2023-02-19 - cve update

Author: edoardottt

README.md

@@ -9,24 +9,24 @@
 Stats 📊
 -------
 
-**CVEs analyzed**: 71453
+**CVEs analyzed**: 71464
 
-**CVEs missing**: 15113
+**CVEs missing**: 19317
 
 **Dropdown by vuln type**:
 
 | Type | Count | Data |
 | - | - | - |
-| XSS | 6256 | [xss.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/type/xss.txt) |
-| RCE | 2861 | [rce.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/type/rce.txt) |
-| SQL Injection | 5060 | [sqli.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/type/sqli.txt) |
-| Local File Inclusion | 78 | [lfi.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/type/lfi.txt) |
-| Server Side Request Forgery | 145 | [ssrf.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/type/ssrf.txt) |
-| Prototype Pollution | 148 | [proto-pollution.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/type/proto-pollution.txt) |
-| Request Smuggling | 58 | [req-smuggling.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/type/req-smuggling.txt) |
-| Open Redirect | 200 | [open-redirect.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/type/open-redirect.txt) |
-| XML External Entity | 288 | [xxe.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/type/xxe.txt) |
-| Server Side Template Injection | 19 | [ssti.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/type/ssti.txt) |
+| XSS | 8758 | [xss.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/type/xss.txt) |
+| RCE | 3690 | [rce.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/type/rce.txt) |
+| SQL Injection | 5715 | [sqli.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/type/sqli.txt) |
+| Local File Inclusion | 98 | [lfi.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/type/lfi.txt) |
+| Server Side Request Forgery | 184 | [ssrf.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/type/ssrf.txt) |
+| Prototype Pollution | 165 | [proto-pollution.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/type/proto-pollution.txt) |
+| Request Smuggling | 59 | [req-smuggling.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/type/req-smuggling.txt) |
+| Open Redirect | 251 | [open-redirect.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/type/open-redirect.txt) |
+| XML External Entity | 375 | [xxe.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/type/xxe.txt) |
+| Server Side Template Injection | 22 | [ssti.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/type/ssti.txt) |
 
 **Dropdown by year**:
 
@@ -41,21 +41,21 @@ Stats 📊
 | 2005 | 270 | [2005.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2005.txt) |
 | 2006 | 666 | [2006.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2006.txt) |
 | 2007 | 705 | [2007.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2007.txt) |
-| 2008 | 1501 | [2008.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2008.txt) |
-| 2009 | 394 | [2009.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2009.txt) |
+| 2008 | 1502 | [2008.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2008.txt) |
+| 2009 | 395 | [2009.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2009.txt) |
 | 2010 | 230 | [2010.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2010.txt) |
 | 2011 | 174 | [2011.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2011.txt) |
-| 2012 | 373 | [2012.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2012.txt) |
-| 2013 | 317 | [2013.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2013.txt) |
-| 2014 | 692 | [2014.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2014.txt) |
-| 2015 | 711 | [2015.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2015.txt) |
-| 2016 | 432 | [2016.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2016.txt) |
-| 2017 | 1039 | [2017.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2017.txt) |
-| 2018 | 1502 | [2018.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2018.txt) |
-| 2019 | 1123 | [2019.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2019.txt) |
-| 2020 | 1634 | [2020.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2020.txt) |
-| 2021 | 1420 | [2021.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2021.txt) |
-| 2022 | 1823 | [2022.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2022.txt) |
+| 2012 | 374 | [2012.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2012.txt) |
+| 2013 | 319 | [2013.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2013.txt) |
+| 2014 | 698 | [2014.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2014.txt) |
+| 2015 | 712 | [2015.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2015.txt) |
+| 2016 | 613 | [2016.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2016.txt) |
+| 2017 | 2170 | [2017.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2017.txt) |
+| 2018 | 3296 | [2018.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2018.txt) |
+| 2019 | 1479 | [2019.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2019.txt) |
+| 2020 | 1867 | [2020.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2020.txt) |
+| 2021 | 1651 | [2021.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2021.txt) |
+| 2022 | 2092 | [2022.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2022.txt) |
 | 2023 | 0 | [2023.txt](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/data/year/2023.txt) |
 
 Why 🤔
@@ -69,11 +69,11 @@ How it works 🖥️
 
 Automated Logic:
 ```
-for each cve in trickest/cve repo:
+for each cve in trickest/cve:
     if this cve not present in nuclei-templates:
         if it contains one of the words we are looking for:
-            if there are references:
-                found
+            if it is a CVE suitable for nuclei:
+                print it
 ```
 
 - Which are the "words we are looking for"? `reflected`, `rce`, `local file inclusion`, `server side request forgery`, `ssrf`, `remote code execution`, `remote command execution`, `command injection`, `code injection`, `ssti`, `template injection`, `lfi`, `xss`, `Cross-Site Scripting`, `Cross Site Scripting`, `SQL injection`, `Prototype pollution`, `XML External Entity`, `Request Smuggling`, `XXE`, `Open redirect`.
@@ -101,4 +101,4 @@ License 📝
 -------
 
 This repository is under [MIT License](https://github.com/edoardottt/missing-cve-nuclei-templates/blob/main/LICENSE).  
-[edoardoottavianelli.it](https://www.edoardoottavianelli.it) to contact me.
+[edoardoottavianelli.it](https://www.edoardoottavianelli.it) to contact me.