Closed karkis3c closed 3 months ago
princechaddha
commented
3 months ago Hello, the response time for this issue was longer than usual because the team was traveling for DEFCON. The team will respond to this issue shortly. Thank you for your contribution
DhiyaneshGeek
commented
3 months ago Hi @karkis3c
i have raised PR #10613 and updated the template and fixed false positive
Let me know if the changes looks good
Thanks
ritikchaddha
commented
3 months ago Hi @karkis3c,
Thank you so much for sharing this template with the community and contributing to this project 🍻
You can grab some cool PD stickers over here http://nux.gg/stickers 😄
karkis3c
commented
2 months ago Thanks!
Could you make this template severity high to critical? It leads to RCE.
POC https://github.com/karkis3c/bugbounty/blob/main/poc/rundeck-rce.md
let me know (:
ritikchaddha
commented
2 months ago Hello @karkis3c, the default-login template for Rundeck has been added to the default-login category, and the severity has been set accordingly. If you have a Rundeck RCE poc, feel free to submit a new PR for the RCE template under http/vulnerabilities.
https://raw.githubusercontent.com/karkis3c/bugbounty/main/nuclei-templates/default-login/rundeck-default-login.yaml