PkgRadar

Go modules · proxy.golang.org

github.com/projectdiscovery/nuclei-templates

DNS / OAST exfiltration: matched "dig axfr $domain @$("

Why PkgRadar flagged v10.4.4+incompatible

SeveritySignalEvidence
highDNS / OAST exfiltrationmatched "dig axfr $domain @$(" · github.com/projectdiscovery/[email protected]+incompatible/code/misconfiguration/dns-axfr-enabled.yaml
highDNS / OAST exfiltrationmatched "oast.pro" · github.com/projectdiscovery/[email protected]+incompatible/http/cves/2017/CVE-2017-14725.yaml
highDNS / OAST exfiltrationmatched "oast.pro" · github.com/projectdiscovery/[email protected]+incompatible/http/cves/2018/CVE-2018-11686.yaml
highDNS / OAST exfiltrationmatched "oast.fun" · github.com/projectdiscovery/[email protected]+incompatible/http/cves/2019/CVE-2019-18394.yaml
highDNS / OAST exfiltrationmatched "oastify.com" · github.com/projectdiscovery/[email protected]+incompatible/http/cves/2020/CVE-2020-11984.yaml
highDNS / OAST exfiltrationmatched "oast.fun" · github.com/projectdiscovery/[email protected]+incompatible/http/cves/2020/CVE-2020-26948.yaml
highDNS / OAST exfiltrationmatched "oast.pro" · github.com/projectdiscovery/[email protected]+incompatible/http/cves/2021/CVE-2021-40822.yaml
highDNS / OAST exfiltrationmatched "oast.pro" · github.com/projectdiscovery/[email protected]+incompatible/http/cves/2022/CVE-2022-0597.yaml
highDNS / OAST exfiltrationmatched "oast.pro" · github.com/projectdiscovery/[email protected]+incompatible/http/cves/2022/CVE-2022-23544.yaml
highDNS / OAST exfiltrationmatched "interactsh.com" · github.com/projectdiscovery/[email protected]+incompatible/http/cves/2022/CVE-2022-40083.yaml
highDNS / OAST exfiltrationmatched "oast.fun" · github.com/projectdiscovery/[email protected]+incompatible/http/cves/2022/CVE-2022-41412.yaml
highDNS / OAST exfiltrationmatched "oast.fun" · github.com/projectdiscovery/[email protected]+incompatible/http/cves/2022/CVE-2022-42149.yaml

Scanned versions

VersionVerdictScoreScanned (UTC)
v10.4.4+incompatibleHigh risk1482026-05-30

Block this in CI

PkgRadar gates github.com/projectdiscovery/nuclei-templates (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem go github.com/projectdiscovery/[email protected]+incompatible
Start free — 25 scans / moView full evidence