1db284dcaa
Apply suggestions from code review
...
Co-authored-by: Christophe De La Fuente <56716719+cdelafuente-r7@users.noreply.github.com >
2023-08-22 18:46:25 +02:00
4b130f5be7
Change a variable name
2023-08-22 09:00:31 -07:00
d43bbb6655
rubocop
2023-08-21 19:57:37 -04:00
97dd22032c
Responded to comments, improved stability
2023-08-21 19:20:25 -04:00
1bd14dd8f4
error handling for apache modules
2023-08-21 18:12:26 -04:00
1bbf8194ce
Remove more unnecessary arguments
2023-08-21 14:45:09 -07:00
79fa3dea8b
Fix a variable name
2023-08-21 14:32:06 -07:00
b1c1f705be
Remove some unneeded arguments
2023-08-21 14:30:25 -07:00
6dd89a513b
Make some changes from jvoisin's suggestions in the PR
2023-08-21 14:26:34 -07:00
f5908a5818
Add a comment
2023-08-21 08:53:52 -07:00
ce50cfa11a
Add module for SonicWall vulns, which includes cve-2023-34124
2023-08-21 08:53:07 -07:00
a45792877a
lib and spec updates
2023-08-20 19:37:22 -04:00
fb1a6d3d72
Invert check condition so that extra checks wont run unless version is vulnerable
2023-08-19 21:56:02 +06:30
b6cf981378
Updates based on review comments
2023-08-19 08:18:50 +00:00
1188ce1e34
Implement suggestions from code review
...
* Reduce verbosity of log messages
* Move 'check_*' methods into 'check' method
* Fix non-existent Windows PowerShell Command payload
* Clearer log message for unpausing DAG in 'check_unpaused' method
2023-08-19 09:45:39 +06:30
fd3e532b87
Change Airflow version log message to "status" instead of "good"
...
Co-authored-by: Brendan <bwatters@rapid7.com >
2023-08-19 08:33:31 +06:30
b8a2a405c8
Merge branch 'rapid7:master' into apache_airflow_dag_rce
2023-08-19 08:31:18 +06:30
e0f545673c
Add files for cleanup, fix serve address, add retry_until_truthy
2023-08-18 23:25:49 +02:00
5fdc9924d5
Land #18123 , add exploit for Jorani unauth RCE
...
This PR adds a module that chains together a log poisoning LFI,
redirection bypass and a path traversal vulnerability to obtain unauth RCE.
2023-08-18 16:44:42 -04:00
e97183e7bd
Update modules/exploits/linux/http/vmware_vrli_rce.rb
...
Co-authored-by: jheysel-r7 <Jack_Heysel@rapid7.com >
2023-08-18 20:21:42 +00:00
20ca3b8720
Update modules/exploits/linux/http/vmware_vrli_rce.rb
...
Co-authored-by: jheysel-r7 <Jack_Heysel@rapid7.com >
2023-08-18 20:17:37 +00:00
d8d5049d97
Update modules/exploits/linux/http/vmware_vrli_rce.rb
...
Co-authored-by: jheysel-r7 <Jack_Heysel@rapid7.com >
2023-08-18 20:16:32 +00:00
4fe15ee788
Update modules/exploits/linux/http/vmware_vrli_rce.rb
...
Co-authored-by: jheysel-r7 <Jack_Heysel@rapid7.com >
2023-08-18 20:16:21 +00:00
1a97b11f09
Update modules/exploits/linux/http/vmware_vrli_rce.rb
...
Co-authored-by: jheysel-r7 <Jack_Heysel@rapid7.com >
2023-08-18 20:16:12 +00:00
86c8f11e17
Update modules/exploits/linux/http/vmware_vrli_rce.rb
...
Co-authored-by: jheysel-r7 <Jack_Heysel@rapid7.com >
2023-08-18 20:16:03 +00:00
0334d28553
Apply final suggestions from code review
2023-08-18 15:40:58 -04:00
b064578488
Apply suggestions from code review
2023-08-18 15:37:11 -04:00
4ddd789f51
Apply suggestions from code review
2023-08-18 15:33:59 -04:00
89f8deb672
Land #18253 , Add CVE-2023-34634, Greenshot Fileformat exploit
2023-08-17 15:30:02 +01:00
0965233591
Remove debug print
2023-08-17 08:48:42 -05:00
4137d2df21
Merge branch 'rapid7:master' into apache_airflow_dag_rce
2023-08-17 10:19:13 +06:30
8717e66b14
Land #18280 , Add Maltrail Unauth RCE Module
...
This PR adds a module for an unauthenticated RCE vulnerability
in Maltrail, a malicious traffic detection system. This vuln
does not have a CVE associated with it.
2023-08-16 17:29:05 -04:00
cd3d053e6e
Update affected versions in the doc file
2023-08-16 16:52:48 -04:00
c3252027f2
Update modules/exploits/unix/http/maltrail_rce.rb
...
Co-authored-by: jheysel-r7 <Jack_Heysel@rapid7.com >
2023-08-16 18:45:26 +00:00
20d25e46d0
Update modules/exploits/unix/http/maltrail_rce.rb
...
Co-authored-by: jheysel-r7 <Jack_Heysel@rapid7.com >
2023-08-16 18:45:12 +00:00
a2a4489ce4
Merge branch 'rapid7:master' into apache_airflow_dag_rce
2023-08-16 13:50:13 +06:30
900e418796
Land #18226 , H2 Web Interface RCE
...
This PR adds a module to exploit an RCE feature in
the H2 databases Web Interface.
2023-08-15 16:23:09 -04:00
13dbb27245
Implement usual version comparison and remove unactionable text
2023-08-15 12:35:08 +06:30
bdaaef8d60
Merge branch 'rapid7:master' into apache_airflow_dag_rce
2023-08-15 12:24:06 +06:30
6cf136ec3a
Land #18263 , Add RaspAP Unauth Command Injection
...
This PR adds an unauthenticated command injection
module for the RaspAP webgui application.
2023-08-14 23:25:23 -04:00
93da96e02f
Add additional text to check for Airflow login page
2023-08-12 19:29:57 +06:30
60e8e3a487
Remove space before semicolon in payload command
2023-08-12 10:37:38 +06:30
bbe8892549
Terminate payload command with a semicolon
...
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com >
2023-08-12 09:56:00 +06:30
27039c156b
Use the whole <a> tag in version check
...
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com >
2023-08-12 09:41:53 +06:30
2edf12d303
Syntax fix
2023-08-11 18:25:36 +02:00
0d7591c2fb
Update modules/exploits/unix/http/maltrail_rce.rb
...
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com >
2023-08-11 16:24:38 +00:00
63305a8db6
Update modules/exploits/unix/http/maltrail_rce.rb
...
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com >
2023-08-11 16:24:19 +00:00
26b1317147
Fix "Notes value PatchedVersion must be an array" error
2023-08-11 22:15:41 +06:30
54b0abb318
Apache Airflow 1.10.10 - Example DAG Remote Code Execution (CVE-2020-11978 + CVE-2020-13927)
2023-08-11 21:43:16 +06:30
4b7d98df07
Add Maltrail Unauthenticated RCE exploit
2023-08-10 23:02:20 +02:00
H00die.Gr3y