npm - @abtnode/router-provider - Versions diffs - 1.16.38-beta-20250116-083413-dbd33222 → 1.16.38-beta-20250118-033334-2da05ae8 - Mend

@abtnode/router-provider 1.16.38-beta-20250116-083413-dbd33222 → 1.16.38-beta-20250118-033334-2da05ae8

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (51) hide show

package/lib/nginx/includes/security/crs4/rules/sql-errors.data ADDED Viewed

@@ -0,0 +1,172 @@
+MySqlClient.
+Server message
+SQL error
+Oracle error
+JET Database Engine
+Procedure or function
+SQLite.Exception
+[IBM][CLI Driver][DB2/6000]
+the used select statements have different number of columns
+org.postgresql.util.PSQLException
+Access Database Engine
+Incorrect syntax near
+Syntax error in string in query expression
+SQLiteException
+' doesn't exist
+CLI Driver
+on MySQL result index
+sybase
+com.informix.jdbc
+[MySQL][ODBC
+Error
+has occurred in the vicinity of:
+Sintaxis incorrecta cerca de
+MySQL server version for the right syntax to use
+com.mysql.jdbc.exceptions
+You have an error in your SQL syntax near
+You have an error in your SQL syntax;
+An illegal character has been found in the statement
+pg_query() [:
+supplied argument is not a valid MySQL
+mssql_query()
+mysql_fetch_array()
+Exception
+java.sql.SQLException
+Column count doesn't match value count at row
+Sybase message
+SQL Server
+PostgreSQL query failed:
+Dynamic SQL Error
+System.Data.SQLite.SQLiteException
+SQLite/JDBCDriver
+Unclosed quotation mark before the character string
+System.Data.SqlClient.
+Unclosed quotation mark after the character string
+System.Data.OleDb.OleDbException
+[DM_QUERY_E_SYNTAX]
+[SqlException
+Unexpected end of command in statement
+valid PostgreSQL result
+pg_exec() [:
+[SQL Server]
+[SQLITE_ERROR]
+Microsoft OLE DB Provider for ODBC Drivers
+PostgreSQL
+org.hsqldb.jdbc
+ADODB.Field (0x800A0BCD)
+SQL syntax
+Exception
+System.Data.SqlClient.SqlException
+Data type mismatch in criteria expression.
+Driver
+DB2 SQL error
+Sybase message:
+ORA-
+[Microsoft][ODBC SQL Server Driver]
+'80040e14'
+Microsoft OLE DB Provider for SQL Server
+ in query expression
+Npgsql.
+valid MySQL result
+supplied argument is not a valid PostgreSQL result
+db2_
+Ingres SQLSTATE
+Column count doesn't match
+Warning
+[Microsoft][ODBC Microsoft Access Driver]
+[Macromedia][SQLServer JDBC Driver]
+<b>Warning</b>: ibase_
+Roadhouse.Cms.
+DB2 SQL error:
+SQLSTATE[
+MySQLSyntaxErrorException
+check the manual that corresponds to your MySQL server version
+check the manual that fits your MySQL server version
+check the manual that corresponds to your MariaDB server version
+check the manual that fits your MariaDB server version
+check the manual that corresponds to your Drizzle server version
+check the manual that fits your Drizzle server version
+Zend_Db_Adapter_Mysqli_Exception
+Zend_Db_Statement_Mysqli_Exception
+MySqlException
+Syntax error or access violation
+MemSQL does not support this type of query
+is not supported by MemSQL
+unsupported nested scalar subselect
+PG::SyntaxError:
+syntax error at or near
+ERROR: parser: parse error at or near
+org.postgresql.jdbc
+PSQLException
+System.Data.SqlClient.SqlConnection.OnError
+Microsoft SQL Native Client error
+com.jnetdirect.jsql
+macromedia.jdbc.sqlserver
+Zend_Db_Adapter_Sqlsrv_Exception
+Zend_Db_Statement_Sqlsrv_Exception
+com.microsoft.sqlserver.jdbc
+SQLSrvException
+SQLServerException
+quoted string not properly terminated
+SQL command not properly ended
+macromedia.jdbc.oracle
+oracle.jdbc
+Zend_Db_Adapter_Oracle_Exception
+Zend_Db_Statement_Oracle_Exception
+OracleException
+com.ibm.db2.jcc
+Zend_Db_Adapter_Db2_Exception
+Zend_Db_Statement_Db2_Exception
+ibm_db_dbi.ProgrammingError
+Informix ODBC Driver
+ODBC Informix driver
+weblogic.jdbc.informix
+IfxException
+org.firebirdsql.jdbc
+Microsoft.Data.SQLite.SQLiteException
+SQLite error
+sqlite3.OperationalError:
+SQLite3::SQLException
+org.sqlite.JDBC
+DriverSapDB
+com.sap.dbtech.jdbc
+Invalid keyword or missing delimiter
+SybSQLException
+Sybase.Data.AseClient
+com.sybase.jdbc
+com.ingres.gcf.jdbc
+com.frontbase.jdbc
+Syntax error 1. Missing
+Semantic error
+org.h2.jdbc
+[42000-192]
+[MonetDB][ODBC Driver
+nl.cwi.monetdb.jdbc
+Syntax error: Encountered
+org.apache.derby
+ERROR 42X01
+com.vertica.jdbc
+org.jkiss.dbeaver.ext.vertica
+com.vertica.dsi.dataengine
+com.mckoi.JDBCDriver
+com.mckoi.database.jdbc
+com.facebook.presto.jdbc
+io.prestosql.jdbc
+com.simba.presto.jdbc
+UNION query has different number of fields:
+Altibase.jdbc.driver
+com.mimer.jdbc
+Syntax error: failed at position
+io.crate.client.jdbc
+encountered after end of query
+A comparison operator is required here
+-10048: Syntax error
+SQ074: Line
+SR185: Undefined procedure
+SQ200: No table
+Virtuoso S0002 Error
+[Virtuoso Driver][Virtuoso Server]
+[Virtuoso iODBC Driver][Virtuoso Server]
+Conversion failed when converting the varchar value
+invalid input syntax for integer:
+XPATH syntax error:

package/lib/nginx/includes/security/crs4/rules/ssrf.data ADDED Viewed

@@ -0,0 +1,177 @@
+# Sources:
+# - https://gist.githubusercontent.com/jhaddix/78cece26c91c6263653f31ba453e273b/raw/a4869d58a5ce337d1465c2d1b29777b9eecd371f/cloud_metadata.txt
+# - https://book.hacktricks.xyz/pentesting-web/ssrf-server-side-request-forgery/cloud-ssrf
+# - https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/Server%20Side%20Request%20Forgery
+# - https://github.com/assetnote/blind-ssrf-chains
+## AWS
+# from http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-metadata.html#instancedata-data-categories
+#
+# To fully protect, use IMDSv2 (see https://aws.amazon.com/blogs/security/defense-in-depth-open-firewalls-reverse-proxies-ssrf-vulnerabilities-ec2-instance-metadata-service/)
+http://instance-data/latest/
+http://169.254.169.254/latest/
+# Common evasion techniques:
+http://2852039166/latest/
+http://025177524776/latest/
+http://0251.0376.0251.0376/latest/
+http://0xA9.0xFE.0xA9.0xFE/latest/
+http://0xA9FEA9FE/latest/
+http://0251.254.169.254/latest/
+http://[::ffff:a9fe:a9fe]/latest/
+http://[0:0:0:0:0:ffff:a9fe:a9fe]/latest/
+http://[0:0:0:0:0:ffff:169.254.169.254]/latest/
+http://169.254.169.254.nip.io/latest/
+http://nicob.net/redir-http-169.254.169.254:80-
+# http://127.0.0.1
+http://2130706433/
+# http://192.168.0.1
+http://3232235521/
+# http://192.168.1.1
+http://3232235777/
+# http://169.254.169.254
+http://2852039166/
+# IPv6 base
+http://[::]:
+# localhost bypass
+http://localtest.me
+http://127.0.0.1.nip.io
+http://127.127.127.127
+http://127.0.1.3
+http://127.0.0.0
+http://127.0.0.1
+http://0.0.0.0
+http://localhost
+http://0177.0.0.1/
+http://[::1]
+http://[0000::1]
+http://[::ffff:127.0.0.1]
+http://[0:0:0:0:0:ffff:127.0.0.1]
+http://0/
+http://127.1
+http://127.0.1
+# AWS ECS
+http://169.254.170.2/v2
+## Google Cloud
+#  https://cloud.google.com/compute/docs/metadata/overview
+#  - Requires the header "Metadata-Flavor: Google" or "X-Google-Metadata-Request: True"
+http://169.254.169.254/computeMetadata/v1/
+http://metadata.google.internal/computeMetadata/v1/
+http://metadata/computeMetadata/v1/
+# Common evasion techniques:
+http://2852039166/computeMetadata/v1/
+http://025177524776/computeMetadata/v1/
+http://0251.0376.0251.0376/computeMetadata/v1/
+http://[::ffff:a9fe:a9fe]/computeMetadata/v1/
+http://[0:0:0:0:0:ffff:a9fe:a9fe]/computeMetadata/v1/
+http://[0:0:0:0:0:ffff:169.254.169.254]/computeMetadata/v1/
+http://169.254.169.254.nip.io/computeMetadata/v1/
+http://0xA9.0xFE.0xA9.0xFE/computeMetadata/v1/
+http://0xA9FEA9FE/computeMetadata/v1/
+http://0251.254.169.254/computeMetadata/v1/
+# Google gopher SSRF
+gopher://metadata.google.internal
+# Google allows recursive pulls
+http://metadata.google.internal/computeMetadata/v1/instance/disks/?recursive=true
+## Google
+#  Beta does NOT require a header atm
+http://metadata.google.internal/computeMetadata/v1beta1/
+## Digital Ocean
+# https://developers.digitalocean.com/documentation/metadata/
+http://169.254.169.254/metadata/v1.json
+# This other prefix will be used from Azure: http://169.254.169.254/metadata/v1/
+## Packetcloud
+https://metadata.packet.net/userdata
+## Azure
+#
+# To be effective, these also have to:
+#
+# - contain the header Metadata: true
+# - not contain an X-Forwarded-For header
+http://169.254.169.254/metadata/v1/
+http://169.254.169.254/metadata/instance?api-version=2017-04-02
+http://169.254.169.254/metadata/instance/network/interface/0/ipv4/ipAddress/0/publicIpAddress?api-version=2017-04-02&format=text
+# Common evasion techniques:
+http://2852039166/metadata/v1/
+http://025177524776/metadata/v1/
+http://0251.0376.0251.0376/metadata/v1/
+http://[::ffff:a9fe:a9fe]/metadata/v1/
+http://[0:0:0:0:0:ffff:a9fe:a9fe]/metadata/v1/
+http://[0:0:0:0:0:ffff:169.254.169.254]/metadata/v1/
+http://169.254.169.254.nip.io/metadata/v1/
+http://0xA9.0xFE.0xA9.0xFE/metadata/v1/
+http://0xA9FEA9FE/metadata/v1/
+http://0251.254.169.254/metadata/v1/
+## OpenStack/RackSpace
+http://169.254.169.254/openstack
+## HP Helion
+# (header required? unknown)
+http://169.254.169.254/2009-04-04/meta-data/
+## Oracle Cloud
+http://192.0.0.192/latest/
+## Alibaba
+http://100.100.100.200/latest/meta-data/
+# Rancher metadata
+http://rancher-metadata/
+# Local Docker
+http://127.0.0.1:2375
+http://2130706433:2375/
+http://[::]:2375/
+http://[0000::1]:2375/
+http://[0:0:0:0:0:ffff:127.0.0.1]:2375/
+http://2130706433:2375/
+http://017700000001:2375/
+http://0x7f000001:2375/
+http://0xc0a80014:2375/
+# Kubernetes etcd
+http://127.0.0.1:2379
+# Enclosed alphanumerics
+http://169。254。169。254
+http://169｡254｡169｡254
+http://⑯⑨。②⑤④。⑯⑨｡②⑤④
+http://⓪ⓧⓐ⑨｡⓪ⓧⓕⓔ｡⓪ⓧⓐ⑨｡⓪ⓧⓕⓔ
+http://⓪ⓧⓐ⑨ⓕⓔⓐ⑨ⓕⓔ
+http://②⑧⑤②⓪③⑨①⑥⑥
+http://④②⑤｡⑤①⓪｡④②⑤｡⑤①⓪
+http://⓪②⑤①。⓪③⑦⑥。⓪②⑤①。⓪③⑦⑥
+http://⓪⓪②⑤①｡⓪⓪⓪③⑦⑥｡⓪⓪⓪⓪②⑤①｡⓪⓪⓪⓪⓪③⑦⑥
+http://[::①⑥⑨｡②⑤④｡⑯⑨｡②⑤④]
+http://[::ⓕⓕⓕⓕ:①⑥⑨。②⑤④。⑯⑨。②⑤④]
+http://⓪ⓧⓐ⑨。⓪③⑦⑥。④③⑤①⑧
+http://⓪ⓧⓐ⑨｡⑯⑥⑧⑨⑥⑥②
+http://⓪⓪②⑤①。⑯⑥⑧⑨⑥⑥②
+http://⓪⓪②⑤①｡⓪ⓧⓕⓔ｡④③⑤①⑧
+# Java only blind ssrf
+jar:http://127.0.0.1!/
+jar:https://127.0.0.1!/
+jar:ftp://127.0.0.1!/
+# Other PL1 protocols
+gopher://127.0.0.1
+gopher://localhost
+# AWS Lambda
+http://localhost:9001/2018-06-01/runtime/