cvex directory is now a table

data/cvex_data/cvex_v1.json

@@ -33,7 +33,8 @@
         "cvexid": "cvex-210825-006",
         "version": 1.0,
         "authors":["nvmb3r"],
-        "images": ["ghcr.io/ucsb-seclab/cvex-210825-006/target", "ghcr.io/ucsb-seclab/cvex-210825-006/exploiter"]
+        "images": ["ghcr.io/ucsb-seclab/cvex-210825-006/target", "ghcr.io/ucsb-seclab/cvex-210825-006/exploiter"],
+        "description": "Gitlist before 0.5.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the file name in the URI of a request for a (1) blame, (2) file, or (3) stats page, as demonstrated by requests to blame/master/, master/, and stats/master/."
     },
     {
         "id" : "CVEX-2018-16763",
@@ -42,7 +43,7 @@
         "version": 1.0,
         "authors":["nvmb3r"],
         "images": ["ghcr.io/ucsb-seclab/cvex-210825-007/target", "ghcr.io/ucsb-seclab/cvex-210825-007/exploiter"],
-        "description": "TBD"
+        "description": "FUEL CMS 1.4.1 allows PHP Code Evaluation via the pages/select/ filter parameter or the preview/ data parameter. This can lead to Pre-Auth Remote Code Execution."
     },
     {
         "id" : "CVEX-2015-2208",    
@@ -51,7 +52,7 @@
         "version": 1.0,
         "authors":["nvmb3r"],
         "images": ["ghcr.io/ucsb-seclab/cvex-210825-008/target", "ghcr.io/ucsb-seclab/cvex-210825-008/exploiter"],
-        "description": "TBD"
+        "description": "The saveObject function in moadmin.php in phpMoAdmin 1.1.2 allows remote attackers to execute arbitrary commands via shell metacharacters in the object parameter."
     },
     {
         "id" : "CVEX-2017-1000486",
@@ -60,7 +61,7 @@
         "authors":["nvmb3r"],
         "version": 1.0,
         "images": ["ghcr.io/ucsb-seclab/cvex-210825-009/target", "ghcr.io/ucsb-seclab/cvex-210825-009/exploiter"],
-        "description": "TBD"
+        "description": "Primetek Primefaces 5.x is vulnerable to a weak encryption flaw resulting in remote code execution"
     },
     {
         "id" : "CVEX-2019-16662",
@@ -69,7 +70,7 @@
         "authors":["fab1ano"],
         "version": 1.0,
         "images": ["ghcr.io/ucsb-seclab/cvex-210825-010/target", "ghcr.io/ucsb-seclab/cvex-210825-010/exploiter"],
-        "description": "TBD"
+        "description": "Discovered in rConfig 3.9.2. An attacker can directly execute system commands by sending a GET request to ajaxServerSettingsChk.php because the rootUname parameter is passed to the exec function without filtering ==> command execution."
     },
     {
         "id" : "CVEX-2019-16663",
@@ -78,7 +79,7 @@
         "authors":["fab1ano"],
         "version": 1.0,
         "images": ["ghcr.io/ucsb-seclab/cvex-210825-011/target", "ghcr.io/ucsb-seclab/cvex-210825-011/exploiter"],
-        "description": "TBD"
+        "description": "An issue was discovered in rConfig 3.9.2. An attacker can directly execute system commands by sending a GET request to search.crud.php because the catCommand parameter is passed to the exec function without filtering, which can lead to command execution."
     },
     {
         "id" : "CVEX-2020-25952",
@@ -87,7 +88,7 @@
         "authors":["fab1ano"],
         "version": 1.0,
         "images": ["ghcr.io/ucsb-seclab/cvex-210825-012/target", "ghcr.io/ucsb-seclab/cvex-210825-012/exploiter"],
-        "description": "TBD"
+        "description": "SQL injection vulnerability in PHPGurukul User Registration & Login and User Management System With admin panel 2.1 allows remote attackers to execute arbitrary SQL commands and bypass authentication"
     },
     {
         "id" : "CVEX-2020-35151",
@@ -96,7 +97,7 @@
         "authors":["fab1ano"],
         "version": 1.0,
         "images": ["ghcr.io/ucsb-seclab/cvex-210825-013/target", "ghcr.io/ucsb-seclab/cvex-210825-013/exploiter"],
-        "description": "TBD"
+        "description": "The Online Marriage Registration System 1.0 post parameter 'searchdata' in the user/search.php request is vulnerable to Time Based Sql Injection."
     },
     {
         "id" : "CVEX-2011-0751",

public/404.html

@@ -69,7 +69,7 @@ <h1 class="post-title">404 — Page not found...</h1>
         </main>
         <footer class="site-footer">
 <p class="buildinfo">
-  <time datetime="2024-06-01 19:24:39 PDT">Site built on: 2024-06-01 19:24:39 PDT</time>
+  <time datetime="2024-06-02 15:13:16 PDT">Site built on: 2024-06-02 15:13:16 PDT</time>
 </p>
 <div class="copyright">
   <p></p>

public/CVEX-2017-1000499/index.html

@@ -85,7 +85,7 @@ <h1 class="post-title"><a href="http://localhost:1313/CVEX-2017-1000499/">CVEX-2
         </main>
         <footer class="site-footer">
 <p class="buildinfo">
-  <time datetime="2024-06-01 19:24:39 PDT">Site built on: 2024-06-01 19:24:39 PDT</time>
+  <time datetime="2024-06-02 15:13:16 PDT">Site built on: 2024-06-02 15:13:16 PDT</time>
 </p>
 <div class="copyright">
   <p></p>

public/CVEX-2023-28155/index.html

@@ -85,7 +85,7 @@ <h1 class="post-title"><a href="http://localhost:1313/CVEX-2023-28155/">CVEX-202
         </main>
         <footer class="site-footer">
 <p class="buildinfo">
-  <time datetime="2024-06-01 19:24:39 PDT">Site built on: 2024-06-01 19:24:39 PDT</time>
+  <time datetime="2024-06-02 15:13:16 PDT">Site built on: 2024-06-02 15:13:16 PDT</time>
 </p>
 <div class="copyright">
   <p></p>

public/CVEX-2023-31419/index.html

@@ -85,7 +85,7 @@ <h1 class="post-title"><a href="http://localhost:1313/CVEX-2023-31419/">CVEX-202
         </main>
         <footer class="site-footer">
 <p class="buildinfo">
-  <time datetime="2024-06-01 19:24:39 PDT">Site built on: 2024-06-01 19:24:39 PDT</time>
+  <time datetime="2024-06-02 15:13:16 PDT">Site built on: 2024-06-02 15:13:16 PDT</time>
 </p>
 <div class="copyright">
   <p></p>

public/categories/index.html

@@ -70,7 +70,7 @@ <h1 class="post-title">
         </main>
         <footer class="site-footer">
 <p class="buildinfo">
-  <time datetime="2024-06-01 19:24:39 PDT">Site built on: 2024-06-01 19:24:39 PDT</time>
+  <time datetime="2024-06-02 15:13:16 PDT">Site built on: 2024-06-02 15:13:16 PDT</time>
 </p>
 <div class="copyright">
   <p></p>

public/cvex/index.html

@@ -80,7 +80,7 @@ <h2>See</h2><div class="post-entries">
         </main>
         <footer class="site-footer">
 <p class="buildinfo">
-  <time datetime="2024-06-01 19:24:39 PDT">Site built on: 2024-06-01 19:24:39 PDT</time>
+  <time datetime="2024-06-02 15:13:16 PDT">Site built on: 2024-06-02 15:13:16 PDT</time>
 </p>
 <div class="copyright">
   <p></p>

public/index.html

@@ -42,9 +42,10 @@
   <div class="navbar__first">
     <ul class="navbar__list borders">
       <li><a href="http://localhost:1313/">Home</a></li>
-      <li><a href="./directoryv1/">CVEXv1.0 Directory</a></li>
-      <li><a href="./directoryv2/">CVEXv2.0 Directory</a></li>
-      <li><a href="./research/">Research Initiative</a></li>
+      <li><a href="./research/">Statement</a></li>
+      <li><a href="./directoryv1/">CVEX 1.0 Directory</a></li>
+      <li><a href="./directoryv2/">CVEX 2.0 Directory</a></li>
+
       <li>
         <button class="theme-toggle transparent"><svg class="theme-toggler" width="24" height="24" viewBox="0 0 48 48" fill="none" xmlns="http://www.w3.org/2000/svg">
   <path
@@ -89,7 +90,7 @@ <h3 id="what-is-a-cvex">
         </main>
         <footer class="site-footer">
 <p class="buildinfo">
-  <time datetime="2024-06-01 19:24:39 PDT">Site built on: 2024-06-01 19:24:39 PDT</time>
+  <time datetime="2024-06-02 15:14:21 PDT">Site built on: 2024-06-02 15:14:21 PDT</time>
 </p>
 <div class="copyright">
   <p></p>

public/tags/index.html

@@ -70,7 +70,7 @@ <h1 class="post-title">
         </main>
         <footer class="site-footer">
 <p class="buildinfo">
-  <time datetime="2024-06-01 19:24:39 PDT">Site built on: 2024-06-01 19:24:39 PDT</time>
+  <time datetime="2024-06-02 15:13:16 PDT">Site built on: 2024-06-02 15:13:16 PDT</time>
 </p>
 <div class="copyright">
   <p></p>

themes/hugo-xterm/layouts/_default/directory.html

@@ -9,25 +9,27 @@ <h1>{{ .Title | plainify }}</h1>
         <h4>{{ . }}</h4>
       {{- end -}}
     </header>
-
     <div class="post-content">
         <h5>{{- with .Content }}
             {{ . }}
         {{- end }}</h5>
-
-        {{ range $.Site.Data.cvex_data.cvex_v1.cvex_v1_directory }}
-        <h3><strong>{{.cveid}}</strong> ⇄ <tt>{{ .id }}</tt></h3>
-        <p><strong>Authors | </strong> {{ delimit .authors ", " }}</p>
-        <p><strong>Docker Images ↴ </strong></p>
-          {{range .images}}
-            <ul>
-              <li><tt>{{ . }}</tt></li>
-            </ul>
-            {{- end}}
-            <p><strong>Short Description | </strong> {{.description}}</p>
-      {{ end }}
+        <table>
+          <tr>
+            <th style="width:20%"><strong>CVEX</strong></th>
+            <th style="width:50%"><strong>Description</strong></th>
+            <th style="width:30%"><strong>Images</strong></th>
+          </tr>
+          {{ range $.Site.Data.cvex_data.cvex_v1.cvex_v1_directory }}
+          <tr>
+            <td><tt>{{ .id }}</tt></td>
+            <td><strong>Author |</strong> <tt>{{ delimit .authors ", " }}</tt> <br> {{.description}}</td>
+            <!-- <td><code>{{ delimit .images ", " }}</code></td> -->
+            <td><code>{{ range .images }}{{.}}<br>{{end}}</code></td>
+
+          </tr>
+          {{- end}}
+        </table>
     </div>
-
     <footer class="post-footer">
       {{- partial "pagination.html" . -}}
     </footer>

themes/hugo-xterm/layouts/partials/navbar.html

@@ -6,9 +6,10 @@
   <div class="navbar__first">
     <ul class="navbar__list borders">
       <li><a href="{{ absURL $logoLink }}">{{ $logoText }}</a></li>
-      <li><a href="/directoryv1/">CVEXv1.0 Directory</a></li>
-      <li><a href="/directoryv2/">CVEXv2.0 Directory</a></li>
-      <li><a href="/research/">Research Initiative</a></li>
+      <li><a href="/research/">Statement</a></li>
+      <li><a href="/directoryv1/">CVEX 1.0 Directory</a></li>
+      <li><a href="/directoryv2/">CVEX 2.0 Directory</a></li>
+
       <li>
         <button class="theme-toggle transparent">
           {{- partial "theme-icon.html" . -}}