adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
53,692 Commits 27 Branches 1,043 Tags
9b9d3013a40698890d473360ac94de945e76200d
Commit Graph

3162 Commits

Author SHA1 Message Date
Shelby Pace e8469dca93 Land #11025, add Xorg SUID Modulepath Privesc 2019-10-22 14:11:00 -05:00
Shelby Pace f4a54df262 change location of rescue, method name 2019-10-22 09:31:43 -05:00
Shelby Pace 1fd09b6a81 add solaris targets and Metasm usage 2019-10-21 16:13:10 -05:00
William Vu 3565b0efb8 Land #12365, Total.js CMS widget creation RCE 2019-10-21 15:22:09 -05:00
Wei Chen 0ebc971d29 Use CmdStager mixin 2019-10-15 14:00:58 -05:00
Wei Chen bb7c42b2ce Arch and disclosure date 2019-10-15 10:25:20 -05:00
Wei Chen a3331dba9f Move totaljs cms module and doc 2019-10-15 10:11:14 -05:00
Shelby Pace ec9ea4ce0d Land #12366, fix nil check in atutor module 2019-10-14 18:14:06 -05:00
Brendan Coles af05a33957 Land #12408, Fix spelling mistakes 2019-10-05 21:10:56 +00:00
h00die 9f29f5f419 fix spelling received 2019-10-05 14:40:27 -04:00
h00die 4cc85ecb75 adress a spelling problem 2019-10-05 14:22:18 -04:00
h00die ffc8c7e32a more ruby style 2019-10-02 20:23:12 -04:00
floyd c747221863 Remove invalid email addresses 2019-10-02 13:35:25 +02:00
h00die c188d179ed fix atutor bugs 2019-09-26 20:37:10 -04:00
Wei Chen 6a80bf2cf5 Should ensure, not in exception 2019-09-25 22:23:41 -05:00
h00die d6a7da9490 fix atutor nil 2019-09-25 22:02:55 -04:00
h00die ca99bd4191 fix nil check 2019-09-25 21:24:14 -04:00
Wei Chen 8dc238e687 Add TotaJS CMS Code Injection in Widget Creation 2019-09-25 16:54:44 -05:00
todb-r7 a9a2ce2f6a Add correct CVE for shopware module 
In PR #11828, the module author requested, and got, a new CVE for this
issue. The module should reflect that.
 2019-09-12 16:09:32 -05:00
Shelby Pace 644988750e change permission on payload 2019-09-12 07:43:54 -05:00
Wei Chen 8fe1f9d172 Rephrase 2019-09-10 12:12:46 -05:00
Wei Chen 2cd8125a40 Add zip skip 2019-09-09 12:00:53 -05:00
Shelby Pace c4bd91f505 Land #12272, add October CMS file upload 2019-09-06 10:13:33 -05:00
Shelby Pace 5f7c243b48 add filedropper, fix check, add to docs 2019-09-06 09:49:09 -05:00
Touhid M Shaikh aaebec01a4 Update References 
Added CVE and Blog link
 2019-09-06 18:26:28 +05:30
Touhid M Shaikh cf4c10783a Update modules/exploits/multi/http/october_upload_bypass_exec.rb 
Co-Authored-By: Shelby Pace <40177151+space-r7@users.noreply.github.com>
 2019-09-05 23:50:18 +05:30
Touhid M Shaikh 4b416bf530 Update modules/exploits/multi/http/october_upload_bypass_exec.rb 
Co-Authored-By: Shelby Pace <40177151+space-r7@users.noreply.github.com>
 2019-09-05 23:48:43 +05:30
Touhid M Shaikh a7e205e252 Update modules/exploits/multi/http/october_upload_bypass_exec.rb 
Co-Authored-By: Shelby Pace <40177151+space-r7@users.noreply.github.com>
 2019-09-05 23:48:32 +05:30
Touhid M Shaikh 0e4e7dd9d9 Update modules/exploits/multi/http/october_upload_bypass_exec.rb 
Co-Authored-By: Shelby Pace <40177151+space-r7@users.noreply.github.com>
 2019-09-05 23:48:22 +05:30
Touhid M Shaikh bc1610ec46 Update modules/exploits/multi/http/october_upload_bypass_exec.rb 
Co-Authored-By: Shelby Pace <40177151+space-r7@users.noreply.github.com>
 2019-09-05 23:48:14 +05:30
Touhid M Shaikh 71c1c07b0d fixed 
fix EOF on 88 line
 2019-09-04 13:08:26 +05:30
Touhid M Shaikh aeaf4232fe updated 
typo, comments and check fixed
 2019-09-04 12:46:31 +05:30
Touhid M Shaikh 5e63c83257 Update modules/exploits/multi/http/october_upload_bypass_exec.rb 
Co-Authored-By: bcoles <bcoles@gmail.com>
 2019-09-04 12:37:21 +05:30
Touhid M Shaikh 974f078114 Update modules/exploits/multi/http/october_upload_bypass_exec.rb 
Co-Authored-By: bcoles <bcoles@gmail.com>
 2019-09-04 12:29:32 +05:30
Touhid M Shaikh bb8b3245a3 Update modules/exploits/multi/http/october_upload_bypass_exec.rb 
Co-Authored-By: bcoles <bcoles@gmail.com>
 2019-09-04 12:28:59 +05:30
Touhid M Shaikh f0eb7da43b Update modules/exploits/multi/http/october_upload_bypass_exec.rb 
Co-Authored-By: bcoles <bcoles@gmail.com>
 2019-09-04 12:28:51 +05:30
Touhid M Shaikh 7359e4bdd6 fixes suggested by @space-r7 
fixed check before passing to the accessor, removed res which is not used.
 2019-09-04 12:20:39 +05:30
Touhid M Shaikh 6c6603bbd7 Update modules/exploits/multi/http/october_upload_bypass_exec.rb 
Co-Authored-By: Shelby Pace <40177151+space-r7@users.noreply.github.com>
 2019-09-03 23:18:31 +05:30
Touhid M Shaikh aee17608cd Update modules/exploits/multi/http/october_upload_bypass_exec.rb 
Co-Authored-By: Shelby Pace <40177151+space-r7@users.noreply.github.com>
 2019-09-03 23:17:50 +05:30
Touhid M Shaikh 6934af0b7d Update modules/exploits/multi/http/october_upload_bypass_exec.rb 
Co-Authored-By: Shelby Pace <40177151+space-r7@users.noreply.github.com>
 2019-09-03 23:15:33 +05:30
Touhid M Shaikh 615661a03d first build 
first build of october_upload_bypass_exec
 2019-09-03 12:04:38 +05:30
William Vu 042c181f67 Land #12058, cisco_dcnm_upload_2019 exploit 2019-08-30 13:33:19 -05:00
Pedro Ribeiro 3dd9c38fd1 Update cisco_dcnm_upload_2019.rb 2019-08-29 12:42:01 +07:00
Pedro Ribeiro bbbf426ec7 make requested changes 2019-08-29 12:16:58 +07:00
Pedro Ribeiro bda1120cac make requested changes 2019-08-29 11:14:40 +07:00
Shelby Pace bc6cff3d4f Land #12207, add LibreOffice/Logo file fmt exploit 2019-08-19 13:14:23 -05:00
Shelby Pace 8fd5c1e0c1 remove PrependMigrate option 2019-08-19 13:12:54 -05:00
Load b0a531982e Adds default options 
- Changes target to Automatic
- Set default options instead of default target for options
- Adds links for the two vulnerabilities exploited by this module
- Removes unnecessary double encoding+eval
 2019-08-18 14:42:48 +02:00
Shelby Pace 409b3c9c4b using python payload for platform independence 2019-08-16 15:36:42 -05:00
Load 3838fc2164 Adds references to the next CVE 
This new CVE explains this exploit (global events are used)
 2019-08-16 12:59:23 +02:00