Security - Security-Tools-Alliance/rengine-ng GitHub Wiki

Introduction

Security Researchers, welcome onboard!

Thank you for your interest in reporting vulnerabilities to reNgine-ng! If you are aware of potential security vulnerabilities within reNgine-ng, we encourage you to report immediately by reading our Security Policy

Please do not disclose any vulnerabilities via Github Issues/Blogs/Tweets after/before reporting on huntr.dev as it is explicitly against huntr.dev and reNgine-ng disclosure policy and will not be eligible for monetary rewards.

Expectation from Security Researchers

• Patience: Please note that currently we are volunteers to maintain reNgine-ng and it will take sometime to validate your report. We request your patience throughout the process.
• Respect Privacy and Security Reports: Please do not disclose any vulnerabilities in public (this also includes github issues) before or after reporting! That is against the disclosure policy.
• Respect the rules

What do Security Researchers get in return

• Much thanks from Maintainer

How do I report?

You can report the security vulnerabilities on Discord by contacting an admin.

Past Security Vulnerabilities

Thanks to these individuals for reporting Security Issues in reNgine-ng.

2022

• [HIGH] Blind command injection in CMS Detector, Reported by Abdulrahman Abdullah

• [HIGH] Command Injection in via Proxy, Reported by Koen Molenaar

• [HIGH] Command Injection in via YAML Engine, Reported by Koen Molenaar and zongdeiqianxing

• [LOW] Stored XSS on Import Targets via filename, Reported by Veeshraj Ghimire

• [LOW] Stored XSS on HackerOne Markdown template, Reported by Smaran Chand and Ayoub Elaich

• [LOW] Stored XSS via Scan Engine Name, Reported by nerrorsec

• [LOW] HTML Injection in Subscan, Reported by nerrorsec

2021

• [LOW] Stored XSS on Detail Scan Page via Page Title Parameter, Reported by omemishra

• [LOW] Stored XSS on Vulnerability Scan page via URL Parameter, Reported by Arif Khan, payloadartist

• [LOW] Several Instances of XSS in reNgine-ng 1.0 (#460, #459, #458, #457, #456, #455), Reported by Binit Ghimire

• [LOW] Stored XSS on GF Pattern via filename, Reported by nerrorsec

• [LOW] Stored XSS on Delete Scheduled Task via Scan Engine Name, Reported by nerrorsec

• [LOW] Stored XSS on Target Summary via Todo, Reported by TheLabda

• [LOW] Stored XSS on Nuclei Template Summary via maliclous Nuclei Template, Reported by Walleson Moura

• [MEDIUM] Path Traversal/LFI, reported by Koen Molenaar