4e81b7b969
Fix indent
2020-03-21 16:12:23 +01:00
58780c6db9
Update Unraid 6.8.0 exploit module
...
- Changed exploit name
- Set Privileged to true
- Better error handling
- Typo fixes
2020-03-21 11:44:35 +01:00
401e000892
Add Unraid auth bypass to RCE exploit
...
Unraid is an operating system for personal and small business use that
brings enterprise-class features letting you configure your computer
systems to maximize performance and capacity using any combination of
applications, VMs, storage devices, and hardware.
This module exploits an authentication bypass vulnerability that leads
to remote code execution as root.
2020-03-20 15:13:54 +01:00
5ccda4b567
Added Pandora FMS 7.0NG exploit
...
Pandora FMS (for Pandora Flexible Monitoring System) is software for
monitoring computer networks. Pandora FMS allows monitoring in a visual
way the status and performance of several parameters from different
operating systems, servers, applications and hardware systems such
as firewalls, proxies, databases, web servers or routers.
This module exploits a vulnerability found in Pandora FMS 7.0 NG and lower.
The vulnerability exists on the `net_tools.php` component, due to the insecure
usage of the `system()` PHP function.
2020-03-19 22:50:00 +03:00
922f1ec708
Land #12901 , add Centreon poller rce
2020-03-17 12:16:29 -05:00
2717683825
change message
2020-03-17 12:15:06 -05:00
98f4642c2d
remove comments / check
2020-03-17 10:33:12 -05:00
5d9d3926e4
Land #13066 , add rConfig 3.9 RCE module
2020-03-16 11:18:59 +00:00
0efe53d869
fix somes code review comments.
2020-03-15 13:30:23 +04:00
ff2421163b
Fix Travis-CI errors
2020-03-13 10:42:40 +01:00
5bbabd6f2a
Add tips to description.
2020-03-13 10:03:27 +01:00
7874308fae
Last typo fixes. No priv required on webapp.
2020-03-13 09:18:50 +01:00
a8e881452b
Add greetz to my colleagues who tested this module
2020-03-13 06:42:48 +01:00
885c8b8a56
Fix formatting issues, and add EDB link for SQLi
2020-03-12 16:17:53 +01:00
e6b9610841
Update modules/exploits/linux/http/rconfig_ajaxarchivefiles_rce.rb
...
Co-Authored-By: acammack-r7 <adam_cammack@rapid7.com >
2020-03-12 15:59:09 +01:00
2cac8f4e3a
Update modules/exploits/linux/http/rconfig_ajaxarchivefiles_rce.rb
...
Co-Authored-By: acammack-r7 <adam_cammack@rapid7.com >
2020-03-12 15:58:38 +01:00
3f7aed3c0a
Fix Travis-CI errors
2020-03-12 13:44:47 +01:00
60d86cf25d
Update rconfig_ajaxarchivefiles_rce.rb
2020-03-12 11:44:05 +01:00
94f082fe4a
Create rconfig_ajaxarchivefiles_rce.rb
2020-03-12 11:41:12 +01:00
7c54066b0e
Land #13004 , Nagios XI RCE module
2020-03-09 15:57:58 +01:00
96ae2cf9a2
Incorporate additional suggestions from code review.
2020-03-09 11:56:15 +02:00
8b778bffc0
Incorporate suggestions from code review
2020-03-06 15:50:34 +02:00
12faf3fad5
Land #12959 , add eyes of network rce module
2020-03-02 15:22:51 -06:00
c16edad4e6
add verify_api method, checks on data
2020-03-02 15:10:46 -06:00
f60f60db7f
Set stance to aggressive to prevent the HTTPServer mixing from trying to make this a job
2020-02-28 13:01:51 +02:00
5ee7fcaf4a
Add simple changes suggested in code review.
2020-02-28 12:14:38 +02:00
99ed3afab3
Change filenames for consistency with existing modules
2020-02-27 17:08:23 +02:00
280d1767b4
Add Nagios XI < 5.6.6. exploit module and documentation
2020-02-27 16:58:15 +02:00
af9d2a28de
Fix msftidy warnings
2020-02-26 14:56:08 +00:00
c2f13d906b
fix sqli get request syntax
2020-02-20 11:38:43 +02:00
9980a96917
Move documentation to correct directory
2020-02-19 16:57:38 +02:00
0d0bd865c8
add eyesofnetwork module and docs
2020-02-19 16:33:04 +02:00
7dc1315dac
Update logic for ForceExploit in my modules
...
This lets the user opt out of running check completely.
2020-02-19 01:06:50 -06:00
8489bcdfd9
This fixes broken links to the community.rapid7.com blog
...
Performed mechanically with sed, spot-checked that the new blog can consume these links.
2020-02-18 09:06:11 -06:00
27effc1b56
typo. cmdstager command
2020-02-14 12:25:56 +04:00
c8e5fcf389
add. cmdstager for drop meterpreter
2020-02-03 16:46:15 +04:00
355b9c135f
add initial source code.
2020-02-03 13:52:56 +04:00
a31e4034c8
Check SSL in exploit/linux/http/webmin_backdoor
2020-01-16 14:49:13 -06:00
491c36ccaa
Land #12827 , credit updates to Citrix exploit
2020-01-14 10:54:57 -06:00
eaeaae7607
Reformat credit
2020-01-14 10:46:04 -06:00
1cd75d9f40
document additional PoC authors
2020-01-14 10:22:26 -06:00
429329c45d
Land #12801 , add WePresent cmd injection module
2020-01-14 08:29:40 -06:00
009ec162de
Use string interpolation and removed rundant namespace and return statement
2020-01-14 07:52:30 -05:00
ea6263e6bb
Removed redundant return statement
2020-01-14 06:52:24 -05:00
ecb825ea71
Remove redundant parameters.
2020-01-14 06:40:40 -05:00
fa661e58ca
Unified the POST request into one function. Fixed hardcoding of SSL. Fixed Author formatting. Fixed connection failure check in check function
2020-01-14 06:22:00 -05:00
0308f76bbd
Switched to vars_post in send_request_cgi and removed unnecessary documentation
2020-01-14 05:42:06 -05:00
5c4189fdb4
Move unix/webapp/webmin_backdoor to linux/http
2020-01-14 00:50:04 -06:00
3a8b630262
Set a sane default HttpClientTimeout
...
Totally forgot I did this for Pulse Secure.
2020-01-13 22:26:26 -06:00
cd65efb259
Revert tuned timeout in favor of HttpClientTimeout
...
Bad habit!
2020-01-13 22:02:12 -06:00
Nicolas Chatelain