Merge branch 'main' into princechaddha-patch-4

.github/workflows/templates-sync.yml

@@ -3,70 +3,23 @@ on:
   push:
     paths:
     - '.new-additions'
-    - 'http/cves/2015/CVE-2015-4455.yaml'
-    - 'http/cves/2019/CVE-2019-7139.yaml'
-    - 'http/cves/2023/CVE-2023-1892.yaml'
-    - 'http/cves/2023/CVE-2023-2227.yaml'
-    - 'http/cves/2023/CVE-2023-27032.yaml'
-    - 'http/cves/2023/CVE-2023-2948.yaml'
-    - 'http/cves/2023/CVE-2023-2949.yaml'
-    - 'http/cves/2023/CVE-2023-31446.yaml'
-    - 'http/cves/2023/CVE-2023-32077.yaml'
-    - 'http/cves/2023/CVE-2023-38964.yaml'
-    - 'http/cves/2023/CVE-2023-43208.yaml'
-    - 'http/cves/2023/CVE-2023-44812.yaml'
-    - 'http/cves/2023/CVE-2023-4521.yaml'
-    - 'http/cves/2023/CVE-2023-45375.yaml'
-    - 'http/cves/2023/CVE-2023-46347.yaml'
-    - 'http/cves/2023/CVE-2023-4973.yaml'
-    - 'http/cves/2023/CVE-2023-5003.yaml'
-    - 'http/cves/2023/CVE-2023-6389.yaml'
-    - 'http/cves/2023/CVE-2023-6989.yaml'
-    - 'http/cves/2024/CVE-2024-0235.yaml'
-    - 'http/cves/2024/CVE-2024-0881.yaml'
-    - 'http/cves/2024/CVE-2024-1183.yaml'
-    - 'http/cves/2024/CVE-2024-22927.yaml'
-    - 'http/cves/2024/CVE-2024-2340.yaml'
-    - 'http/cves/2024/CVE-2024-23917.yaml'
-    - 'http/cves/2024/CVE-2024-24131.yaml'
-    - 'http/cves/2024/CVE-2024-27956.yaml'
-    - 'http/cves/2024/CVE-2024-2876.yaml'
-    - 'http/cves/2024/CVE-2024-3136.yaml'
-    - 'http/cves/2024/CVE-2024-31621.yaml'
-    - 'http/cves/2024/CVE-2024-31848.yaml'
-    - 'http/cves/2024/CVE-2024-31849.yaml'
-    - 'http/cves/2024/CVE-2024-31850.yaml'
-    - 'http/cves/2024/CVE-2024-31851.yaml'
-    - 'http/cves/2024/CVE-2024-32399.yaml'
-    - 'http/cves/2024/CVE-2024-32640.yaml'
-    - 'http/cves/2024/CVE-2024-32651.yaml'
-    - 'http/cves/2024/CVE-2024-33575.yaml'
-    - 'http/cves/2024/CVE-2024-33724.yaml'
-    - 'http/cves/2024/CVE-2024-4040.yaml'
-    - 'http/cves/2024/CVE-2024-4348.yaml'
-    - 'http/default-logins/crushftp/crushftp-anonymous-login.yaml'
-    - 'http/default-logins/crushftp/crushftp-default-login.yaml'
-    - 'http/default-logins/soplanning/soplanning-default-login.yaml'
-    - 'http/exposed-panels/bmc/bmc-remedy-sso-panel.yaml'
-    - 'http/exposed-panels/bonobo-server-panel.yaml'
-    - 'http/exposed-panels/cassia-bluetooth-gateway-panel.yaml'
-    - 'http/exposed-panels/cyberchef-panel.yaml'
-    - 'http/exposed-panels/femtocell-panel.yaml'
-    - 'http/exposed-panels/monitorr-panel.yaml'
-    - 'http/exposed-panels/openwebui-panel.yaml'
-    - 'http/exposed-panels/teamforge-panel.yaml'
-    - 'http/exposed-panels/tixeo-panel.yaml'
-    - 'http/misconfiguration/installer/eyoucms-installer.yaml'
-    - 'http/misconfiguration/installer/sabnzbd-installer.yaml'
-    - 'http/misconfiguration/microsoft/ms-exchange-local-domain.yaml'
-    - 'http/misconfiguration/titannit-web-exposure.yaml'
-    - 'http/takeovers/squadcast-takeover.yaml'
-    - 'http/vulnerabilities/citrix/citrix-oob-memory-read.yaml'
-    - 'http/vulnerabilities/prestashop/prestashop-cartabandonmentpro-file-upload.yaml'
-    - 'http/vulnerabilities/titan/titannit-web-rce.yaml'
-    - 'http/vulnerabilities/vbulletin/vbulletin-search-sqli.yaml'
-    - 'network/detection/aix-websm-detect.yaml'
-    - 'network/detection/bluecoat-telnet-proxy-detect.yaml'
+    - 'http/cves/2023/CVE-2023-36347.yaml'
+    - 'http/cves/2023/CVE-2023-43374.yaml'
+    - 'http/cves/2024/CVE-2024-0200.yaml'
+    - 'http/exposed-panels/ackee-panel.yaml'
+    - 'http/exposed-panels/craftercms-panel.yaml'
+    - 'http/exposed-panels/nocodb-panel.yaml'
+    - 'http/exposed-panels/qlikview-accesspoint-panel.yaml'
+    - 'http/exposed-panels/unleash-panel.yaml'
+    - 'http/honeypot/tpot-honeypot-detect.yaml'
+    - 'http/misconfiguration/installer/moosocial-installer.yaml'
+    - 'http/misconfiguration/installer/phpmyfaq-installer.yaml'
+    - 'http/misconfiguration/unigui-server-monitor-exposure.yaml'
+    - 'http/technologies/apache/apache-answer-detect.yaml'
+    - 'http/technologies/craftercms-detect.yaml'
+    - 'http/technologies/statamic-detect.yaml'
+    - 'http/technologies/tinyproxy-detect.yaml'
+    - 'http/technologies/wordpress/themes/wp-bricks-builder-theme.yaml'
   workflow_dispatch:
 jobs:
   triggerRemoteWorkflow:

.new-additions

@@ -1,64 +1,17 @@
-http/cves/2015/CVE-2015-4455.yaml
-http/cves/2019/CVE-2019-7139.yaml
-http/cves/2023/CVE-2023-1892.yaml
-http/cves/2023/CVE-2023-2227.yaml
-http/cves/2023/CVE-2023-27032.yaml
-http/cves/2023/CVE-2023-2948.yaml
-http/cves/2023/CVE-2023-2949.yaml
-http/cves/2023/CVE-2023-31446.yaml
-http/cves/2023/CVE-2023-32077.yaml
-http/cves/2023/CVE-2023-38964.yaml
-http/cves/2023/CVE-2023-43208.yaml
-http/cves/2023/CVE-2023-44812.yaml
-http/cves/2023/CVE-2023-4521.yaml
-http/cves/2023/CVE-2023-45375.yaml
-http/cves/2023/CVE-2023-46347.yaml
-http/cves/2023/CVE-2023-4973.yaml
-http/cves/2023/CVE-2023-5003.yaml
-http/cves/2023/CVE-2023-6389.yaml
-http/cves/2023/CVE-2023-6989.yaml
-http/cves/2024/CVE-2024-0235.yaml
-http/cves/2024/CVE-2024-0881.yaml
-http/cves/2024/CVE-2024-1183.yaml
-http/cves/2024/CVE-2024-22927.yaml
-http/cves/2024/CVE-2024-2340.yaml
-http/cves/2024/CVE-2024-23917.yaml
-http/cves/2024/CVE-2024-24131.yaml
-http/cves/2024/CVE-2024-27956.yaml
-http/cves/2024/CVE-2024-2876.yaml
-http/cves/2024/CVE-2024-3136.yaml
-http/cves/2024/CVE-2024-31621.yaml
-http/cves/2024/CVE-2024-31848.yaml
-http/cves/2024/CVE-2024-31849.yaml
-http/cves/2024/CVE-2024-31850.yaml
-http/cves/2024/CVE-2024-31851.yaml
-http/cves/2024/CVE-2024-32399.yaml
-http/cves/2024/CVE-2024-32640.yaml
-http/cves/2024/CVE-2024-32651.yaml
-http/cves/2024/CVE-2024-33575.yaml
-http/cves/2024/CVE-2024-33724.yaml
-http/cves/2024/CVE-2024-4040.yaml
-http/cves/2024/CVE-2024-4348.yaml
-http/default-logins/crushftp/crushftp-anonymous-login.yaml
-http/default-logins/crushftp/crushftp-default-login.yaml
-http/default-logins/soplanning/soplanning-default-login.yaml
-http/exposed-panels/bmc/bmc-remedy-sso-panel.yaml
-http/exposed-panels/bonobo-server-panel.yaml
-http/exposed-panels/cassia-bluetooth-gateway-panel.yaml
-http/exposed-panels/cyberchef-panel.yaml
-http/exposed-panels/femtocell-panel.yaml
-http/exposed-panels/monitorr-panel.yaml
-http/exposed-panels/openwebui-panel.yaml
-http/exposed-panels/teamforge-panel.yaml
-http/exposed-panels/tixeo-panel.yaml
-http/misconfiguration/installer/eyoucms-installer.yaml
-http/misconfiguration/installer/sabnzbd-installer.yaml
-http/misconfiguration/microsoft/ms-exchange-local-domain.yaml
-http/misconfiguration/titannit-web-exposure.yaml
-http/takeovers/squadcast-takeover.yaml
-http/vulnerabilities/citrix/citrix-oob-memory-read.yaml
-http/vulnerabilities/prestashop/prestashop-cartabandonmentpro-file-upload.yaml
-http/vulnerabilities/titan/titannit-web-rce.yaml
-http/vulnerabilities/vbulletin/vbulletin-search-sqli.yaml
-network/detection/aix-websm-detect.yaml
-network/detection/bluecoat-telnet-proxy-detect.yaml
+http/cves/2023/CVE-2023-36347.yaml
+http/cves/2023/CVE-2023-43374.yaml
+http/cves/2024/CVE-2024-0200.yaml
+http/exposed-panels/ackee-panel.yaml
+http/exposed-panels/craftercms-panel.yaml
+http/exposed-panels/nocodb-panel.yaml
+http/exposed-panels/qlikview-accesspoint-panel.yaml
+http/exposed-panels/unleash-panel.yaml
+http/honeypot/tpot-honeypot-detect.yaml
+http/misconfiguration/installer/moosocial-installer.yaml
+http/misconfiguration/installer/phpmyfaq-installer.yaml
+http/misconfiguration/unigui-server-monitor-exposure.yaml
+http/technologies/apache/apache-answer-detect.yaml
+http/technologies/craftercms-detect.yaml
+http/technologies/statamic-detect.yaml
+http/technologies/tinyproxy-detect.yaml
+http/technologies/wordpress/themes/wp-bricks-builder-theme.yaml

README.md

@@ -42,18 +42,18 @@ An overview of the nuclei template project, including statistics on unique tags,
 
 |    TAG    | COUNT |    AUTHOR     | COUNT | DIRECTORY  | COUNT | SEVERITY | COUNT | TYPE | COUNT |
 |-----------|-------|---------------|-------|------------|-------|----------|-------|------|-------|
-| cve       |  2435 | dhiyaneshdk   |  1262 | http       |  7355 | info     |  3645 | file |   337 |
-| panel     |  1123 | daffainfo     |   864 | file       |   337 | high     |  1686 | dns  |    25 |
-| wordpress |   962 | dwisiswant0   |   803 | workflows  |   191 | medium   |  1503 |      |       |
-| exposure  |   901 | pikpikcu      |   353 | network    |   136 | critical |  1009 |      |       |
-| xss       |   895 | pussycat0x    |   349 | cloud      |    98 | low      |   265 |      |       |
-| wp-plugin |   837 | ritikchaddha  |   326 | code       |    81 | unknown  |    38 |      |       |
+| cve       |  2474 | dhiyaneshdk   |  1277 | http       |  7417 | info     |  3657 | file |   337 |
+| panel     |  1133 | daffainfo     |   864 | file       |   337 | high     |  1703 | dns  |    25 |
+| wordpress |   973 | dwisiswant0   |   803 | workflows  |   191 | medium   |  1517 |      |       |
+| exposure  |   908 | pikpikcu      |   353 | network    |   138 | critical |  1029 |      |       |
+| xss       |   904 | pussycat0x    |   353 | cloud      |    98 | low      |   265 |      |       |
+| wp-plugin |   844 | ritikchaddha  |   336 | code       |    81 | unknown  |    39 |      |       |
 | osint     |   804 | pdteam        |   297 | javascript |    56 |          |       |      |       |
-| tech      |   674 | princechaddha |   260 | ssl        |    29 |          |       |      |       |
-| lfi       |   647 | ricardomaia   |   232 | dns        |    22 |          |       |      |       |
-| misconfig |   602 | geeknik       |   230 | dast       |    21 |          |       |      |       |
+| tech      |   674 | princechaddha |   268 | ssl        |    29 |          |       |      |       |
+| lfi       |   654 | ricardomaia   |   232 | dns        |    22 |          |       |      |       |
+| misconfig |   606 | geeknik       |   230 | dast       |    21 |          |       |      |       |
 
-**633 directories, 8625 files**.
+**638 directories, 8694 files**.
 
 </td>
 </tr>