up PoCs 2022-08-17

Author: hktalent

config/nuclei-templates/cves/2002/CVE-2002-1131.yaml

@@ -1,17 +1,18 @@
 id: CVE-2002-1131
 
 info:
-  name: SquirrelMail 1.2.6/1.2.7 - Multiple Cross-Site Scripting Vulnerabilities
+  name: SquirrelMail 1.2.6/1.2.7 - Cross-Site Scripting
   author: dhiyaneshDk
   severity: medium
-  description: The Virtual Keyboard plugin for SquirrelMail is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input.
+  description: The Virtual Keyboard plugin for SquirrelMail 1.2.6/1.2.7 is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input.
   reference:
     - http://www.redhat.com/support/errata/RHSA-2002-204.html
     - http://www.debian.org/security/2002/dsa-191
     - http://sourceforge.net/project/shownotes.php?group_id=311&release_id=110774
     - https://www.exploit-db.com/exploits/21811
     - https://web.archive.org/web/20051124131714/http://archives.neohapsis.com/archives/bugtraq/2002-09/0246.html
     - http://web.archive.org/web/20210129020617/https://www.securityfocus.com/bid/5763/
+    - https://nvd.nist.gov/vuln/detail/CVE-2002-1131
   classification:
     cve-id: CVE-2002-1131
   tags: xss,squirrelmail,cve,cve2002
@@ -41,3 +42,5 @@ requests:
         part: header
         words:
           - "text/html"
+
+# Enhanced by mp on 2022/08/12

config/nuclei-templates/cves/2005/CVE-2005-4385.yaml

@@ -1,14 +1,14 @@
 id: CVE-2005-4385
 
 info:
-  name: Cofax <= 2.0RC3 XSS
+  name: Cofax <=2.0RC3 - Cross-Site Scripting
   author: geeknik
   severity: medium
-  description: Cross-site scripting vulnerability in search.htm in Cofax 2.0 RC3 and earlier allows remote attackers to inject arbitrary web script or HTML via the searchstring parameter.
+  description: Cofax 2.0 RC3 and earlier contains a cross-site scripting vulnerability in search.htm which allows remote attackers to inject arbitrary web script or HTML via the searchstring parameter.
   reference:
     - http://pridels0.blogspot.com/2005/12/cofax-xss-vuln.html
-    - https://nvd.nist.gov/vuln/detail/CVE-2005-4385
     - http://web.archive.org/web/20210121165100/https://www.securityfocus.com/bid/15940/
+    - https://nvd.nist.gov/vuln/detail/CVE-2005-4385
   classification:
     cve-id: CVE-2005-4385
   tags: cofax,xss,cve,cve2005
@@ -27,3 +27,5 @@ requests:
         part: body
         words:
           - "'>\"</script><script>alert(document.domain)</script>"
+
+# Enhanced by mp on 2022/08/12

config/nuclei-templates/cves/2006/CVE-2006-1681.yaml

@@ -1,15 +1,15 @@
 id: CVE-2006-1681
 
 info:
-  name: Cherokee HTTPD <=0.5 XSS
+  name: Cherokee HTTPD <=0.5 - Cross-Site Scripting
   author: geeknik
   severity: medium
-  description: Cross-site scripting (XSS) vulnerability in Cherokee HTTPD 0.5 and earlier allows remote attackers to inject arbitrary web script or HTML via a malformed request that generates an HTTP 400 error, which is not properly handled when the error message is generated.
+  description: Cherokee HTTPD 0.5 and earlier contains a cross-site scripting vulnerability which allows remote attackers to inject arbitrary web script or HTML via a malformed request that generates an HTTP 400 error, which is not properly handled when the error message is generated.
   reference:
     - http://web.archive.org/web/20210217161726/https://www.securityfocus.com/bid/17408/
-    - https://nvd.nist.gov/vuln/detail/CVE-2006-1681
     - http://web.archive.org/web/20140803090438/http://secunia.com/advisories/19587/
     - http://www.vupen.com/english/advisories/2006/1292
+    - https://nvd.nist.gov/vuln/detail/CVE-2006-1681
   classification:
     cve-id: CVE-2006-1681
   tags: cherokee,httpd,xss,cve,cve2006
@@ -32,3 +32,5 @@ requests:
         part: header
         words:
           - text/html
+
+# Enhanced by mp on 2022/08/12

config/nuclei-templates/cves/2007/CVE-2007-0885.yaml

@@ -1,14 +1,15 @@
 id: CVE-2007-0885
 
 info:
-  name: Rainbow.Zen Jira XSS
+  name: Jira Rainbow.Zen - Cross-Site Scripting
   author: geeknik
   severity: medium
-  description: Cross-site scripting (XSS) vulnerability in jira/secure/BrowseProject.jspa in Rainbow with the Zen (Rainbow.Zen) extension allows remote attackers to inject arbitrary web script or HTML via the id parameter.
+  description: Jira Rainbow.Zen contains a cross-site scripting vulnerability via Jira/secure/BrowseProject.jspa which allows remote attackers to inject arbitrary web script or HTML via the id parameter.
   reference:
     - http://web.archive.org/web/20201208220614/https://www.securityfocus.com/archive/1/459590/100/0/threaded
     - https://web.archive.org/web/20210119080228/http://www.securityfocus.com/bid/22503
     - https://exchange.xforce.ibmcloud.com/vulnerabilities/32418
+    - https://nvd.nist.gov/vuln/detail/CVE-2007-0885
   classification:
     cve-id: CVE-2007-0885
   tags: cve,cve2007,jira,xss
@@ -32,3 +33,5 @@ requests:
         part: header
         words:
           - "text/html"
+
+# Enhanced by mp on 2022/08/12

config/nuclei-templates/cves/2007/CVE-2007-5728.yaml

@@ -1,15 +1,16 @@
 id: CVE-2007-5728
 
 info:
-  name: phpPgAdmin 4.1.1 - 'Redirect.php' Cross-Site Scripting
+  name: phpPgAdmin <=4.1.1 - Cross-Site Scripting
   author: dhiyaneshDK
   severity: medium
-  description: Cross-site scripting (XSS) vulnerability in phpPgAdmin 3.5 to 4.1.1, and possibly 4.1.2, allows remote attackers to inject arbitrary web script or HTML via certain input available in PHP_SELF in (1) redirect.php, possibly related to (2) login.php, different vectors than CVE-2007-2865.
+  description: phpPgAdmin 3.5 to 4.1.1, and possibly 4.1.2, is vulnerable to cross-site scripting and allows remote attackers to inject arbitrary web script or HTML via certain input available in PHP_SELF in (1) redirect.php, possibly related to (2) login.php, which are different vectors than CVE-2007-2865.
   reference:
     - https://www.exploit-db.com/exploits/30090
     - http://lists.grok.org.uk/pipermail/full-disclosure/2007-May/063617.html
     - http://web.archive.org/web/20210130131735/https://www.securityfocus.com/bid/24182/
     - http://web.archive.org/web/20161220160642/http://secunia.com/advisories/25446/
+    - https://nvd.nist.gov/vuln/detail/CVE-2007-5728
   classification:
     cve-id: CVE-2007-5728
   metadata:
@@ -36,3 +37,5 @@ requests:
         part: header
         words:
           - "text/html"
+
+# Enhanced by mp on 2022/08/12

config/nuclei-templates/cves/2008/CVE-2008-2398.yaml

@@ -1,15 +1,16 @@
 id: CVE-2008-2398
 
 info:
-  name: AppServ Open Project 2.5.10 and earlier XSS
+  name: AppServ Open Project <=2.5.10 - Cross-Site Scripting
   author: unstabl3
   severity: medium
-  description: Cross-site scripting (XSS) vulnerability in index.php in AppServ Open Project 2.5.10 and earlier allows remote attackers to inject arbitrary web script or HTML via the appservlang parameter.
+  description: AppServ Open Project 2.5.10 and earlier contains a cross-site scripting vulnerability in index.php which allows remote attackers to inject arbitrary web script or HTML via the appservlang parameter.
   reference:
     - https://exchange.xforce.ibmcloud.com/vulnerabilities/42546
     - http://web.archive.org/web/20210121181851/https://www.securityfocus.com/bid/29291/
     - http://web.archive.org/web/20140724110348/http://secunia.com/advisories/30333/
     - http://securityreason.com/securityalert/3896
+    - https://nvd.nist.gov/vuln/detail/CVE-2008-2398
   classification:
     cve-id: CVE-2008-2398
   tags: cve,cve2008,xss
@@ -33,3 +34,5 @@ requests:
         words:
           - "text/html"
         part: header
+
+# Enhanced by mp on 2022/08/12

config/nuclei-templates/cves/2009/CVE-2009-1872.yaml

@@ -1,15 +1,16 @@
 id: CVE-2009-1872
 
 info:
-  name: Adobe Coldfusion 8 linked XSS vulnerabilies
+  name: Adobe Coldfusion <=8.0.1 - Cross-Site Scripting
   author: princechaddha
   severity: medium
-  description: Multiple cross-site scripting (XSS) vulnerabilities in Adobe ColdFusion Server 8.0.1, 8, and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the startRow parameter to administrator/logviewer/searchlog.cfm, or the query string to (2) wizards/common/_logintowizard.cfm, (3) wizards/common/_authenticatewizarduser.cfm, or (4) administrator/enter.cfm.
+  description: Adobe ColdFusion Server 8.0.1 and earlier contain multiple cross-site scripting vulnerabilities which allow remote attackers to inject arbitrary web script or HTML via (1) the startRow parameter to administrator/logviewer/searchlog.cfm, or the query string to (2) wizards/common/_logintowizard.cfm, (3) wizards/common/_authenticatewizarduser.cfm, or (4) administrator/enter.cfm.
   reference:
     - https://web.archive.org/web/20201208121904/https://www.securityfocus.com/archive/1/505803/100/0/threaded
     - https://www.tenable.com/cve/CVE-2009-1872
     - http://www.adobe.com/support/security/bulletins/apsb09-12.html
     - http://www.dsecrg.com/pages/vul/show.php?id=122
+    - https://nvd.nist.gov/vuln/detail/CVE-2009-1872
   classification:
     cve-id: CVE-2009-1872
   metadata:
@@ -37,3 +38,5 @@ requests:
       - type: status
         status:
           - 200
+
+# Enhanced by mp on 2022/08/12

config/nuclei-templates/cves/2013/CVE-2013-6281.yaml

@@ -1,16 +1,17 @@
 id: CVE-2013-6281
 
 info:
-  name: WordPress Spreadsheet - dhtmlxspreadsheet Plugin Reflected XSS
+  name: WordPress Spreadsheet - Cross-Site Scripting
   author: random-robbie
   severity: medium
   description: |
-    The dhtmlxspreadsheet WordPress plugin was affected by a /dhtmlxspreadsheet/codebase/spreadsheet.php page Parameter Reflected XSS security vulnerability.
+    WordPress Spreadsheet plugin contains a reflected cross-site scripting vulnerability in /dhtmlxspreadsheet/codebase/spreadsheet.php.
   reference:
     - https://wpscan.com/vulnerability/49785932-f4e0-4aaa-a86c-4017890227bf
     - http://web.archive.org/web/20210213174519/https://www.securityfocus.com/bid/63256/
     - https://wordpress.org/plugins/dhtmlxspreadsheet/
     - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6281
+    - https://nvd.nist.gov/vuln/detail/CVE-2013-6281
   classification:
     cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
     cvss-score: 6.1
@@ -44,3 +45,5 @@ requests:
       - type: status
         status:
           - 200
+
+# Enhanced by mp on 2022/08/12

config/nuclei-templates/cves/2015/CVE-2015-1880.yaml

@@ -1,15 +1,15 @@
 id: CVE-2015-1880
 
 info:
-  name: XSS in Fortigates SSL VPN login page
+  name: Fortinet FortiOS <=5.2.3 - Cross-Site Scripting
   author: pikpikcu
   severity: medium
-  description: Cross-site scripting (XSS) vulnerability in the sslvpn login page in Fortinet FortiOS 5.2.x before 5.2.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
+  description: Fortinet FortiOS 5.2.x before 5.2.3 contains a cross-site scripting vulnerability in the SSL VPN login page which allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
   reference:
-    - https://nvd.nist.gov/vuln/detail/CVE-2015-1880
     - https://www.c2.lol/articles/xss-in-fortigates-ssl-vpn-login-page
     - http://www.fortiguard.com/advisory/FG-IR-15-005/
     - http://web.archive.org/web/20210122155324/https://www.securityfocus.com/bid/74652/
+    - https://nvd.nist.gov/vuln/detail/CVE-2015-1880
   classification:
     cve-id: CVE-2015-1880
   tags: cve,cve2015,xss,fortigates,ssl
@@ -35,3 +35,5 @@ requests:
         words:
           - "text/html"
         part: header
+
+# Enhanced by mp on 2022/08/12

config/nuclei-templates/cves/2015/CVE-2015-2068.yaml

@@ -1,14 +1,14 @@
 id: CVE-2015-2068
 
 info:
-  name: Magento Server Magmi Plugin - Cross Site Scripting
+  name: Magento Server Mass Importer - Cross-Site Scripting
   author: daffainfo
   severity: medium
-  description: Multiple cross-site scripting (XSS) vulnerabilities in the MAGMI (aka Magento Mass Importer) plugin for Magento Server allow remote attackers to inject arbitrary web script or HTML via the (1) profile parameter to web/magmi.php or (2) QUERY_STRING to web/magmi_import_run.php.
+  description: Magento Server Mass Importer plugin contains multiple cross-site scripting vulnerabilities which allow remote attackers to inject arbitrary web script or HTML via the (1) profile parameter to web/magmi.php or (2) QUERY_STRING to web/magmi_import_run.php.
   reference:
     - https://www.exploit-db.com/exploits/35996
-    - https://nvd.nist.gov/vuln/detail/CVE-2015-2068
     - http://packetstormsecurity.com/files/130250/Magento-Server-MAGMI-Cross-Site-Scripting-Local-File-Inclusion.html
+    - https://nvd.nist.gov/vuln/detail/CVE-2015-2068
   classification:
     cve-id: CVE-2015-2068
   metadata:
@@ -36,3 +36,5 @@ requests:
       - type: status
         status:
           - 200
+
+# Enhanced by mp on 2022/08/12

config/nuclei-templates/cves/2015/CVE-2015-2807.yaml

@@ -1,15 +1,15 @@
 id: CVE-2015-2807
 
 info:
-  name: Navis DocumentCloud 0.1 - Unauthenticated Reflected Cross-Site Scripting (XSS)
+  name: Navis DocumentCloud <0.1.1 - Cross-Site Scripting
   author: daffainfo
   severity: medium
-  description: Cross-site scripting (XSS) vulnerability in js/window.php in the Navis DocumentCloud plugin before 0.1.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the wpbase parameter.
+  description: Navis DocumentCloud plugin before 0.1.1 for WordPress contains a reflected cross-site scripting vulnerability in js/window.php which allows remote attackers to inject arbitrary web script or HTML via the wpbase parameter.
   reference:
     - https://advisories.dxw.com/advisories/publicly-exploitable-xss-in-wordpress-plugin-navis-documentcloud/
-    - https://nvd.nist.gov/vuln/detail/CVE-2015-2807
     - https://security.dxw.com/advisories/publicly-exploitable-xss-in-wordpress-plugin-navis-documentcloud/
     - https://wordpress.org/plugins/navis-documentcloud/changelog/
+    - https://nvd.nist.gov/vuln/detail/CVE-2015-2807
   classification:
     cve-id: CVE-2015-2807
   metadata:
@@ -36,3 +36,5 @@ requests:
       - type: status
         status:
           - 200
+
+# Enhanced by mp on 2022/08/12

config/nuclei-templates/cves/2015/CVE-2015-6477.yaml

@@ -1,10 +1,10 @@
 id: CVE-2015-6477
 
 info:
-  name: Nordex NC2 'username' Parameter XSS
+  name: Nordex NC2  - Cross-Site Scripting
   author: geeknik
   severity: medium
-  description: An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based authentication credentials and launch other attacks.
+  description: Nordex NC2 contains a cross-site scripting vulnerability which allows an attacker to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based authentication credentials and launch other attacks.
   reference:
     - https://seclists.org/fulldisclosure/2015/Dec/117
     - https://ics-cert.us-cert.gov/advisories/ICSA-15-286-01
@@ -30,3 +30,5 @@ requests:
         part: body
         words:
           - "</script><script>alert('{{randstr}}')</script>"
+
+# Enhanced by mp on 2022/08/12

config/nuclei-templates/cves/2015/CVE-2015-6544.yaml

@@ -1,16 +1,16 @@
 id: CVE-2015-6544
 
 info:
-  name: iTop XSS
+  name: Combodo iTop <2.2.0-2459 - Cross-Site Scripting
   author: pikpikcu
   severity: medium
   description: |
-    Cross-site scripting (XSS) vulnerability in application/dashboard.class.inc.php in Combodo iTop before 2.2.0-2459 allows remote attackers to inject arbitrary web script or HTML via a dashboard title.
+    Combodo iTop before 2.2.0-2459 contains a cross-site scripting vulnerability in application/dashboard.class.inc.php which allows remote attackers to inject arbitrary web script or HTML via a dashboard title.
   reference:
-    - https://nvd.nist.gov/vuln/detail/CVE-2015-6544
     - https://www.htbridge.com/advisory/HTB23268
     - http://sourceforge.net/p/itop/tickets/1114/
     - http://sourceforge.net/p/itop/code/3662/
+    - https://nvd.nist.gov/vuln/detail/CVE-2015-6544
   classification:
     cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
     cvss-score: 6.1
@@ -38,3 +38,5 @@ requests:
         part: header
         words:
           - text/html
+
+# Enhanced by mp on 2022/08/12

config/nuclei-templates/cves/2015/CVE-2015-6920.yaml

@@ -1,15 +1,14 @@
 id: CVE-2015-6920
 
 info:
-  name: sourceAFRICA <= 0.1.3 - Unauthenticated Cross-Site Scripting (XSS)
+  name: WordPress sourceAFRICA <=0.1.3 - Cross-Site Scripting
   author: daffainfo
   severity: medium
-  description: WordPress sourceAFRICA plugin version 0.1.3 suffers from a cross site scripting vulnerability.
+  description: WordPress sourceAFRICA plugin version 0.1.3 contains a cross-site scripting vulnerability.
   reference:
-    - https://packetstormsecurity.com/files/133371/
-    - https://nvd.nist.gov/vuln/detail/CVE-2015-6920
     - http://packetstormsecurity.com/files/133371/WordPress-sourceAFRICA-0.1.3-Cross-Site-Scripting.html
     - https://wpvulndb.com/vulnerabilities/8169
+    - https://nvd.nist.gov/vuln/detail/CVE-2015-6920
   classification:
     cve-id: CVE-2015-6920
   tags: cve,cve2015,wordpress,wp-plugin,xss
@@ -34,3 +33,5 @@ requests:
       - type: status
         status:
           - 200
+
+# Enhanced by mp on 2022/08/12

config/nuclei-templates/cves/2015/CVE-2015-7377.yaml

@@ -1,15 +1,15 @@
 id: CVE-2015-7377
 
 info:
-  name: Pie-Register <= 2.0.18 - Unauthenticated Reflected Cross-Site Scripting (XSS)
+  name: WordPress Pie-Register <2.0.19 - Cross-Site Scripting
   author: daffainfo
   severity: medium
-  description: Cross-site scripting (XSS) vulnerability in pie-register/pie-register.php in the Pie Register plugin before 2.0.19 for WordPress allows remote attackers to inject arbitrary web script or HTML via the invitaion_code parameter in a pie-register page to the default URI.
+  description: WordPress Pie Register before 2.0.19 contains a reflected cross-site scripting vulnerability in pie-register/pie-register.php which allows remote attackers to inject arbitrary web script or HTML via the invitaion_code parameter in a pie-register page to the default URL.
   reference:
     - https://packetstormsecurity.com/files/133928/WordPress-Pie-Register-2.0.18-Cross-Site-Scripting.html
+    - https://github.com/GTSolutions/Pie-Register/blob/2.0.19/readme.txt
     - https://nvd.nist.gov/vuln/detail/CVE-2015-7377
     - http://packetstormsecurity.com/files/133928/WordPress-Pie-Register-2.0.18-Cross-Site-Scripting.html
-    - https://github.com/GTSolutions/Pie-Register/blob/2.0.19/readme.txt
   classification:
     cve-id: CVE-2015-7377
   tags: cve,cve2015,wordpress,wp-plugin,xss
@@ -34,3 +34,5 @@ requests:
       - type: status
         status:
           - 200
+
+# Enhanced by mp on 2022/08/12

config/nuclei-templates/cves/2015/CVE-2015-8349.yaml

@@ -1,14 +1,14 @@
 id: CVE-2015-8349
 
 info:
-  name: SourceBans XSS
+  name: SourceBans <2.0 - Cross-Site Scripting
   author: pikpikcu
   severity: medium
-  description: Cross-site scripting (XSS) vulnerability in SourceBans before 2.0 pre-alpha allows remote attackers to inject arbitrary web script or HTML via the advSearch parameter to index.php.
+  description: SourceBans before 2.0 contains a cross-site scripting vulnerability which allows remote attackers to inject arbitrary web script or HTML via the advSearch parameter to index.php.
   reference:
-    - https://nvd.nist.gov/vuln/detail/CVE-2015-8349
     - https://www.htbridge.com/advisory/HTB23273
     - http://web.archive.org/web/20201207072921/https://www.securityfocus.com/archive/1/537018/100/0/threaded
+    - https://nvd.nist.gov/vuln/detail/CVE-2015-8349
   classification:
     cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
     cvss-score: 6.1
@@ -36,3 +36,5 @@ requests:
         part: header
         words:
           - text/
+
+# Enhanced by mp on 2022/08/12