adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
77,971 Commits 27 Branches 1,043 Tags
6d9d9a70d410cc94de4d3d9afd7a75cd426d43be
Commit Graph

38478 Commits

Author SHA1 Message Date
Takah1ro 91167fc85f Remove unnecessary option 2024-08-20 21:44:11 +09:00
Takah1ro 4d1782640b Update sideeffects 2024-08-20 19:12:18 +09:00
Takah1ro 01b2a1c55c Enable fetch payload 2024-08-20 13:20:42 +09:00
Takah1ro 45677898a8 Add TARGET_URI 2024-08-20 13:08:01 +09:00
Takah1ro 52852cea72 Add cve ref 2024-08-20 12:59:52 +09:00
h00die c8084e4504 Create vcenter_sudo_lpe.rb 2024-08-19 20:02:05 -04:00
Takah1ro 99c81d7821 Set default fetch_command to wget 2024-08-20 08:59:39 +09:00
Takah1ro 64bdf54bb0 Use Fetch Payload (Not tested) 2024-08-20 08:56:05 +09:00
Takah1ro a5b9d553fa Update check to use version info 2024-08-20 08:25:27 +09:00
Takah1ro 5be7e09ff0 Update check to use version info 2024-08-20 08:21:48 +09:00
Takah1ro 17ea7d2b72 Remove explicit return 2024-08-20 08:15:16 +09:00
Takah1ro 1232080340 Update lfi module 2024-08-20 08:09:12 +09:00
Takahiro Yokoyama f902ae84fe Update modules/auxiliary/gather/ray_lfi_cve_2023_6020.rb 
Avoid check method being controlled by the 'FILEPATH' content

Co-authored-by: Diego Ledda <diego_ledda@rapid7.com>
 2024-08-20 07:45:38 +09:00
h4x-x0r e30232d2ca CVE-2024-31214 & CVE-2024-24809 
CVE-2024-31214 & CVE-2024-24809
 2024-08-19 23:03:36 +01:00
h4x-x0r 362b2427dc Error handling and code cleanup 
Error handling and code cleanup
 2024-08-19 22:47:19 +01:00
h4x-x0r 3f3690bebb code cleanup 
code cleanup
 2024-08-19 21:17:16 +01:00
Chocapikk 334a9bafa9 Use encoder/php/base64 2024-08-19 18:26:19 +02:00
Chocapikk 3d00f819c6 Update 2024-08-20 07:04:30 +02:00
Chocapikk b0f3bf1576 Add credit 2024-08-20 07:02:59 +02:00
Chocapikk eaf5661896 Lint 2024-08-19 19:27:29 +02:00
h4x-x0r 9690f01df6 code cleanup 
code cleanup
 2024-08-19 16:25:50 +01:00
dledda-r7 afd0f1974b Land #19373, Fortra FileCatalyst Workflow SQL Injection 2024-08-19 04:10:58 -04:00
Valentin Lobstein f65ccbec73 Update modules/exploits/multi/http/spip_porte_plume_previsu_rce.rb 
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com>
 2024-08-18 21:23:59 +02:00
Valentin Lobstein 6ad0b56099 Update modules/exploits/multi/http/spip_porte_plume_previsu_rce.rb 
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com>
 2024-08-18 21:22:16 +02:00
Valentin Lobstein 718c215b96 Update modules/exploits/multi/http/spip_porte_plume_previsu_rce.rb 
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com>
 2024-08-18 21:22:09 +02:00
cn-kali-team d5fbfaf775 set the default type to ssh 2024-08-18 16:53:09 +08:00
cn-kali-team cd21e57576 fix window appdata path 2024-08-18 16:45:36 +08:00
jheysel-r7 c982aabaa3 Minor update 2024-08-16 12:17:56 -07:00
h4x-x0r 82f51bb9b7 code cleanup 
code cleanup
 2024-08-16 15:43:34 +01:00
h4x-x0r 5a94869809 cleanup 
cleanup
 2024-08-16 14:12:41 +01:00
h4x-x0r 3577ae8ffb Code cleanup 
Code cleanup
 2024-08-16 13:57:38 +01:00
cn-kali-team 1127225363 electerm 2024-08-16 20:04:57 +08:00
Chocapikk 3d90eb0f43 Add spip_porte_plume_previsu_rce 2024-08-16 10:50:23 +02:00
h4x-x0r 8ad328a510 Code cleanup 
Code cleanup
 2024-08-16 07:07:16 +01:00
Takah1ro 7258ca4fb1 Remove unnecessary option for simplicity 2024-08-16 08:49:34 +09:00
Takah1ro eeab7ce2a2 Proceed when user specified cmd fails 2024-08-16 08:23:50 +09:00
jheysel-r7 ea10360c81 Update OFBiz ProgramExport RCE for Patch Bypass 2024-08-15 09:18:15 -07:00
Takah1ro ea1b9e925e Delete old three exploits in one module 2024-08-15 08:17:36 +09:00
h4x-x0r 947cefe43a Fixed get_cookies 
Fixed get_cookies
 2024-08-14 17:42:11 +01:00
h4x-x0r 765e9b9ae4 Improved error handling 
Improved error handling
 2024-08-14 17:25:36 +01:00
cgranleese-r7 dbc51d1cd4 Land #19347, OpenMetadata authentication bypass and SpEL injection exploit chain[CVE-2024-28255 and CVE-2024-28254] 2024-08-14 16:06:10 +01:00
dledda-r7 f211fcb6a6 Land #19370, LG Simple Editor Command Injection 2024-08-14 10:22:29 -04:00
cgranleese-r7 36322ff274 Land #19348, Apache HugeGraph Gremlin RCE (CVE-2024-27348) 2024-08-14 10:06:21 +01:00
h4x-x0r ea2b5920ac cleanup 
cleanup
 2024-08-14 06:44:43 +01:00
h4x-x0r 9c72a85134 Verified more versions 
Verified exploit against more affected versions
 2024-08-14 06:33:45 +01:00
h4x-x0r 75201b0892 Updated references 
references, affected versions, credits
 2024-08-14 05:15:36 +01:00
h4x-x0r 7bfc386973 Updated 
added error handling, documentation, version check, store_valid_credential
 2024-08-14 04:57:08 +01:00
h4x-x0r be62cc97a7 Auth Bypass 
Auth Bypass
 2024-08-14 02:00:06 +01:00
h4x-x0r 17149db5a3 code cleanup 
code cleanup
 2024-08-13 23:23:35 +01:00
h4x-x0r b96bc116f5 Code cleanup 
Code cleanup
 2024-08-13 23:18:26 +01:00