adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
77,971 Commits 27 Branches 1,043 Tags
6d9d9a70d410cc94de4d3d9afd7a75cd426d43be
Commit Graph

38478 Commits

Author SHA1 Message Date
sjanusz-r7 68ec0c82f1 TeamCity: Lint 2024-11-04 16:58:32 +00:00
sjanusz-r7 386441d3d2 TeamCity: Consolidate HTTP TeamCity into module 2024-11-04 16:33:29 +00:00
sjanusz-r7 7c1692cb84 TeamCity: Modify authors 2024-11-04 16:33:28 +00:00
sjanusz-r7 cba8962d29 Add JetBrains TeamCity HTTP Login Scanner 2024-11-04 16:33:28 +00:00
vultza c9e0668473 fixed double project name validation issue 2024-11-04 16:01:06 +00:00
vultza 3a90648c7a update validation function and fix typo 2024-11-04 15:55:45 +00:00
Spencer McIntyre 006ed90f1c Move the ESC8 module and document the attack 2024-11-04 09:37:12 -05:00
Spencer McIntyre 7d8baee574 Add some error handling and more logging 2024-11-04 09:37:12 -05:00
Spencer McIntyre 316a967414 Update the ESC8 module for the new changes 2024-11-04 09:37:08 -05:00
h00die 8ba4332c33 Merge remote-tracking branch 'upstream/master' into vcenter_privesc 2024-11-03 13:56:14 -05:00
h00die 2b593bcf54 wp_post_smtp_acct_takeover peer review 2024-11-03 13:52:55 -05:00
vultza a74e1678d9 fix path normalization and missing comma 2024-11-02 15:10:15 +00:00
vultza 1e6bfb2af8 Add CVE-2024-45309 2024-11-02 00:47:15 +00:00
h00die 9cba5dad59 WIP for asterisk rce 2024-11-01 16:28:45 -04:00
Valentin Lobstein c1c9f6f7bb Update modules/exploits/unix/webapp/cyberpanel_preauth_rce_multi_cve.rb 
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com>
 2024-11-01 17:23:45 +01:00
Valentin Lobstein 5464e8c009 Update modules/exploits/unix/webapp/cyberpanel_preauth_rce_multi_cve.rb 
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com>
 2024-11-01 17:23:35 +01:00
Spencer McIntyre 3b0195918c Merge pull request #19529 from NtAlexio2/pipe_dcerpc_auditor_rport 
Allow settings the RPORT option for pipe_dcerpc_auditor
 2024-11-01 11:11:45 -04:00
Valentin Lobstein 3e7aca2584 Update modules/exploits/unix/webapp/cyberpanel_preauth_rce_multi_cve.rb 
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com>
 2024-11-01 15:46:26 +01:00
Valentin Lobstein 12abb50813 Update modules/exploits/unix/webapp/cyberpanel_preauth_rce_multi_cve.rb 
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com>
 2024-11-01 15:46:14 +01:00
Graeme Robinson f209316239 Update werkzeug_debug_rce.rb 
Use percent strings for module description
 2024-11-01 14:24:31 +00:00
dwelch-r7 1bfa0755a8 Land #19518, Add support for RISC-V 32-bit / 64-bit Little Endian payloads 2024-11-01 11:18:30 +00:00
Chocapikk db8c0461b8 Remove timeout 2024-11-01 08:55:32 +01:00
Chocapikk 695feaa37e Update comment 2024-11-01 08:50:04 +01:00
Chocapikk 616ffe7d18 Add CVE-2024-51568 2024-11-01 08:48:34 +01:00
Chocapikk cdd3ef9bc5 Update description 2024-10-31 22:21:43 +01:00
Chocapikk 42980c235d Update refs 2024-10-31 22:19:19 +01:00
Chocapikk 4269615400 Add CyberPanel Pre-Auth RCE Exploit Module for CVE-2024-51378 and CVE-2024-51567 2024-10-31 22:13:05 +01:00
Brendan ff521464f3 Land #19528, Add Python exec payload 
Add a python/exec payload to execute OS commands
 2024-10-31 15:23:25 -05:00
jheysel-r7 ea45d83562 Land #19499, Adds SolarWinds Help Desk Backdoor module 
This adds a new module which exploits a backdoor in SolarWinds Web Help Desk (CVE-2024-28987) <= v12.8.3 which enables attackers to retrieve all tickets currently logged in the application.
 2024-10-31 12:17:32 -04:00
jheysel-r7 2e8892cb01 Land #19517, Add WooCommerce SQLi module 
This adds a new auxiliary module that exploits an unauthenticated SQL injection vulnerability in the TI WooCommerce Wishlist plugin for WordPress (versions <= 2.8.2). The vulnerability allows attackers to execute SQL queries via the order parameter which can be used to dump usernames and their hashed passwords.
 2024-10-31 12:09:55 -04:00
Jack Heysel 3456293da5 Lint 2024-10-31 11:56:55 -04:00
jheysel-r7 f01b01a62c Update modules/auxiliary/scanner/http/wp_ti_woocommerce_wishlist_sqli.rb 2024-10-31 11:36:19 -04:00
Spencer McIntyre 5550e073dd Implement suggested changes 2024-10-31 11:29:34 -04:00
jheysel-r7 f24c0148f8 Update modules/auxiliary/gather/solarwinds_webhelpdesk_backdoor.rb 2024-10-31 10:56:56 -04:00
adfoster-r7 afbf9af930 Merge pull request #19600 from adfoster-r7/mark-enum-chrome-as-superseded 
Mark older browser modules for windows as superceded
 2024-10-31 11:33:03 +00:00
h4x-x0r c34d20db68 updated 
updated
 2024-10-30 21:51:32 +00:00
bwatters-r7 a2e97b3e38 Update payload cache sizes for... some reason. 2024-10-30 16:19:59 -05:00
jheysel-r7 222df0bfdf Land #19527 Add bypass for GiveWP RCE (CVE-2024-8353) 
This updates the exploit module wp_giveup_rce_bypass to incorporate the bypass CVE, allowing the payload to work on all affected versions of the GiveWP plugin.
 2024-10-30 16:29:14 -04:00
Jack Heysel f643aee5a4 Lint 2024-10-30 16:17:36 -04:00
jheysel-r7 9c0dc56aa6 Update modules/exploits/multi/http/wp_givewp_rce.rb 2024-10-30 16:04:28 -04:00
adfoster-r7 5e217fb93a Mark enum_chrome as superceded 2024-10-30 16:21:05 +00:00
adfoster-r7 7b745b2dcb Merge pull request #19506 from xaitax/enum_browsers 
Add Browser Data Extraction for Chromium- and Gecko-based Browsers
 2024-10-30 15:30:56 +00:00
h00die-gr3y 7e30647d71 small update 2024-10-30 15:12:41 +00:00
jheysel-r7 d107ac8470 Land #19488 Add aux module for unauth SQLi in Ultimate Member plugin 2024-10-30 09:06:17 -04:00
jheysel-r7 094250f7e7 Land #19489 Add WordPress wp-automatic SQLi to RCE module 2024-10-30 09:05:03 -04:00
h00die 9da5177d11 remove old code 2024-10-29 16:44:48 -04:00
h00die 41ed44864f wp_post_smtp_acct_takeover 2024-10-29 16:44:20 -04:00
h00die 4feb12ab4a untested code 2024-10-29 16:44:20 -04:00
jheysel-r7 87af327507 Merge branch 'master' into wp_ultimate_member_sorting_sqli 2024-10-29 16:34:10 -04:00
Chocapikk bcd1fab0b8 Add suggestions 2024-10-29 20:42:13 +01:00