adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
79,195 Commits 27 Branches 1,043 Tags
34ceae4e2c47f0b1963f73dec1505879fa2d7166
Commit Graph

39146 Commits

Author SHA1 Message Date
Jack Heysel 0589121fb9 Update payload options 2025-12-15 18:52:38 -05:00
Jack Heysel ca2ac75e16 Change react2shell default encoder 2025-12-12 15:22:34 -08:00
jheysel-r7 388a967101 Merge pull request #20749 from nakkouchtarek/grav-ssti-rce 
Add Grav CMS Twig SSTI Sandbox Bypass RCE Exploit Module & Documentation
 2025-12-11 16:13:09 -08:00
jheysel-r7 33197bd59c Merge pull request #20713 from Chocapikk/nable 
Add N-able N-Central authentication bypass and XXE scanner module (CVE-2025-9316, CVE-2025-11700)
 2025-12-11 11:10:48 -08:00
Tarek Nakkouch a20e2dfa6e Use send_request_cgi! for automatic redirect handling 2025-12-11 20:03:17 +01:00
Tarek Nakkouch 028aa2f544 Wrap zlib require in begin/rescue block for proper error handling 2025-12-11 19:53:02 +01:00
Tarek Nakkouch df9f546d01 Use HttpClientTimeout datastore option instead of hardcoded timeout value 2025-12-11 19:52:16 +01:00
Tarek Nakkouch 80f60b431c Set default value for FORM_NAME option and remove fallback check 2025-12-11 19:45:24 +01:00
Valentin Lobstein 35d7b2e334 Improve file content parsing in extract_file_contents method 2025-12-11 18:57:18 +01:00
cgranleese-r7 f7abf967a6 Merge pull request #20743 from zeroSteiner/fix/mssql-encryption-guard 
Remove the TDSENCRYPTION Guard Clause
 2025-12-11 12:58:09 +00:00
jheysel-r7 0c921ea2e7 Merge pull request #20725 from Chocapikk/magento 
Add Magento SessionReaper (CVE-2025-54236) exploit module
 2025-12-10 08:56:47 -08:00
jheysel-r7 d86c5f0908 Merge pull request #20746 from Chocapikk/king-addons 
Add WordPress King Addons privilege escalation exploit (CVE-2025-8489)
 2025-12-10 08:37:11 -08:00
Diego Ledda d6560b951f Merge branch 'master' into loongarch64 2025-12-10 07:08:40 -05:00
Valentin Lobstein be4c3c1a91 Update modules/exploits/multi/http/wp_king_addons_privilege_escalation.rb 
Co-authored-by: jheysel-r7 <Jack_Heysel@rapid7.com>
 2025-12-10 06:07:41 +01:00
Valentin Lobstein fc8f07cf91 Update modules/exploits/multi/http/wp_king_addons_privilege_escalation.rb 
Co-authored-by: jheysel-r7 <Jack_Heysel@rapid7.com>
 2025-12-10 06:07:23 +01:00
jheysel-r7 47771a6789 Merge pull request #20760 from sfewer-r7/fix-55182 
fix a typo with the use of CVE-2025-55102, it should be CVE-2025-55182
 2025-12-09 10:32:33 -08:00
Valentin Lobstein 6bc2bffd8c Refactor create_admin_user to handle errors internally and remove custom.ini from documentation 2025-12-09 19:20:56 +01:00
Valentin Lobstein 1596d42c6a Update modules/exploits/multi/http/wp_king_addons_privilege_escalation.rb 
Co-authored-by: Phil Townes <phil_townes@rapid7.com>
 2025-12-09 19:14:44 +01:00
Valentin Lobstein c423ff07c5 Update modules/exploits/multi/http/wp_king_addons_privilege_escalation.rb 
Co-authored-by: Phil Townes <phil_townes@rapid7.com>
 2025-12-09 19:14:36 +01:00
Diego Ledda 9489296664 Merge pull request #20758 from msutovsky-r7/payload/ppc/fetch_payloads 
Adds PPC reverse payloads to fetch adapters
 2025-12-09 07:04:14 -05:00
sfewer-r7 1a8e88c054 fix a typo with the use of CVE-2025-55102, it should be CVE-2025-55182 2025-12-09 09:05:59 +00:00
Brendan caa672231b Merge pull request #20736 from sfewer-r7/fortiweb-exploit-rce-v6-support 
Update the FortiWeb exploit module (CVE-2025-64446 + CVE-2025-58034) to target older unsupported versions 6.x
 2025-12-08 17:43:49 -06:00
jheysel-r7 66279422d1 Merge pull request #20747 from vognik/2025-55182 
Add CVE-2025-55182 / CVE-2025-66478
 2025-12-08 13:41:49 -08:00
Tarek Nakkouch e45eda6ead Replace gsub with encode_base64 delimiter parameter 
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com>
 2025-12-08 19:48:01 +01:00
Martin Sutovsky f8ae3912be Rubocopes 2025-12-08 17:32:28 +01:00
Martin Sutovsky 62d02675ce Adds reverse shell payloads to PPC fetch adapters 2025-12-08 17:31:55 +01:00
cpomfret-r7 2a53d9c866 Merge pull request #20704 from dwelch-r7/combine-ssh-login-modules 
The module `auxiliary/scanner/ssh/ssh_login_pubkey` has been removed.
Its functionality has been moved into `auxiliary/scanner/ssh/ssh_login`.
 2025-12-08 15:44:58 +00:00
Tarek Nakkouch e08c18c720 Remove ARTIFACTS_ON_DISK side effect 
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com>
 2025-12-08 15:42:29 +01:00
Tarek Nakkouch 77f4fe9c98 Update module name 
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com>
 2025-12-08 15:41:31 +01:00
vognik bdd7cb5365 upgraded payload 2025-12-08 01:32:43 -08:00
Tarek Nakkouch 5fcc33d203 Implement zlib compression before base64 encoding to minimize payload size 2025-12-07 22:25:51 +01:00
Tarek Nakkouch d17dc184bf Strengthen Grav CMS fingerprinting with strict HTML parsing 2025-12-07 17:14:35 +01:00
vognik 1dde12b483 fix naming errors 2025-12-06 02:53:38 -08:00
vognik 38682b5ed6 refactoring 2025-12-05 14:58:59 -08:00
vognik e1982475ca replaced the noisy check method with a silent one 2025-12-05 11:32:07 -08:00
vognik 7b8c08d778 some refactoring 2025-12-05 10:47:06 -08:00
Diego Ledda 7e48e12ed0 Merge pull request #20716 from bcoles/linux-riscv-prepends 
Add Linux RISC-V 32-bit/64-bit prepends
 2025-12-05 11:04:24 -05:00
vognik 88309b5a4a add suggestions from @Chocapikk 2025-12-05 08:02:56 -08:00
Diego Ledda d66e93afc0 Merge pull request #20658 from jheysel-r7/feat/mod/cert_details_update 
Add Updates to LDAP ESC Vulnerable Cert Finder
 2025-12-05 10:55:52 -05:00
vognik 918f474fc6 fixed the nits 2025-12-05 00:47:19 -08:00
vognik 3669e3cdcc add unused code 2025-12-05 00:25:21 -08:00
vognik b6188e6f50 fix target_uri error 2025-12-05 00:12:52 -08:00
vognik 770e63b0d1 add windows documentation 2025-12-05 00:06:58 -08:00
vognik a12431e1a3 add suggestions from @sfewer-r7 2025-12-04 23:58:22 -08:00
Maksim Rogov 5b299a0489 Update modules/exploits/multi/http/react2shell_cve_2025_55102.rb 
Co-authored-by: bcoles <bcoles@gmail.com>
 2025-12-05 10:10:51 +03:00
Maksim Rogov d9977f31fc Update modules/exploits/multi/http/react2shell_cve_2025_55102.rb 
Co-authored-by: bcoles <bcoles@gmail.com>
 2025-12-05 10:10:35 +03:00
vognik e51ea0ae23 improve documentation 2025-12-04 23:03:13 -08:00
vognik bff7d0836a change execSync to exec 2025-12-04 22:54:35 -08:00
vognik 23e5f68c87 remove debug 2025-12-04 22:44:23 -08:00
vognik f71a71ab18 add exploit mvp 2025-12-04 22:16:27 -08:00