Skip to content

Commit

Permalink
Regenerated with new updated severity classifications
Browse files Browse the repository at this point in the history
  • Loading branch information
@topscoder
topscoder committed May 13, 2024
1 parent ed6e6b8 commit fb15470
Show file tree
Hide file tree
Showing 9,859 changed files with 20,646 additions and 20,650 deletions.
The diff you're trying to view is too large. We only load the first 3000 changed files.
4 changes: 2 additions & 2 deletions nuclei-templates/2003/CVE-2003-1598-8b8bc9dc7287ba3ce3345c56bcac0bb7.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ info:
name: >
WordPress Core < 0.72 - SQL Injection
author: topscoder
severity: high
severity: critical
description: >
SQL injection vulnerability in log.header.php in WordPress 0.7 and earlier allows remote attackers to execute arbitrary SQL commands via the posts variable.
reference:
Expand All @@ -15,7 +15,7 @@ info:
cve-id: CVE-2003-1598
metadata:
shodan-query: 'vuln:CVE-2003-1598'
tags: cve,wordpress,wp-core,high
tags: cve,wordpress,wp-core,critical

http:
- method: GET
Expand Down
4 changes: 2 additions & 2 deletions nuclei-templates/2004/CVE-2004-1559-62059d6f1640212c35e5b3f8330daee1.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ info:
name: >
WordPress Core < 1.2.1 - Cross-Site Scripting
author: topscoder
severity: medium
severity: high
description: >
Multiple cross-site scripting (XSS) vulnerabilities in Wordpress 1.2 allow remote attackers to inject arbitrary web script or HTML via the (1) redirect_to, text, popupurl, or popuptitle parameters to wp-login.php, (2) redirect_url parameter to admin-header.php, (3) popuptitle, popupurl, content, or post_title parameters to bookmarklet.php, (4) cat_ID parameter to categories.php, (5) s parameter to edit.php, or (6) s or mode parameter to edit-comments.php.
reference:
Expand All @@ -15,7 +15,7 @@ info:
cve-id: CVE-2004-1559
metadata:
shodan-query: 'vuln:CVE-2004-1559'
tags: cve,wordpress,wp-core,medium
tags: cve,wordpress,wp-core,high

http:
- method: GET
Expand Down
4 changes: 2 additions & 2 deletions nuclei-templates/2005/CVE-2005-1102-dced04c5992536d443cadc0d8795aeb0.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ info:
name: >
WordPress Core <= 1.5 - Stored Cross-Site Scripting
author: topscoder
severity: medium
severity: high
description: >
Multiple cross-site scripting (XSS) vulnerabilities in template-functions-post.php in WordPress 1.5 and earlier allow remote attackers to execute arbitrary commands via the (1) content or (2) title of the post.
reference:
Expand All @@ -15,7 +15,7 @@ info:
cve-id: CVE-2005-1102
metadata:
shodan-query: 'vuln:CVE-2005-1102'
tags: cve,wordpress,wp-core,medium
tags: cve,wordpress,wp-core,high

http:
- method: GET
Expand Down
4 changes: 2 additions & 2 deletions nuclei-templates/2005/CVE-2005-1687-a9813318cd00104cf812206e64197a1c.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ info:
name: >
WordPress Core < 1.5.1 - SQL Injection
author: topscoder
severity: high
severity: critical
description: >
SQL injection vulnerability in wp-trackback.php in Wordpress 1.5 and earlier allows remote attackers to execute arbitrary SQL commands via the tb_id parameter.
reference:
Expand All @@ -15,7 +15,7 @@ info:
cve-id: CVE-2005-1687
metadata:
shodan-query: 'vuln:CVE-2005-1687'
tags: cve,wordpress,wp-core,high
tags: cve,wordpress,wp-core,critical

http:
- method: GET
Expand Down
4 changes: 2 additions & 2 deletions nuclei-templates/2005/CVE-2005-1810-24c78f38bf30593eb710d6e05f774c4e.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ info:
name: >
WordPress Core < 1.5.1.2 - SQL Injection
author: topscoder
severity: high
severity: critical
description: >
SQL injection vulnerability in template-functions-category.php in WordPress 1.5.1 allows remote attackers to execute arbitrary SQL commands via the $cat_ID variable, as demonstrated using the cat parameter to index.php.
reference:
Expand All @@ -15,7 +15,7 @@ info:
cve-id: CVE-2005-1810
metadata:
shodan-query: 'vuln:CVE-2005-1810'
tags: cve,wordpress,wp-core,high
tags: cve,wordpress,wp-core,critical

http:
- method: GET
Expand Down
4 changes: 2 additions & 2 deletions nuclei-templates/2005/CVE-2005-2108-83ae7383a40a2b386de5c8ed058c9c78.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ info:
name: >
WordPress Core < 1.5.1.3 - SQL Injection
author: topscoder
severity: high
severity: critical
description: >
SQL injection vulnerability in XMLRPC server in WordPress 1.5.1.2 and earlier allows remote attackers to execute arbitrary SQL commands via input that is not filtered in the HTTP_RAW_POST_DATA variable, which stores the data in an XML file.
reference:
Expand All @@ -15,7 +15,7 @@ info:
cve-id: CVE-2005-2108
metadata:
shodan-query: 'vuln:CVE-2005-2108'
tags: cve,wordpress,wp-core,high
tags: cve,wordpress,wp-core,critical

http:
- method: GET
Expand Down
4 changes: 2 additions & 2 deletions nuclei-templates/2005/CVE-2005-2612-8889c549d7832d5315ef07e7a0f1de5e.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ info:
name: >
WordPress Core < 1.5.2 - Remote Code Execution
author: topscoder
severity: high
severity: critical
description: >
Direct code injection vulnerability in WordPress 1.5.1.3 and earlier allows remote attackers to execute arbitrary PHP code via the cache_lastpostdate[server] cookie.
reference:
Expand All @@ -15,7 +15,7 @@ info:
cve-id: CVE-2005-2612
metadata:
shodan-query: 'vuln:CVE-2005-2612'
tags: cve,wordpress,wp-core,high
tags: cve,wordpress,wp-core,critical

http:
- method: GET
Expand Down
4 changes: 2 additions & 2 deletions nuclei-templates/2006/CVE-2006-1012-5ffbaa4e2b1d5d3387454a24d1df8151.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ info:
name: >
WordPress Core <= 1.5.2 - SQL Injection
author: topscoder
severity: high
severity: critical
description: >
SQL injection vulnerability in WordPress 1.5.2, and possibly other versions before 2.0, allows remote attackers to execute arbitrary SQL commands via the User-Agent field in an HTTP header for a comment.
reference:
Expand All @@ -15,7 +15,7 @@ info:
cve-id: CVE-2006-1012
metadata:
shodan-query: 'vuln:CVE-2006-1012'
tags: cve,wordpress,wp-core,high
tags: cve,wordpress,wp-core,critical

http:
- method: GET
Expand Down
4 changes: 2 additions & 2 deletions nuclei-templates/2006/CVE-2006-1796-f505e5adff7df495d5e3883941625090.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ info:
name: >
WordPress Core < 2.0.1 - Cross-Site Scripting
author: topscoder
severity: medium
severity: high
description: >
Cross-site scripting (XSS) vulnerability in the paging links functionality in template-functions-links.php in Wordpress 1.5.2, and possibly other versions before 2.0.1, allows remote attackers to inject arbitrary web script or HTML to Internet Explorer users via the request URI ($_SERVER['REQUEST_URI']).
reference:
Expand All @@ -15,7 +15,7 @@ info:
cve-id: CVE-2006-1796
metadata:
shodan-query: 'vuln:CVE-2006-1796'
tags: cve,wordpress,wp-core,medium
tags: cve,wordpress,wp-core,high

http:
- method: GET
Expand Down
4 changes: 2 additions & 2 deletions nuclei-templates/2006/CVE-2006-2667-2250da6b6f83d2978f8b20e578c03ce4.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ info:
name: >
WordPress Core < 2.0.3 - Remote Code Execution
author: topscoder
severity: high
severity: critical
description: >
Direct static code injection vulnerability in WordPress 2.0.2 and earlier allows remote attackers to execute arbitrary commands by inserting a carriage return and PHP code when updating a profile, which is appended after a special comment sequence into files in (1) wp-content/cache/userlogins/ (2) wp-content/cache/users/ which are later included by cache.php, as demonstrated using the displayname argument.
reference:
Expand All @@ -15,7 +15,7 @@ info:
cve-id: CVE-2006-2667
metadata:
shodan-query: 'vuln:CVE-2006-2667'
tags: cve,wordpress,wp-core,high
tags: cve,wordpress,wp-core,critical

http:
- method: GET
Expand Down
4 changes: 2 additions & 2 deletions nuclei-templates/2006/CVE-2006-4208-1354435c4f5fd2cf36a77bfe4d9efd70.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ info:
name: >
Skippy WP-DB Backup (Legacy Plugin) <= 1.7 - Authenticated (Admin+) Directory Traversal
author: topscoder
severity: medium
severity: low
description: >
Directory traversal vulnerability in wp-db-backup.php in the Skippy WP-DB-Backup legacy plugin for WordPress 1.7 and earlier allows remote authenticated users with administrative privileges to read arbitrary files via a .. (dot dot) in the backup parameter to edit.php.
reference:
Expand All @@ -17,7 +17,7 @@ info:
fofa-query: "wp-content/plugins/wp-db-backup.php/"
google-query: inurl:"/wp-content/plugins/wp-db-backup.php/"
shodan-query: 'vuln:CVE-2006-4208'
tags: cve,wordpress,wp-plugin,wp-db-backup.php,medium
tags: cve,wordpress,wp-plugin,wp-db-backup.php,low

http:
- method: GET
Expand Down
4 changes: 2 additions & 2 deletions nuclei-templates/2006/CVE-2006-6808-c74b3da5c9977a8515a2ae6aea10e45b.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ info:
name: >
WordPress Core <= 2.0.5 - Cross-Site Scripting
author: topscoder
severity: medium
severity: high
description: >
Cross-site scripting (XSS) vulnerability in wp-admin/templates.php in WordPress 2.0.5 allows remote attackers to inject arbitrary web script or HTML via the file parameter. NOTE: some sources have reported this as a vulnerability in the get_file_description function in wp-admin/admin-functions.php.
reference:
Expand All @@ -15,7 +15,7 @@ info:
cve-id: CVE-2006-6808
metadata:
shodan-query: 'vuln:CVE-2006-6808'
tags: cve,wordpress,wp-core,medium
tags: cve,wordpress,wp-core,high

http:
- method: GET
Expand Down
4 changes: 2 additions & 2 deletions nuclei-templates/2007/CVE-2007-0106-5248a5bd925434add7e3be51c0e47bf5.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ info:
name: >
WordPress Core <= 2.0.5 - Cross-Site Request Forgery to Cross-Site Scripting
author: topscoder
severity: high
severity: medium
description: >
Cross-site scripting (XSS) vulnerability in the CSRF protection scheme in WordPress before 2.0.6 allows remote attackers to inject arbitrary web script or HTML via a CSRF attack with an invalid token and quote characters or HTML tags in URL variable names, which are not properly handled when WordPress generates a new link to verify the request.
reference:
Expand All @@ -15,7 +15,7 @@ info:
cve-id: CVE-2007-0106
metadata:
shodan-query: 'vuln:CVE-2007-0106'
tags: cve,wordpress,wp-core,high
tags: cve,wordpress,wp-core,medium

http:
- method: GET
Expand Down
4 changes: 2 additions & 2 deletions nuclei-templates/2007/CVE-2007-0233-78c0fa7115ae86c26deccf0e5ec633a7.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ info:
name: >
WordPress Core < 2.0.7 - SQL Injection
author: topscoder
severity: high
severity: critical
description: >
wp-trackback.php in WordPress 2.0.6 and earlier does not properly unset variables when the input data includes a numeric parameter with a value matching an alphanumeric parameter's hash value, which allows remote attackers to execute arbitrary SQL commands via the tb_id parameter. NOTE: it could be argued that this vulnerability is due to a bug in the unset PHP command (CVE-2006-3017) and the proper fix should be in PHP; if so, then this should not be treated as a vulnerability in WordPress.
reference:
Expand All @@ -15,7 +15,7 @@ info:
cve-id: CVE-2007-0233
metadata:
shodan-query: 'vuln:CVE-2007-0233'
tags: cve,wordpress,wp-core,high
tags: cve,wordpress,wp-core,critical

http:
- method: GET
Expand Down
4 changes: 2 additions & 2 deletions nuclei-templates/2007/CVE-2007-1230-e46b887a41d8ee6fabb81ee3e309e2b3.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ info:
name: >
WordPress Core <= 2.1.1 - Cross-Site Scripting
author: topscoder
severity: medium
severity: high
description: >
Multiple cross-site scripting (XSS) vulnerabilities in wp-includes/functions.php in WordPress before 2.1.2-alpha allow remote attackers to inject arbitrary web script or HTML via (1) the Referer HTTP header or (2) the URI, a different vulnerability than CVE-2007-1049.
reference:
Expand All @@ -15,7 +15,7 @@ info:
cve-id: CVE-2007-1230
metadata:
shodan-query: 'vuln:CVE-2007-1230'
tags: cve,wordpress,wp-core,medium
tags: cve,wordpress,wp-core,high

http:
- method: GET
Expand Down
4 changes: 2 additions & 2 deletions nuclei-templates/2007/CVE-2007-1244-a556f0ec8cc782b1df540c9037fded25.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ info:
name: >
WordPress Core <= 2.1.1 - Cross-Site Scripting
author: topscoder
severity: medium
severity: high
description: >
Cross-site request forgery (CSRF) vulnerability in the AdminPanel in WordPress 2.1.1 and earlier allows remote attackers to perform privileged actions as administrators, as demonstrated using the delete action in wp-admin/post.php. NOTE: this issue can be leveraged to perform cross-site scripting (XSS) attacks and steal cookies via the post parameter.
reference:
Expand All @@ -15,7 +15,7 @@ info:
cve-id: CVE-2007-1244
metadata:
shodan-query: 'vuln:CVE-2007-1244'
tags: cve,wordpress,wp-core,medium
tags: cve,wordpress,wp-core,high

http:
- method: GET
Expand Down
4 changes: 2 additions & 2 deletions nuclei-templates/2007/CVE-2007-1622-f773a7113074464a75bbe2d49bec8c41.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ info:
name: >
WordPress Core <= 2.1.2 - Cross-Site Scripting
author: topscoder
severity: medium
severity: high
description: >
Cross-site scripting (XSS) vulnerability in wp-admin/vars.php in WordPress before 2.0.10 RC2, and before 2.1.3 RC2 in the 2.1 series, allows remote authenticated users with theme privileges to inject arbitrary web script or HTML via the PATH_INFO in the administration interface, related to loose regular expression processing of PHP_SELF.
reference:
Expand All @@ -15,7 +15,7 @@ info:
cve-id: CVE-2007-1622
metadata:
shodan-query: 'vuln:CVE-2007-1622'
tags: cve,wordpress,wp-core,medium
tags: cve,wordpress,wp-core,high

http:
- method: GET
Expand Down
4 changes: 2 additions & 2 deletions nuclei-templates/2007/CVE-2007-1893-5382cac551da0c76754442b2aa2316fe.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ info:
name: >
WordPress Core < 2.1.3 - Authorization Bypass
author: topscoder
severity: medium
severity: high
description: >
xmlrpc (xmlrpc.php) in WordPress 2.1.2, and probably earlier, allows remote authenticated users with the contributor role to bypass intended access restrictions and invoke the publish_posts functionality, which can be used to "publish a previously saved post."
reference:
Expand All @@ -15,7 +15,7 @@ info:
cve-id: CVE-2007-1893
metadata:
shodan-query: 'vuln:CVE-2007-1893'
tags: cve,wordpress,wp-core,medium
tags: cve,wordpress,wp-core,high

http:
- method: GET
Expand Down
4 changes: 2 additions & 2 deletions nuclei-templates/2007/CVE-2007-1894-6f396d18ad1fbb1948ad9473860ec9d1.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ info:
name: >
WordPress Core <= 2.1.2 - Cross-Site Scripting
author: topscoder
severity: medium
severity: high
description: >
Cross-site scripting (XSS) vulnerability in wp-includes/general-template.php in WordPress before 20070309 allows remote attackers to inject arbitrary web script or HTML via the year parameter in the wp_title function.
reference:
Expand All @@ -15,7 +15,7 @@ info:
cve-id: CVE-2007-1894
metadata:
shodan-query: 'vuln:CVE-2007-1894'
tags: cve,wordpress,wp-core,medium
tags: cve,wordpress,wp-core,high

http:
- method: GET
Expand Down
4 changes: 2 additions & 2 deletions nuclei-templates/2007/CVE-2007-1897-be037ab5b01a52fa0b9478e50ded7b01.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ info:
name: >
WordPress Core < 2.1.3 - SQL Injection
author: topscoder
severity: high
severity: critical
description: >
SQL injection vulnerability in xmlrpc (xmlrpc.php) in WordPress 2.1.2, and probably earlier, allows remote authenticated users to execute arbitrary SQL commands via a string parameter value in an XML RPC mt.setPostCategories method call, related to the post_id variable.
reference:
Expand All @@ -15,7 +15,7 @@ info:
cve-id: CVE-2007-1897
metadata:
shodan-query: 'vuln:CVE-2007-1897'
tags: cve,wordpress,wp-core,high
tags: cve,wordpress,wp-core,critical

http:
- method: GET
Expand Down
4 changes: 2 additions & 2 deletions nuclei-templates/2007/CVE-2007-2627-141c7f9cf7e30f994110491cc5e7c119.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ info:
name: >
WordPress Core <= 2.2 - Cross-Site Scripting
author: topscoder
severity: medium
severity: high
description: >
Cross-site scripting (XSS) vulnerability in sidebar.php in WordPress, when custom 404 pages that call get_sidebar are used, allows remote attackers to inject arbitrary web script or HTML via the query string (PHP_SELF), a different vulnerability than CVE-2007-1622.
reference:
Expand All @@ -15,7 +15,7 @@ info:
cve-id: CVE-2007-2627
metadata:
shodan-query: 'vuln:CVE-2007-2627'
tags: cve,wordpress,wp-core,medium
tags: cve,wordpress,wp-core,high

http:
- method: GET
Expand Down
4 changes: 2 additions & 2 deletions nuclei-templates/2007/CVE-2007-2714-0b8de7e6634f1364f8cfc6fe68a06736.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ info:
name: >
Akismet Spam Protection < 2.0.2 - Cross-Site Scripting
author: topscoder
severity: medium
severity: high
description: >
The Akismet Spam Protection plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the _wp_http_referer’ parameter in versions before 2.0.2 due to insufficient input sanitization and output escaping. This makes it possible for attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
reference:
Expand All @@ -17,7 +17,7 @@ info:
fofa-query: "wp-content/plugins/akismet/"
google-query: inurl:"/wp-content/plugins/akismet/"
shodan-query: 'vuln:CVE-2007-2714'
tags: cve,wordpress,wp-plugin,akismet,medium
tags: cve,wordpress,wp-plugin,akismet,high

http:
- method: GET
Expand Down
Loading

0 comments on commit fb15470

Please sign in to comment.