Skip to content
This repository has been archived by the owner on Oct 16, 2024. It is now read-only.

Commit

Permalink
Fluff up home page
Browse files Browse the repository at this point in the history
  • Loading branch information
@gracefeng05
gracefeng05 committed May 28, 2024
1 parent 886cc65 commit 2be81a9
Show file tree
Hide file tree
Showing 11 changed files with 36 additions and 21 deletions.
7 changes: 7 additions & 0 deletions content/_index.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,4 +4,11 @@ description: A Collection of our Completed CVEXes
layout: single
---

This static HUGO website serves as a database of completed CVEXes. These CVEXes were created by Team Kruegel & Vigna, 4 undergraduate researchers affiliated with UCSB's Early Research Scholars Program 2023-2024 cohort.

# What is a CVEX?
CVEX is an executable that runs a software exploit and outputs relevant data in the form of network traffic. Each CVEX is packaged in the form of a Docker container, which has the benefit of being convenient and compatible with any operating system. As a result, CVEXes can be run and analyzed by any person curious to understand the workings of a software vulnerability.

{{< CVEX-links >}}

*Special thanks to Noah Spahn, Professor Giovanni Vigna, and Professor Christopher Kruegel, and UCSB SecLab.*
2 changes: 1 addition & 1 deletion public/404.html
View file
Original file line number Diff line number Diff line change
Expand Up @@ -66,7 +66,7 @@ <h1 class="post-title">404 — Page not found...</h1>
</main>
<footer class="site-footer">
<p class="buildinfo">
<time datetime="2024-05-27 18:12:07 PDT">Site built on: 2024-05-27 18:12:07 PDT</time>
<time datetime="2024-05-27 18:16:13 PDT">Site built on: 2024-05-27 18:16:13 PDT</time>
</p>
<div class="copyright">
<p></p>
Expand Down
2 changes: 1 addition & 1 deletion public/CVEX-2017-1000499/index.html
View file
Original file line number Diff line number Diff line change
Expand Up @@ -81,7 +81,7 @@ <h1 class="post-title"><a href="http://localhost:1313/CVEX-2017-1000499/">CVEX-2
</main>
<footer class="site-footer">
<p class="buildinfo">
<time datetime="2024-05-27 18:13:16 PDT">Site built on: 2024-05-27 18:13:16 PDT</time>
<time datetime="2024-05-27 18:16:13 PDT">Site built on: 2024-05-27 18:16:13 PDT</time>
</p>
<div class="copyright">
<p></p>
Expand Down
2 changes: 1 addition & 1 deletion public/CVEX-2023-28155/index.html
View file
Original file line number Diff line number Diff line change
Expand Up @@ -81,7 +81,7 @@ <h1 class="post-title"><a href="http://localhost:1313/CVEX-2023-28155/">CVEX-202
</main>
<footer class="site-footer">
<p class="buildinfo">
<time datetime="2024-05-27 18:13:21 PDT">Site built on: 2024-05-27 18:13:21 PDT</time>
<time datetime="2024-05-27 18:16:13 PDT">Site built on: 2024-05-27 18:16:13 PDT</time>
</p>
<div class="copyright">
<p></p>
Expand Down
2 changes: 1 addition & 1 deletion public/CVEX-2023-31419/index.html
View file
Original file line number Diff line number Diff line change
Expand Up @@ -81,7 +81,7 @@ <h1 class="post-title"><a href="http://localhost:1313/CVEX-2023-31419/">CVEX-202
</main>
<footer class="site-footer">
<p class="buildinfo">
<time datetime="2024-05-27 18:13:23 PDT">Site built on: 2024-05-27 18:13:23 PDT</time>
<time datetime="2024-05-27 18:16:13 PDT">Site built on: 2024-05-27 18:16:13 PDT</time>
</p>
<div class="copyright">
<p></p>
Expand Down
2 changes: 1 addition & 1 deletion public/categories/index.html
View file
Original file line number Diff line number Diff line change
Expand Up @@ -67,7 +67,7 @@ <h1 class="post-title">
</main>
<footer class="site-footer">
<p class="buildinfo">
<time datetime="2024-05-27 18:12:07 PDT">Site built on: 2024-05-27 18:12:07 PDT</time>
<time datetime="2024-05-27 18:16:13 PDT">Site built on: 2024-05-27 18:16:13 PDT</time>
</p>
<div class="copyright">
<p></p>
Expand Down
8 changes: 4 additions & 4 deletions public/cvex/index.html
View file
Original file line number Diff line number Diff line change
Expand Up @@ -61,9 +61,9 @@ <h1>CVEXs</h1></header>

<div class="post-content">
<h2>See</h2><div class="post-entries">
<div class="item"><a href="http://localhost:1313/CVEX-2017-1000499/"><h2>CVEX-2017-1000499</h2></a><p class="post-meta"><span>2021-12-19</span></p><p class="post-description">phpMyAdmin versions 4.7.x (prior to 4.7.6.1/4.7.7) are vulnerable to a CSRF weakness. By deceiving a user to click on a crafted URL, it is possible to perform harmful database operations such as deleting records, dropping/truncating tables etc.</p></div>
<div class="item"><a href="http://localhost:1313/CVEX-2023-28155/"><h2>CVEX-2023-28155</h2></a><p class="post-meta"><span>2021-12-19</span></p><p class="post-description">The Request package through 2.88.1 for Node.js allows a bypass of SSRF mitigations via an attacker-controller server that does a cross-protocol redirect (HTTP to HTTPS, or HTTPS to HTTP). This vulnerability only affects products that are no longer supported by the maintainer.</p></div>
<div class="item"><a href="http://localhost:1313/CVEX-2023-31419/"><h2>CVEX-2023-31419</h2></a><p class="post-meta"><span>2021-12-19</span></p><p class="post-description">A flaw was discovered in Elasticsearch, affecting the _search API that allowed a specially crafted query string to cause a Stack Overflow and ultimately a Denial of Service.</p></div>
<div class="item"><a href="http://localhost:1313/CVEX-2017-1000499/"><h2>CVEX-2017-1000499</h2></a><p class="post-meta"><span>2024-05-27</span></p><p class="post-description">phpMyAdmin versions 4.7.x (prior to 4.7.6.1/4.7.7) are vulnerable to a CSRF weakness. By deceiving a user to click on a crafted URL, it is possible to perform harmful database operations such as deleting records, dropping/truncating tables etc.</p></div>
<div class="item"><a href="http://localhost:1313/CVEX-2023-28155/"><h2>CVEX-2023-28155</h2></a><p class="post-meta"><span>2024-05-27</span></p><p class="post-description">The Request package through 2.88.1 for Node.js allows a bypass of SSRF mitigations via an attacker-controller server that does a cross-protocol redirect (HTTP to HTTPS, or HTTPS to HTTP). This vulnerability only affects products that are no longer supported by the maintainer.</p></div>
<div class="item"><a href="http://localhost:1313/CVEX-2023-31419/"><h2>CVEX-2023-31419</h2></a><p class="post-meta"><span>2024-05-27</span></p><p class="post-description">A flaw was discovered in Elasticsearch, affecting the _search API that allowed a specially crafted query string to cause a Stack Overflow and ultimately a Denial of Service.</p></div>
</div>

</div>
Expand All @@ -73,7 +73,7 @@ <h2>See</h2><div class="post-entries">
</main>
<footer class="site-footer">
<p class="buildinfo">
<time datetime="2024-05-27 18:12:07 PDT">Site built on: 2024-05-27 18:12:07 PDT</time>
<time datetime="2024-05-27 18:16:13 PDT">Site built on: 2024-05-27 18:16:13 PDT</time>
</p>
<div class="copyright">
<p></p>
Expand Down
8 changes: 4 additions & 4 deletions public/cvex/index.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,11 +6,11 @@
<description>Recent content in CVEXs on CVEX</description>
<generator>Hugo -- gohugo.io</generator>
<language>en-us</language>
<lastBuildDate>Sun, 19 Dec 2021 20:39:39 -0800</lastBuildDate><atom:link href="http://localhost:1313/cvex/index.xml" rel="self" type="application/rss+xml" />
<lastBuildDate>Mon, 27 May 2024 15:34:00 -0700</lastBuildDate><atom:link href="http://localhost:1313/cvex/index.xml" rel="self" type="application/rss+xml" />
<item>
<title>CVEX-2017-1000499</title>
<link>http://localhost:1313/CVEX-2017-1000499/</link>
<pubDate>Sun, 19 Dec 2021 20:39:39 -0800</pubDate>
<pubDate>Mon, 27 May 2024 15:34:00 -0700</pubDate>

<guid>http://localhost:1313/CVEX-2017-1000499/</guid>
<description>Description goes here.</description>
Expand All @@ -20,7 +20,7 @@
<item>
<title>CVEX-2023-28155</title>
<link>http://localhost:1313/CVEX-2023-28155/</link>
<pubDate>Sun, 19 Dec 2021 20:39:39 -0800</pubDate>
<pubDate>Mon, 27 May 2024 15:34:00 -0700</pubDate>

<guid>http://localhost:1313/CVEX-2023-28155/</guid>
<description>Description goes here.</description>
Expand All @@ -30,7 +30,7 @@
<item>
<title>CVEX-2023-31419</title>
<link>http://localhost:1313/CVEX-2023-31419/</link>
<pubDate>Sun, 19 Dec 2021 20:39:39 -0800</pubDate>
<pubDate>Mon, 27 May 2024 15:34:00 -0700</pubDate>

<guid>http://localhost:1313/CVEX-2023-31419/</guid>
<description>Description goes here.</description>
Expand Down
12 changes: 10 additions & 2 deletions public/index.html
View file
Original file line number Diff line number Diff line change
Expand Up @@ -61,7 +61,14 @@ <h1 class="post-title"><a href="http://localhost:1313/">Common Vulnerability and
<p class="post-description">A Collection of our Completed CVEXes</p>
</header>
<div class="post-content">
<ul>
<p>This static HUGO website serves as a database of completed CVEXes. These CVEXes were created by Team Kruegel &amp; Vigna, 4 undergraduate researchers affiliated with UCSB&rsquo;s Early Research Scholars Program 2023-2024 cohort.</p>

<h1 id="what-is-a-cvex">
What is a CVEX?
<a href="#what-is-a-cvex" class="hanchor" ariaLabel="Anchor"></a>
</h1>
<p>CVEX is an executable that runs a software exploit and outputs relevant data in the form of network traffic. Each CVEX is packaged in the form of a Docker container, which has the benefit of being convenient and compatible with any operating system. As a result, CVEXes can be run and analyzed by any person curious to understand the workings of a software vulnerability.</p>
<ul>


<li>
Expand All @@ -83,6 +90,7 @@ <h1 class="post-title"><a href="http://localhost:1313/">Common Vulnerability and

</ul>

<p><em>Special thanks to Noah Spahn, Professor Giovanni Vigna, and Professor Christopher Kruegel, and UCSB SecLab.</em></p>

</div>

Expand All @@ -93,7 +101,7 @@ <h1 class="post-title"><a href="http://localhost:1313/">Common Vulnerability and
</main>
<footer class="site-footer">
<p class="buildinfo">
<time datetime="2024-05-27 18:13:23 PDT">Site built on: 2024-05-27 18:13:23 PDT</time>
<time datetime="2024-05-27 18:16:13 PDT">Site built on: 2024-05-27 18:16:13 PDT</time>
</p>
<div class="copyright">
<p></p>
Expand Down
10 changes: 5 additions & 5 deletions public/sitemap.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,19 +3,19 @@
xmlns:xhtml="http://www.w3.org/1999/xhtml">
<url>
<loc>http://localhost:1313/CVEX-2017-1000499/</loc>
<lastmod>2021-12-19T20:39:39-08:00</lastmod>
<lastmod>2024-05-27T15:34:00-07:00</lastmod>
</url><url>
<loc>http://localhost:1313/CVEX-2023-28155/</loc>
<lastmod>2021-12-19T20:39:39-08:00</lastmod>
<lastmod>2024-05-27T15:34:00-07:00</lastmod>
</url><url>
<loc>http://localhost:1313/CVEX-2023-31419/</loc>
<lastmod>2021-12-19T20:39:39-08:00</lastmod>
<lastmod>2024-05-27T15:34:00-07:00</lastmod>
</url><url>
<loc>http://localhost:1313/</loc>
<lastmod>2021-12-19T20:39:39-08:00</lastmod>
<lastmod>2024-05-27T15:34:00-07:00</lastmod>
</url><url>
<loc>http://localhost:1313/cvex/</loc>
<lastmod>2021-12-19T20:39:39-08:00</lastmod>
<lastmod>2024-05-27T15:34:00-07:00</lastmod>
</url><url>
<loc>http://localhost:1313/categories/</loc>
</url><url>
Expand Down
2 changes: 1 addition & 1 deletion public/tags/index.html
View file
Original file line number Diff line number Diff line change
Expand Up @@ -67,7 +67,7 @@ <h1 class="post-title">
</main>
<footer class="site-footer">
<p class="buildinfo">
<time datetime="2024-05-27 18:12:07 PDT">Site built on: 2024-05-27 18:12:07 PDT</time>
<time datetime="2024-05-27 18:16:13 PDT">Site built on: 2024-05-27 18:16:13 PDT</time>
</p>
<div class="copyright">
<p></p>
Expand Down

0 comments on commit 2be81a9

Please sign in to comment.