 Brent Cook
|
e1e668d7da
|
Land #12651, add OpenMRS deserialization exploit
|
2019-12-16 11:31:24 -06:00 |
|
|
Shelby Pace
|
a4ed143af6
|
Land #12364, add vBulletin widgetconfig RCE
|
2019-12-10 12:12:47 -06:00 |
|
|
Shelby Pace
|
3ddef6091c
|
update scenarios section
|
2019-12-04 12:19:58 -06:00 |
|
|
Shelby Pace
|
c7125b1b5f
|
remove options section
|
2019-12-03 12:06:44 -06:00 |
|
|
Shelby Pace
|
6f153a885a
|
add tested version
|
2019-12-02 08:42:45 -06:00 |
|
|
RAMELLA Sébastien
|
eb2817b51f
|
fix. typo into the documentation.
|
2019-11-22 20:10:29 +04:00 |
|
|
Shelby Pace
|
407adca9ec
|
add docs
|
2019-11-21 14:15:57 -06:00 |
|
|
scanu92
|
a307f4f41a
|
Apply suggestions from code review
Co-Authored-By: bcoles <bcoles@gmail.com>
|
2019-11-03 00:32:10 +01:00 |
|
|
scanu92
|
1a4777670b
|
Apply suggestions from code review
Co-Authored-By: bcoles <bcoles@gmail.com>
|
2019-11-03 00:30:18 +01:00 |
|
|
sk4
|
af0761bcfd
|
Add CMS Made Simple object injection exploit module
|
2019-11-01 12:11:38 +01:00 |
|
|
Shelby Pace
|
0b4a0b3148
|
Land #12476, add Nostromo dir traversal RCE
|
2019-10-31 08:24:41 -05:00 |
|
|
Quentin Kaiser
|
a55c5c6765
|
Update documentation/modules/exploit/multi/http/nostromo_code_exec.md
s/Nostrom/Nostromo/
Co-Authored-By: Shelby Pace <40177151+space-r7@users.noreply.github.com>
|
2019-10-30 15:38:50 +01:00 |
|
|
Quentin Kaiser
|
f03f5e4904
|
Documentation updated based on latest module version.
|
2019-10-29 16:13:25 +01:00 |
|
|
William Vu
|
3565b0efb8
|
Land #12365, Total.js CMS widget creation RCE
|
2019-10-21 15:22:09 -05:00 |
|
|
Quentin Kaiser
|
295d609595
|
Add CVE-2019-16278 exploit documentation.
|
2019-10-21 21:15:04 +02:00 |
|
|
RAMELLA Sébastien
|
861dc9969f
|
fix. typo in documentation file.
|
2019-10-18 16:07:55 +04:00 |
|
|
RAMELLA Sébastien
|
25f60b07ed
|
compliance for the framework
|
2019-10-18 15:51:58 +04:00 |
|
|
Wei Chen
|
a3331dba9f
|
Move totaljs cms module and doc
|
2019-10-15 10:11:14 -05:00 |
|
|
William Vu
|
ade9c23772
|
Don't be lazy and spell out "introduction" in docs
This was unfortunately my doing, and then people copied me.
|
2019-09-30 16:58:00 -05:00 |
|
|
RAMELLA Sébastien
|
28bbcd5402
|
fix. linux stager and add. documentation
|
2019-09-26 16:26:44 +04:00 |
|
|
Wei Chen
|
8dc238e687
|
Add TotaJS CMS Code Injection in Widget Creation
|
2019-09-25 16:54:44 -05:00 |
|
|
Shelby Pace
|
c4bd91f505
|
Land #12272, add October CMS file upload
|
2019-09-06 10:13:33 -05:00 |
|
|
Shelby Pace
|
b0625012c4
|
add vulnerable software version
|
2019-09-06 10:12:08 -05:00 |
|
|
Shelby Pace
|
5f7c243b48
|
add filedropper, fix check, add to docs
|
2019-09-06 09:49:09 -05:00 |
|
|
Touhid M Shaikh
|
b9e702458d
|
Update documentation/modules/exploit/multi/http/october_upload_bypass_exec.md
Co-Authored-By: bcoles <bcoles@gmail.com>
|
2019-09-04 23:01:44 +05:30 |
|
|
Touhid M Shaikh
|
9179ce1de1
|
Update documentation/modules/exploit/multi/http/october_upload_bypass_exec.md
Co-Authored-By: bcoles <bcoles@gmail.com>
|
2019-09-04 12:32:23 +05:30 |
|
|
Touhid M Shaikh
|
90b639da71
|
Update documentation/modules/exploit/multi/http/october_upload_bypass_exec.md
Co-Authored-By: bcoles <bcoles@gmail.com>
|
2019-09-04 12:32:15 +05:30 |
|
|
Touhid M Shaikh
|
c9b0054629
|
october_upload_bypass_exec Doc
october_upload_bypass_exec Documetation
|
2019-09-03 12:26:41 +05:30 |
|
|
William Vu
|
042c181f67
|
Land #12058, cisco_dcnm_upload_2019 exploit
|
2019-08-30 13:33:19 -05:00 |
|
|
Pedro Ribeiro
|
23d7a0ed2b
|
Create cisco_dcnm_upload_2019.md
|
2019-08-29 22:45:03 +07:00 |
|
|
Wei Chen
|
967b2a018f
|
Land #12010, Add exploit module for wp-database-backup Wordpress plugin
|
2019-07-23 12:21:23 -05:00 |
|
|
William Vu
|
cf140f0840
|
Make SRVHOST the callback address
|
2019-06-25 12:43:04 -05:00 |
|
|
Shelby Pace
|
2af76c1997
|
add documentation and finished module
|
2019-06-25 11:21:15 -05:00 |
|
|
William Vu
|
801af31d6f
|
Update documentation
|
2019-05-22 15:03:44 -05:00 |
|
|
stevenseeley
|
30401978c1
|
updated demo in docs
|
2019-05-09 21:32:01 -05:00 |
|
|
stevenseeley
|
965a19fb95
|
updated docs to include custom pop chain as suggested by @bcoles
|
2019-05-09 21:28:11 -05:00 |
|
|
stevenseeley
|
6ffef18028
|
updated documentation a little
|
2019-05-09 15:51:34 -05:00 |
|
|
stevenseeley
|
aaa0dd2532
|
added module for CVE-2017-18357
|
2019-05-09 15:17:43 -05:00 |
|
|
stevenseeley
|
89e3a07518
|
added module for CVE-2017-18357
|
2019-05-09 15:08:33 -05:00 |
|
|
Shelby Pace
|
a88858fc8b
|
Land #11779, add Rails Doubletap Dev mode RCE
|
2019-05-01 08:35:28 -05:00 |
|
|
Shelby Pace
|
887c09f806
|
fixed typo
|
2019-05-01 08:33:44 -05:00 |
|
|
Wei Chen
|
29344d15b6
|
Update rails_double_tap doc and module based on bcole feedback
|
2019-04-30 10:11:32 -05:00 |
|
|
Shelby Pace
|
10e141c73d
|
Land #11697, add Pimcore unserialize RCE
|
2019-04-29 08:52:49 -05:00 |
|
|
Wei Chen
|
738ee70667
|
Add module documentation for rails_double_rap
|
2019-04-25 16:31:27 -05:00 |
|
|
asoto-r7
|
06792f7cd4
|
Moved documentation to 'documentation' folder
|
2019-04-16 14:16:52 -05:00 |
|
|
Fabio Cogno
|
deaa66d694
|
Minor update
|
2019-04-15 00:08:10 +02:00 |
|
|
Shelby Pace
|
4d0a41ff1a
|
Land #11657, add Horde form file upload
|
2019-04-09 13:47:59 -05:00 |
|
|
Fabio Cogno
|
20a8324d8e
|
Add Pimcore from 4.0.0 to 5.6.6 Unserialize RCE
|
2019-04-07 22:44:02 +02:00 |
|
|
Shelby Pace
|
fff129ae9f
|
Land #11587, add Wordpress core RCE module
|
2019-04-04 15:22:56 -05:00 |
|
|
RatioSec Research
|
80ca30dc49
|
Apply fix requests on documentation
|
2019-03-30 10:19:55 +00:00 |
|