TTPwire Vol. 1 · MITRE ATT&CK·Tagged

← All stories

Project Discovery

Nuclei Templates - November 2025

2025-11-30 · Read original ↗

ATT&CK techniques detected

4 predictions
T1190Exploit Public-Facing Application
96%
"execution - [ cve - 2021 - 4462 ] – employee records system 1. 0 : unauth file upload rce ( vkev ) - [ cve - 2021 - 4449 ] – zoomsounds plugin : unauth arbitrary file upload ( vkev ) - [ cve - 2020 - 14644 ] – oracle weblogic server : rce ( insecure deserialization ) ( vkev ) - […"
T1190Exploit Public-Facing Application
94%
"< 10. 3. 0 : rce - [ cve - 2024 - 53900 ] – mongoose < 8. 8. 3 : rce - [ cve - 2024 - 47575 ] – fortimanager : unauth rce ( vkev ) - [ cve - 2024 - 27443 ] – zimbra collaboration : xss ( vkev ) - [ cve - 2024 - 23108 ] – fortinet fortisiem : os command injection ( vkev ) - [ cve …"
T1190Exploit Public-Facing Application
82%
"##imanager unauth rce ), and cve - 2025 - 58360 ( geoserver xxe — 50k + exposed instances ). these target widely deployed platforms, letting you spot and fix issues before attackers strike. highlighted cve templates templates marked with highlight high - risk vulnerabilities that…"
T1588.006Vulnerabilities
56%
"##imanager unauth rce ), and cve - 2025 - 58360 ( geoserver xxe — 50k + exposed instances ). these target widely deployed platforms, letting you spot and fix issues before attackers strike. highlighted cve templates templates marked with highlight high - risk vulnerabilities that…"

Summary

Summary of Releases v10.3.2 & v10.3.4 This month, we had two releases of Nuclei Templates, introducing numerous improvements and new templates for Nuclei users. 🚀 November Stats Release New Templates Added CVEs Added First-time Contributors Bounties Awarded v10.3.2 129 56 9 7 v10.3.4 68 27 11 3 Total 197 83 20 10 Introduction November kept the momentum strong for Nuclei Templates with two new releases (v10.3.2 & v10.3.4). We added 197 new templates and coverage for