5d00f882ad
Update modules/exploits/multi/http/rudder_server_sqli_rce.rb
...
Co-authored-by: Jeffrey Martin <jeffrey_martin@rapid7.com >
2023-07-27 21:58:06 +00:00
ca9601bb58
Fixed check method and targets
2023-07-26 18:01:26 +02:00
5b5f666256
Make rubocop happy
2023-07-26 16:26:18 +02:00
006831938d
Adjust targets
2023-07-26 16:26:18 +02:00
f5e91f686c
Update modules/exploits/multi/http/rudder_server_sqli_rce.rb
...
Co-authored-by: jheysel-r7 <Jack_Heysel@rapid7.com >
2023-07-26 16:26:18 +02:00
d50fceca40
Update modules/exploits/multi/http/rudder_server_sqli_rce.rb
...
Co-authored-by: jheysel-r7 <Jack_Heysel@rapid7.com >
2023-07-26 16:26:17 +02:00
1b52c7c8ba
Update modules/exploits/multi/http/rudder_server_sqli_rce.rb
...
Co-authored-by: jheysel-r7 <Jack_Heysel@rapid7.com >
2023-07-26 16:26:17 +02:00
bc58254db8
Update modules/exploits/multi/http/rudder_server_sqli_rce.rb
...
Co-authored-by: jheysel-r7 <Jack_Heysel@rapid7.com >
2023-07-26 16:26:17 +02:00
d6328edc27
Make rubocop happy
2023-07-26 16:26:17 +02:00
47f48e8adb
Add rudder-server SQLI RCE (CVE-2023-30625) exploit
2023-07-26 16:26:17 +02:00
43056ad621
removed powershell mixin
2023-07-25 14:06:45 +01:00
c1d84e950c
Update based on bwatters-r7 comments
2023-07-25 14:06:44 +01:00
45eacec846
Updated module with WordPress check
2023-07-25 14:06:44 +01:00
cda6ab5960
init commit module
2023-07-25 14:06:29 +01:00
297c484a1c
Land #18173 , Add Openfire Authentication Bypass RCE [CVE-2023-32315]
...
Merge branch 'land-18173' into upstream-master
2023-07-18 18:13:20 -05:00
7f35abff86
fixed the invalid character at the store_valid_credential function
2023-07-18 08:38:06 +00:00
0ff2ca4f40
updates based on latest comments
2023-07-16 18:43:21 +00:00
84ad51b5c7
rubocop
2023-07-16 05:38:51 +02:00
f608424242
Apply suggestions from code review
...
Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com >
Co-authored-by: Brendan <bwatters@rapid7.com >
2023-07-15 12:02:22 +02:00
b15d595de2
Adjust files to be better shared
2023-07-14 12:47:04 -05:00
a9a6b03979
Update modules/exploits/multi/php/jorani_path_trav.rb
...
Co-authored-by: Brendan <bwatters@rapid7.com >
2023-07-11 09:28:20 +02:00
56619e6da3
Update modules/exploits/multi/php/jorani_path_trav.rb
...
Co-authored-by: Brendan <bwatters@rapid7.com >
2023-07-11 09:28:14 +02:00
8d08a2a144
Update modules/exploits/multi/php/jorani_path_trav.rb
...
Co-authored-by: Brendan <bwatters@rapid7.com >
2023-07-11 09:28:05 +02:00
c34779a5f1
updates based on comments of jvoisin and adfoster-r7
2023-07-09 12:20:58 +00:00
8edbf73b6f
first release exploit module
2023-07-08 09:48:17 +00:00
f1b5cd46f4
Apache RocketMQ update config RCE
2023-07-05 12:38:51 -04:00
068a81a638
First remove the check after the triggering payload as it is not reliable. Adding the documentation after checking it with the dev tool
2023-06-28 08:53:50 +02:00
1b7e1343f8
Fix up some points noted during review
2023-06-27 11:32:44 -05:00
c11dd0efc4
Fix up RuboCop errors
2023-06-27 11:23:41 -05:00
8cae031d97
update after rubocop and advice
2023-06-27 16:08:55 +02:00
bf1e6bddd1
Land #18134 , Add exploit for CVE-2023-25194
...
This exploits a Java deserialization vulnerbility
in Apache Druid which arises from a JNDI injection
within Apache Kafka clients.
2023-06-23 16:52:04 -04:00
b026b38851
Apply suggestions from code review
...
Co-authored-by: jheysel-r7 <Jack_Heysel@rapid7.com >
2023-06-23 09:36:50 +02:00
77bb6759a6
Review suggestions
2023-06-22 18:12:13 +02:00
e298788a28
Land #18049 , Update jenkins login scanner to work with newer versions
2023-06-22 14:04:24 +01:00
a8332e6064
Added exploit for CVE-2023-25194
2023-06-22 14:17:32 +02:00
1b562dd02b
Revert "Improve AMSI bypass on new Windows"
...
This reverts commit f97ab80224c8f942cc03
2023-06-21 16:35:41 -05:00
0609d246f3
adds more future proofing to implementation
2023-06-21 14:19:24 +01:00
784f76b355
update after rubocop
2023-06-19 14:31:23 +02:00
8d7dc7ae26
Add exploit for unauth RCE Jorani
2023-06-19 06:16:07 +02:00
f97ab80224
Land #17942 , Improve AMSI bypass on new Windows
...
The script generated by the web_delivery module is blocked
by the Antimalware Scan Interface (AMSI) on newer versions
of windows. This PR allows the script to bypass AMSI.
2023-06-12 18:50:48 -04:00
4c817ce1de
Land #17946 , CVE-2023-21839 - Oracle Weblogic RCE
...
CVE-2023-21839 - Oracle Weblogic PreAuth Remote Command Execution via ForeignOpaqueReference IIOP Deserialization
2023-06-09 14:55:43 -04:00
694c1006e4
Add more IPv6 support in to the module
2023-06-09 12:24:35 -05:00
5b39eaafc1
Land #18074 , Fix exception handling in gitlab_github_import_rce_cve_2022_2992 module
2023-06-07 14:52:21 -05:00
82c8b5418e
Land #17936 , PaperCutNG Authentication Bypass with RCE
2023-06-07 15:05:51 +02:00
451735ad15
Fix exception handler & add doc
2023-06-06 17:43:22 +02:00
18ddd72285
Update jenkins login scanner to work with newer versions
2023-06-06 11:54:55 +01:00
3875947f7d
Removing unnecessary assignment
2023-05-31 19:17:30 +00:00
6351c66b1e
Update modules/exploits/multi/http/papercut_ng_auth_bypass.rb
...
Co-authored-by: Christophe De La Fuente <56716719+cdelafuente-r7@users.noreply.github.com >
2023-05-31 08:56:13 -07:00
6ad9ebb5c0
Update modules/exploits/multi/http/papercut_ng_auth_bypass.rb
...
Co-authored-by: Christophe De La Fuente <56716719+cdelafuente-r7@users.noreply.github.com >
2023-05-31 08:48:53 -07:00
530ed911f4
Fixing ZDI ID
2023-05-30 19:03:01 +00:00
Ege Balcı