d49b28eeb7
Update docs
...
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com >
2021-04-09 08:29:30 +08:00
f30a2fd756
Update docs
...
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com >
2021-04-09 08:29:15 +08:00
7c575cd38f
Land #15007 , add a chrome renderer exploit (CVE-2020-16040)
2021-04-08 22:18:20 +01:00
8814218f20
Update tomcat ghost module with default ports
2021-04-08 10:29:09 +01:00
926f051377
Land #14978 , add Gitea and Gogs exploit modules
2021-04-07 13:44:43 -05:00
258b9d3e28
Land #14998 , Change CVE references from CVE Details to NVD
2021-04-07 10:10:55 +01:00
6a5529c7cc
Land #14965 , Solman post module for CVE-2019-0307 and new action for cve_2020_6207_solman_rce auxiliary module
2021-04-07 09:46:56 +02:00
690e687e7e
Updates from code review
...
Update modules/post/multi/sap/smdagent_get_properties.rb
Update modules/auxiliary/admin/sap/cve_2020_6207_solman_rce.rb
Update documentation for auxiliary module cve_2020_6207_solman_rce.md
Update documentation for post module smdagent_get_properties.md
Move setup_xml_and_variables to `run` method in auxiliary module cve_2020_6207_solman_rce.rb
Delete list_dir, read_file, file_exist in post module smdagent_get_properties.rb
2021-04-06 21:23:39 +02:00
c863c324ae
Add exploit for CVE-2020-16040
2021-04-06 17:25:27 +05:30
4020813b42
Correct broken or redundant CVE references
2021-04-05 13:06:50 -05:00
cfc6b0a8ba
Land #14971 , add Apache OFBiz SOAP Deser rce
2021-04-05 11:44:40 -05:00
a803e1e932
remove spare comma
2021-04-05 09:33:20 -05:00
943698ef19
Add an haserl-based exploit for Alpine linux
2021-04-02 13:43:52 +02:00
71914a1ddb
Land #14813 , additional dup scout bof targets
2021-04-01 13:03:57 -05:00
b42a22c4de
Updated documentation
2021-04-01 13:30:39 -04:00
34a5f7906c
Rebase so we can use the latest mixin code,update the version range, update docs
2021-04-01 13:29:44 -04:00
faab100d9a
Add Nagios XI Mibs.php Authenticated RCE module and docs
2021-04-01 13:06:33 -04:00
f76f58eb51
Rebase, use latest mixin code in check, update version and docs
2021-04-01 12:43:44 -04:00
dd5c747584
Add Nagios XI snmptrap RCE and docs
2021-04-01 12:26:06 -04:00
02b9e5c939
rebase, use latest mixin code, correct vulnerable versions, update docs
2021-04-01 12:18:46 -04:00
3b7e612541
Add Nagios XI Plugins Filename Authenticate RCE module and docs
2021-04-01 11:23:52 -04:00
2df90d8d23
Rebase, rename module to nagios_xi_plugins_check_plugin_authenticated_rce, update check to take advantage of mixin, minor improvements
2021-04-01 11:07:49 -04:00
2cbd1a6be9
Land #14935 , add F5 iControl REST API SSRF RCE
2021-04-01 08:40:38 -05:00
0e7c11ada3
Rename module and modify it to use the Nagios XI mixin, add autocheck, fix syntax and linting, also update docs
2021-04-01 09:26:16 -04:00
8cdaf9791d
Land #14950 , add saltstack salt api rce
2021-03-31 14:50:30 -05:00
9eacda5552
add wait time line to test output
2021-03-31 14:47:34 -05:00
69a0c9420b
Add module doc
2021-03-31 14:02:32 -05:00
9806026ab9
Update from code review
2021-03-31 17:48:35 +02:00
73a8b7aa5f
Add Gitea and Gogs RCE modules and documentations
2021-03-31 16:47:29 +02:00
9776a87d32
docs
2021-03-31 20:41:51 +08:00
151b8f2f92
Update vmware_vcenter_uploadova_rce module doc
2021-03-30 21:08:21 -05:00
a0a4bc079a
Add the exploit module for CVE-2021-26295
2021-03-30 18:18:16 -04:00
eeed98d93e
CVE-2019-0307
...
Add documentation for post module smdagent_get_properties.md
Update documentation for auxiliary module cve_2020_6207_solman_rce.md
2021-03-29 21:11:16 +03:00
9d85af51cb
Land #14945 , Proxylogon RCE (Praetorian update)
2021-03-29 12:04:19 -04:00
11f4946817
Tweak some ProxyLogon verbiage for clarity
2021-03-29 10:07:43 -04:00
02b240b22a
code review
2021-03-29 14:23:39 +04:00
80ae750df5
Land #14697 , Add Nagios XI mixin and auxiliary scanner module and docs
2021-03-26 18:12:16 -05:00
11b12e4c63
Land #14869 , Add Windows post module for gathering Exchange mailboxes
...
Merge branch 'land-14869' into upstream-master
2021-03-26 15:08:06 -05:00
00698d20bf
Add waiting status message and update doc
2021-03-26 14:59:27 +01:00
b069fec866
Add module and doc for Saltstack Salt API wheel_async RCE
2021-03-26 13:54:06 +01:00
006faaab9a
Land #14924 , Add auxiliary and exploit modules for CVE-2020-6207 in SAP Solution Manager
2021-03-25 17:48:56 -04:00
7854981730
breaking up lines in documentation
2021-03-25 16:40:16 -04:00
748ff19ef4
attempt to please linting
2021-03-25 16:11:43 -04:00
3d32b48148
adding documentation
2021-03-25 14:39:00 -04:00
707f163e15
Avoid type mixing as much as possible, add other feedback from code review
2021-03-25 11:19:31 -04:00
b066145cf1
Minor updates
...
Updated documentation auxiliary module cve_2020_6207_solman_rce.md
Updated documentation in exploit module cve_2020_6207_solman_rs.md
2021-03-25 17:07:20 +03:00
6505f9ccbd
Land #14830 , Adding FortiLogger 4.4.2.2 - Unauthenticated Arbitrary File Upload (CVE-2021-3378)
...
Merge branch 'land-14830' into upstream-master
2021-03-24 17:41:10 -05:00
e2dfca86f9
Add warning for failures after rebooting to the documentation.
2021-03-24 17:32:08 -05:00
f01b434160
Land #14896 , Fix apache_activemq_upload_jsp exploit module for Java 8
2021-03-24 10:22:03 -05:00
9d7e9990f4
Update documentation wording a bit to be more appropriate
2021-03-24 09:17:22 -05:00
je5442804