nuclei-templates icon indicating copy to clipboard operation
nuclei-templates copied to clipboard
Published 4 months ago verified publisher icon projectdiscovery

Create CVE-2022-23642.yaml

Open lucasljm2001 opened this issue 3 years ago • 2 comments

Template / PR Information

  • Added CVE-2022-23642
  • References:
  • https://about.sourcegraph.com/
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23642
  • https://nvd.nist.gov/vuln/detail/CVE-2022-23642
  • https://www.exploit-db.com/exploits/50964

Template Validation

I've validated this template locally?

  • [X] YES
  • [ ] NO

Additional Details (leave it blank if not applicable)

Additional References:

lucasljm2001 avatar Jul 06 '22 20:07 lucasljm2001

Hello @lucasljm2001, thank you so much for sharing this template with the community and contributing to this project 🍻

This PR is taking longer than usual as we are trying to set up a vulnerable environment. Let me know if you can share steps to set up the environment so that the team can easily validate this template. Thanks

princechaddha avatar Jul 18 '22 14:07 princechaddha

Hi @princechaddha, first of all, it is needed to have docker installed, then the steps to reproduce the environment are the following:

  • Pull the image with the command; docker pull sourcegraph/server:3.36.3. Note that it won´t work with other version.
  • Run the container, please note that the ports used by sourcegraph are 7080,3090,3070 and 16686. It is necessary to use local ports to this.
  • In order to access to the console of sourcegraph, enter to localhost and to the port that you set for the 7080.
  • Add a repository to sourcegraph like this: https://docs.sourcegraph.com/admin/external_service/github.

Let me know if more help is needed

lucasljm2001 avatar Jul 18 '22 14:07 lucasljm2001

The branch was deleted so moved the template to this PR

princechaddha avatar Dec 21 '22 07:12 princechaddha