adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
56,646 Commits 27 Branches 1,043 Tags
258a97fa7ee3d57c19552e29b34deb318b407018
Commit Graph

1902 Commits

Author SHA1 Message Date
cappetta 30a2441fc4 editorial update - PR feedback 2020-06-08 12:10:47 -04:00
cappetta ae12b9530b editorial update 2020-06-08 11:16:20 -04:00
bwatters-r7 5932e75e1f Land #13384, Add Cisco UCS Director auth bypass, directory traversal(s), 
and Cloupia script RCE (CVE-2020-3243 / ZDI-20-540)

Merge branch 'land-13384' into upstream-master
 2020-06-04 14:55:01 -05:00
Shelby Pace 51fca24a38 Land #13545, add drag / drop file upload rce 2020-06-04 10:35:03 -05:00
Shelby Pace 329ba1091f add session_created, fix typo 2020-06-04 10:32:17 -05:00
William Vu 8ad7b71829 Land #13552, WebLogic CVE-2020-2883 exploit 2020-06-03 19:52:52 -05:00
William Vu 32ae47c9a9 Add Cisco UCS Director Cloupia script RCE 2020-06-02 22:13:07 -05:00
h00die ff067088fd docs 2020-06-02 16:24:04 -04:00
Shelby Pace d0afec2e99 add documentation 2020-06-02 14:24:58 -05:00
Spencer McIntyre c7c23a72b1 Land #13512, Add vbulletin_getindexablecontent exploit and auxillary modules 2020-06-01 18:03:08 -04:00
h00die a6b6d7b14d make markdown not ruby 2020-05-30 21:21:31 -04:00
h00die 41b512ecda dnd multi file upload rce 2020-05-30 21:07:46 -04:00
William Vu f60e569c1b Add Cisco CML and VIRL-PE advisory to Salt modules 
Hat tip @brudis-r7!
 2020-05-29 15:24:00 -05:00
Zenofex e5dcb2e23c Switch to use res.get_json_document from JSON.parse and more cleanup. 2020-05-28 11:16:44 -05:00
Alan Foster f1c492fa2d Land #13470, Pi-Hole < 4.3.3 dhcp static address RCE 2020-05-28 16:57:22 +01:00
h00die 695f212d26 pihole default payload fix 2020-05-28 09:55:04 -04:00
h00die ad2c0c29bd ghost doc fixes 2020-05-28 07:20:38 -04:00
Alan Foster 1d3665115c Land #13530, move exim_gethostbyname_bof docs from the wiki to the main repo 2020-05-28 12:11:13 +01:00
h00die 7902a8e677 exim_gethostbyname_bof docs 2020-05-28 06:48:28 -04:00
Zenofex 7ef7af0d30 Ran msftidy across documentation and made recommended changes to clean up module for MSF pull request. 2020-05-26 17:31:02 -05:00
Zenofex e7d7ddc213 Initial push of vbulletin_getIndexableContent auxillary and exploit modules + documentation. 2020-05-23 03:20:46 -05:00
Brendan Coles ad05cf7870 Update TinyIdentD 2.2 Stack Buffer Overflow module 2020-05-23 04:43:44 +00:00
bwatters-r7 cb06a4e731 Land #13455, Pi-Hole < 3.3 whitelist RCE 
Merge branch 'land-13455' into upstream-master
 2020-05-22 15:35:16 -05:00
William Vu 06f9099d7f Add BASE_DN and ROOT_KEY to vmdir and Salt modules 2020-05-22 11:16:58 -05:00
Spencer McIntyre b49dd37614 Land #13494, Add Plesk/myLittleAdmin ViewState .NET deserialization pre-auth RCE 2020-05-22 11:53:41 -04:00
bwatters-r7 2d56931663 Land #13287, CVE-2017-15889 Synology DSM < 5.2-5967-5 authenticated root exploit 
Merge branch 'land-13487' into upstream-master
 2020-05-22 10:07:50 -05:00
William Vu fe2ab51c8f Update module doc 2020-05-21 18:37:13 -05:00
William Vu 55318baad5 Add module doc 2020-05-21 18:12:57 -05:00
h00die 79f0c07bab add docs for 410 2020-05-21 17:43:46 -04:00
Spencer McIntyre ffb681cb79 Land #13485, Update eyesofnetwork_autodiscovery_rce with SQLi auth bypass 2020-05-21 17:24:23 -04:00
Spencer McIntyre ecd3c0f820 Minor doc changes, add module notes and SQLi progress output 2020-05-21 16:31:45 -04:00
William Vu 8473662e32 Land #13463, Oracle WebLogic CVE-2020-2555 exploit 2020-05-20 23:21:07 -05:00
kalba-security 7c2c227ea0 Improve version checks, remove comments from previous testing 2020-05-20 18:06:42 -04:00
William Vu 655088bb0d Fix punctuation typo in exchange_ecp_viewstate 2020-05-20 09:47:11 -05:00
h00die ad4e6bf7da fix docs 2020-05-19 20:32:32 -04:00
h00die 4721e605d0 5.2 root exploit 2020-05-19 20:19:51 -04:00
Shelby Pace 4a1d6f362c remove eol spaces from doc 2020-05-19 14:52:34 -05:00
Shelby Pace df3e8f2c0e fix docs 2020-05-19 12:32:52 -05:00
Shelby Pace 67f4cc8fb6 Update documentation/modules/exploit/multi/misc/weblogic_deserialize_badattrval.md 
Co-authored-by: wvu-r7 <wvu-r7@users.noreply.github.com>
 2020-05-19 12:19:05 -05:00
Shelby Pace ec7ff5efe0 Update documentation/modules/exploit/multi/misc/weblogic_deserialize_badattrval.md 
Co-authored-by: wvu-r7 <wvu-r7@users.noreply.github.com>
 2020-05-19 12:18:58 -05:00
Shelby Pace aea7eb9304 Update documentation/modules/exploit/multi/misc/weblogic_deserialize_badattrval.md 
Co-authored-by: wvu-r7 <wvu-r7@users.noreply.github.com>
 2020-05-19 12:18:46 -05:00
Shelby Pace 3073479dc8 Update documentation/modules/exploit/multi/misc/weblogic_deserialize_badattrval.md 
Co-authored-by: wvu-r7 <wvu-r7@users.noreply.github.com>
 2020-05-19 12:18:38 -05:00
Shelby Pace ddc549e11d Update documentation/modules/exploit/multi/misc/weblogic_deserialize_badattrval.md 
Co-authored-by: wvu-r7 <wvu-r7@users.noreply.github.com>
 2020-05-19 12:18:29 -05:00
kalba-security 6d72fe4854 Update eyesofnetwork_autodiscovery_rce module and documentation 2020-05-19 11:48:48 -04:00
Alan Foster c019c06505 Land #13445, Pi-Hole <= 4.4 root RCE CVE-2020-11108 2020-05-18 13:41:57 +01:00
h00die 132a74295a fix doc numbering 2020-05-16 01:39:20 -04:00
h00die a8673e0efc pihole dhcp exec 2020-05-16 01:30:58 -04:00
h00die d496554da0 proper pathing 2020-05-15 19:03:30 -04:00
Shelby Pace 861ea8d696 add jdk info 2020-05-15 10:16:26 -05:00
Shelby Pace 91e4328198 add documentation, remove some leftover comments 2020-05-15 09:44:45 -05:00