Ashish Kunwar

icon indicating a website link medium.com/@D0rkerDevil

icon location Vuln Research and Detection

Results 7 issues of Ashish Kunwar

irules injection

BIG-IP supports iRules - a subset of rules written in TCL. An attacker can inject iRule code in to a request and force a BIG-IP to execute remote code, sniff...

add some new scans

2 comment

add detection of jexl injection and Hubl Injection

request to add CVE-2018-11776

1 comment

PoC here https://github.com/jas502n/St2-057/blob/master/README.md

[nuclei-template] CVE-2021-22123 (Authenticated)

7 comment

**OS command injection vulnerability in FortiWeb's management interface (version 6.3.11 and prior) can allow a remote, authenticated attacker to execute arbitrary commands on the system, via the SAML server configuration...

Status: Review Needed
Type: Discussion

Nuclei-engine integration

1 comment

it would be really awesome if you add Nuclei-Engine Integration to scan with nuclei yaml templates for vulnerabilties. https://github.com/projectdiscovery/nuclei

add CVE 2018-15982

2 comment

POC https://app.any.run/tasks/eaf25500-3e11-40f0-a2b4-b4f1c8a185c9

enhancement
CVE-based

not working in burp 2.1.0

1 comment