Skip to content

Releases: ishiDACo/vulsrepo

Add display of CISA information and fix problem with CERT information not showing up

20 Dec 05:14
@ishiDACo ishiDACo
v0.7.1
2dadcbd
This commit was created on github.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Add display of CISA information and fix problem with CERT information not showing up Latest
Latest

日本語のリリース情報はこちら

Features

cisa
cisa-detail

Changes

  • [1231d27] ExecRestart isn't used anymore.

Fixes

  • [#243] Fixed an issue that prevented the display of JPCERT and USCERT information available in Vuls v0.19.0.
Assets 2
Loading

Added display of Primary source and Patch

13 Sep 04:44
@ishiDACo ishiDACo
v0.7.0
561d8cc
This commit was created on github.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Added display of Primary source and Patch

日本語のリリース情報はこちら

Features

  • [#234] Merged CweID and References of multiple cveContent that can be retrieved in Vuls v0.15.14 to show them all.
  • [#236] Primary source and Patch are now shown in the details panel.
  • [#236] References now shows both source and tags.

primary-src-patch
references

Changes

  • Nothing

Fixes

  • [#216] Fixed a problem with CweID links breaking.

cweid

  • [#235] Fixed a problem in which the detail panel could not be displayed when containing CweID of the form CWE-xxx->CWE-yyy or (CWE-xxx|CWE-yyy).

cweid-detail

Assets 2
Loading

Support for the latest Vuls changes

29 Aug 05:33
@ishiDACo ishiDACo
v0.6.4
c575a9f
This commit was created on github.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Support for the latest Vuls changes

日本語のリリース情報はこちら

Features

  • Nothing

Changes

  • Nothing

Fixes

  • [#230] Fixes due to structural changes in CveContent. However, if multiple cveContent exist, only the first one will be displayed. ref. future-architect/vuls#1277
  • [#231] Fixes Amazon Linux 2 score label is not displayed on the detail panel.
Assets 2
Loading

Responsive design panel

23 Mar 02:56
@ishiDACo ishiDACo
v0.6.3
cbf1367
This commit was created on github.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Responsive design panel

日本語のリリース情報はこちら

Features

  • Nothing

Changes

  • [#226] Change detail panel, setting panel and filter save panel to responsive design instead of fixed width.

detail-panel
setting-panel

  • [#158] Update dependencies (jQuery, DataTables and Bootstrap).

Fixes

  • Nothing
Assets 2
Loading

Minor bug fix

16 Mar 05:38
@ishiDACo ishiDACo
v0.6.2
6e783b9
This commit was created on github.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Minor bug fix

Features

  • Nothing

Changes

  • Nothing

Fixes

  • [#223] Fixed error when creating pivotdata if scannedCves is null.
Assets 2
Loading

Migrating to Go Modules

22 Feb 04:54
@ishiDACo ishiDACo
v0.6.1
951e960
This commit was created on github.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Migrating to Go Modules

Features

  • Nothing

Changes

  • [#221] Changed dependency package management for Go language from dep to Go Modules.

Fixes

  • Nothing
Assets 2
Loading

GitHub Security Alerts support

22 Feb 02:18
@ishiDACo ishiDACo
v0.6.0
79c704e
This commit was created on github.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
GitHub Security Alerts support

日本語のリリース情報はこちら

Features

  • #215 Added Attack to the pivot table.
  • #204 Added support for GitHub Security Alerts.
Item Description
Attack A value from CVSSv3 (AV), CVSS (AV) or attack range in debian_security_tracker.
Affected Range (GitHub Security Alerts only) Affected version
Dismissed (GitHub Security Alerts only) Whether or not it was dismissed
DismissedAt (GitHub Security Alerts only) Date and time of dismissal
DismissReason (GitHub Security Alerts only) Reason for dismissal
Path The affected GitHub repository. Note that this is not a Repository.

github

detail

Changes

  • Nothing.

Fixes

  • #218 Fixed indeterminate color of bars corresponding to Negligible, Unimportant, Pending, Not Vulnerable, and Not yet assigned.
Assets 2
Loading

DiffStatus support

15 Feb 02:10
@ishiDACo ishiDACo
v0.5.1
9728580
This commit was created on github.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
DiffStatus support

日本語のリリース情報はこちら

Features

Item Description
Diff + New vulnerabilities found compared to previous scan
- Vulnerabilities that are no longer present (or have been addressed) since the last scan

diff-status

diff-plus

diff-minus

Changes

  • [#212] Changed the display of CVSS Score from - to blank when it does not exist.

Fixes

  • [#206] Fixed an issue that prevented the Package tab from displaying WordPress-related information.
  • [#207] Fixed an issue that prevented opening the package panel for packages matched by CpeNameMatch.
  • [#209] Fixed an issue that prevented Affected Processes from being displayed when opening the package panel for a package that does not have a changelog.
Assets 2
Loading

Support WordPress

05 Feb 04:48
@ishiDACo ishiDACo
v0.5.0
cdc5a27
This commit was created on github.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Support WordPress

日本語のリリース情報はこちら

Features

  • [#201] Vulnerability information for WordPress itself, themes, and plugins can now be displayed with wpscan.
  • [#201] Added VulnType, Status and Update to pivot table for WordPress information.
Item Description
VulnType (WordPress only) Vulnerability type provided by WPScan.
Status (WordPress theme and plugin only) Whether a WordPress theme or plugin is active or inactive.
Update (WordPress theme and plugin only) Availability of updates for WordPress themes and plugins.

The following is a WordPress-optimized pivot table configuration.
Rewrite <server-address> and <port> according to your environment, and open it with your browser.

http://<server-address>:<port>/?vulsrepo_pivot_conf_tmp=N4IgTgpgdgJhlgPIAcAuBLA9lAziAXKADaYDGAhkRAMqpjpQDmeh40cYAomGJmASACCUAATxeYEWVIBXHhBgjIseA0YjUACwgiACugBumVABVyAIypKIOGUVQ4AdCAA0IUpgC2yGagjcJAWExHj4pUll5RQ9vXzUNbT1DYzNLHUhbeydXEBl0ACV2eAC+INFxMOk5SEVlDnitHX0jUwsrAFUASWc3HAgqUlRBIiIBan6IQZFh0d6JwYA5bAgx+dQRJagVt1RMTABZcigATwEACl3MEU8j440ronQcVABKHIAzdHt4QsyHAQAYl8-JIDJQZDYcuRkMgiKd8EIYXCchQoKR+gIAMJHdGzEC7VCUFggEzGIk5AzEyk5czwkC0kAAXzcpAAzARQDByISOe5MCQwCxQO0oABrKCYADuUAEAGIAGyKpU5TH0DAUUYI2WkcwAFgAHAAmACcOQAEuhGJo5TAAKzG22s9luTrePiEqCoG32x3OkD7BToGSeG3vGCG1n6nL7TAcbkrLUwMMRqNuAAyUrlxtZet1AHYmYzmSBtNybsgOUW3CQNTQ6GohWwVFxQvwEcEKpIqlFrM2Golmik2ukbHYHD0+bE-CU20Jyq3wpEaiIYj4MEwEk1kq00tY-tk3HlCs2Z2UQhJF9UFL36hvGkkWqkOt0cn0BkMRqt39NP3N35sExAcZvwAnJLkOE5zkua5bnuERHmeN43E+b4wF+MdiSBVCRDBIgITwNxoVhOlBCRU4WRxDEEWxNEMR2MkiGJUlCUYikqQI+k6QZYt6gMBRBFQetzF8SFCGLchGEYSBGG5PghWLOp4HgeS3E0dAYDgKABKEkSWAAbQAXTcTxoBkNN0E8dAvXwVkAAZ7JZfl9KA+A+LABZyBMlVsEJBh4BAIzwClZzdHIUhRQkyE3FobkZA4zEADVqGoERxjcqzyJARLktSjxIBVPjOgAERVSUIGKnIErsKATGOZBtiyzh8hMHJdEwTFWrCiLGAgBL-LcdpkC5PwciBAAPBROhlNwTCsqgcmoYMbjATLsuoAxWREM5BASpCsqS9bNu2zE9rWjatt0fJToO86zi6a7ktu6gHsOraTpVG6js6F7bsEPbqFRWavLcXQZEsJ5tBgHI03IZ4RBjGB0E+BQciKiA-EGLAoADLRYwCtxcP0wLeElRAwA4ARRQgY4AH1yBp3YaYALxRfkyYphEqdp+nGZZtwIDG0g8JwLHGzRjGMGwHHNDx-A9JARBcMOVBSGtGb6AMY5ldVgLiwYIW4tF3lxcmSXsfRmWoblkAAHVkABo5tetAzixkKA4v4wTBT6sB1UoAh9VtQjfEwah3RFD2YG0wUCHeIkIF6d1lMrQjJOk2T3M8wDMUwN2vTcRSEA8ryESfBr9eF0WpveTBjfR02sel2X5bth3se5HWXcZIA

wordpress-priority

wordpress-pivot

wordpress-detail

Changes

  • Nothing

Fixes

  • Nothing
Assets 2
Loading

Select and display target data by specifying URL parameters

01 Feb 01:38
@ishiDACo ishiDACo
v0.4.0
21f5aa4
This commit was created on github.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Select and display target data by specifying URL parameters

日本語のリリース情報はこちら

Features

  • [#189] It is now possible to select the data to be displayed by specifying several parameters.

param

The following parameters can be specified.

Parameter Purpose Value
server Target server (container) For all, all. If more than one, concatenate them with +. ex)foo.json, foo.json+bar.json+baz@foo.json
daterange Date Range today, yesterday, last7days, last30days, thismonth, lastmonth or alldays
datefrom Date Range from (*) YYYY-MM-DD format ex)2020-11-01
dateto Date Range to (*) YYYY-MM-DD format ex)2021-01-23
time Specific date and time ISO8601 format ex) 2020-02-04T01:25:11Z or 2021-01-25T12:34:56+09:00
filter Specifying a filter Filter name. If not specified, no filter ex) 01.%20Graph:%20CVSS-Severity%20=>%20ServerName

(*) datefrom and dateto must be specified as a set.

Priority of date-related parameters

High daterange > datefrom and dateto > time Low

If none of these are specified, the latest date will be set.

Examples

Here are some examples.

localhost.json of the latest date

https://monocosel.jp/vulsrepo/?server=localhost.json

localhost.json and raspberry10.json for the last 30 days

https://monocosel.jp/vulsrepo/?daterange=last30days&server=localhost.json+raspberry10.json

All servers (containers) from 2020-09-18 to 2020-11-16

https://monocosel.jp/vulsrepo/?datefrom=2020-09-18&dateto=2020-11-16&server=all

localhost.json on 2020-02-04T01:25:11Z

https://monocosel.jp/vulsrepo/?time=2020-02-04T01:25:11Z&server=localhost.json

localhost.json and vulsrepo@localhost.json on 2020-02-04T01:25:11Z

https://monocosel.jp/vulsrepo/?time=2020-02-04T01:25:11Z&server=localhost.json+vulsrepo@localhost.json

localhost.json on 2020-02-04T01:25:11Z with 01. Graph: CVSS-Severity => ServerName filter

https://monocosel.jp/vulsrepo/?time=2020-02-04T01:25:11Z&server=localhost.json&filter=01.%20Graph:%20CVSS-Severity%20=%3E%20ServerName

localhost.json on 2020-02-04T01:25:11Z with 02. Graph: CVSS-Severity => CVSS-Score filter

https://monocosel.jp/vulsrepo/?time=2020-02-04T01:25:11Z&server=localhost.json&filter=02.%20Graph:%20CVSS-Severity%20=%3E%20CVSS-Score

localhost.json on 2020-02-04T01:25:11Z with 03. Pivot: Package/CVSS-Severity/CveID/Summary => ServerName filter

https://monocosel.jp/vulsrepo/?time=2020-02-04T01:25:11Z&server=localhost.json&filter=03.%20Pivot:%20Package/CVSS-Severity/CveID/Summary%20=%3E%20ServerName

localhost.json on 2020-02-04T01:25:11Z with 04. Pivot: Package/CveID => ScanTime filter

https://monocosel.jp/vulsrepo/?time=2020-02-04T01:25:11Z&server=localhost.json&filter=04.%20Pivot:%20Package/CveID%20=%3E%20ScanTime

localhost.json on 2020-02-04T01:25:11Z with 05. Pivot: CveID/PackageInfo => NotFixedYet filter

https://monocosel.jp/vulsrepo/?time=2020-02-04T01:25:11Z&server=localhost.json&filter=05.%20Pivot:%20CveID/PackageInfo%20=%3E%20NotFixedYet

Changes

  • Nothing

Fixes

  • [#189] Removed debug log.
Assets 2
Loading