Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Increase Coverage of KEV Templates #7549

Open
1 of 86 tasks
princechaddha opened this issue Jun 26, 2023 · 2 comments
Open
1 of 86 tasks

Increase Coverage of KEV Templates #7549

princechaddha opened this issue Jun 26, 2023 · 2 comments
Labels
defcon31 template-requests Request for new Nuclei templates to be created

Comments

@princechaddha
Copy link
Member

princechaddha commented Jun 26, 2023

In this issue, We have compiled a list of KEV CVEs that have publicly available POCs. We are inviting contributions from the community to expand the coverage of Known Exploited Vulnerabilities (KEV) CVEs and make them accessible to everyone.

Expanding the coverage of widely exploited KEV CVEs in the nuclei-templates repository will enhance the detection capabilities and provide more comprehensive security scanning for a broader range of vulnerabilities. This contribution will significantly benefit the entire community by improving the overall effectiveness of vulnerability scanning.

We highly appreciate your involvement and eagerly look forward to your valuable contributions! To contribute, please refer to our Contribution Guide and explore the Nuclei Templates Documentation for further guidance.

If you require any assistance with writing templates or have questions about contributing, feel free to join our Discord server. Our community members will be more than happy to help you.

KEV CVEs

@princechaddha princechaddha added template-requests Request for new Nuclei templates to be created defcon31 labels Jun 26, 2023
@ehsandeep ehsandeep pinned this issue Jun 26, 2023
@king-alexander
Copy link
Contributor

In the PoC for CVE-2022-26258, the payload is directed at a different endpoint than the one described, so I suggest it be removed from this list. There is an excellent writeup at https://vulncheck.com/blog/moobot-uses-fake-vulnerability with more details.

This was referenced Oct 5, 2023
@king-alexander
Copy link
Contributor

The template for CVE-2021-22205 already exists, authored by the GitLab Red Team.

This was referenced Oct 12, 2023
@king-alexander king-alexander mentioned this issue Apr 16, 2024
2 tasks
This was referenced Apr 20, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
defcon31 template-requests Request for new Nuclei templates to be created
Projects
None yet
Development

No branches or pull requests

3 participants