adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
55,054 Commits 27 Branches 1,043 Tags
94de45d856b7d4ea32456bbdc7531af67bfbcaa1
Commit Graph

1951 Commits

Author SHA1 Message Date
Wei Chen 88f7ed25e3 Land #11784, Fix NoMethodError in jira_plugin_upload exploit module 2019-04-29 10:59:41 -05:00
Shelby Pace 10e141c73d Land #11697, add Pimcore unserialize RCE 2019-04-29 08:52:49 -05:00
Shelby Pace d5f76f328a removed version from module title 2019-04-29 08:43:33 -05:00
Shelby Pace 31f4c842a6 added a few checks 2019-04-26 16:18:14 -05:00
Wei Chen 2141036f13 Remove the extra newline 2019-04-26 12:59:50 -05:00
Fabio Cogno e9e50b2ae3 Refactoring - login function 2019-04-26 19:53:54 +02:00
Shelby Pace 3de617fea5 add checks for xsrf_token 2019-04-26 11:09:33 -05:00
Wei Chen cc9216d848 Clean up the extra space 2019-04-25 16:39:40 -05:00
Wei Chen 9a40f24c46 Add CVE-2019-5420 : Ruby on Rails DoubleTap secret_key_base Vuln 2019-04-25 14:30:46 -05:00
Adam Cammack f14571364f Properly encode URL 2019-04-19 12:35:36 -05:00
asoto-r7 a84aa4e148 Adjusted imeout for the final POST, abort cleanly on failure 2019-04-18 11:57:23 -05:00
asoto-r7 06792f7cd4 Moved documentation to 'documentation' folder 2019-04-16 14:16:52 -05:00
asoto-r7 0aaae062a4 Updated RPORT to 8090, reduced timeout of final exec.vm request to 5 sec 2019-04-16 14:13:35 -05:00
asoto-r7 8b61c5edf5 Fixed target_platform_compat to support 'Windows 10', made debugging easier 2019-04-16 13:18:00 -05:00
Fabio Cogno deaa66d694 Minor update 2019-04-15 00:08:10 +02:00
rrockru 2c3aec897f Refactoring 2019-04-12 22:06:56 +03:00
rrockru 8f3bb045b9 Refactoring 2019-04-12 22:00:23 +03:00
rrockru 5df6560b0b Refactoring 2019-04-12 01:02:16 +03:00
rrockru 84a4e6f4a6 Refactoring 2019-04-12 00:16:45 +03:00
rrockru 82def16953 Added TRIGGER_URL option 2019-04-12 00:12:27 +03:00
rrockru 91eb29b1fe Refactoring. 2019-04-12 00:02:18 +03:00
rrockru 319eb30cce Refactoring 2019-04-11 23:54:58 +03:00
rrockru 000c35a7ad Refactoring 2019-04-11 23:39:50 +03:00
rrockru c0b4e7701f Fix docs 2019-04-11 17:54:10 +03:00
rrockru eab1f6ca54 Added Atlassian Confluence exploit documentation 2019-04-11 17:52:08 +03:00
rrockru 7881d627ca Add Atlassian Confluence RCE exploit 2019-04-11 15:55:51 +03:00
Shelby Pace 4d0a41ff1a Land #11657, add Horde form file upload 2019-04-09 13:47:59 -05:00
Shelby Pace 4018d47b65 changed if not to unless 2019-04-09 13:43:54 -05:00
RatioSec Research b56e171172 Fix extraction of session tokens 2019-04-09 09:28:52 +01:00
Fabio Cogno 20a8324d8e Add Pimcore from 4.0.0 to 5.6.6 Unserialize RCE 2019-04-07 22:44:02 +02:00
Shelby Pace fff129ae9f Land #11587, add Wordpress core RCE module 2019-04-04 15:22:56 -05:00
Shelby Pace 6efd80e139 added note in info 2019-04-04 15:19:58 -05:00
Shelby Pace 2884d9afcb modified checks, added function 2019-04-04 15:09:12 -05:00
Shelby Pace d5ac1e3a33 minor adjustments to indentation and requests 2019-04-03 19:03:47 -05:00
wilfried 3081b13a1f Adding payload in exploit code 2019-04-02 10:24:48 +02:00
Brent Cook 82b7c926fe Land #11579, Add support for splunk 7.2.4 to splunk_upload_app_exec 2019-03-29 16:22:26 -05:00
RatioSec Research 5c84e9e61a Remove web root guessing since not reliable 2019-03-29 16:16:06 +00:00
William Vu 269cb4bca6 Land #11635, Authors check for msftidy 2019-03-29 10:45:31 -05:00
William Vu af494300ec Add timwr as an author to his own modules 2019-03-29 10:44:58 -05:00
RatioSec Research f8c5852902 Add Horde Form File Upload 2019-03-29 12:31:14 +00:00
Wei Chen 927d20cb95 Land #11592, Add CMS Made Simple (CMSMS) Showtime2 File Upload RCE 2019-03-27 15:21:07 -05:00
Wei Chen 38bdccb91a Use instance variables instead of datastore options 2019-03-27 15:17:32 -05:00
fabiocogno fdb1f4adea Update cmsms_showtime2_rce.rb 
Fix to CSRF Token stealing function for older versions of CMSMS
 2019-03-27 20:09:14 +01:00
Shelby Pace d185e8a018 indentation fix 2019-03-25 14:54:46 -05:00
Shelby Pace 3a8b09f08e added checks on scan method 2019-03-25 14:48:19 -05:00
Shelby Pace 59f5c291c9 removed spare spaces and modified some indentation 2019-03-25 14:25:09 -05:00
wilfried 8853d6d5b5 Adding documentation + cleaning files from the exploit 2019-03-22 17:37:04 +01:00
William Vu 4524707437 Fix rebase regressions in jenkins_metaprogramming 
Ugh.
 2019-03-21 11:20:21 -05:00
fabiocogno be5ec3379b Update cmsms_showtime2_rce.rb 2019-03-20 15:50:30 +01:00
bcoles c18ab91054 Update modules/exploits/multi/http/cmsms_showtime2_rce.rb 
Co-Authored-By: fabiocogno <fabio.cogno@gmail.com>
 2019-03-20 14:13:38 +01:00