Changelog

Templates v8.3.4 - 10 June 2021

Newly added templates (25)

• cves/2021/CVE-2021-24285.yaml by @shreyapohekar
• cves/2021/CVE-2021-24316.yaml by @Akokonunes
• cves/2020/CVE-2020-36289.yaml by @DhiyaneshGeek
• cves/2020/CVE-2020-6308.yaml by @Mad-robot
• cves/2019/CVE-2019-2767.yaml by @Mad-robot
• cves/2019/CVE-2019-2616.yaml by pdteam
• cves/2017/CVE-2017-9140.yaml by @DhiyaneshGeek
• vulnerabilities/other/interlib-fileread.yaml by @pikpikcu
• vulnerabilities/wordpress/wp-mailchimp-log-exposure.yaml by @AashiqRamachandran
• vulnerabilities/wordpress/wp-popup-listing.yaml by @AashiqRamachandran
• miscellaneous/apple-app-site-association.yaml by @DhiyaneshGeek
• miscellaneous/email-extractor.yaml by @DhiyaneshGeek
• misconfiguration/artifactory-anonymous-deploy.yaml by @DhiyaneshGeek
• misconfiguration/exposed-jquery-file-upload.yaml by @DhiyaneshGeek
• misconfiguration/private-key-exposure.yaml by @AashiqRamachandran
• misconfiguration/sap/sap-netweaver-info-leak.yaml by pdteam
• misconfiguration/iis-internal-ip-disclosure.yaml by @WillD96
• exposed-panels/luci-login-detection.yaml by @AashiqRamachandran
• exposures/configs/zend-config-file.yaml by pdteam
• exposures/files/shellscripts.yaml by @DhiyaneshGeek
• network/sap-router-info-leak.yaml by pdteam
• network/sap-router.yaml by pdteam
• technologies/firebase-urls.yaml by @DhiyaneshGeek
• technologies/sap-netweaver-webgui.yaml by pdteam
• iot/epson-wf-series.yaml by @AashiqRamachandran

Templates v8.3.3 - 4 June 2021

Newly added templates (11)

• cves/2020/CVE-2020-11978.yaml by pdteam
• cnvd/CNVD-2021-30167.yaml by @pikpikcu
• default-logins/apache/airflow-default-credentials.yaml by pdteam
• vulnerabilities/other/odoo-cms-redirect.yaml by @Akokonunes
• exposures/configs/detect-drone-config.yaml by @geeknik
• misconfiguration/airflow/airflow-debug.yaml by pdteam
• misconfiguration/alibaba-mongoshake-unauth.yaml by @pikpikcu
• exposed-panels/airflow-panel.yaml by pdteam
• exposed-panels/dotcms-admin-panel.yaml by @impramodsargar
• technologies/airflow-detect.yaml by pdteam
• workflows/airflow-workflow.yaml by pdteam

Templates v8.3.2 - 1 June 2021

Newly added templates (41)

• cves/2021/CVE-2021-21985.yaml by @dorkerdevil
• cves/2017/CVE-2017-14535.yaml by @pikpikcu
• cves/2017/CVE-2017-3528.yaml by @Akokonunes
• vulnerabilities/other/blue-ocean-excellence-lfi.yaml by @pikpikcu
• vulnerabilities/other/hjtcloud-arbitrary-file-read.yaml by @pikpikcu
• vulnerabilities/other/hjtcloud-rest-arbitrary-file-read.yaml by @pikpikcu
• vulnerabilities/other/ns-asg-file-read.yaml by @pikpikcu
• vulnerabilities/wordpress/wordpress-db-repair.yaml by @aldo-moreno-leon
• vulnerabilities/wordpress/wp-plugin-statistics-sqli.yaml by @Udyz
• exposures/configs/exposed-vscode.yaml by @AashiqRamachandran
• exposures/configs/hikvision-info-leak.yaml by @pikpikcu
• default-logins/arl/arl-default-password.yaml by @pikpikcu
• default-logins/szhe/szhe-default-password.yaml by @pikpikcu
• dns/dns-waf-detect.yaml by @1u4nx
• exposed-panels/clave-login-panel.yaml by @linfatall
• exposed-panels/ems-login-panel.yaml by @linfatall
• exposed-panels/lancom-router-panel.yaml by @linfatall
• exposed-panels/openerp-database.yaml by @impramodsargar
• exposed-panels/servicedesk-login-panel.yaml by @AashiqRamachandran
• exposed-panels/synnefo-admin-panel.yaml by @impramodsargar
• exposed-panels/zenario-login-panel.yaml by @linfatall
• technologies/default-apache-test-page.yaml by @DhiyaneshGeek
• technologies/default-apache2-page.yaml by @DhiyaneshGeek
• technologies/default-apache2-ubuntu-page.yaml by @DhiyaneshGeek
• technologies/default-asp.net-page.yaml by @DhiyaneshGeek
• technologies/default-centos-test-page.yaml by @DhiyaneshGeek
• technologies/default-django-page.yaml by @DhiyaneshGeek
• technologies/default-fastcgi-page.yaml by @DhiyaneshGeek
• technologies/default-fedora-page.yaml by @DhiyaneshGeek
• technologies/default-glassfish-server-page.yaml by @DhiyaneshGeek
• technologies/default-iis7-page.yaml by @DhiyaneshGeek
• technologies/default-jetty-page.yaml by @DhiyaneshGeek
• technologies/default-microsoft-azure-page.yaml by @DhiyaneshGeek
• technologies/default-nginx-page.yaml by @DhiyaneshGeek
• technologies/default-oracle-application-page.yaml by @DhiyaneshGeek
• technologies/default-payara-server-page.yaml by @DhiyaneshGeek
• technologies/default-plesk-page.yaml by @DhiyaneshGeek
• technologies/default-redhat-test-page.yaml by @DhiyaneshGeek
• technologies/default-ssltls-test-page.yaml by @DhiyaneshGeek
• technologies/default-tomcat-page.yaml by @DhiyaneshGeek
• technologies/default-windows-server-page.yaml by @DhiyaneshGeek

Templates v8.3.1 - 29 May 2021

Newly added templates (19)

• cves/2021/CVE-2021-33564.yaml by @0xsapra
• cves/2020/CVE-2020-35736.yaml by @pikpikcu
• cves/2017/CVE-2017-1000486.yaml by @Morn98
• vulnerabilities/other/natshell-rce.yaml by @pikpikcu
• vulnerabilities/wordpress/wp-config-setup.yaml by @princechaddha
• vulnerabilities/wordpress/wp-full-path-disclosure.yaml by @blacklist-arcc
• vulnerabilities/wordpress/wp-install.yaml by @princechaddha
• vulnerabilities/wordpress/wp-localize-post-lfi.yaml by @0x240x23elu
• vulnerabilities/wordpress/wp-mail-masta-lfi.yaml by @0x240x23elu
• vulnerabilities/wordpress/wp-simple-fields-lfi.yaml by @0x240x23elu
• vulnerabilities/wordpress/wp-site-editor-lfi.yaml by @0x240x23elu
• vulnerabilities/wordpress/wp-tutor-lfi.yaml by @0x240x23elu
• vulnerabilities/wordpress/wp-wechat-broadcast-lfi.yaml by @0x240x23elu
• exposures/configs/esmtprc-config.yaml by @geeknik
• exposures/configs/robomongo-credential.yaml by @geeknik
• exposed-panels/portainer-init-deploy.yaml by @princechaddha
• exposed-panels/securenvoy-panel.yaml by @0xrod
• iot/xp-webcam.yaml by @AashiqRamachandran
• technologies/jsf-detection.yaml by @Morn98

Templates v8.3.0 - 25 May 2021

Newly added templates (14)

• cves/2021/CVE-2021-27850.yaml by pdteam
• cves/2020/CVE-2020-15227.yaml by @Becivells
• vulnerabilities/other/maian-cart-preauth-rce.yaml by pdteam
• misconfiguration/cx-cloud-upload-detect.yaml by @DhiyaneshGeek
• misconfiguration/kubeflow-dashboard-unauth.yaml by @DhiyaneshGeek
• misconfiguration/pinpoint-unauth.yaml by @DhiyaneshGeek
• default-logins/jenkins/jenkins-default.yaml by @Zandros0
• exposed-panels/cx-cloud-login.yaml by @DhiyaneshGeek
• exposed-panels/jenkins-login.yaml by @Zandros0
• exposed-panels/phppgadmin-panel.yaml by @Ganofins
• exposed-panels/plesk-obsidian.yaml by @DhiyaneshGeek
• exposed-panels/server-backup-login.yaml by @DhiyaneshGeek
• technologies/maian-cart-detect.yaml by pdteam
• technologies/xxljob-admin-detect.yaml by pdteam

Templates v8.2.9 - 20 May 2021

Newly added templates (19)

• cves/2021/CVE-2021-29622.yaml by @geeknik
• cves/2020/CVE-2020-36112.yaml by @geeknik
• cves/2009/CVE-2009-0545.yaml by @geeknik
• vulnerabilities/magento/magento-2-exposed-api.yaml by @techbrunch
• vulnerabilities/magento/magento-cacheleak.yaml by @techbrunch
• vulnerabilities/magento/magento-unprotected-dev-files.yaml by @techbrunch
• vulnerabilities/other/fanruanoa2012-disclosure.yaml by @bu1xuan2
• misconfiguration/springboot/springboot-beans.yaml by @ajaysenr
• exposures/configs/nagios-status-page.yaml by @DhiyaneshGeek
• exposures/files/ioncube-loader-wizard.yaml by @Mubspatel
• exposed-panels/exposed-nomad.yaml by pdteam
• exposed-panels/magento-admin-panel.yaml by @techbrunch
• exposed-panels/saferoads-vms-login.yaml by @DhiyaneshGeek
• technologies/fanruanoa-detect.yaml by @bu1xuan2
• technologies/fanruanoa2012-detect.yaml by @bu1xuan2
• technologies/landrayoa-detect.yaml by @bu1xuan2
• technologies/magento-detect.yaml by @techbrunch
• technologies/pega-detect.yaml by @sshell
• workflows/magento-workflow.yaml by @techbrunch

Templates v8.2.8 - 17 May 2021

Newly added templates (13)

• cves/2021/CVE-2021-24176.yaml by @Ganofins
• cves/2021/CVE-2021-27651.yaml by @idealphase
• cves/2014/CVE-2014-3744.yaml by @geeknik
• default-logins/flir/flir-ax8-default-credentials.yaml by @pikpikcu
• vulnerabilities/other/flir-path-traversal.yaml by @pikpikcu
• vulnerabilities/other/natshell-path-traversal.yaml by @pikpikcu
• vulnerabilities/other/resin-cnnvd-200705-315.yaml by @princechaddha
• exposures/files/joomla-file-listing.yaml by @iampritam97
• miscellaneous/google-floc-disabled.yaml by @geeknik
• miscellaneous/tabnabbing-check.yaml by @bolli95
• misconfiguration/unauthenticated-tensorboard.yaml by @DhiyaneshGeek
• technologies/octobercms-detect.yaml by @cydave
• technologies/voipmonitor-detect.yaml by @bu1xuan2

Templates v8.2.7 - 16 May 2021

Newly added templates (6)

• cves/2021/CVE-2021-31537.yaml by @geeknik
• misconfiguration/apache-filename-brute-force.yaml by @geeknik
• network/rdp-detect.yaml by @princechaddha
• default-logins/panabit/panabit-default-password.yaml by @pikpikcu
• technologies/springboot-actuator.yaml by pdteam
• technologies/wazuh-detect.yaml by @cydave

Templates v8.2.6 - 12 May 2021

Newly added templates (12)

• cves/2017/CVE-2017-12149.yaml by @fopina
• default-logins/showdoc/showdoc-default-password.yaml by @pikpikcu
• exposures/configs/ruijie-phpinfo.yaml by @pikpikcu
• exposures/logs/php-debug-bar.yaml by @DhiyaneshGeek
• misconfiguration/cloudflare-image-ssrf.yaml by @vavkamil
• misconfiguration/sap-directory-listing.yaml by @DhiyaneshGeek
• misconfiguration/unauthenticated-netdata.yaml by @DhiyaneshGeek
• misconfiguration/unauthenticated-zippkin.yaml by @DhiyaneshGeek
• vulnerabilities/other/showdoc-file-upload-rce.yaml by @pikpikcu
• exposed-panels/microsoft-exchange-control-panel.yaml by @r3dg33k
• exposures/backups/php-backup-files.yaml by @StreetOfHackerR007
• fuzzing/xff-403-bypass.yaml by @vavkamil

Templates v8.2.5 - 8 May 2021

Newly added templates (15)

• cves/2021/CVE-2021-28073.yaml by @z3bd
• cves/2021/CVE-2021-30461.yaml by @shifacyclewala,hackergautam
• cves/2020/CVE-2020-9490.yaml by @philippedelteil
• exposed-panels/bitrix-panel.yaml by @juicypotato1
• exposed-panels/monitorix-exposure.yaml by @geeknik
• exposures/configs/plesk-stat.yaml by @th3.d1p4k
• exposures/logs/darkstat-detect.yaml by @geeknik
• exposures/logs/pyramid-debug-toolbar.yaml by @geeknik
• exposures/logs/squid-analysis-report-generator.yaml by @geeknik
• misconfiguration/exposed-kafdrop.yaml by @DhiyaneshGeek
• vulnerabilities/oracle/oracle-ebs-xss.yaml by @DhiyaneshGeek
• vulnerabilities/other/joomla-com-fabrik-lfi.yaml by @DhiyaneshGeek
• vulnerabilities/other/kafdrop-xss.yaml by @DhiyaneshGeek
• vulnerabilities/other/ueditor-file-upload.yaml by @princechaddha
• vulnerabilities/other/wuzhicms-sqli.yaml by @princechaddha

Templates v8.2.4 - 5 May 2021

Newly added templates (15)

• cves/2021/CVE-2021-29441.yaml by @dwisiswant0
• cves/2020/CVE-2020-7247.yaml by @princechaddha
• cves/2019/CVE-2019-8446.yaml by @dhiyaneshDk
• cves/2018/CVE-2018-10141.yaml by @dhiyaneshDk
• cves/2017/CVE-2017-12629.yaml by @dwisiswant0
• cves/2017/CVE-2017-3506.yaml by @pdteam
• exposures/configs/oracle-ebs-credentials-disclosure.yaml by @dhiyaneshDk
• exposures/files/gogs-install-exposure.yaml by @dhiyaneshDk
• exposures/logs/oracle-ebs-sqllog-disclosure.yaml by @dhiyaneshDk
• misconfiguration/nginx/nginx-vhost-traffic-status.yaml by @geeknik
• technologies/kubernetes-version.yaml by @raesene
• vulnerabilities/other/concrete-xss.yaml by @shifacyclewla,@hackergautam
• vulnerabilities/other/ecology-filedownload-directory-traversal.yaml by @princechaddha
• vulnerabilities/other/gloo-unauth.yaml by @dhiyaneshDk
• vulnerabilities/other/hashicorp-consul-rce.yaml by @pikpikcu

Templates v8.2.3 - 2 May 2021

Newly added templates (37)

• cves/2021/CVE-2021-29442.yaml by @dwisiswant0
• cves/2019/CVE-2019-13462.yaml by @securitytest3r
• cves/2020/CVE-2020-9054.yaml by @DhiyaneshGeek
• cves/2020/CVE-2020-9315.yaml by @DhiyaneshGeek
• exposed-panels/circarlife-setup.yaml by @geeknik
• exposed-panels/netscalar-aaa-login.yaml by @DhiyaneshGeek
• exposed-panels/sharecenter-login.yaml by @DhiyaneshGeek
• exposures/backups/exposed-mysql-initial.yaml by @Elsfa7-110
• exposures/configs/apache-config.yaml by @hackerrishad
• exposures/configs/exposed-sharepoint-list.yaml by @Elsfa7-110
• exposures/configs/httpd-config.yaml by @hackerrishad
• exposures/configs/nginx-config.yaml by @hackerrishad
• exposures/configs/php-fpm-config.yaml by @hackerrishad
• exposures/configs/proftpd-config.yaml by @hackerrishad
• exposures/configs/samba-config.yaml by @hackerrishad
• exposures/configs/svnserve-config.yaml by @hackerrishad
• exposures/logs/circarlife-system-log.yaml by @geeknik
• misconfiguration/aem/aem-bg-servlet.yaml by @DhiyaneshGeek
• misconfiguration/aem/aem-login-status.yaml by @DhiyaneshGeek
• misconfiguration/spidercontrol-scada-server-info.yaml by @geeknik
• misconfiguration/springboot/springboot-httptrace.yaml by @pdteam
• network/deprecated-sshv1-detection.yaml by @iamthefrogy
• network/ganglia-xml-grid-monitor.yaml by @geeknik
• network/java-rmi-detect.yaml by @F1tz
• network/weblogic-iiop-detect.yaml by @F1tz
• network/weblogic-t3-detect.yaml by @F1tz
• takeovers/freshservice-takeover.yaml by @pdelteil
• technologies/nginx-version.yaml by @pdelteil
• vulnerabilities/other/WooYun-2015-148227.yaml by @princechaddha
• vulnerabilities/other/chamilo-lms-sqli.yaml by @underfl0w
• vulnerabilities/other/ecology-springframework-directory-traversal.yaml by @princechaddha
• vulnerabilities/other/landray-oa-fileread.yaml by @pikpikcu
• vulnerabilities/other/spark-webui-unauth.yaml by @princechaddha
• vulnerabilities/other/unauth-spark-api.yaml by @princechaddha
• vulnerabilities/other/xiuno-bbs-reinstallation.yaml by @princechaddha
• vulnerabilities/other/xunchi-file-read.yaml by @princechaddha
• vulnerabilities/other/zcms-v3-sqli.yaml by @princechaddha

Templates v8.2.2 - 23 April 2021

Newly added templates (27)

• cves/2021/CVE-2021-27905.yaml by @shifa123
• cves/2021/CVE-2021-24146.yaml by @random-robbie
• cves/2020/CVE-2020-35338.yaml by @jeyaseelan8
• cves/2019/CVE-2019-15859.yaml by @geeknik
• cves/2019/CVE-2019-10068.yaml by @davidmckennirey
• cves/2018/CVE-2018-8770.yaml by @princechaddha
• cves/2018/CVE-2018-17246.yaml by @princechaddha
• cves/2017/CVE-2017-8917.yaml by @princechaddha
• cves/2017/CVE-2017-5521.yaml by @geeknik
• cves/2017/CVE-2017-15715.yaml by @geeknik
• cves/2015/CVE-2015-8399.yaml by @princechaddha
• cves/2015/CVE-2015-7297.yaml by @princechaddha
• cves/2014/CVE-2014-4210.yaml by @princechaddha
• cves/2014/CVE-2014-3704.yaml by @princechaddha
• cves/2014/CVE-2014-2321.yaml by @geeknik
• vulnerabilities/apache/apache-solr-file-read.yaml by @DhiyaneshGeek
• vulnerabilities/other/74cms-sqli.yaml by @princechaddha
• vulnerabilities/other/feifeicms-lfr.yaml by @princechaddha
• vulnerabilities/other/maccmsv10-backdoor.yaml by @princechaddha
• vulnerabilities/other/myucms-lfr.yaml by @princechaddha
• vulnerabilities/other/nuuo-file-inclusion.yaml by @princechaddha
• misconfiguration/unauthenticated-popup-upload.yaml by @DhiyaneshGeek
• default-logins/chinaunicom/chinaunicom-modem-default-credentials.yaml by @princechaddha
• default-logins/viewpoint/trilithic-viewpoint-default.yaml by @davidmckennirey
• exposed-panels/opennms-web-console.yaml by @DhiyaneshGeek
• exposures/configs/cisco-network-config.yaml by @DhiyaneshGeek
• technologies/grav-cms-detect.yaml by @cydave

Templates v8.2.1 - 20 April 2021

Newly added templates (24)

• cves/2021/CVE-2021-28937.yaml by @geeknik
• cves/2021/CVE-2021-3374.yaml by @geeknik
• cves/2020/CVE-2020-19625.yaml by @geeknik
• cves/2017/CVE-2017-12542.yaml by @pikpikcu
• cves/2019/CVE-2019-17270.yaml by @pikpikcu
• cves/2015/CVE-2015-1880.yaml by @pikpikcu
• cves/2011/CVE-2011-0049.yaml by @pikpikcu
• cves/2009/CVE-2009-1151.yaml by @princechaddha
• exposures/configs/exposed-authentication-asmx.yaml by @DhiyaneshGeek
• exposures/configs/kyan-network-credentials-disclosure.yaml by @pikpikcu
• exposures/configs/ruijie-smartweb-disclosure.yaml by @pikpikcu
• exposures/configs/saia-web-server-info.yaml by @DhiyaneshGeek
• exposures/configs/ssh-authorized-keys.yaml by @geeknik
• exposures/configs/ssh-known-hosts.yaml by @geeknik
• exposures/files/phpunit.yaml by @pikpikcu
• vulnerabilities/wordpress/wordpress-wordfence-waf-bypass-xss.yaml by @shifa123
• misconfiguration/laravel-debug-enabled.yaml by @notsoevilweasel
• misconfiguration/sonarqube-public-projects.yaml by @sickwell
• exposed-panels/polycom-login.yaml by @DhiyaneshGeek
• exposed-panels/sauter-login.yaml by @DhiyaneshGeek
• fuzzing/wordpress-plugins-detect.yaml by @0xcrypto
• fuzzing/wordpress-themes-detect.yaml by @0xcrypto
• technologies/mautic-crm-detect.yaml by @cydave
• technologies/plone-cms-detect.yaml by @cydave

Templates v8.2.0 - 14 April 2021

Newly added templates (73)

• exposed-tokens moved under exposures/tokens directory.
• cves/2021/CVE-2021-30151.yaml by @DhiyaneshDk
• cves/2020/CVE-2020-15500.yaml by @Akash.C
• cves/2020/CVE-2020-35846.yaml by @dwisiswant0
• cves/2020/CVE-2020-35847.yaml by @dwisiswant0
• cves/2020/CVE-2020-35848.yaml by @dwisiswant0
• cves/2018/CVE-2018-2894.yaml by @geeknik
• cves/2018/CVE-2018-7422.yaml by @LuskaBol
• cves/2017/CVE-2017-7921.yaml by @princechaddha
• misconfiguration/aem/aem-default-get-servlet.yaml by @DhiyaneshGeek
• misconfiguration/aem/aem-gql-servlet.yaml by @DhiyaneshGeek
• misconfiguration/aem/aem-hash-querybuilder.yaml by @DhiyaneshGeek
• misconfiguration/aem/aem-jcr-querybuilder.yaml by @DhiyaneshGeek
• misconfiguration/aem/aem-merge-metadata-servlet.yaml by @DhiyaneshGeek
• misconfiguration/aem/aem-querybuilder-feed-servlet.yaml by @DhiyaneshGeek
• misconfiguration/aem/aem-querybuilder-internal-path-read.yaml by @DhiyaneshGeek
• misconfiguration/aem/aem-querybuilder-json-servlet.yaml by @DhiyaneshGeek
• misconfiguration/aem/aem-userinfo-servlet.yaml by @DhiyaneshGeek
• misconfiguration/aem/aem-wcm-suggestions-servlet.yaml by @DhiyaneshGeek
• misconfiguration/aws-object-listing.yaml by @DhiyaneshGeek
• misconfiguration/gitlab/gitlab-user-enumeration.yaml by @pikpikcu
• misconfiguration/unautneicated-cache-purge.yaml by @xElkomy
• vulnerabilities/moodle/moodle-xss.yaml by @shifa123
• vulnerabilities/other/core-chuangtian-cloud-rce.yaml by @pikpikcu
• vulnerabilities/other/empirecms-xss.yaml by @pikpikcu
• vulnerabilities/other/erp-nc-directory-traversal.yaml by @pikpikcu
• vulnerabilities/other/etouch-v2-sqli.yaml by @pikpikcu
• vulnerabilities/other/eyou-email-rce.yaml by @pikpikcu
• vulnerabilities/other/oa-v9-uploads-file.yaml by @pikpikcu
• vulnerabilities/other/qi-anxin-netkang-next-generation-firewall-rce.yaml by @pikpikcu
• vulnerabilities/other/turbocrm-xss.yaml by @pikpikcu
• network/mysql-native-cred-bruteforce.yaml by @iamthefrogy
• network/openssh5.3-detect.yaml by @iamthefrogy
• default-logins/nagios/nagios-default-credential.yaml by @iamthefrogy
• default-logins/smartweb/ruijie-smartweb-default-password.yaml by @pikpikcu
• exposed-panels/somfy-login.yaml by @DhiyaneshGeek
• exposures/configs/coremail-config-disclosure.yaml by @princechaddha
• exposures/configs/s3cmd-config.yaml by @Ice3man543
• exposures/configs/yii-debugger.yaml by @geeknik
• exposures/logs/access-log.yaml by @sheikhrishad
• exposures/logs/laravel-telescope.yaml by @geeknik
• exposures/tokens/amazon/amazon-sns-topic.yaml by @Ice3man543
• exposures/tokens/artifactory/artifactory-api-password.yaml by @Ice3man543
• exposures/tokens/artifactory/artifactory-api-token.yaml by @Ice3man543
• exposures/tokens/bitly/bitly-secret-key.yaml by @Ice3man543
• exposures/tokens/cloudinary/cloudinary-credentials.yaml by @Ice3man543
• exposures/tokens/discord/discord-webhook.yaml by @Ice3man543
• exposures/tokens/generic/jdbc-connection-string.yaml by @Ice3man543
• exposures/tokens/generic/jwt-token.yaml by @Ice3man543
• exposures/tokens/google/google-calendar-link.yaml by @Ice3man543
• exposures/tokens/google/oauth-access-key.yaml by @Ice3man543
• exposures/tokens/microsoft/microsoft-teams-webhook.yaml by @Ice3man543
• exposures/tokens/newrelic/newrelic-admin-api-key.yaml by @Ice3man543
• exposures/tokens/newrelic/newrelic-insights-key.yaml by @Ice3man543
• exposures/tokens/newrelic/newrelic-rest-api-key.yaml by @Ice3man543
• exposures/tokens/newrelic/newrelic-synthetics-location-key.yaml by @Ice3man543
• exposures/tokens/paypal/braintree-access-token.yaml by @Ice3man543
• exposures/tokens/picatic/picatic-api-key.yaml by @Ice3man543
• exposures/tokens/sendgrid/sendgrid-api-key.yaml by @Ice3man543
• exposures/tokens/slack/slack-user-token.yaml by @Ice3man543
• exposures/tokens/slack/slack-webhook-token.yaml by @Ice3man543
• exposures/tokens/sonarqube/sonarqube-token.yaml by @Ice3man543
• exposures/tokens/stripe/stripe-restricted-key.yaml by @Ice3man543
• exposures/tokens/stripe/stripe-secret-key.yaml by @Ice3man543
• exposures/tokens/zapier/zapier-webhook-token.yaml by @Ice3man543
• exposures/tokens/zoho/zoho-webhook-token.yaml by @Ice3man543
• miscellaneous/display-via-header.yaml by @geeknik
• technologies/aws-bucket-service.yaml by @pdteam
• technologies/cockpit-detect.yaml by @dwisiswant0
• technologies/google-bucket-service.yaml by @pdteam
• workflows/aem-workflow.yaml by @DhiyaneshGeek
• workflows/cockpit-workflow.yaml by @dwisiswant0
• workflows/gitlab-workflow.yaml by @pdteam
• workflows/ruijie-workflow.yaml by @pikpikcu

Templates v8.1.9 - 2 April 2021

Newly added templates (7)

• cves/2021/CVE-2021-21402.yaml by @dwisiswant0
• cves/2020/CVE-2020-24550.yaml by @DhiyaneshGeek
• exposures/configs/netrc.yaml by @geeknik
• iot/upnp-device.yaml by @geeknik
• technologies/jellyfin-detect.yaml by @dwisiswant0
• vulnerabilities/generic/cache-poisoning.yaml by @melbadry9
• workflows/jellyfin-workflow.yaml by @dwisiswant0

Templates v8.1.8 - 1 April 2021

Newly added templates (46)

• cves/2021/CVE-2021-21975.yaml by @luci
• cves/2021/CVE-2021-26295.yaml by @madrobot
• cves/2020/CVE-2020-15148.yaml by @pikpikcu
• cves/2020/CVE-2020-17453.yaml by @madrobot
• cves/2020/CVE-2020-23517.yaml by @geeknik
• cves/2020/CVE-2020-25078.yaml by @pikpikcu
• cves/2020/CVE-2020-28208.yaml by @pdteam
• cves/2020/CVE-2020-35489.yaml by @soyelmago
• cves/2015/CVE-2015-3337.yaml by @pdteam
• cves/2016/CVE-2016-10033.yaml by @princechaddha
• cves/2017/CVE-2017-1000170.yaml by @dwisiswant0
• cves/2017/CVE-2017-17562.yaml by @geeknik
• cves/2018/CVE-2018-0101.yaml by @dwisiswant0
• exposed-panels/adobe-component-login.yaml by @DhiyaneshGeek
• exposed-panels/fiorilaunchpad-logon.yaml by @DhiyaneshGeek
• exposed-panels/joomla-panel.yaml by @its0x08
• exposed-panels/netlify-cms.yaml by @sullo
• exposed-panels/open-stack-dashboard-login.yaml by @dhiyaneshDK
• exposed-panels/sitefinity-login.yaml by @dhiyaneshDK
• exposed-panels/wago-plc-panel.yaml by @its0x08
• exposed-panels/wordpress-login.yaml by @its0x08
• exposed-panels/zte-panel.yaml by @its0x08
• exposures/backups/settings-php-files.yaml by @hackerrishad
• exposures/configs/eea-disclosure.yaml by @pikpikcu
• fuzzing/adminer-panel-fuzz.yaml by @geeknik
• fuzzing/header-command-injection.yaml by @geeknik
• fuzzing/wp-plugin-scan.yaml by @pdteam
• iot/liveview-axis-camera.yaml by @DhiyaneshGeek
• iot/mobotix-guest-camera.yaml by @DhiyaneshGeek
• iot/nuuno-network-login.yaml by @DhiyaneshGeek
• miscellaneous/detect-dns-over-https.yaml by @geeknik
• miscellaneous/detect-options-method.yaml by @pdteam
• miscellaneous/unpatched-coldfusion.yaml by @Daviey
• misconfiguration/gitlab/gitlab-public-signup.yaml by @pdteam
• misconfiguration/phpmyadmin-setup.yaml by @thevillagehacker
• takeovers/freshdesk-takeover.yaml by @NagliNagli
• takeovers/medium-takeover.yaml by @rtcms
• technologies/bolt-cms-detect.yaml by @cydave
• technologies/bookstack-detect.yaml by @cydave
• technologies/moinmoin-detect.yaml by @cydave
• technologies/opencast-detect.yaml by @cydave
• technologies/shopware-detect.yaml by @cydave
• technologies/strapi-cms-detect.yaml by @cydave
• vulnerabilities/rockethcat/unauth-message-read.yaml by @rojan-rijal
• vulnerabilities/thinkcmf/thinkcmf-arbitrary-code-execution.yaml by @pikpikcu
• workflows/worksite-takeover-workflow.yaml @pdteam

Templates v8.1.7 - 21 Mar 2021

Newly added templates (0)

• Bug fixes

Templates v8.1.6 - 21 Mar 2021

Newly added templates (22)

• cves/2021/CVE-2021-22986.yml by @iamnoooob @rootxharsh
• cves/2020/CVE-2020-14883.yaml by @pikpikcu
• cves/2020/CVE-2020-16139.yaml by @pikpikcu
• cves/2020/CVE-2020-29164.yaml by @geeknik
• cves/2020/CVE-2020-9483.yaml by @pikpikcu
• cves/2018/CVE-2018-11784.yaml by @geeknik
• cves/2019/CVE-2019-0230.yaml by @geeknik
• default-logins/xxljob/xxljob-default-login.yaml by pdteam
• dns/ec2-detection.yaml by @melbadry9
• dns/worksites-detection.yaml by @melbadry9
• exposed-panels/aims-password-portal.yaml by @DhiyaneshGeek
• exposed-panels/pandora-fms-console.yaml by @DhiyaneshGeek
• iot/contacam.yaml by @DhiyaneshGeek
• iot/epmp-login.yaml by @DhiyaneshGeek
• iot/hp-laserjet-detect.yaml by @DhiyaneshGeek
• iot/internet-service.yaml by @DhiyaneshGeek
• misconfiguration/exposed-sqlite-manager.yaml by @DhiyaneshGeek
• vulnerabilities/generic/error-based-sql-injection.yaml by @geeknik
• vulnerabilities/other/tpshop-directory-traversal.yaml by @pikpikcu
• vulnerabilities/other/viewlinc-crlf-injection.yaml by @geeknik
• vulnerabilities/other/xdcms-sqli.yaml by @pikpikcu
• vulnerabilities/wordpress/wordpress-infinitewp-auth-bypass.yaml by @princechaddha

Templates v8.1.5 - 15 Mar 2021

Newly added templates (30)

• cves/2021/CVE-2021-25281.yaml by @madrobot
• cves/2020/CVE-2020-13700.yaml by @pikpikcu
• cves/2020/CVE-2020-14092.yaml by @princechaddha
• cves/2020/CVE-2020-24186.yaml by @Ganofins
• cves/2020/CVE-2020-35951.yaml by @princechaddha
• cves/2018/CVE-2018-1207.yaml by @dwisiswant0
• cves/2018/CVE-2018-18778.yaml by @dhiyaneshDK
• cves/2018/CVE-2018-3810.yaml by @princechaddha
• cves/2018/CVE-2018-6910.yaml by @pikpikcu
• cves/2018/CVE-2018-7700.yaml by @pikpikcu
• cves/2017/CVE-2017-3881.yaml by @dwisiswant0
• cves/2015/CVE-2015-3306.yaml by @pdteam
• default-logins/dvwa/dvwa-default-login.yaml @pdteam
• exposed-panels/cisco-finesse-login.yaml by @dhiyaneshDK
• exposed-panels/mini-start-page.yaml by @dhiyaneshDK
• exposed-panels/tuxedo-connected-controller.yaml by @dhiyaneshDK
• exposures/configs/circleci-config.yaml by @geeknik
• exposures/configs/circleci-ssh-config.yaml by @geeknik
• misconfiguration/gitlab/gitlab-public-repos.yaml by @ldionmarcil
• misconfiguration/panasonic-network-management.yaml by @dhiyaneshDk
• network/unauth-ftp.yaml by @C3l3si4n
• technologies/openam-detection.yaml by @xelkomy
• technologies/thinkcmf-detection.yaml by @pikpikcu
• vulnerabilities/moodle/moodle-jitsi-plugin-xss.yaml by @aceseven
• vulnerabilities/other/parentlink-xss.yaml by @r3naissance
• vulnerabilities/other/pmb-local-file-disclosure.yaml by @dhiyaneshDk
• vulnerabilities/wordpress/wordpress-auth-bypass-wptimecapsule.yaml by @princechaddha
• vulnerabilities/wordpress/wordpress-rce-simplefilelist.yaml by @princechaddha
• vulnerabilities/wordpress/wordpress-total-upkeep-backup-download.yaml by @princechaddha

Templates v8.1.4 - 10 Mar 2021

Newly added templates (17)

• cves/2021/CVE-2021-21978.yaml @dwisiswant0
• cves/2020/CVE-2020-12256.yaml by @pikpikcu
• cves/2020/CVE-2020-12259.yaml by @pikpikcu
• cves/2020/CVE-2020-13483.yaml by @pikpikcu
• cves/2020/CVE-2020-14413.yaml by @pikpikcu
• cves/2015/CVE-2015-2080.yaml by @pikpikcu
• exposed-panels/cisco-sd-wan.yaml by @z3bd
• headless/dvwa-headless-automatic-login.yaml
• headless/postmessage-tracker.yaml
• headless/prototype-pollution-check.yaml
• headless/window-name-domxss.yaml
• misconfiguration/http-etcd-unauthenticated-api-data-leak.yaml by @DhiyaneshGeek
• network/exposed-redis.yaml
• network/exposed-zookeeper.yaml
• network/memcached-stats.yaml
• network/mongodb-detect.yaml
• network/mongodb-unauth.yaml

Templates v8.1.3 - 9 March 2021

Newly added templates (08)

• default-logins/nexus/nexus-default-password.yaml by @pikpikcu
• exposed-panels/oki-data.yaml by @DhiyaneshGeek
• exposed-panels/weatherlink.yaml by @DhiyaneshGeek
• exposed-panels/wso2-management-console.yaml by @DhiyaneshGeek
• exposures/configs/ruijie-information-disclosure.yaml by @DhiyaneshGeek
• misconfiguration/gitlab-snippets.yaml
• misconfiguration/solr-query-dashboard.yaml by @DhiyaneshGeek
• misconfiguration/unauthenticated-mongo-express.yaml by @DhiyaneshGeek

Templates v8.1.2 - 6 March 2021

Newly added templates (40)

• cves/2021/CVE-2021-21315.yaml by @pikpikcu
• cves/2021/CVE-2021-26855.yaml by @Mad-robot
• cves/2021/CVE-2021-27132.yaml by @geeknik
• cves/2021/CVE-2021-27330.yaml by @pikpikcu
• cves/2020/CVE-2020-21224.yaml by @pikpikcu
• cves/2020/CVE-2020-26948.yaml by @dwisiswant0
• cves/2019/CVE-2019-0221.yaml by @pikpikcu
• cves/2019/CVE-2019-17538.yaml by @pussycat0x
• cves/2018/CVE-2018-11776.yaml by @pikpikcu
• cves/2017/CVE-2017-12611.yaml by @pikpikcu
• cves/2017/CVE-2017-9791.yaml by @pikpikcu
• cves/2017/CVE-2017-9805.yaml by @pikpikcu
• cves/2013/CVE-2013-1965.yaml by @pikpikcu
• cves/2012/CVE-2012-0392.yaml by @pikpikcu
• cves/2008/CVE-2008-2650.yaml by @pussycat0x
• cves/2007/CVE-2007-4556.yaml by @pikpikcu
• default-logins/alibaba/alibaba-canal-default-password.yaml by @pikpikcu
• exposed-panels/acunetix-panel.yaml by @joanbono
• exposed-panels/advance-setup.yaml by @DhiyaneshGeek
• exposed-panels/blue-iris-login.yaml by @DhiyaneshGeek
• exposed-panels/checkmarx-panel.yaml by @joanbono
• exposed-panels/cisco-integrated-login.yaml by @DhiyaneshGeek
• exposed-panels/cisco-security-details.yaml by @DhiyaneshGeek
• exposed-panels/hivemanager-login-panel.yaml by @binaryfigments
• exposed-panels/hmc-hybris-panel.yaml by @dogasantos
• exposed-panels/keenetic-web-login.yaml by @DhiyaneshGeek
• exposed-panels/nessus-panel.yaml by @joanbono
• exposed-panels/remote-ui-login.yaml by @DhiyaneshGeek
• exposed-panels/sphider-login.yaml by @DhiyaneshGeek
• exposed-panels/total-web.yaml by @DhiyaneshGeek
• exposures/configs/exposed-bitkeeper.yaml by @daffainfo
• exposures/configs/exposed-bzr.yaml by @daffainfo
• exposures/configs/exposed-darcs.yaml by @daffainfo
• exposures/configs/exposed-hg.yaml by @daffainfo
• exposures/configs/joomla-config-file.yaml by @oppsec
• misconfiguration/d-link-arbitary-fileread.yaml by @DhiyaneshGeek
• technologies/burp-api-detect.yaml by @joanbono
• technologies/ilo-detect.yaml by @milo2012
• technologies/microsoft-echange-server-detect.yaml by @pikpikcu
• vulnerabilities/other/simple-employee-rce.yaml by @pikpikcu

Templates v8.1.1 - 1 March 2021

Newly added templates (34)

• cves/2021/CVE-2021-3129.yaml by @z3bd
• cves/2021/CVE-2021-3378.yaml by @dwisiswant0
• cves/2020/CVE-2020-11853.yaml by @dwisiswant0
• cves/2020/CVE-2020-11854.yaml by @dwisiswant0
• cves/2020/CVE-2020-35729.yaml by @dwisiswant0
• cves/2018/CVE-2018-1335.yaml by @pikpikcu
• cves/2017/CVE-2017-16877.yaml by @pikpikcu
• cves/2010/CVE-2010-2861.yaml by @pikpikcu
• default-logins/UCMDB/micro-focus-ucmdb-default-credentials.yaml by @dwisiswant0
• default-logins/axis2/axis2-default-password.yaml by @pikpikcu
• default-logins/dell/dell-idrac9-default-login.yaml by @kophjager007
• default-logins/frps/frp-default-credentials.yaml by @pikpikcu
• exposed-panels/crush-ftp-login.yaml by @DhiyaneshGeek
• exposed-panels/d-link-wireless.yaml by @DhiyaneshGeek
• exposed-panels/jfrog.yaml by @DhiyaneshGeek
• exposed-panels/microsoft-exchange-login.yaml by @DhiyaneshGeek
• exposed-panels/plesk-onyx.yaml by @DhiyaneshGeek
• exposed-panels/powerlogic-ion.yaml by @DhiyaneshGeek
• exposed-panels/radius-manager.yaml by @DhiyaneshGeek
• exposed-panels/siteomat-login.yaml by @DhiyaneshGeek
• exposed-panels/unauthenticated-frp.yaml by @pikpikcu
• exposed-panels/vigor-login.yaml by @DhiyaneshGeek
• exposed-panels/vmware-horizon.yaml by @DhiyaneshGeek
• exposed-panels/web-local-craft.yaml by @DhiyaneshGeek
• exposed-panels/xenmobile-login.yaml by @DhiyaneshGeek
• miscellaneous/moodle-changelog.yaml by @oppsec
• misconfiguration/phpmyadmin-wooyun.yaml by @DhiyaneshGeek
• technologies/dell/dell-idrac6-detect.yaml by @kophjager007
• technologies/dell/dell-idrac7-detect.yaml by @kophjager007
• technologies/dell/dell-idrac8-detect.yaml by @kophjager007
• vulnerabilities/other/duomicms-sql-injection.yaml by @pikpikcu
• vulnerabilities/other/ruijie-networks-lfi.yaml by @pikpikcu
• vulnerabilities/other/ruijie-networks-rce.yaml by @pikpikcu
• workflows/micro-focus-workflow.yaml by @dwisiswant0

Templates v8.1.0 - 26 Feb 2021

Newly added templates (32)

• cves/2021/CVE-2021-21972.yaml by @dwisiswant0
• cves/2020/CVE-2020-17496.yaml by @pussycat0x
• cves/2020/CVE-2020-22840.yaml by @geeknik
• cves/2017/CVE-2017-7269.yaml by @thomas_from_offensity
• cves/2016/CVE-2016-7552.yaml by @dwisiswant0
• cves/2015/CVE-2015-5688.yaml by @pikpikcu
• default-logins/dell/dell-idrac-default-login.yaml by @kophjager007
• default-logins/rockmongo/rockmongo-default-credentials.yaml by @pikpikcu
• exposures/apis/openapi.yaml by @pikpikcu
• exposures/configs/awstats-config.yaml by @hackerrishad
• exposures/configs/awstats-script.yaml by @hackerrishad
• exposures/configs/honeywell-scada-config.yaml by @alperenkesk
• exposures/files/bower-json.yaml by @oppsec
• exposures/files/yarn-lock.yaml by @oppsec
• miscellaneous/joomla-htaccess.yaml by @oppsec
• miscellaneous/joomla-manifest-file.yaml by @oppsec
• miscellaneous/phpmyadmin-setup.yaml by @hackerrishad
• misconfiguration/haproxy-status.yaml by @DhiyaneshGeek
• misconfiguration/horde-unauthenticated.yaml by @pikpikcu
• misconfiguration/java-melody-exposed.yaml by @DhiyaneshGeek
• misconfiguration/tcpconfig.yaml by @DhiyaneshGeek
• misconfiguration/ups-status.yaml by @DhiyaneshGeek
• technologies/dell-idrac-detect.yaml by @kophjager007
• technologies/gunicorn-detect.yaml by @joanbono
• vulnerabilities/other/rockmongo-xss.yaml by @pikpikcu
• vulnerabilities/other/weiphp-path-traversal.yaml by @pikpikcu
• vulnerabilities/other/zhiyuan-oa-info-leak.yaml by @pikpikcu
• vulnerabilities/other/zhiyuan-oa-session-leak.yaml by @pikpikcu
• vulnerabilities/wordpress/wordpress-affiliatewp-log.yaml by @DhiyaneshGeek
• vulnerabilities/wordpress/wp-license-file.yaml by @YashGoti
• vulnerabilities/wordpress/wp-uploads-listing.yaml by @YashGoti
• workflows/dell-idrac-workflow.yaml by @kophjager007

Templates v8.0.9 - 22 Feb 2021

Newly added templates (19)

• cves/2020/CVE-2020-24571.yaml by @pikpikcu
• cves/2020/CVE-2020-26073.yaml by @madrobot
• cves/2019/CVE-2019-14205.yaml by @pikpikcu
• cves/2019/CVE-2019-16097.yaml by @pikpikcu
• cves/2019/CVE-2019-18393.yaml by @pikpikcu
• cves/2018/CVE-2018-1000861.yaml by @dhiyaneshDK
• cves/2018/CVE-2018-12613.yaml by @pikpikcu
• exposures/configs/ftp-credentials-exposure.yaml by @pikpikcu
• exposures/configs/sftp-credentials-exposure.yaml by @sheikhrishad
• exposures/logs/laravel-log-file.yaml by @sheikhrishad
• exposures/logs/npm-log-file.yaml by @sheikhrishad
• technologies/harbor-detect.yaml by @pikpikcu
• vulnerabilities/other/dedecms-openredirect.yaml by @pikpikcu
• vulnerabilities/other/finereport-path-traversal.yaml by @pikpikcu
• vulnerabilities/other/metinfo-lfi.yaml by @pikpikcu
• vulnerabilities/other/seacms-rce.yaml by @pikpikcu
• vulnerabilities/other/webui-rce.yaml by @pikpikcu
• vulnerabilities/wordpress/wordpress-xmlrpc-listmethods.yaml by @0ut0fb4nd
• workflows/harbor-workflow.yaml by @pikpikcu

Templates v8.0.8 - 16 Feb 2021

Newly added templates (36)

• cves/2020/CVE-2020-10546.yaml by @Mad-robot
• cves/2020/CVE-2020-10547.yaml by @Mad-robot
• cves/2020/CVE-2020-10548.yaml by @Mad-robot
• cves/2020/CVE-2020-10549.yaml by @Mad-robot
• cves/2020/CVE-2020-11991.yaml by @pikpikcu
• cves/2020/CVE-2020-2036.yaml by @Mad-robot
• cves/2020/CVE-2020-25213.yaml by @foulenzer
• cves/2020/CVE-2020–26073.yaml by @Mad-robot
• cves/2020/CVE-2020-27982.yaml by @Mad-robot
• cves/2020/CVE-2020-5847.yaml by @Mad-robot
• cves/2020/CVE-2020-9425.yaml by @Mad-robot
• cves/2019/CVE-2019-3403.yaml by @Ganofins
• cves/2018/CVE-2018-7600.yaml by @pikpikcu
• cves/2017/CVE-2017-1000028.yaml by @pikpikcu
• cves/2017/CVE-2017-12635.yaml by @pikpikcu
• cves/2016/CVE-2016-3081.yaml by @DhiyaneshGeek
• cves/2015/CVE-2015-1427.yaml by @pikpikcu
• cves/2014/CVE-2014-3120.yaml by @pikpikcu
• default-logins/nps/nps-default-password.yaml by @pikpikcu
• default-logins/samsung/samsung-wlan-ap-default-credentials.yaml by @pikpikcu
• exposures/configs/lvmeng-uts-disclosure.yaml by @pikpikcu
• exposures/files/keycloak-json.yaml by @oppsec
• misconfiguration/jboss-status.yaml by @DhiyaneshGeek
• misconfiguration/mikrotik-graph.yaml by @DhiyaneshGeek
• misconfiguration/unauthenticated-prtg.yaml by @DhiyaneshGeek
• vulnerabilities/other/cacti-weathermap-file-write.yaml by @pikpikcu
• vulnerabilities/other/oa-tongda-path-traversal.yaml by @pikpikcu
• vulnerabilities/other/powercreator-cms-rce.yaml by @pikpikcu
• vulnerabilities/samsung/samsung-wlan-ap-lfi.yaml by @pikpikcu
• vulnerabilities/samsung/samsung-wlan-ap-rce.yaml by @pikpikcu
• vulnerabilities/samsung/samsung-wlan-ap-xss.yaml by @pikpikcu
• vulnerabilities/thinkcmf/thinkcmf-lfi.yaml by @pikpikcu
• vulnerabilities/thinkcmf/thinkcmf-rce.yaml by @pikpikcu
• vulnerabilities/wordpress/wordpress-zebra-form-xss.yaml by @Mad-robot
• workflows/cacti-workflow.yaml by @pikpikcu
• workflows/samsung-wlan-ap-workflow.yaml by @pikpikcu