adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
55,054 Commits 27 Branches 1,043 Tags
94de45d856b7d4ea32456bbdc7531af67bfbcaa1
Commit Graph

27999 Commits

Author SHA1 Message Date
William Vu 6ecb4bc4a7 Fix exploit/unix/webapp/drupal_drupalgeddon2 2019-02-25 11:18:20 -06:00
blightzero f64e517b73 Cisco RV32x RCE added reference IDs, some beautifications. 2019-02-25 15:51:14 +01:00
blightzero de5a5ea805 Cisco RV32x RCE added reference IDs, some beautifications. 2019-02-25 15:51:14 +01:00
Benjamin 9d0b434f35 Initial commit Cisco RV320 and RV325 remote code execution 2019-02-25 15:51:05 +01:00
John Q. Public 1150c896d3 Removed the tab at line 59. 2019-02-25 08:48:00 -06:00
bcoles 9249f2a119 Update modules/exploits/unix/webapp/drupal_sa_core_2019_003.rb 
Co-Authored-By: rotemreiss <reiss.r@gmail.com>
 2019-02-25 08:53:19 -05:00
bcoles 8912c1a943 Update modules/exploits/unix/webapp/drupal_sa_core_2019_003.rb 
Co-Authored-By: rotemreiss <reiss.r@gmail.com>
 2019-02-25 08:53:02 -05:00
bcoles d279e092cb Update modules/exploits/unix/webapp/drupal_sa_core_2019_003.rb 
Co-Authored-By: rotemreiss <reiss.r@gmail.com>
 2019-02-25 08:46:30 -05:00
rotemreiss eabd0b485c Update ranking 2019-02-25 08:08:06 -05:00
rotemreiss e93dffb32c Add new exploit for Drupal SA-CORE-2019-003 2019-02-25 07:57:04 -05:00
Nicholas Starke 7c7a233d67 Addressing PR Comments 2019-02-23 14:41:11 -06:00
Nicholas Starke 6bd1489f62 Adding version checking to wemo module 
Addresses Github Issue 11452 by parsing out the version
information returned in /setup.xml. New code then performs
a version check, and then alerts the user to whether or not
it is likely the remote host is vulnerable given that version
check.
 2019-02-23 12:06:57 -06:00
William Vu fc9245fa66 Fix author names in a couple modules 
It me.
 2019-02-22 17:02:15 -06:00
William Vu 194881a8b2 Add NOCVE 2019-02-22 13:26:53 -06:00
Brent Cook 789122b8ee Land #11460, Changing print_line to print_good 2019-02-22 13:23:02 -06:00
William Vu c76714ccc6 Add Reliability REPEATABLE_SESSION to Wemo exploit 
Notes copied from auxiliary/admin/wemo/crockpot where it didn't apply.
 2019-02-22 13:11:59 -06:00
John Q. Public 1eaba65da0 Update hp_sys_mgmt_login.rb 2019-02-22 11:33:36 -06:00
John Q. Public bfbda99086 Added user notification to line 56 2019-02-22 10:36:49 -06:00
John Q. Public 339918b3ef Update manageengine_deviceexpert_traversal.rb 
Changed print_status on line 80 to print_good and added a check for /scheduleresult.de with a return is not a 200 status code.
 2019-02-22 09:27:20 -06:00
John Q. Public 9cf8ac81e4 Changing print_line to print_good 
Changing print_line to print_good on lines 258 and 267 in iis_shortname_scanner.rb
 2019-02-22 09:01:11 -06:00
y_k_oo7 97c4d8e6d9 Enhanced winrm_cmd module 2019-02-22 00:04:03 +05:30
Jacob Robles 5214b90fdf Land #11292, Add exploit for Nuuo CMS SQL injection 2019-02-21 11:05:53 -06:00
Jacob Robles 1cd7dc8bc9 Update rank, add note 2019-02-21 10:12:02 -06:00
Jacob Robles 696640a340 Timeout and cleanup files 2019-02-21 06:48:10 -06:00
Jacob Robles 4a4637d7a3 Move execute shell 2019-02-21 06:48:09 -06:00
Garvit Dewan c48a6ddbdf Add /boot/grub2/user.cfg path to grub_password 2019-02-21 14:17:15 +05:30
asoto-r7 efba6d2d9c Reverse engineered JSOs 2019-02-20 16:45:47 -06:00
terrorbyte 449307c7df Additional style fixes 2019-02-20 15:33:33 -06:00
terrorbyte 364460a787 Fixed heredoc and advanced options casing. 2019-02-20 14:42:56 -06:00
asoto-r7 0f9a796d2f Reverse engineered JSOs, used new ysoserial functionality 2019-02-20 14:28:09 -06:00
asoto-r7 5f84cbc078 Reverse engineered JSOs, used new ysoserial functionality 2019-02-20 14:12:24 -06:00
Jacob Robles c179e5cdad Land #11291, Add Nuuo CMS session bruteforcing module 2019-02-20 09:13:33 -06:00
Jacob Robles 49307ae6c7 Deregister unused options 2019-02-20 08:09:06 -06:00
Jacob Robles 1acc565335 Land #11290, Add Nuuo CMS file upload exploit 2019-02-20 07:43:37 -06:00
Jacob Robles bffacff78c Land #11293, Add Nuuo CMS file download 2019-02-20 07:06:49 -06:00
Max Michels 40b3fbaf05 removed unused lines of code 2019-02-19 22:33:10 +00:00
Wei Chen 661e78beed Land #11409, Add Belkin Wemo UPnP RCE 2019-02-19 13:47:18 -06:00
William Vu 0c8b260737 Revert ARCH_CMD payload to cmd/unix/generic 
There is no telnetd, so cmd/unix/bind_busybox_telnetd won't work.
 2019-02-19 13:23:25 -06:00
Jacob Robles 6d619217c5 Land #11430, Deregister RHOSTS instead of RHOST 2019-02-19 13:10:07 -06:00
Jacob Robles ce02d98dce Minor changes 
aux:nuuo_cms_file_download
 2019-02-19 12:33:37 -06:00
Jacob Robles 73048edd97 Minor updates 
exploit:nuuo_cms_sqli
 2019-02-19 12:26:31 -06:00
William Vu bad53aeaf1 Genericize exploit (less Crock-Pot verbiage) 2019-02-19 12:13:08 -06:00
Jacob Robles 2b71410807 Minor updates 
exploit:nuuo_cms_fu
 2019-02-19 12:11:50 -06:00
Jacob Robles e383bc2763 Minor updates 
aux:nuuo_cms_bruteforce
 2019-02-19 10:24:15 -06:00
Rob Fuller db48f4bb56 Deregister RHOSTS instead of RHOST 
Fixes this module now that the RHOSTS changes are in effect.
 2019-02-18 14:59:29 -05:00
pkb1s e06d7e2ded correction of CVE number 2019-02-17 21:36:30 +00:00
Max Michels a90777303f Debugging ci error 2019-02-17 19:05:51 +00:00
Max Michels 49975b7549 cookie not necessary 2019-02-17 18:08:30 +00:00
Garvit Dewan a1b1ace18f Save the gathered credentials to database 2019-02-17 23:33:12 +05:30
Max Michels e434b6a40a make the file for tidy 2019-02-17 17:25:04 +00:00