1e69086d24
Land #18365 , TOTOLINK X5000R Wireless GigaBit Router Unauthenticed RCE [CVE-2023-30013]
2023-09-21 11:27:19 +02:00
6e11f4353b
Updates addressing cdelafuente-r7 comments
2023-09-20 22:14:48 +00:00
525c957af2
Land #18333 , Lexmark Device Embedded Web Server RCE (CVE-2023-26068)
2023-09-19 10:32:59 +02:00
bfa876c3a1
Land #18283 , Apache Airflow 1.10.10 - Example DAG Remote Code Execution
...
CVE-2020-11978 + CVE-2020-13927
Merge branch 'land-18283' into upstream-master
2023-09-18 17:00:19 -05:00
23dc1a487d
Land #18321 , Add Ivanti Avalanche MDM Buffer Overflow Exploit (CVE-2023-32560)
2023-09-18 10:43:45 +01:00
f9cdfef304
Move module and documentation from multi/http to linux/http
...
* Update documentation scenarios for Docker on Debian 10 and Kali Linux 6.4
* Slightly modify the documentation scenario for Docker on Windows 10
2023-09-17 22:42:26 +08:00
d12b1778e5
Merge branch 'rapid7:master' into apache_airflow_dag_rce
2023-09-15 22:06:43 +08:00
46832abd49
Land #18358 , Add a Thrift RPC client
...
This PR adds a Thrift RPC client and updates
two modules to make use of the new addition.
2023-09-14 19:01:13 -04:00
21cab0eccd
updated documentation
2023-09-14 18:38:34 +00:00
784f3118f0
third release module and documentation
2023-09-14 17:59:59 +00:00
cf4757a6cb
Update installation steps.
2023-09-14 18:51:48 +02:00
9fbfe63b2f
Update documentation/modules/exploit/windows/misc/ivanti_avalanche_mdm_bof.md
...
Co-authored-by: cgranleese-r7 <69522014+cgranleese-r7@users.noreply.github.com >
2023-09-14 16:39:15 +00:00
8b56dc0117
Land #18250 , CVE-2023-28252: Windows CLFS Driver Privilege Escalation
2023-09-14 10:18:29 +01:00
930063fe91
Merge branch 'rapid7:master' into apache_airflow_dag_rce
2023-09-13 23:51:47 +08:00
e82bff37e1
Land #18330 , Ivanti Sentry MICSLogService Auth Bypass resulting in RCE (CVE-2023-38035)
2023-09-13 10:15:59 +01:00
78684dce8d
Merge branch 'rapid7:master' into apache_airflow_dag_rce
2023-09-13 09:43:35 +08:00
b83a49e573
Thanks to Spencer improved execute_command method
2023-09-12 15:14:10 -04:00
fbf95ecd92
Add and use a Thrift client object
2023-09-11 14:37:38 -04:00
f1aea836f3
Land #18273 , Add VMware vRealize Log Insight RCE
...
Add VMware vRealize Log Insight unauthenticated RCE exploit
2023-09-08 17:17:23 -04:00
21dde19511
Make some final tweaks
...
Change strings to reference `VMware` using the proper case. Don't
include CmdStager (because it's unnecessary). Set PrependFork to fix
shell payloads. Move CamelCase options to advanced.
2023-09-08 16:55:42 -04:00
57f3b8a352
Land #18350 , Add opentsdb_key_cmd_injection exploit module and docs
2023-09-08 16:50:46 +01:00
18103b032d
Add docs for opentsdb_key_cmd_injection
2023-09-08 16:08:18 +01:00
7302394ffa
Land #18316 , Kibana Timelion Prototype Pollution RCE (CVE-2019-7609)
2023-09-08 11:50:47 +01:00
a33f03d100
Land #18302 , Sonicwall rce CVE-2023-34124
2023-09-08 11:48:07 +02:00
946794c3f8
Land #18341 , add CVE-2023-38831 for Winrar 6.22
...
Merge branch 'land-18341' into upstream-master
2023-09-07 15:59:36 -05:00
ef4a9dd239
Land #18329 , Add LG Simple Editor RCE module
...
This PR adds an unauth RCE module for LG Simple Editor
2023-09-07 16:21:10 -04:00
2cda3fab50
Update options
2023-09-07 19:50:10 +02:00
15908b9721
Merge branch 'ivanti-sentry-misc-log-service' of github.com:jheysel-r7/metasploit-framework into ivanti-sentry-misc-log-service
2023-09-07 12:40:26 -04:00
fd6a2fa64a
Updated docs
2023-09-07 12:19:11 -04:00
7944df2b87
Apply suggestions from code review
...
Co-authored-by: cgranleese-r7 <69522014+cgranleese-r7@users.noreply.github.com >
2023-09-07 11:46:24 -04:00
b12fe743d0
Resolve PR comments
2023-09-06 14:11:29 -07:00
482fdefb2c
Land #18313 , SolarView Compact unauth RCE module
...
This PR adds a SolarView Compact unauth RCE module.
2023-09-05 17:49:28 -04:00
03ccb3cce0
Apply grammatical suggestions from code review
2023-09-05 17:06:01 -04:00
d5f355d8de
WinRAR 6.22 (CVE-2023-38831)
2023-09-04 18:56:22 +02:00
a552132fc3
Update documentation/modules/exploit/windows/misc/ivanti_avalanche_mdm_bof.md
...
Co-authored-by: Christophe De La Fuente <56716719+cdelafuente-r7@users.noreply.github.com >
2023-09-01 01:53:17 +00:00
48cb2db70b
Update scenario
2023-09-01 03:48:08 +02:00
7b8debd58f
Tidy up, last minute rubocop
2023-08-31 02:17:35 -04:00
9779b1eeae
Lexmark Device Embedded Web Server RCE (CVE-2023-26068)
2023-08-30 20:30:14 -04:00
ef55c4f2c1
Update documentation/modules/exploit/windows/local/cve_2023_28252_clfs_driver.md
2023-08-30 12:11:37 -04:00
8217745a85
Land #18257 , Apache nifi h2 rce (CVE-2023-34468)
2023-08-30 13:37:37 +02:00
fe8cb3398f
Another docs update
2023-08-29 17:33:51 -04:00
47f621106c
Updated docs
2023-08-29 17:11:33 -04:00
a3a7454f74
Ivanti Sentry MICSLogService Auth Bypass resulting in RCE (CVE-2023-38035)
2023-08-29 15:24:04 -04:00
1d9c7fde77
Add LG Simple Editor Unauthenticated RCE (CVE-2023-40498) Exploit
2023-08-29 17:58:43 +02:00
7fa2586e34
Land #18247 , Netgear NMS RCE CVE-2023-38096/8
2023-08-28 11:23:08 +02:00
77a1bbef79
Second release module and documentation
2023-08-28 07:49:40 +00:00
eaeb2024d3
Merge branch 'master' into vmware_vrli_rce
...
Merge for ThriftMessageType
2023-08-26 22:42:25 +02:00
8ba2343164
Update documentation/modules/exploit/windows/misc/ivanti_avalanche_mdm_bof.md
...
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com >
2023-08-26 16:26:39 +00:00
b10d677308
Doc update.
2023-08-25 21:18:48 +02:00
a971867ca6
Add Ivanti Avalanche MDM Buffer Overflow Exploit (CVE-2023-32560)
2023-08-25 19:26:06 +02:00
Christophe De La Fuente