Closed daffainfo closed 1 month ago
Need to update redis-require-auth
template (Check the nuclei issue) and I also found that x11-unauth-access
is producing false positive result
Command:
echo '50.63.14.108' | naabu --top-ports 100 | nuclei -t nuclei-templates/javascript
Output
[WRN] [x11-unauth-access-intrusive] The return value of a DSL statement must return a boolean value.
[WRN] [x11-unauth-access-intrusive] The return value of a DSL statement must return a boolean value.
[WRN] [x11-unauth-access-intrusive] The return value of a DSL statement must return a boolean value.
[WRN] [x11-unauth-access-intrusive] The return value of a DSL statement must return a boolean value.
Hi @daffainfo can you Try this updated Template? it's working fine from my end https://github.com/projectdiscovery/nuclei-templates/pull/10655/
Do not close this issue yet, are you guys already fixredis-require-auth
?
Hi @daffainfo
we observed only x11-unauth-access-intrusive was false positive and fixed the template and closed the issue
thanks for re-opening and letting us know about the issue
Issue: https://github.com/projectdiscovery/nuclei/issues/5546
Many javascript templates use hard-coded ports. And according to one dev said to add some matchers etc to avoid false positives