 Shelby Pace
|
183caff15c
|
Land #15418, add modern events calendar rce
|
2021-07-26 09:45:05 -05:00 |
|
|
Shelby Pace
|
38ae82155e
|
modify info, fix spacing
|
2021-07-26 09:43:34 -05:00 |
|
|
Shelby Pace
|
9e95eb7be1
|
Land #15408, add Wordpress sp doc file upload
|
2021-07-23 12:36:29 -05:00 |
|
|
Shelby Pace
|
d207f994c0
|
modify doc description
randomize form data, formatting
|
2021-07-23 12:33:41 -05:00 |
|
|
Hakyac
|
1a55cfc88c
|
Update documentation/modules/exploit/multi/http/wp_plugin_sp_project_document_rce.md
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
|
2021-07-23 10:12:10 +02:00 |
|
|
Hakyac
|
76a7233ee9
|
Update documentation/modules/exploit/multi/http/wp_plugin_sp_project_document_rce.md
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
|
2021-07-23 10:12:00 +02:00 |
|
|
Hakyac
|
cf9a5be774
|
Update documentation/modules/exploit/multi/http/wp_plugin_sp_project_document_rce.md
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
|
2021-07-23 10:11:49 +02:00 |
|
|
Hakyac
|
9eb8d521f8
|
Update documentation/modules/exploit/multi/http/wp_plugin_modern_events_calendar_rce.md
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
|
2021-07-23 10:08:19 +02:00 |
|
|
William Vu
|
af0092f290
|
Land #15400, Sage X3 modules
|
2021-07-20 20:36:48 -05:00 |
|
|
William Vu
|
b9a71449e5
|
Add module docs
|
2021-07-20 20:07:08 -05:00 |
|
|
Shelby Pace
|
79d49a6857
|
Land #15402, add Wordpress Backup Guard rce
|
2021-07-20 15:53:57 -05:00 |
|
|
Shelby Pace
|
f738383b98
|
rename docs, modify privileged to false
use vars_get in upload request
|
2021-07-20 15:31:38 -05:00 |
|
|
Hakyac
|
109ca7ec7a
|
Update documentation/modules/exploit/multi/http/wp_plugin_sp_project_document_rce.md
Co-authored-by: Spencer McIntyre <58950994+smcintyre-r7@users.noreply.github.com>
|
2021-07-20 09:05:27 +02:00 |
|
|
Grant Willcox
|
a276f336f0
|
Final touchup work for PR 15438 to reference kernel pool and clear some wording up
|
2021-07-16 13:12:14 -05:00 |
|
|
A Galway
|
42a751e0db
|
Add new supported targets
|
2021-07-16 16:58:34 +01:00 |
|
|
William Vu
|
2164d7ed5a
|
Add log IOC
|
2021-07-12 20:54:54 -05:00 |
|
|
William Vu
|
1812a71d3d
|
Add module doc
|
2021-07-12 13:07:05 -05:00 |
|
|
Hakyac
|
d26d9f50fa
|
Update wordpress_plugin_backup_guard_rce.md
|
2021-07-12 14:29:35 +02:00 |
|
|
Hakyac
|
ba69294967
|
Update wp_plugin_sp_project_document_rce.md
|
2021-07-12 14:28:35 +02:00 |
|
|
Yann Castel
|
6934ec7d18
|
initial commit
|
2021-07-12 14:25:38 +02:00 |
|
|
Tim W
|
39455827aa
|
Land #15254, use obfuscated powershell protection bypasses
|
2021-07-12 12:20:17 +01:00 |
|
|
Grant Willcox
|
02ecc22751
|
Land #15386, Add module for CVE-2021-35464; pre-auth RCE in ForgeRock AM (and OpenAM) server
|
2021-07-09 17:01:25 -05:00 |
|
|
Grant Willcox
|
5c8aa9b802
|
Add in ForgeRock demonstration and fix up some last minor issues with the documentation to make it more accurate
|
2021-07-09 16:43:25 -05:00 |
|
|
Spencer McIntyre
|
fba838f4e8
|
Update docs, pin version and fix the check method
|
2021-07-09 16:39:58 -04:00 |
|
|
Yann Castel
|
d9233b9d98
|
typo 2
|
2021-07-09 11:54:25 +02:00 |
|
|
Yann Castel
|
3f2d7cda10
|
typo
|
2021-07-09 11:51:52 +02:00 |
|
|
Yann Castel
|
920b88a2bd
|
initial commit
|
2021-07-09 11:49:53 +02:00 |
|
|
William Vu
|
6fbaecf919
|
Backport print changes to recent modules
|
2021-07-08 21:26:35 -05:00 |
|
|
Grant Willcox
|
570ba091f6
|
Update some typos in the documentation and also update the exploit module to handle various cases whereby the dbus-send command might end up timing out due to TIMEOUT being too low and to fix some final issues found during testing
|
2021-07-08 16:24:01 -05:00 |
|
|
Grant Willcox
|
9f88ef0954
|
Fix up review comments
|
2021-07-08 16:22:29 -05:00 |
|
|
Jack Heysel
|
0f67dd5212
|
Fixed get_cmd_delay, reponded to comments
|
2021-07-08 16:20:38 -05:00 |
|
|
Jack Heysel
|
9a07039e7e
|
Updated docs
|
2021-07-08 16:09:15 -05:00 |
|
|
Jack Heysel
|
f87f831aba
|
Module updates + Docs
|
2021-07-08 16:09:02 -05:00 |
|
|
Yann Castel
|
38cdad47c0
|
initial commit
|
2021-07-08 16:53:37 +02:00 |
|
|
William Vu
|
8cd00bcb91
|
Update module doc
|
2021-07-06 22:25:35 -05:00 |
|
|
Spencer McIntyre
|
a0bd903b50
|
Update module docs and the TARGETURI option
|
2021-07-06 15:52:50 -04:00 |
|
|
Spencer McIntyre
|
bfc45359ff
|
More documentation updates and address PR feedback
|
2021-07-06 11:27:06 -04:00 |
|
|
agalway-r7
|
410493f729
|
Land #15318, NSClient priv esc post module
|
2021-07-06 16:07:30 +01:00 |
|
|
Spencer McIntyre
|
deb78275d0
|
Make the requested documentation changes
|
2021-07-06 09:55:19 -04:00 |
|
|
bwatters
|
0a43ec7e4a
|
Add module for CVE-2021-35464; pre-auth RCE in ForgeRock OpenAM server
|
2021-07-02 16:05:39 -05:00 |
|
|
Christophe De La Fuente
|
eca20bec92
|
Update from code review
- Fix documentation typos
- Rename `MeterpreterBackground` Mettle option to `MeterpreterTryToFork`
|
2021-06-30 11:02:11 +02:00 |
|
|
Christophe De La Fuente
|
ccaedd6c9a
|
Last additions and improvements
- add binaries
- add documentation
- backup `runc` binary in the exploit C file
- add `MeterpreterBackground` options to set Mettle `background` option
- add `WsfDelay` logic
- refactor code
- add cleanup logic
- add restore `runc` binary logic
|
2021-06-30 11:02:11 +02:00 |
|
|
Shelby Pace
|
a2a1b91a69
|
Land #15341, add wpdiscuz exploit
|
2021-06-25 16:22:02 -05:00 |
|
|
Shelby Pace
|
6d13f0627e
|
formatting changes
|
2021-06-25 16:20:42 +02:00 |
|
|
Shelby Pace
|
1194e7d0f3
|
add guards, adjust formatting, add docs
|
2021-06-25 16:20:42 +02:00 |
|
|
Shelby Pace
|
3c7d96695e
|
Land #15349, add rConfig vendors auth rce
|
2021-06-24 10:43:18 -05:00 |
|
|
Shelby Pace
|
df1faf85ff
|
rename files, change version check, use cookie jar
|
2021-06-24 09:47:38 -05:00 |
|
|
Spencer McIntyre
|
397c9ef140
|
Land #15333, Cisco HyperFlex File Upload RCE
|
2021-06-17 13:40:39 -04:00 |
|
|
Jack Heysel
|
281fce0c94
|
Cisco HyperFlex File Upload RCE module
beta draft
RCE working with linux/x64/meterpreter_reverse_tcp
rubocop
Updated title, removed newlines
Responded to comments
Rubo cop offenses
Update documentation/modules/exploit/linux/http/cisco_hyperflex_file_upload_rce.md
Co-authored-by: wvu <wvu-r7@users.noreply.github.com>
Update modules/exploits/linux/http/cisco_hyperflex_file_upload_rce.rb
Co-authored-by: wvu <wvu-r7@users.noreply.github.com>
Update modules/exploits/linux/http/cisco_hyperflex_file_upload_rce.rb
Co-authored-by: wvu <wvu-r7@users.noreply.github.com>
Update modules/exploits/linux/http/cisco_hyperflex_file_upload_rce.rb
Co-authored-by: wvu <wvu-r7@users.noreply.github.com>
Update modules/exploits/linux/http/cisco_hyperflex_file_upload_rce.rb
Co-authored-by: wvu <wvu-r7@users.noreply.github.com>
Responded to comments
Rubocop offenses
Added support for Java Dropper
Made changes to Linux Dropper
Rubocop
Improved check method, changed to default staged paylod, removed TODO
Switched to single-quoted strings
|
2021-06-17 12:38:47 -04:00 |
|
|
Yann Castel
|
dca4f3f471
|
fix download link
|
2021-06-17 15:19:42 +02:00 |
|