Auto Updated

20142995 · Sep 26, 2024 · 037c46e · 037c46e
1 parent f257891
commit 037c46e
Show file tree

Hide file tree

Showing 3,677 changed files with 498,729 additions and 561,551 deletions.
diff --git a/README.md b/README.md
@@ -8,68 +8,111 @@
 | CVE-2004 | 5 |
 | CVE-2005 | 15 |
 | CVE-2006 | 19 |
-| CVE-2007 | 62 |
+| CVE-2007 | 63 |
 | CVE-2008 | 74 |
 | CVE-2009 | 45 |
 | CVE-2010 | 139 |
 | CVE-2011 | 91 |
 | CVE-2012 | 145 |
 | CVE-2013 | 169 |
-| CVE-2014 | 422 |
+| CVE-2014 | 421 |
 | CVE-2015 | 528 |
 | CVE-2016 | 248 |
-| CVE-2017 | 395 |
+| CVE-2017 | 397 |
 | CVE-2018 | 446 |
 | CVE-2019 | 514 |
-| CVE-2020 | 593 |
-| CVE-2021 | 1724 |
-| CVE-2022 | 2470 |
-| CVE-2023 | 4772 |
-| CVE-2024 | 5110 |
-| Other | 25322 |
+| CVE-2020 | 595 |
+| CVE-2021 | 1727 |
+| CVE-2022 | 2471 |
+| CVE-2023 | 4774 |
+| CVE-2024 | 5168 |
+| Other | 25335 |
 ## 近几天数量变化情况
-|2024-09-19 | 2024-09-20 | 2024-09-21 | 2024-09-22 | 2024-09-23 | 2024-09-24 | 2024-09-25|
+|2024-09-20 | 2024-09-21 | 2024-09-22 | 2024-09-23 | 2024-09-24 | 2024-09-25 | 2024-09-26|
 |--- | ------ | ------ | ------ | ------ | ------ | ---|
-|43216 | 43253 | 43257 | 43266 | 43267 | 43279 | 43315|
+|43253 | 43257 | 43266 | 43267 | 43279 | 43315 | 43396|
 ## 最近新增文件
 | templates name | 
 | --- |
-| CVE-2019-0232.yaml |
-| CVE-2022-2439.yaml |
-| CVE-2023-5359.yaml |
-| CVE-2023-47253.yaml |
-| cve-2020-14815.yaml |
-| onimai-rat-c2.yaml |
-| qualitor-itsm-panel.yaml |
-| wp-category-dropdown.yaml |
-| koko-analytics.yaml |
-| navidrome-admin-install.yaml |
-| itop-detect.yaml |
-| woo-events.yaml |
-| football-leagues-by-anwppro.yaml |
-| confetti-fall-animation.yaml |
-| cgit-panel.yaml |
-| CVE-2024-8624.yaml |
-| CVE-2024-8436.yaml |
-| CVE-2024-47062.yaml |
-| CVE-2024-8794.yaml |
-| CVE-2024-5276.yaml |
-| CVE-2024-8432.yaml |
-| CVE-2024-8267.yaml |
-| CVE-2024-8716.yaml |
-| CVE-2024-8103.yaml |
-| CVE-2024-8738.yaml |
-| CVE-2024-8801.yaml |
-| CVE-2024-8917.yaml |
-| CVE-2024-8662.yaml |
-| CVE-2024-8914.yaml |
-| CVE-2024-8623.yaml |
-| CVE-2024-8791.yaml |
-| CVE-2024-8919.yaml |
-| CVE-2024-8657.yaml |
-| CVE-2024-8437.yaml |
-| CVE-2024-8671.yaml |
-| CVE-2024-8795.yaml |
-| CVE-2024-8628.yaml |
-| CVE-2024-22207.yaml |
-| CVE-2024-8544.yaml |
+| CVE-2019-6793.yaml |
+| CVE-2020-11441.yaml |
+| backup-database.yaml |
+| gtg-advanced-blocks.yaml |
+| simple-nav-archives.yaml |
+| ntzantispam.yaml |
+| verbosa.yaml |
+| webtoffee-gdpr-cookie-consent.yaml |
+| spice-starter-sites.yaml |
+| google-website-translator.yaml |
+| uncanny-learndash-groups.yaml |
+| unlimited-blocks.yaml |
+| septera.yaml |
+| peoplepond.yaml |
+| beam-me-up-scotty.yaml |
+| themehunk-megamenu-plus.yaml |
+| material-design-icons.yaml |
+| babelz.yaml |
+| mas-static-content.yaml |
+| custom-author-base.yaml |
+| graphicsly.yaml |
+| roseta.yaml |
+| oneelements-ultimate-addons-for-elementor.yaml |
+| CVE-2024-8621.yaml |
+| CVE-2024-8483.yaml |
+| CVE-2024-8398.yaml |
+| CVE-2024-9027.yaml |
+| CVE-2024-8095.yaml |
+| CVE-2024-8476.yaml |
+| CVE-2024-8910.yaml |
+| CVE-2024-8286.yaml |
+| CVE-2024-9068.yaml |
+| CVE-2024-8085.yaml |
+| CVE-2024-7491.yaml |
+| CVE-2024-8713.yaml |
+| CVE-2024-8514.yaml |
+| CVE-2024-8485.yaml |
+| CVE-2024-8397.yaml |
+| CVE-2024-44003.yaml |
+| CVE-2024-8546.yaml |
+| CVE-2024-8050.yaml |
+| CVE-2024-45452.yaml |
+| CVE-2024-45451.yaml |
+| CVE-2024-8484.yaml |
+| CVE-2024-7426.yaml |
+| CVE-2024-9073.yaml |
+| CVE-2024-7385.yaml |
+| CVE-2024-44007.yaml |
+| CVE-2024-8668.yaml |
+| CVE-2024-9024.yaml |
+| CVE-2024-8481.yaml |
+| CVE-2024-8658.yaml |
+| CVE-2024-9069.yaml |
+| CVE-2024-44049.yaml |
+| CVE-2024-44050.yaml |
+| CVE-2024-8883.yaml |
+| CVE-2024-3866.yaml |
+| CVE-2024-7617.yaml |
+| CVE-2024-8702.yaml |
+| CVE-2024-8515.yaml |
+| CVE-2024-9028.yaml |
+| CVE-2024-6590.yaml |
+| CVE-2024-8434.yaml |
+| CVE-2024-44002.yaml |
+| CVE-2024-7386.yaml |
+| CVE-2024-44005.yaml |
+| CVE-2024-8275.yaml |
+| CVE-2024-8516.yaml |
+| CVE-2024-8741.yaml |
+| CVE-2024-44047.yaml |
+| CVE-2024-8350.yaml |
+| CVE-2024-8349.yaml |
+| CVE-2024-44048.yaml |
+| CVE-2024-8290.yaml |
+| CVE-2024-8094.yaml |
+| CVE-2024-9169.yaml |
+| CVE-2024-8549.yaml |
+| CVE-2024-44004.yaml |
+| CVE-2024-8858.yaml |
+| CVE-2024-8678.yaml |
+| CVE-2017-3131.yaml |
+| CVE-2017-3133.yaml |
diff --git a/data.json b/data.json
@@ -200,5 +200,6 @@
     "2024-09-22": 43266,
     "2024-09-23": 43267,
     "2024-09-24": 43279,
-    "2024-09-25": 43315
+    "2024-09-25": 43315,
+    "2024-09-26": 43396
 }
diff --git a/data1.json b/data1.json
@@ -50503,5 +50503,87 @@
     "CVE-2024-8795.yaml": "2024-09-25 02:28:13",
     "CVE-2024-8628.yaml": "2024-09-25 02:28:13",
     "CVE-2024-22207.yaml": "2024-09-25 02:28:13",
-    "CVE-2024-8544.yaml": "2024-09-25 02:28:13"
+    "CVE-2024-8544.yaml": "2024-09-25 02:28:13",
+    "CVE-2019-6793.yaml": "2024-09-26 02:25:47",
+    "CVE-2020-11441.yaml": "2024-09-26 02:25:47",
+    "backup-database.yaml": "2024-09-26 02:25:47",
+    "gtg-advanced-blocks.yaml": "2024-09-26 02:25:47",
+    "simple-nav-archives.yaml": "2024-09-26 02:25:47",
+    "ntzantispam.yaml": "2024-09-26 02:25:47",
+    "verbosa.yaml": "2024-09-26 02:25:47",
+    "webtoffee-gdpr-cookie-consent.yaml": "2024-09-26 02:25:47",
+    "spice-starter-sites.yaml": "2024-09-26 02:25:47",
+    "google-website-translator.yaml": "2024-09-26 02:25:47",
+    "uncanny-learndash-groups.yaml": "2024-09-26 02:25:47",
+    "unlimited-blocks.yaml": "2024-09-26 02:25:47",
+    "septera.yaml": "2024-09-26 02:25:47",
+    "peoplepond.yaml": "2024-09-26 02:25:47",
+    "beam-me-up-scotty.yaml": "2024-09-26 02:25:47",
+    "themehunk-megamenu-plus.yaml": "2024-09-26 02:25:47",
+    "material-design-icons.yaml": "2024-09-26 02:25:47",
+    "babelz.yaml": "2024-09-26 02:25:47",
+    "mas-static-content.yaml": "2024-09-26 02:25:47",
+    "custom-author-base.yaml": "2024-09-26 02:25:47",
+    "graphicsly.yaml": "2024-09-26 02:25:47",
+    "roseta.yaml": "2024-09-26 02:25:47",
+    "oneelements-ultimate-addons-for-elementor.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8621.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8483.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8398.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-9027.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8095.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8476.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8910.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8286.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-9068.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8085.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-7491.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8713.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8514.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8485.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8397.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-44003.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8546.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8050.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-45452.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-45451.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8484.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-7426.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-9073.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-7385.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-44007.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8668.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-9024.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8481.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8658.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-9069.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-44049.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-44050.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8883.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-3866.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-7617.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8702.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8515.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-9028.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-6590.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8434.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-44002.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-7386.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-44005.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8275.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8516.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8741.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-44047.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8350.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8349.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-44048.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8290.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8094.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-9169.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8549.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-44004.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8858.yaml": "2024-09-26 02:25:47",
+    "CVE-2024-8678.yaml": "2024-09-26 02:25:47",
+    "CVE-2017-3131.yaml": "2024-09-26 02:25:47",
+    "CVE-2017-3133.yaml": "2024-09-26 02:25:47"
 }
diff --git a/nuclei-templates/CVE-2000/CVE-2000-0114.yaml → nuclei-templates/CVE-2000/cve-2000-0114.yaml b/nuclei-templates/CVE-2000/CVE-2000-0114.yaml → nuclei-templates/CVE-2000/cve-2000-0114.yaml
diff --git a/nuclei-templates/CVE-2001/CVE-2001-1473.yaml b/nuclei-templates/CVE-2001/CVE-2001-1473.yaml
diff --git a/nuclei-templates/CVE-2001/cve-2001-1473.yaml b/nuclei-templates/CVE-2001/cve-2001-1473.yaml
@@ -0,0 +1,29 @@
+id: CVE-2001-1473
+
+info:
+  name: Deprecated SSHv1 Protocol Detection
+  author: iamthefrogy
+  severity: high
+  tags: network,ssh,openssh,cves,cves2001
+  description: SSHv1 is deprecated and has known cryptographic issues.
+  remediation: Upgrade to SSH 2.4 or later.
+  reference:
+    - https://www.kb.cert.org/vuls/id/684820
+    - https://nvd.nist.gov/vuln/detail/CVE-2001-1473
+  classification:
+    cvss-score: 7.4
+    cvss-metrics: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
+    cve-id: CVE-2001-1473
+    cwe-id: CWE-310
+
+network:
+  - host:
+      - "{{Hostname}}"
+      - "{{Host}}:22"
+
+    matchers:
+      - type: word
+        words:
+          - "SSH-1"
+
+# Updated by Chris on 2022/01/21
diff --git a/nuclei-templates/CVE-2005/CVE-2005-2428.yaml b/nuclei-templates/CVE-2005/CVE-2005-2428.yaml
@@ -0,0 +1,25 @@
+id: cve-2005-2428
+info:
+  name: CVE-2005-2428
+  author: CasperGN
+  severity: medium
+  tags: cve,cve2005
+  description: Lotus Domino R5 and R6 WebMail, with "Generate HTML for all fields" enabled, stores sensitive data from names.nsf in hidden form fields, which allows remote attackers to read the HTML source to obtain sensitive information such as (1) the password hash in the HTTPPassword field, (2) the password change date in the HTTPPasswordChangeDate field, (3) the client platform in the ClntPltfrm field, (4) the client machine name in the ClntMachine field, and (5) the client Lotus Domino release in the ClntBld field, a different vulnerability than CVE-2005-2696.
+  reference: |
+    - http://www.cybsec.com/vuln/default_configuration_information_disclosure_lotus_domino.pdf
+    - https://www.exploit-db.com/exploits/39495
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/names.nsf/People?OpenView"
+    matchers-condition: and
+    matchers:
+      - type: status
+        status:
+          - 200
+      - type: regex
+        name: domino-username
+        regex:
+          - '(<a href\=\"/names\.nsf/[0-9a-z\/]+\?OpenDocument)'
+        part: body
diff --git a/nuclei-templates/CVE-2005/cve-2005-2428.yaml b/nuclei-templates/CVE-2005/cve-2005-2428.yaml
diff --git a/nuclei-templates/CVE-2005/CVE-2005-4385.yaml → nuclei-templates/CVE-2005/cve-2005-4385.yaml b/nuclei-templates/CVE-2005/CVE-2005-4385.yaml → nuclei-templates/CVE-2005/cve-2005-4385.yaml
diff --git a/nuclei-templates/CVE-2006/cve-2006-2842.yaml → nuclei-templates/CVE-2006/CVE-2006-2842.yaml b/nuclei-templates/CVE-2006/cve-2006-2842.yaml → nuclei-templates/CVE-2006/CVE-2006-2842.yaml
diff --git a/nuclei-templates/CVE-2006/CVE-2006-1681.yaml → nuclei-templates/CVE-2006/cve-2006-1681.yaml b/nuclei-templates/CVE-2006/CVE-2006-1681.yaml → nuclei-templates/CVE-2006/cve-2006-1681.yaml
diff --git a/...-templates/Other/apache-tomcat-snoop.yaml → nuclei-templates/CVE-2007/CVE-2007-2449.yaml b/...-templates/Other/apache-tomcat-snoop.yaml → nuclei-templates/CVE-2007/CVE-2007-2449.yaml
diff --git a/nuclei-templates/CVE-2007/cve-2007-4504.yaml → nuclei-templates/CVE-2007/CVE-2007-4504.yaml b/nuclei-templates/CVE-2007/cve-2007-4504.yaml → nuclei-templates/CVE-2007/CVE-2007-4504.yaml
diff --git a/nuclei-templates/CVE-2007/CVE-2007-4556.yaml → nuclei-templates/CVE-2007/cve-2007-4556.yaml b/nuclei-templates/CVE-2007/CVE-2007-4556.yaml → nuclei-templates/CVE-2007/cve-2007-4556.yaml
diff --git a/nuclei-templates/CVE-2008/cve-2008-2650.yaml → nuclei-templates/CVE-2008/CVE-2008-2650.yaml b/nuclei-templates/CVE-2008/cve-2008-2650.yaml → nuclei-templates/CVE-2008/CVE-2008-2650.yaml
diff --git a/nuclei-templates/CVE-2008/cve-2008-4764.yaml → nuclei-templates/CVE-2008/CVE-2008-4764.yaml b/nuclei-templates/CVE-2008/cve-2008-4764.yaml → nuclei-templates/CVE-2008/CVE-2008-4764.yaml
diff --git a/nuclei-templates/CVE-2008/CVE-2008-5587.yaml b/nuclei-templates/CVE-2008/CVE-2008-5587.yaml
diff --git a/nuclei-templates/CVE-2008/CVE-2008-2398.yaml → nuclei-templates/CVE-2008/cve-2008-2398.yaml b/nuclei-templates/CVE-2008/CVE-2008-2398.yaml → nuclei-templates/CVE-2008/cve-2008-2398.yaml
diff --git a/nuclei-templates/CVE-2008/CVE-2008-4668.yaml → nuclei-templates/CVE-2008/cve-2008-4668.yaml b/nuclei-templates/CVE-2008/CVE-2008-4668.yaml → nuclei-templates/CVE-2008/cve-2008-4668.yaml