.yaml
./poc/microsoft/kevinlab-hems-backdoor-8463.yaml
Expand Down Expand Up @@ -58302,6 +58333,7 @@
./poc/open_redirect/open-redirect-generic.yaml
./poc/open_redirect/open-redirect-host-slash.yaml
./poc/open_redirect/open-redirect-plus.yaml
./poc/open_redirect/open-redirect-vulnerability.yaml
./poc/open_redirect/open-redirect.yaml
./poc/open_redirect/open-redirect2.yaml
./poc/open_redirect/open-redirection-vuln-params.yaml
Expand Down Expand Up @@ -69824,6 +69856,7 @@
./poc/other/file-manager-plugin.yaml
./poc/other/file-manager.yaml
./poc/other/file-scheme-7467.yaml
./poc/other/file-scheme-7468.yaml
./poc/other/file-scheme-7469.yaml
./poc/other/file-scheme.yaml
./poc/other/filebird-61cf2f1a37771fa3cda817355d5faa22.yaml
Expand Down Expand Up @@ -74388,6 +74421,7 @@
./poc/other/lanyeye.yaml
./poc/other/laobanmail-visualhost.yaml
./poc/other/laposta-d0d3b2bf89f655b3c75d90e4e0cae447.yaml
./poc/other/laposta.yaml
./poc/other/larsens-calender-d1343321d9928fb89cb93902e6359f16.yaml
./poc/other/larsens-calender.yaml
./poc/other/last-viewed-posts-76a01c7cbfd74837b41315d75c10c4cc.yaml
Expand Down Expand Up @@ -95258,6 +95292,7 @@
./poc/shopify/shopify-custom-token-11860.yaml
./poc/shopify/shopify-custom-token.yaml
./poc/shopify/shopify-legacy-private-app-token.yaml
./poc/shopify/shopify-private-token(1).yaml
./poc/shopify/shopify-private-token-10199.yaml
./poc/shopify/shopify-private-token-11861.yaml
./poc/shopify/shopify-private-token.yaml
Expand Down Expand Up @@ -100503,6 +100538,7 @@
./poc/sql/keron-aio-moffice-sqli.yaml
./poc/sql/kevinlab-bems-sqli-8457.yaml
./poc/sql/kevinlab-bems-sqli-8458.yaml
./poc/sql/kevinlab-bems-sqli-8459.yaml
./poc/sql/kevinlab-bems-sqli-8460.yaml
./poc/sql/kevinlab-bems-sqli.yaml
./poc/sql/keyring-277e8db0f83e2ead4ec7d2162ead5590.yaml
Expand Down Expand Up @@ -101773,6 +101809,7 @@
./poc/sql/sql-dump-8.yaml
./poc/sql/sql-dump-9.yaml
./poc/sql/sql-dump.yaml
./poc/sql/sql-injection-vulnerability.yaml
./poc/sql/sql-injection.yaml
./poc/sql/sql-monitor-10505.yaml
./poc/sql/sql-monitor-10506.yaml
Expand Down Expand Up @@ -103697,6 +103734,7 @@
./poc/sql_injection/keron-aio-moffice-sqli.yaml
./poc/sql_injection/kevinlab-bems-sqli-8457.yaml
./poc/sql_injection/kevinlab-bems-sqli-8458.yaml
./poc/sql_injection/kevinlab-bems-sqli-8459.yaml
./poc/sql_injection/kevinlab-bems-sqli-8460.yaml
./poc/sql_injection/kevinlab-bems-sqli.yaml
./poc/sql_injection/kingdee-sqli.yaml
Expand Down Expand Up @@ -103871,6 +103909,7 @@
./poc/sql_injection/sql-dump-8.yaml
./poc/sql_injection/sql-dump-9.yaml
./poc/sql_injection/sql-dump.yaml
./poc/sql_injection/sql-injection-vulnerability.yaml
./poc/sql_injection/sql-injection.yaml
./poc/sql_injection/sql-monitor-10505.yaml
./poc/sql_injection/sql-monitor-10506.yaml
Expand Down Expand Up @@ -108828,6 +108867,7 @@
./poc/wordpress/wordpress-directory-listing-11262.yaml
./poc/wordpress/wordpress-directory-listing-11263.yaml
./poc/wordpress/wordpress-directory-listing-11264.yaml
./poc/wordpress/wordpress-directory-listing-11265.yaml
./poc/wordpress/wordpress-directory-listing-11266.yaml
./poc/wordpress/wordpress-directory-listing-2.yaml
./poc/wordpress/wordpress-directory-listing-3.yaml
Expand Down Expand Up @@ -109215,6 +109255,7 @@
./poc/wordpress/wordpress-workflow (copy 1).yaml
./poc/wordpress/wordpress-workflow-11363.yaml
./poc/wordpress/wordpress-workflow-11364.yaml
./poc/wordpress/wordpress-workflow-11365.yaml
./poc/wordpress/wordpress-workflow-11366.yaml
./poc/wordpress/wordpress-workflow.yaml
./poc/wordpress/wordpress-wp-config-exposure.yml
Expand Down Expand Up @@ -114899,6 +114940,7 @@
./poc/xss/xss-path.yaml
./poc/xss/xss-prober.yaml
./poc/xss/xss-rails-post.yaml
./poc/xss/xss-reflected-vulnerability.yaml
./poc/xss/xss-reflected.yaml
./poc/xss/xss-serialize-javascript.yaml
./poc/xss/xss-stored.yaml
Expand Down
11 changes: 6 additions & 5 deletions poc/airflow/unauthenticated-airflow-10884.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,20 +4,21 @@ info:
author: dhiyaneshDK
severity: high
tags: apache,airflow,unauth
metadata:
shodan-query: title:"Airflow - DAGs"
requests:
- method: GET
path:
- "{{BaseURL}}"
- "{{BaseURL}}/admin/"
stop-at-first-match: true
matchers-condition: and
matchers:
- type: word
part: body
words:
- "Content-Type: text/html"
part: header
- type: word
words:
- "<title>Airflow - DAGs</title>"
part: body
condition: and
- type: status
status:
- 200
7 changes: 5 additions & 2 deletions poc/apache/default-apache-test-page-6818.yaml
View file
Original file line number Diff line number Diff line change
@@ -1,15 +1,18 @@
id: default-apache-test-page

info:
name: Apache HTTP Server Test Page
author: dhiyaneshDk
severity: info
metadata:
shodan-query: http.title:"Apache HTTP Server Test Page powered by CentOS"
reference:
- https://www.shodan.io/search?query=http.title%3A%22Apache+HTTP+Server+Test+Page+powered+by+CentOS%22
tags: tech,apache

requests:
- method: GET
path:
- '{{BaseURL}}'

matchers:
- type: word
words:
Expand Down
3 changes: 1 addition & 2 deletions poc/apache/default-apache2-ubuntu-page-6810.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,9 +4,8 @@ info:
name: Apache2 Ubuntu Default Page
author: dhiyaneshDk
severity: info
reference:
- https://www.shodan.io/search?query=http.title%3A%22Apache2+Ubuntu+Default+Page%22
tags: tech,apache
reference: https://www.shodan.io/search?query=http.title%3A%22Apache2+Ubuntu+Default+Page%22

requests:
- method: GET
Expand Down
Loading

0 comments on commit ba213b9

Please sign in to comment.