Added Multiple CVE and Misconfiguration Templates

[Parimal-shaw]

Added Following Templates:

• CVE_2022_0150_WordPress_Accessibility_Helper_Lt_0_6_0_7_Cross_Site.bcheck
• CVE-2022-2460 VoipMonitor - Pre-Auth SQL Injection.bcheck
• CVE-2023-36346 POS Codekop v2.0 - Cross-site Scripting.bcheck
• CVE_2021_20114_TCExam_Gt_14_8_1_Sensitive_Information_Exposure.bcheck
• CVE_2021_20158_Trendnet_AC2600_TEW_827DRU_2_08B01_Admin_Password.bcheck
• CVE_2021_21816_D_Link_DIR_3040_1_13B03_Information_Disclosure.bcheck
• SAP Directory Listing.bcheck
• Xdebug_remote_code_execution_via_xdebug_remote_connect_back.bcheck
• Apache Tomcat Manager Path Normalization Panel.bcheck
• Cloudflare External Image Resizing Misconfiguration.bcheck
• Etcd Server - Unauthenticated Access.bcheck
• Kubernetes_Pods_APIDiscovery&_Remote_Code_Execution.bcheck
• Rails CRLF and XSS.bcheck

[olliewuk]

in other/Apache Tomcat Manager Path Normalization Panel.bcheck should the password be static as it is?

[Parimal-shaw]

Yes, it doesn't disclose current users password a user can change whatever they want the password to be .

[olliewuk]

Yes, it doesn't disclose current users password a user can change whatever they want the password to be .

Should the check be modified in that case to not include a specific password?

[Parimal-shaw]

Not required , the current check cannot be changed in any other way the following checks required a password in static form or else the password will get rejected .

[Parimal-shaw]

All the changes have been done ,suggested by you