adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
73,452 Commits 27 Branches 1,043 Tags
3da170a43c7f288fe9bc88fe325da488733acac3
Commit Graph

18316 Commits

Author SHA1 Message Date
Hakyac 815a6d4d95 Update modules/exploits/multi/http/wp_plugin_modern_events_calendar_rce.rb 
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
 2021-07-21 09:41:28 +02:00
Yann Castel c169c78f03 use of vars_get 2021-07-21 09:38:36 +02:00
Hakyac 7e3281dfcf Update modules/exploits/multi/http/wp_plugin_sp_project_document_rce.rb 
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
 2021-07-21 09:08:30 +02:00
Hakyac 40220052da Update modules/exploits/multi/http/wp_plugin_sp_project_document_rce.rb 
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
 2021-07-21 09:07:12 +02:00
William Vu af0092f290 Land #15400, Sage X3 modules 2021-07-20 20:36:48 -05:00
William Vu 0ba430c8c4 Fix a bunch of things 
Mostly RuboCop and refactoring.
 2021-07-20 20:07:08 -05:00
Shelby Pace 79d49a6857 Land #15402, add Wordpress Backup Guard rce 2021-07-20 15:53:57 -05:00
Shelby Pace f738383b98 rename docs, modify privileged to false 
use vars_get in upload request
 2021-07-20 15:31:38 -05:00
Yann Castel 4a9bef2e9f various suggestions 2021-07-20 19:10:39 +02:00
Yann Castel 010d3e5a4a various suggestions 2021-07-20 18:22:37 +02:00
William Vu 8b5071326e Merge remote-tracking branch 'upstream/master' into pr/15400 2021-07-20 11:11:45 -05:00
Hakyac 2bf1c1ac26 Update modules/exploits/multi/http/wp_plugin_backup_guard_rce.rb 
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
 2021-07-20 09:28:01 +02:00
Hakyac 7c14882510 Update modules/exploits/multi/http/wp_plugin_backup_guard_rce.rb 
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
 2021-07-20 09:27:40 +02:00
Hakyac 2c51c2b6e4 Update modules/exploits/multi/http/wp_plugin_backup_guard_rce.rb 
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
 2021-07-20 09:27:09 +02:00
Hakyac ce9a00492c Update modules/exploits/multi/http/wp_plugin_modern_events_calendar_rce.rb 
Co-authored-by: adfoster-r7 <60357436+adfoster-r7@users.noreply.github.com>
 2021-07-20 09:11:58 +02:00
Hakyac 5bf1a7847e Update modules/exploits/multi/http/wp_plugin_sp_project_document_rce.rb 
Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>
 2021-07-20 09:09:23 +02:00
Hakyac f78c503f9f Update wp_plugin_sp_project_document_rce.rb 2021-07-20 09:04:12 +02:00
William Vu a6b4d203e5 Fix build 2021-07-15 02:10:24 -05:00
William Vu aebdc0ddfc Update module credits 
Clarified contributions.
 2021-07-14 15:10:25 -05:00
William Vu 6a6c08c773 Fix edge case in method overloading 2021-07-12 20:29:56 -05:00
William Vu d29532d4c4 Add VMware vCenter Server CVE-2021-21985 exploit 2021-07-12 13:07:05 -05:00
Yann Castel 4d016a3521 correct CVE id 2021-07-12 14:35:47 +02:00
Yann Castel 6934ec7d18 initial commit 2021-07-12 14:25:38 +02:00
Tim W 39455827aa Land #15254, use obfuscated powershell protection bypasses 2021-07-12 12:20:17 +01:00
Yann Castel f886ff0a22 now using Metasploit's Wordpress lib 2021-07-12 11:00:43 +02:00
Yann Castel 5cd32cdb36 add references + worpress website check 2021-07-12 10:46:58 +02:00
Yann Castel 20a8aac286 now using Metasploit's Wordpress lib 2021-07-12 10:10:34 +02:00
Grant Willcox 02ecc22751 Land #15386, Add module for CVE-2021-35464; pre-auth RCE in ForgeRock AM (and OpenAM) server 2021-07-09 17:01:25 -05:00
Spencer McIntyre fba838f4e8 Update docs, pin version and fix the check method 2021-07-09 16:39:58 -04:00
Grant Willcox 89b36bd1b8 Fix a small error in the logic so that we check the response body vs the response itself as per wvu's comment 2021-07-09 12:26:57 -05:00
adfoster-r7 f189724174 Land #15217, Combine eternalblue modules 2021-07-09 12:23:34 +01:00
Yann Castel 920b88a2bd initial commit 2021-07-09 11:49:53 +02:00
wvu aefd2cfd38 Fix CVE references 2021-07-08 22:21:28 -05:00
William Vu 6fbaecf919 Backport print changes to recent modules 2021-07-08 21:26:35 -05:00
Grant Willcox 570ba091f6 Update some typos in the documentation and also update the exploit module to handle various cases whereby the dbus-send command might end up timing out due to TIMEOUT being too low and to fix some final issues found during testing 2021-07-08 16:24:01 -05:00
Grant Willcox 9f88ef0954 Fix up review comments 2021-07-08 16:22:29 -05:00
Jack Heysel 54ee8f7ae7 Added cmd_delay nil check, updated title 2021-07-08 16:20:45 -05:00
Jack Heysel 0f67dd5212 Fixed get_cmd_delay, reponded to comments 2021-07-08 16:20:38 -05:00
Jack Heysel 9a07039e7e Updated docs 2021-07-08 16:09:15 -05:00
Jack Heysel fdbf669da2 Fixed check for /bin/su 2021-07-08 16:09:12 -05:00
Jack Heysel 285a6338fa Print error instead of failwith when exploit commands unsuccessful 2021-07-08 16:09:12 -05:00
Jack Heysel f797f30651 Fixed call to write directory 2021-07-08 16:09:04 -05:00
Jack Heysel 1a73cfbe25 Updated check method 2021-07-08 16:09:03 -05:00
Jack Heysel c5a9ecd45b WritableDir as advanced opt 2021-07-08 16:09:03 -05:00
Jack Heysel f87f831aba Module updates + Docs 2021-07-08 16:09:02 -05:00
Jack Heysel 8d2d445699 Send one large command over many of smaller size 2021-07-08 16:08:36 -05:00
Jack Heysel e7608d79f6 Polkit authentication bypass 2021-07-08 16:08:33 -05:00
Grant Willcox 8b3d057e9e Address Spencer's comments by adding in an extra nil check and removing an unneeded library import 2021-07-08 13:07:51 -05:00
A Galway cb31ffd82f add support for authenticated login with smb1 2021-07-08 18:41:54 +01:00
A Galway ccf5c36c44 combine both verseions of eb into a single module 2021-07-08 17:42:35 +01:00