 Pflegusch
|
3baa894840
|
Add DefangedMode to warn the user
|
2023-03-16 18:07:28 +01:00 |
|
|
Pflegusch
|
027793cce6
|
Remove unused variable res in check_connection
|
2023-03-15 19:00:26 +01:00 |
|
|
Pflegusch
|
ac72c12734
|
Set timeout of 1s to make session available much quicker
|
2023-03-15 18:59:22 +01:00 |
|
|
Pflegusch
|
d06e2d9e3d
|
Remove nvd url
|
2023-03-15 18:56:23 +01:00 |
|
|
Pflegusch
|
ee0334dd40
|
since file got deleted, one can not trigger the payload anymore by opening the php url
|
2023-03-15 01:05:10 +01:00 |
|
|
Pflegusch
|
0cbebc8a4c
|
Remove malicious .php file at the end of the exploit
|
2023-03-15 01:03:20 +01:00 |
|
|
Pflegusch
|
103def70e4
|
More detailed error message for failed regex match
|
2023-03-15 00:07:20 +01:00 |
|
|
Pflegusch
|
d72d47e502
|
Update Failure Codes and check for nil in the helper functions
|
2023-03-14 23:59:57 +01:00 |
|
|
Pflegusch
|
897aaf9572
|
Use Failure::UnexpectedReply when password cant be changed
|
2023-03-14 23:41:48 +01:00 |
|
|
Pflegusch
|
2310b0d942
|
Use Failure::NotFound when no valid cache file is found
|
2023-03-14 23:40:29 +01:00 |
|
|
Pflegusch
|
86f4a16cff
|
Check if cache_request is not nil
|
2023-03-14 23:38:57 +01:00 |
|
|
Pflegusch
|
e160e51711
|
Fix typos, update docs with advanced option SearchLimit, implement SearchLimit into module
|
2023-03-14 23:29:55 +01:00 |
|
|
Pflegusch
|
887551bf2c
|
Use UnexptectedReply instead of Unknown
|
2023-03-14 22:29:38 +01:00 |
|
|
Pflegusch
|
8db10af8c0
|
check if res is not nil in addition to res.code
|
2023-03-14 22:28:52 +01:00 |
|
|
Pflegusch
|
dff139d6d7
|
remove fail_with in check_connection as suggested
|
2023-03-14 22:24:08 +01:00 |
|
|
Pflegusch
|
2ce3aeed2b
|
Add CONFIG_CHANGES to the side effects
|
2023-03-14 22:16:10 +01:00 |
|
|
Pflegusch
|
c0ee250b6b
|
Add some more URL references
|
2023-03-14 22:14:16 +01:00 |
|
|
Pflegusch
|
cfaad7fb84
|
prepend AutoCheck
|
2023-03-14 22:10:44 +01:00 |
|
|
Pflegusch
|
9e64f02742
|
Use default values in option declaration instead of DefaultOptions
|
2023-03-14 22:08:05 +01:00 |
|
|
Pflegusch
|
ac6e94770e
|
use Failure::Unreachable and use unless instead of if/else
|
2023-03-14 22:03:31 +01:00 |
|
|
Pflegusch
|
311314984f
|
Remove base64 requirement
|
2023-03-14 21:47:29 +01:00 |
|
|
Pflegusch
|
cc4e455530
|
Remove directory datastore option and make username and password required
|
2023-03-14 21:46:45 +01:00 |
|
|
Pflegusch
|
94e9504727
|
Use metasploit payload instead of hardcoded one
|
2023-03-11 14:47:32 +01:00 |
|
|
Pflegusch
|
3f7f28dd4f
|
make use of full_uri and change regex
|
2023-03-11 14:25:04 +01:00 |
|
|
Pflegusch
|
38511f4d89
|
Rename establish_connection function
|
2023-03-09 17:06:07 +01:00 |
|
|
Pflegusch
|
e66fd8f5ae
|
Use rand_text_alphanumeric function
|
2023-03-09 17:03:48 +01:00 |
|
|
Pflegusch
|
69839d1924
|
Remove get_proxy_protocol function
|
2023-03-09 17:02:10 +01:00 |
|
|
Pflegusch
|
614f4b6d89
|
Make installation path of owa configurable
|
2023-03-09 16:32:28 +01:00 |
|
|
Pflegusch
|
2de53712bd
|
Use Rex::Version for version comparison
|
2023-03-09 15:59:42 +01:00 |
|
|
Pflegusch
|
94ceeb075a
|
Redirect is not necessary - replace with simple send_request_cgi request
|
2023-03-09 15:41:15 +01:00 |
|
|
Pflegusch
|
ee95eb2883
|
fix typo: establish_connection
|
2023-03-09 15:09:32 +01:00 |
|
|
Pflegusch
|
14b5c08a62
|
Fix the double slash in the shell url
|
2023-03-09 14:28:15 +01:00 |
|
|
Pflegusch
|
d59175a463
|
make it work for https and http and remove the tmp self signed cert bypass
|
2023-03-09 13:58:56 +01:00 |
|
|
Pflegusch
|
f0dbf54c69
|
use fail_with in get_cache_content function
|
2023-03-09 11:04:00 +01:00 |
|
|
Pflegusch
|
7068d4c3f1
|
remove LPORT, RPORT and SSL from DefaultOptions
|
2023-03-09 11:03:24 +01:00 |
|
|
Pflegusch
|
76b05a7092
|
Change DisclosureDate according to nvd.nist.gov
|
2023-03-08 21:52:13 +01:00 |
|
|
Pflegusch
|
b37be28191
|
Working module open web analytics 1.7.3 rce
|
2023-03-08 21:30:52 +01:00 |
|