2cc5f23915
Fix module title
2019-10-27 11:25:40 -05:00
a0d1f02fd1
Fix failed login check for ColdFusion 9.something
...
It was merely "ColdFusion Administrator" for the version I tested.
2019-10-24 17:07:45 -05:00
3565b0efb8
Land #12365 , Total.js CMS widget creation RCE
2019-10-21 15:22:09 -05:00
d76ea0ca59
Initial module version for Nostromo RCE (CVE-2019-16278).
2019-10-21 18:11:44 +02:00
25f60b07ed
compliance for the framework
2019-10-18 15:51:58 +04:00
0ebc971d29
Use CmdStager mixin
2019-10-15 14:00:58 -05:00
bb7c42b2ce
Arch and disclosure date
2019-10-15 10:25:20 -05:00
a3331dba9f
Move totaljs cms module and doc
2019-10-15 10:11:14 -05:00
ec9ea4ce0d
Land #12366 , fix nil check in atutor module
2019-10-14 18:14:06 -05:00
4cc85ecb75
adress a spelling problem
2019-10-05 14:22:18 -04:00
ffc8c7e32a
more ruby style
2019-10-02 20:23:12 -04:00
c188d179ed
fix atutor bugs
2019-09-26 20:37:10 -04:00
28bbcd5402
fix. linux stager and add. documentation
2019-09-26 16:26:44 +04:00
dfd97a7518
add. stager and fix. generic command
2019-09-26 12:40:03 +04:00
6a80bf2cf5
Should ensure, not in exception
2019-09-25 22:23:41 -05:00
d6a7da9490
fix atutor nil
2019-09-25 22:02:55 -04:00
ca99bd4191
fix nil check
2019-09-25 21:24:14 -04:00
8dc238e687
Add TotaJS CMS Code Injection in Widget Creation
2019-09-25 16:54:44 -05:00
82457a4049
add. exploit module vbulletin 5.x unauth RCE
2019-09-26 01:11:22 +04:00
a9a2ce2f6a
Add correct CVE for shopware module
...
In PR #11828 , the module author requested, and got, a new CVE for this
issue. The module should reflect that.
2019-09-12 16:09:32 -05:00
c4bd91f505
Land #12272 , add October CMS file upload
2019-09-06 10:13:33 -05:00
5f7c243b48
add filedropper, fix check, add to docs
2019-09-06 09:49:09 -05:00
aaebec01a4
Update References
...
Added CVE and Blog link
2019-09-06 18:26:28 +05:30
cf4c10783a
Update modules/exploits/multi/http/october_upload_bypass_exec.rb
...
Co-Authored-By: Shelby Pace <40177151+space-r7@users.noreply.github.com >
2019-09-05 23:50:18 +05:30
4b416bf530
Update modules/exploits/multi/http/october_upload_bypass_exec.rb
...
Co-Authored-By: Shelby Pace <40177151+space-r7@users.noreply.github.com >
2019-09-05 23:48:43 +05:30
a7e205e252
Update modules/exploits/multi/http/october_upload_bypass_exec.rb
...
Co-Authored-By: Shelby Pace <40177151+space-r7@users.noreply.github.com >
2019-09-05 23:48:32 +05:30
0e4e7dd9d9
Update modules/exploits/multi/http/october_upload_bypass_exec.rb
...
Co-Authored-By: Shelby Pace <40177151+space-r7@users.noreply.github.com >
2019-09-05 23:48:22 +05:30
bc1610ec46
Update modules/exploits/multi/http/october_upload_bypass_exec.rb
...
Co-Authored-By: Shelby Pace <40177151+space-r7@users.noreply.github.com >
2019-09-05 23:48:14 +05:30
71c1c07b0d
fixed
...
fix EOF on 88 line
2019-09-04 13:08:26 +05:30
aeaf4232fe
updated
...
typo, comments and check fixed
2019-09-04 12:46:31 +05:30
5e63c83257
Update modules/exploits/multi/http/october_upload_bypass_exec.rb
...
Co-Authored-By: bcoles <bcoles@gmail.com >
2019-09-04 12:37:21 +05:30
974f078114
Update modules/exploits/multi/http/october_upload_bypass_exec.rb
...
Co-Authored-By: bcoles <bcoles@gmail.com >
2019-09-04 12:29:32 +05:30
bb8b3245a3
Update modules/exploits/multi/http/october_upload_bypass_exec.rb
...
Co-Authored-By: bcoles <bcoles@gmail.com >
2019-09-04 12:28:59 +05:30
f0eb7da43b
Update modules/exploits/multi/http/october_upload_bypass_exec.rb
...
Co-Authored-By: bcoles <bcoles@gmail.com >
2019-09-04 12:28:51 +05:30
7359e4bdd6
fixes suggested by @space-r7
...
fixed check before passing to the accessor, removed res which is not used.
2019-09-04 12:20:39 +05:30
6c6603bbd7
Update modules/exploits/multi/http/october_upload_bypass_exec.rb
...
Co-Authored-By: Shelby Pace <40177151+space-r7@users.noreply.github.com >
2019-09-03 23:18:31 +05:30
aee17608cd
Update modules/exploits/multi/http/october_upload_bypass_exec.rb
...
Co-Authored-By: Shelby Pace <40177151+space-r7@users.noreply.github.com >
2019-09-03 23:17:50 +05:30
6934af0b7d
Update modules/exploits/multi/http/october_upload_bypass_exec.rb
...
Co-Authored-By: Shelby Pace <40177151+space-r7@users.noreply.github.com >
2019-09-03 23:15:33 +05:30
615661a03d
first build
...
first build of october_upload_bypass_exec
2019-09-03 12:04:38 +05:30
042c181f67
Land #12058 , cisco_dcnm_upload_2019 exploit
2019-08-30 13:33:19 -05:00
3dd9c38fd1
Update cisco_dcnm_upload_2019.rb
2019-08-29 12:42:01 +07:00
bbbf426ec7
make requested changes
2019-08-29 12:16:58 +07:00
bda1120cac
make requested changes
2019-08-29 11:14:40 +07:00
32334c2386
Update all module splats from http:// to https://
2019-08-15 18:10:44 -05:00
817726699c
make requested changes
2019-08-02 22:48:54 +01:00
e11de696d4
Make msftidy happy
2019-08-02 11:17:41 -05:00
cf9b94a964
Set needs_cleanup flag for exploits that need it
...
The `needs_cleanup` flag needs to be set per-module when an exploit
needs an interactive session to clean up. Some `FileDropper` exploits
need additional cleanup to what the mixin provides, but since all
`FileDropper`s already mark themselves as needing cleanup those are not
covered here. A few of these could potentially be refactored to use the
original exploitation method to clean up or to compile the list of
files/commands to clean up ahead of time, but that is out of the scope
of this fix.
2019-08-02 10:23:53 -05:00
5e64f8560a
Fix whitespace
2019-08-02 10:23:41 -05:00
967b2a018f
Land #12010 , Add exploit module for wp-database-backup Wordpress plugin
2019-07-23 12:21:23 -05:00
ca664512ce
Minor corrections in check and a unsed return value
2019-07-23 12:20:14 -05:00
William Vu