merge more multidetections (234555a) - freewvs.git

merge more multidetections

Hanno Böck commited on 2019-12-13 18:21:59
Zeige 3 geänderte Dateien mit 33 Einfügungen und 60 Löschungen.

freewvsdb/gallery.json 39f6d10..34948f0
freewvsdb/misc.json e7ccfc3..4d9d2dc
freewvsdb/wiki.json ead2cd9..2e78247

@@ -13,24 +13,18 @@
     ]
   },
   {
-    "name": "Gallery2",
-    "url": "http://gallery.menalto.com/",
-    "safe": "2.3.2",
-    "vuln": "CVE-2012-1113",
+    "name": "Gallery",
+    "url": "http://galleryproject.org/",
+    "safe": "3.0.9",
+    "old_safe": "2.3.2",
+    "vuln": "http://galleryproject.org/gallery_3_0_9",
     "detection": [
       {
         "file": "module.inc",
         "variable": "setGalleryVersion",
-        "subdir": 2
-      }
-    ]
+        "subdir": 2,
+        "note": "2.x, earlier vulnerable to CVE-2012-1113"
       },
-  {
-    "name": "Gallery3",
-    "url": "http://gallery.menalto.com/",
-    "safe": "3.0.9",
-    "vuln": "http://galleryproject.org/gallery_3_0_9",
-    "detection": [
       {
         "file": "gallery.php",
         "variable": "const VERSION",

freewvsdb/misc.json

Zeige Datei @ 234555a

@@ -513,6 +513,13 @@
     "safe": "10.2.1",
     "vuln": "https://owncloud.org/security/advisories/possibility-to-extend-internal-share-permissions-using-the-api/",
     "detection": [
+      {
+        "file": "util.php",
+        "variable": "return '",
+        "subdir": 1,
+        "extra_match": "class OC_Util",
+        "note": "5.x and earlier"
+      },
       {
         "file": "version.php",
         "variable": "$OC_VersionString",
@@ -521,20 +528,6 @@
       }
     ]
   },
-  {
-    "name": "owncloud5",
-    "url": "https://owncloud.org/",
-    "safe": "10.2.1",
-    "vuln": "https://owncloud.org/security/advisories/possibility-to-extend-internal-share-permissions-using-the-api/",
-    "detection": [
-      {
-        "file": "util.php",
-        "variable": "return '",
-        "subdir": 1,
-        "extra_match": "class OC_Util"
-      }
-    ]
-  },
   {
     "name": "videodb",
     "url": "http://www.videodb.net/",

freewvsdb/wiki.json

Zeige Datei @ 234555a

@@ -43,55 +43,41 @@
     ]
   },
   {
-    "name": "TikiWiki",
-    "url": "http://tikiwiki.org/",
-    "safe": "5.3",
-    "old_safe": "3.8",
-    "vuln": "CVE-2010-4239",
-    "detection": [
-      {
-        "file": "twversion.class.php",
-        "variable": "$this->version",
-        "subdir": 2
-      }
-    ]
-  },
-  {
-    "name": "TikiWiki-old",
-    "url": "http://tikiwiki.org/",
-    "safe": "5.3",
-    "old_safe": "3.8",
-    "vuln": "CVE-2010-4239",
+    "name": "Tiki",
+    "url": "https://tiki.org/",
+    "safe": "20.1",
+    "vuln": "https://tiki.org/article464-Tiki-20-1-Released",
     "detection": [
       {
         "file": "README",
         "variable": "version",
         "subdir": 0,
-        "extra_match": "Tiki! The wiki"
+        "extra_match": "Tiki! The wiki",
+        "extra_nomatch": "version 2",
+        "note": "1.x"
+      },
+      {
+        "file": "twversion.class.php",
+        "variable": "$this->version",
+        "subdir": 2,
+        "note": "2.x and above"
       }
     ]
   },
   {
     "name": "phpwiki",
     "url": "http://phpwiki.sourceforge.net/",
-    "safe": "1.3.14",
-    "vuln": "CVE-2007-3193",
+    "safe": "",
+    "vuln": "https://www.exploit-db.com/exploits/38027",
     "detection": [
       {
-        "file": "prepend.php",
+        "file": "config.php",
         "variable": "PHPWIKI_VERSION",
-        "subdir": 1
-      }
-    ]
+        "subdir": 1,
+        "note": "1.2.x"
       },
       {
-    "name": "phpwiki-legacy",
-    "url": "http://phpwiki.sourceforge.net/",
-    "safe": "1.3.14",
-    "vuln": "CVE-2007-3193",
-    "detection": [
-      {
-        "file": "config.php",
+        "file": "prepend.php",
         "variable": "PHPWIKI_VERSION",
         "subdir": 1
       }


...	...	@@ -513,6 +513,13 @@
513	513	"safe": "10.2.1",
514	514	"vuln": "https://owncloud.org/security/advisories/possibility-to-extend-internal-share-permissions-using-the-api/",
515	515	"detection": [
	516	+ {
	517	+ "file": "util.php",
	518	+ "variable": "return '",
	519	+ "subdir": 1,
	520	+ "extra_match": "class OC_Util",
	521	+ "note": "5.x and earlier"
	522	+ },
516	523	{
517	524	"file": "version.php",
518	525	"variable": "$OC_VersionString",
...	...	@@ -521,20 +528,6 @@
521	528	}
522	529	]
523	530	},
524		- {
525		- "name": "owncloud5",
526		- "url": "https://owncloud.org/",
527		- "safe": "10.2.1",
528		- "vuln": "https://owncloud.org/security/advisories/possibility-to-extend-internal-share-permissions-using-the-api/",
529		- "detection": [
530		- {
531		- "file": "util.php",
532		- "variable": "return '",
533		- "subdir": 1,
534		- "extra_match": "class OC_Util"
535		- }
536		- ]
537		- },
538	531	{
539	532	"name": "videodb",
540	533	"url": "http://www.videodb.net/",

...	...	@@ -13,24 +13,18 @@
13	13	]
14	14	},
15	15	{
16		- "name": "Gallery2",
17		- "url": "http://gallery.menalto.com/",
18		- "safe": "2.3.2",
19		- "vuln": "CVE-2012-1113",
	16	+ "name": "Gallery",
	17	+ "url": "http://galleryproject.org/",
	18	+ "safe": "3.0.9",
	19	+ "old_safe": "2.3.2",
	20	+ "vuln": "http://galleryproject.org/gallery_3_0_9",
20	21	"detection": [
21	22	{
22	23	"file": "module.inc",
23	24	"variable": "setGalleryVersion",
24		- "subdir": 2
25		- }
26		- ]
	25	+ "subdir": 2,
	26	+ "note": "2.x, earlier vulnerable to CVE-2012-1113"
27	27	},
28		- {
29		- "name": "Gallery3",
30		- "url": "http://gallery.menalto.com/",
31		- "safe": "3.0.9",
32		- "vuln": "http://galleryproject.org/gallery_3_0_9",
33		- "detection": [
34	28	{
35	29	"file": "gallery.php",
36	30	"variable": "const VERSION",

...	...	@@ -43,55 +43,41 @@
43	43	]
44	44	},
45	45	{
46		- "name": "TikiWiki",
47		- "url": "http://tikiwiki.org/",
48		- "safe": "5.3",
49		- "old_safe": "3.8",
50		- "vuln": "CVE-2010-4239",
51		- "detection": [
52		- {
53		- "file": "twversion.class.php",
54		- "variable": "$this->version",
55		- "subdir": 2
56		- }
57		- ]
58		- },
59		- {
60		- "name": "TikiWiki-old",
61		- "url": "http://tikiwiki.org/",
62		- "safe": "5.3",
63		- "old_safe": "3.8",
64		- "vuln": "CVE-2010-4239",
	46	+ "name": "Tiki",
	47	+ "url": "https://tiki.org/",
	48	+ "safe": "20.1",
	49	+ "vuln": "https://tiki.org/article464-Tiki-20-1-Released",
65	50	"detection": [
66	51	{
67	52	"file": "README",
68	53	"variable": "version",
69	54	"subdir": 0,
70		- "extra_match": "Tiki! The wiki"
	55	+ "extra_match": "Tiki! The wiki",
	56	+ "extra_nomatch": "version 2",
	57	+ "note": "1.x"
	58	+ },
	59	+ {
	60	+ "file": "twversion.class.php",
	61	+ "variable": "$this->version",
	62	+ "subdir": 2,
	63	+ "note": "2.x and above"
71	64	}
72	65	]
73	66	},
74	67	{
75	68	"name": "phpwiki",
76	69	"url": "http://phpwiki.sourceforge.net/",
77		- "safe": "1.3.14",
78		- "vuln": "CVE-2007-3193",
	70	+ "safe": "",
	71	+ "vuln": "https://www.exploit-db.com/exploits/38027",
79	72	"detection": [
80	73	{
81		- "file": "prepend.php",
	74	+ "file": "config.php",
82	75	"variable": "PHPWIKI_VERSION",
83		- "subdir": 1
84		- }
85		- ]
	76	+ "subdir": 1,
	77	+ "note": "1.2.x"
86	78	},
87	79	{
88		- "name": "phpwiki-legacy",
89		- "url": "http://phpwiki.sourceforge.net/",
90		- "safe": "1.3.14",
91		- "vuln": "CVE-2007-3193",
92		- "detection": [
93		- {
94		- "file": "config.php",
	80	+ "file": "prepend.php",
95	81	"variable": "PHPWIKI_VERSION",
96	82	"subdir": 1
97	83	}
98	84