Skip to content

Add 7 misconfiguration templates: blockchain RPC, Node-RED, H2 Console, Argo Workflows, Graylog, Checkmk#15613

Merged
Akokonunes merged 9 commits intoprojectdiscovery:mainfrom
0xBassia:add-misconfiguration-templates
Apr 7, 2026
Merged

Add 7 misconfiguration templates: blockchain RPC, Node-RED, H2 Console, Argo Workflows, Graylog, Checkmk#15613
Akokonunes merged 9 commits intoprojectdiscovery:mainfrom
0xBassia:add-misconfiguration-templates

Conversation

@0xBassia
Copy link
Copy Markdown
Contributor

@0xBassia 0xBassia commented Mar 16, 2026

Summary

7 new misconfiguration detection templates for services not currently covered.

New Templates

Template Severity Description
blockchain-rpc-txpool-exposed high Detects blockchain RPC endpoints exposing txpool_content (enables MEV/frontrunning attacks)
blockchain-rpc-debug-trace medium Detects debug_traceTransaction enabled on public blockchain RPCs
node-red-unauth high Detects Node-RED flow editor accessible without authentication (RCE via exec node)
h2-console-exposed critical Detects H2 Database web console exposed (common in Spring Boot apps, can lead to RCE)
argo-workflows-unauth high Detects Argo Workflows dashboard without authentication (K8s workflow submission)
graylog-default-credentials high Detects Graylog with default admin/admin credentials
checkmk-default-credentials high Detects Checkmk with default cmkadmin/cmkadmin credentials

Notes

  • The blockchain RPC templates are the first of their kind in nuclei-templates — no existing templates cover JSON-RPC debug/txpool method exposure
  • All templates use multiple matchers to minimize false positives
  • Each template includes proper CVSS scoring, CWE classification, description, impact, and remediation
  • References to official documentation included for all templates
  • The blockchain templates were developed from real findings during authorized bug bounty testing

@neo-by-projectdiscovery-dev
Copy link
Copy Markdown

neo-by-projectdiscovery-dev bot commented Mar 16, 2026

Neo - Nuclei Template Review — In Progress

Neo - Nuclei Template Review in Progress

Comment @pdneo help for available commands. · Open in Neo

@github-actions github-actions bot requested a review from Akokonunes March 16, 2026 20:49
@neo-by-projectdiscovery-dev
Copy link
Copy Markdown

neo-by-projectdiscovery-dev bot commented Mar 30, 2026
edited
Loading

Neo - Nuclei Template Review

No security issues found

Hardening Notes
  • The previous medium severity matcher logic issue in blockchain-rpc-debug-exposure.yaml (negative matcher can cause false negatives when error messages contain phrases like 'not found') is still present and should be addressed before merge
  • Consider testing blockchain-rpc-debug-exposure.yaml against various Ethereum client implementations (Geth, Erigon, Nethermind) to validate the matcher logic handles all error message variations correctly

Comment @pdneo help for available commands. · Open in Neo

@theamanrawat theamanrawat added the Done Ready to merge label Mar 30, 2026
@Akokonunes Akokonunes merged commit d635641 into projectdiscovery:main Apr 7, 2026
4 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Akokonunes Akokonunes Akokonunes approved these changes

Assignees

@theamanrawat theamanrawat

Labels

Done Ready to merge

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@0xBassia @Akokonunes @theamanrawat