Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

panic: runtime error: invalid memory address or nil pointer dereference #4025

Closed
mastercho opened this issue Aug 4, 2023 · 13 comments · Fixed by projectdiscovery/dsl#80
Closed

panic: runtime error: invalid memory address or nil pointer dereference #4025

mastercho opened this issue Aug 4, 2023 · 13 comments · Fixed by projectdiscovery/dsl#80
Assignees
@dogancanbakir
Labels
Priority: High After critical issues are fixed, these should be dealt with before any further issues. Status: Completed Nothing further to be done with this issue. Awaiting to be closed. Type: Bug Inconsistencies or issues which will cause an issue or problem for users or implementors.
Milestone
nuclei v2.9.12

Comments

@mastercho
Copy link

Nuclei version: 2.9.10

Current Behavior:

Every time when i try to run scan getting

panic: runtime error: invalid memory address or nil pointer dereference
[signal SIGSEGV: segmentation violation code=0x1 addr=0x28 pc=0x11cdcbc]

goroutine 371258 [running]:
github.com/projectdiscovery/dsl.init.0.func73({0xc0022d8fc0, 0x3, 0x16?})
        github.com/projectdiscovery/[email protected]/dsl.go:869 +0x1fc
github.com/projectdiscovery/dsl.dslFunction.Exec({{0x20dc2c5, 0x6}, 0x0, {0xc00023b710, 0x1, 0x1}, 0x2737a78}, {0xc0022d8fc0, 0x3, 0x4})
        github.com/projectdiscovery/[email protected]/func.go:52 +0x143
github.com/Knetic/govaluate.makeFunctionStage.func1({0xc005bbfd60?, 0x1c85380?}, {0x1c85380, 0xc00b30f440?}, {0x2181817?, 0xc00b23e001?})
        github.com/Knetic/[email protected]+incompatible/evaluationStage.go:243 +0x67
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x218ae09, 0x22}, 0x1, {0xc001f28600, 0x17, 0x20}, 0xc00b23e0f0, {0xc00b916302, 0x4e}}, 0xc005bbfdb0, ...)
        github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:232 +0x5dc
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x218ae09, 0x22}, 0x1, {0xc001f28600, 0x17, 0x20}, 0xc00b23e0f0, {0xc00b916302, 0x4e}}, 0xc005bbfe00, ...)
        github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:205 +0x3b5
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x218ae09, 0x22}, 0x1, {0xc001f28600, 0x17, 0x20}, 0xc00b23e0f0, {0xc00b916302, 0x4e}}, 0xc005bbfe50, ...)
        github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:205 +0x3b5
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x218ae09, 0x22}, 0x1, {0xc001f28600, 0x17, 0x20}, 0xc00b23e0f0, {0xc00b916302, 0x4e}}, 0xc005bbfef0, ...)
        github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:205 +0x3b5
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x218ae09, 0x22}, 0x1, {0xc001f28600, 0x17, 0x20}, 0xc00b23e0f0, {0xc00b916302, 0x4e}}, 0xc005bbff40, ...)
        github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:205 +0x3b5
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x218ae09, 0x22}, 0x1, {0xc001f28600, 0x17, 0x20}, 0xc00b23e0f0, {0xc00b916302, 0x4e}}, 0xc005bbff90, ...)
        github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:205 +0x3b5
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x218ae09, 0x22}, 0x1, {0xc001f28600, 0x17, 0x20}, 0xc00b23e0f0, {0xc00b916302, 0x4e}}, 0xc00b23e000, ...)
        github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:205 +0x3b5
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x218ae09, 0x22}, 0x1, {0xc001f28600, 0x17, 0x20}, 0xc00b23e0f0, {0xc00b916302, 0x4e}}, 0xc00b23e050, ...)
        github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:205 +0x3b5
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x218ae09, 0x22}, 0x1, {0xc001f28600, 0x17, 0x20}, 0xc00b23e0f0, {0xc00b916302, 0x4e}}, 0xc00b23e0a0, ...)
        github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:205 +0x3b5
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x218ae09, 0x22}, 0x1, {0xc001f28600, 0x17, 0x20}, 0xc00b23e0f0, {0xc00b916302, 0x4e}}, 0xc00b23e0f0, ...)
        github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:205 +0x3b5
github.com/Knetic/govaluate.EvaluableExpression.Eval({{0x218ae09, 0x22}, 0x1, {0xc001f28600, 0x17, 0x20}, 0xc00b23e0f0, {0xc00b916302, 0x4e}}, {0x2b19b00, ...})
        github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:163 +0x125
github.com/Knetic/govaluate.EvaluableExpression.Evaluate({{0x218ae09, 0x22}, 0x1, {0xc001f28600, 0x17, 0x20}, 0xc00b23e0f0, {0xc00b916302, 0x4e}}, 0xc00c8bf740)
        github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:137 +0x9c
github.com/projectdiscovery/nuclei/v2/pkg/protocols/common/expressions.evaluate({0xc00b9162a0?, 0xc00b916240?}, 0x52?)
        github.com/projectdiscovery/nuclei/v2/pkg/protocols/common/expressions/expressions.go:61 +0x198
github.com/projectdiscovery/nuclei/v2/pkg/protocols/common/expressions.EvaluateByte(...)
        github.com/projectdiscovery/nuclei/v2/pkg/protocols/common/expressions/expressions.go:40
github.com/projectdiscovery/nuclei/v2/pkg/protocols/network.(*Request).executeRequestWithPayloads(0xc002bcc000, 0xc0095db708, {0xc006765370, 0xc}, {0xc0067652e4, 0xc}, {0xc0067652e4, 0xc}, 0x0, 0xc005e32000, ...)
        github.com/projectdiscovery/nuclei/v2/pkg/protocols/network/request.go:159 +0x646
github.com/projectdiscovery/nuclei/v2/pkg/protocols/network.(*Request).executeAddress(0xc002bcc000, 0xc00953fb30, {0xc006765370, 0xc}, {0xc0067652e4, 0xc}, {0xc0067652e4, 0xc}, 0x1?, 0xc0022796b0, ...)
        github.com/projectdiscovery/nuclei/v2/pkg/protocols/network/request.go:108 +0x666
github.com/projectdiscovery/nuclei/v2/pkg/protocols/network.(*Request).ExecuteWithResults(0xc002bcc000, 0xc007ae85b8, 0x0?, 0x0?, 0xc0022799b0)
        github.com/projectdiscovery/nuclei/v2/pkg/protocols/network/request.go:71 +0x485
github.com/projectdiscovery/nuclei/v2/pkg/protocols/common/executer.(*Executer).Execute(0xc004c27400, 0xc007ae8570)
        github.com/projectdiscovery/nuclei/v2/pkg/protocols/common/executer/executer.go:92 +0x3f7
github.com/projectdiscovery/nuclei/v2/pkg/core.(*Engine).executeTemplateWithTargets.func2.1(0x0?, 0x0?, 0xc007e2de00)
        github.com/projectdiscovery/nuclei/v2/pkg/core/executors.go:128 +0x296
created by github.com/projectdiscovery/nuclei/v2/pkg/core.(*Engine).executeTemplateWithTargets.func2
        github.com/projectdiscovery/nuclei/v2/pkg/core/executors.go:105 +0x52a

Thought is RAM issue but after testing on 3 more machines can confirm is a bug

Expected Behavior:

To finish scan without issue

Steps To Reproduce:

nuclei -l test.txt -s critical
@mastercho mastercho added the Type: Bug Inconsistencies or issues which will cause an issue or problem for users or implementors. label Aug 4, 2023
@olex0r
Copy link

olex0r commented Aug 7, 2023

I have the same

panic: runtime error: invalid memory address or nil pointer dereference
[signal SIGSEGV: segmentation violation code=0x1 addr=0x28 pc=0x11cde1d]

goroutine 39154282 [running]:
github.com/projectdiscovery/dsl.init.0.func73({0xc006fcbf80, 0x3, 0x16?})
	github.com/projectdiscovery/[email protected]/dsl.go:852 +0x35d
github.com/projectdiscovery/dsl.dslFunction.Exec({{0x20dc2c5, 0x6}, 0x0, {0xc0009b3700, 0x1, 0x1}, 0x2737a78}, {0xc006fcbf80, 0x3, 0x4})
	github.com/projectdiscovery/[email protected]/func.go:52 +0x143
github.com/Knetic/govaluate.makeFunctionStage.func1({0xc0079b0320?, 0x1c85380?}, {0x1c85380, 0xc03d2f35d8?}, {0x2181817?, 0xc0079b0b01?})
	github.com/Knetic/[email protected]+incompatible/evaluationStage.go:243 +0x67
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x218ae09, 0x22}, 0x1, {0xc00056a600, 0x17, 0x20}, 0xc0079b0b90, {0xc0356a2542, 0x4e}}, 0xc0079b0500, ...)
	github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:232 +0x5dc
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x218ae09, 0x22}, 0x1, {0xc00056a600, 0x17, 0x20}, 0xc0079b0b90, {0xc0356a2542, 0x4e}}, 0xc0079b0550, ...)
	github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:205 +0x3b5
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x218ae09, 0x22}, 0x1, {0xc00056a600, 0x17, 0x20}, 0xc0079b0b90, {0xc0356a2542, 0x4e}}, 0xc0079b0820, ...)
	github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:205 +0x3b5
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x218ae09, 0x22}, 0x1, {0xc00056a600, 0x17, 0x20}, 0xc0079b0b90, {0xc0356a2542, 0x4e}}, 0xc0079b0910, ...)
	github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:205 +0x3b5
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x218ae09, 0x22}, 0x1, {0xc00056a600, 0x17, 0x20}, 0xc0079b0b90, {0xc0356a2542, 0x4e}}, 0xc0079b09b0, ...)
	github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:205 +0x3b5
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x218ae09, 0x22}, 0x1, {0xc00056a600, 0x17, 0x20}, 0xc0079b0b90, {0xc0356a2542, 0x4e}}, 0xc0079b0a00, ...)
	github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:205 +0x3b5
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x218ae09, 0x22}, 0x1, {0xc00056a600, 0x17, 0x20}, 0xc0079b0b90, {0xc0356a2542, 0x4e}}, 0xc0079b0a50, ...)
	github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:205 +0x3b5
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x218ae09, 0x22}, 0x1, {0xc00056a600, 0x17, 0x20}, 0xc0079b0b90, {0xc0356a2542, 0x4e}}, 0xc0079b0aa0, ...)
	github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:205 +0x3b5
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x218ae09, 0x22}, 0x1, {0xc00056a600, 0x17, 0x20}, 0xc0079b0b90, {0xc0356a2542, 0x4e}}, 0xc0079b0af0, ...)
	github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:205 +0x3b5
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x218ae09, 0x22}, 0x1, {0xc00056a600, 0x17, 0x20}, 0xc0079b0b90, {0xc0356a2542, 0x4e}}, 0xc0079b0b90, ...)
	github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:205 +0x3b5
github.com/Knetic/govaluate.EvaluableExpression.Eval({{0x218ae09, 0x22}, 0x1, {0xc00056a600, 0x17, 0x20}, 0xc0079b0b90, {0xc0356a2542, 0x4e}}, {0x2b19b00, ...})
	github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:163 +0x125
github.com/Knetic/govaluate.EvaluableExpression.Evaluate({{0x218ae09, 0x22}, 0x1, {0xc00056a600, 0x17, 0x20}, 0xc0079b0b90, {0xc0356a2542, 0x4e}}, 0xc0062546c0)
	github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:137 +0x9c
github.com/projectdiscovery/nuclei/v2/pkg/protocols/common/expressions.evaluate({0xc0356a24e0?, 0xc0356a2480?}, 0x52?)
	github.com/projectdiscovery/nuclei/v2/pkg/protocols/common/expressions/expressions.go:61 +0x198
github.com/projectdiscovery/nuclei/v2/pkg/protocols/common/expressions.EvaluateByte(...)
	github.com/projectdiscovery/nuclei/v2/pkg/protocols/common/expressions/expressions.go:40
github.com/projectdiscovery/nuclei/v2/pkg/protocols/network.(*Request).executeRequestWithPayloads(0xc004148700, 0xc000fc1708, {0xc05e95a220, 0x1b}, {0xc05e95a140, 0x1b}, {0xc05e95a140, 0x1b}, 0x0, 0xc052cba840, ...)
	github.com/projectdiscovery/nuclei/v2/pkg/protocols/network/request.go:159 +0x646
github.com/projectdiscovery/nuclei/v2/pkg/protocols/network.(*Request).executeAddress(0xc004148700, 0xc028089b30, {0xc05e95a220, 0x1b}, {0xc05e95a140, 0x1b}, {0xc05e95a140, 0x1b}, 0x1?, 0xc052cba360, ...)
	github.com/projectdiscovery/nuclei/v2/pkg/protocols/network/request.go:108 +0x666
github.com/projectdiscovery/nuclei/v2/pkg/protocols/network.(*Request).ExecuteWithResults(0xc004148700, 0xc03ab841b0, 0x0?, 0x0?, 0xc052cba4b0)
	github.com/projectdiscovery/nuclei/v2/pkg/protocols/network/request.go:71 +0x485
github.com/projectdiscovery/nuclei/v2/pkg/protocols/common/executer.(*Executer).Execute(0xc006e5aa00, 0xc03ab84198)
	github.com/projectdiscovery/nuclei/v2/pkg/protocols/common/executer/executer.go:92 +0x3f7
github.com/projectdiscovery/nuclei/v2/pkg/core.(*Engine).executeTemplateWithTargets.func2.1(0x3de3f2c0?, 0xc0?, 0xc004eb2de0)
	github.com/projectdiscovery/nuclei/v2/pkg/core/executors.go:128 +0x296
created by github.com/projectdiscovery/nuclei/v2/pkg/core.(*Engine).executeTemplateWithTargets.func2
	github.com/projectdiscovery/nuclei/v2/pkg/core/executors.go:105 +0x52a

@ehsandeep ehsandeep added Priority: High After critical issues are fixed, these should be dealt with before any further issues. Investigation Something to Investigate labels Aug 8, 2023
@ehsandeep ehsandeep added this to the nuclei v2.9.11 milestone Aug 8, 2023
@dogancanbakir dogancanbakir self-assigned this Aug 8, 2023
@dogancanbakir
Copy link
Member

@mastercho,
@olex0r,
I wasn’t able to repro the issue with the steps you provided. Can you share additional information?

@mastercho
Copy link
Author

For me happens on random bases

@storenth
Copy link

Reproduced on Gitlab:

nuclei -v -u $TEST_DOMAIN -rate-limit 150 -H $CUSTOMHEADER -severity info,low,medium,high,critical,unknown -jle ./nuclei-scan-report.json

Deps:

nuclei sucessfully updated 2.9.3 -> 2.9.10 (latest)

Stderr:

panic: runtime error: invalid memory address or nil pointer dereference
[signal SIGSEGV: segmentation violation code=0x1 addr=0x28 pc=0x11cde1d]
goroutine 106600 [running]:
github.com/projectdiscovery/dsl.init.0.func73({0xc0035fde00, 0x3, 0x16?})
	github.com/projectdiscovery/[email protected]/dsl.go:852 +0x35d
Screenshot 2023-08-11 at 17 42 36

@dogancanbakir
Copy link
Member

We hope this problem to be resolved in the upcoming release. I will keep you informed.

@ehsandeep ehsandeep removed this from the nuclei v2.9.11 milestone Aug 17, 2023
@dogancanbakir
Copy link
Member

Can you try the new release and see if the issue has been resolved?

@ViCrack
Copy link

ViCrack commented Aug 19, 2023

Can you try the new release and see if the issue has been resolved?

The issue hasn't been solved

nuclei v2.9.11

panic: runtime error: invalid memory address or nil pointer dereference
[signal SIGSEGV: segmentation violation code=0x1 addr=0x28 pc=0x11ea1fc]

goroutine 1340165 [running]:
github.com/projectdiscovery/dsl.init.0.func74({0xc000d42840, 0x3, 0x1cc1da0?})
        github.com/projectdiscovery/[email protected]/dsl.go:956 +0x1fc
github.com/projectdiscovery/dsl.dslFunction.Exec({0x0, {0x21116b3, 0x6}, 0x0, {0xc0008ea600, 0x1, 0x1}, 0x27a6660}, {0xc000d42840, 0x3, ...})
        github.com/projectdiscovery/[email protected]/func.go:54 +0x2be
github.com/Knetic/govaluate.makeFunctionStage.func1({0xc00a77bd60?, 0x1cb0320?}, {0x1cb0320, 0xc0032d1260?}, {0x21b6d3c?, 0xc00f5b2201?})
        github.com/Knetic/[email protected]+incompatible/evaluationStage.go:243 +0x67
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x21c038d, 0x22}, 0x1, {0xc002cfc600, 0x17, 0x20}, 0xc00f5b2230, {0xc014997e62, 0x4e}}, 0xc00a77be00, ...)
        github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:232 +0x5dc
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x21c038d, 0x22}, 0x1, {0xc002cfc600, 0x17, 0x20}, 0xc00f5b2230, {0xc014997e62, 0x4e}}, 0xc00a77bea0, ...)
        github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:205 +0x3b5
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x21c038d, 0x22}, 0x1, {0xc002cfc600, 0x17, 0x20}, 0xc00f5b2230, {0xc014997e62, 0x4e}}, 0xc00a77bef0, ...)
        github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:205 +0x3b5
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x21c038d, 0x22}, 0x1, {0xc002cfc600, 0x17, 0x20}, 0xc00f5b2230, {0xc014997e62, 0x4e}}, 0xc00a77bf40, ...)
        github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:205 +0x3b5
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x21c038d, 0x22}, 0x1, {0xc002cfc600, 0x17, 0x20}, 0xc00f5b2230, {0xc014997e62, 0x4e}}, 0xc00a77bf90, ...)
        github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:205 +0x3b5
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x21c038d, 0x22}, 0x1, {0xc002cfc600, 0x17, 0x20}, 0xc00f5b2230, {0xc014997e62, 0x4e}}, 0xc00f5b2050, ...)
        github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:205 +0x3b5
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x21c038d, 0x22}, 0x1, {0xc002cfc600, 0x17, 0x20}, 0xc00f5b2230, {0xc014997e62, 0x4e}}, 0xc00f5b20a0, ...)
        github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:205 +0x3b5
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x21c038d, 0x22}, 0x1, {0xc002cfc600, 0x17, 0x20}, 0xc00f5b2230, {0xc014997e62, 0x4e}}, 0xc00f5b2190, ...)
        github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:205 +0x3b5
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x21c038d, 0x22}, 0x1, {0xc002cfc600, 0x17, 0x20}, 0xc00f5b2230, {0xc014997e62, 0x4e}}, 0xc00f5b21e0, ...)
        github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:205 +0x3b5
github.com/Knetic/govaluate.EvaluableExpression.evaluateStage({{0x21c038d, 0x22}, 0x1, {0xc002cfc600, 0x17, 0x20}, 0xc00f5b2230, {0xc014997e62, 0x4e}}, 0xc00f5b2230, ...)
        github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:205 +0x3b5
github.com/Knetic/govaluate.EvaluableExpression.Eval({{0x21c038d, 0x22}, 0x1, {0xc002cfc600, 0x17, 0x20}, 0xc00f5b2230, {0xc014997e62, 0x4e}}, {0x2b8c7a0, ...})
        github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:163 +0x125
github.com/Knetic/govaluate.EvaluableExpression.Evaluate({{0x21c038d, 0x22}, 0x1, {0xc002cfc600, 0x17, 0x20}, 0xc00f5b2230, {0xc014997e62, 0x4e}}, 0xc015024c00)
        github.com/Knetic/[email protected]+incompatible/EvaluableExpression.go:137 +0x9c
github.com/projectdiscovery/nuclei/v2/pkg/protocols/common/expressions.evaluate({0xc014997e00?, 0xc014997da0?}, 0x52?)
        github.com/projectdiscovery/nuclei/v2/pkg/protocols/common/expressions/expressions.go:61 +0x198
github.com/projectdiscovery/nuclei/v2/pkg/protocols/common/expressions.EvaluateByte(...)
        github.com/projectdiscovery/nuclei/v2/pkg/protocols/common/expressions/expressions.go:40
github.com/projectdiscovery/nuclei/v2/pkg/protocols/network.(*Request).executeRequestWithPayloads(0xc00277a400, 0xc015c51708, {0xc00e7d23d8, 0x13}, {0xc00e7d2360, 0x13}, {0xc00e7d2360, 0x13}, 0x0, 0xc0152a5bf0, ...)
        github.com/projectdiscovery/nuclei/v2/pkg/protocols/network/request.go:159 +0x646
github.com/projectdiscovery/nuclei/v2/pkg/protocols/network.(*Request).executeAddress(0xc00277a400, 0xc015c3bb30, {0xc00e7d23d8, 0x13}, {0xc00e7d2360, 0x13}, {0xc00e7d2360, 0x13}, 0x1?, 0xc0152a5860, ...)
        github.com/projectdiscovery/nuclei/v2/pkg/protocols/network/request.go:108 +0x666
github.com/projectdiscovery/nuclei/v2/pkg/protocols/network.(*Request).ExecuteWithResults(0xc00277a400, 0xc005c0de78, 0xffffffffffffffff?, 0x0?, 0xc0152a5920)
        github.com/projectdiscovery/nuclei/v2/pkg/protocols/network/request.go:71 +0x485
github.com/projectdiscovery/nuclei/v2/pkg/protocols/common/executer.(*Executer).Execute(0xc000a579a0, 0xc005c0de00)
        github.com/projectdiscovery/nuclei/v2/pkg/protocols/common/executer/executer.go:92 +0x3f7
github.com/projectdiscovery/nuclei/v2/pkg/core.(*Engine).executeTemplateWithTargets.func2.1(0x757c66?, 0x0?, 0xc005599420)
        github.com/projectdiscovery/nuclei/v2/pkg/core/executors.go:128 +0x296
created by github.com/projectdiscovery/nuclei/v2/pkg/core.(*Engine).executeTemplateWithTargets.func2
        github.com/projectdiscovery/nuclei/v2/pkg/core/executors.go:105 +0x52a

1

@dogancanbakir
Copy link
Member

Hello @ViCrack, I would like to verify if you are experiencing the same error when using the command nuclei -l test.txt -s critical as previously shared. If not, could you kindly give me additional details?

@ViCrack
Copy link

ViCrack commented Aug 19, 2023
edited
Loading

https://github.com/projectdiscovery/nuclei/releases/download/v2.9.11/nuclei_2.9.11_linux_amd64.zip

Hello @dogancanbakir

OS: Centos7

My command :
./nuclei -project -etags xss,ssrf,xxe,debug,redirect,takeover -severity high,critical -mhe 25 -si 20 -tlsi -rl 100 -eid CVE-2020-21012,CVE-2020-26248,CVE-2020-29284,CVE-2021-24762,CVE-2021-24827,CVE-2022-22536,CVE-2020-6287,sar2html-rce,CVE-2021-24917,dedecms-carbuyaction-fileinclude,CVE-2009-4223,CVE-2021-37304 -l test.txt -stats

and the test.txt file has a large number of lines (3000+)

This issue occurs randomly

Mzack9999 added a commit to projectdiscovery/dsl that referenced this issue Aug 19, 2023
@Mzack9999
fixing projectdiscovery/nuclei#4025
a494c91
@Mzack9999 Mzack9999 mentioned this issue Aug 19, 2023
Closed
4 tasks
@ehsandeep ehsandeep linked a pull request Aug 20, 2023 that will close this issue
bumping dsl version #4068
Closed
4 tasks
@ehsandeep ehsandeep mentioned this issue Aug 20, 2023
Closed
@Mzack9999 Mzack9999 mentioned this issue Aug 21, 2023
Merged
Mzack9999 added a commit to projectdiscovery/dsl that referenced this issue Aug 21, 2023
@Mzack9999
Merge pull request #80 from projectdiscovery/bugfix-nil-err
4e461b8 
Fixing projectdiscovery/nuclei#4025
@Mzack9999
Copy link
Member

Indirectly fixed via projectdiscovery/dsl#80

@ehsandeep ehsandeep added Status: Completed Nothing further to be done with this issue. Awaiting to be closed. and removed Investigation Something to Investigate labels Aug 21, 2023
@ehsandeep ehsandeep added this to the nuclei v2.9.12 milestone Aug 21, 2023
@ehsandeep
Copy link
Member

This is issue is now fixed in dev branch of nuclei and will be part of next nuclei release.

@ehsandeep ehsandeep reopened this Aug 21, 2023
@mastercho
Copy link
Author

Screenshot 2023-08-11 at 17 42 36

Any explanation why its happening always on critical scan?

@ehsandeep
Copy link
Member

@mastercho you can take a look at the code changes - projectdiscovery/dsl#80, this is now fixed in the latest nuclei release. @ViCrack @storenth ^

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@dogancanbakir dogancanbakir

Labels
Priority: High After critical issues are fixed, these should be dealt with before any further issues. Status: Completed Nothing further to be done with this issue. Awaiting to be closed. Type: Bug Inconsistencies or issues which will cause an issue or problem for users or implementors.
Projects
None yet
Milestone
nuclei v2.9.12
7 participants
@ehsandeep @mastercho @Mzack9999 @ViCrack @storenth @dogancanbakir @olex0r