18 Commits

Author	SHA1	Message	Date
Tod Beardsley	23d058067a	Redo the boilerplate / splat ... [SeeRM #8496]	2013-10-15 13:51:57 -05:00
Tab Assassin	41e4375e43	Retab modules	2013-08-30 16:28:54 -05:00
Steve Tornio	89f649ab99	add osvdb ref 89026	2013-06-20 07:28:29 -05:00
Jeff Jarmoc	9b30e354ea	Updates HTTP_METHOD option to use OptEnum.	2013-02-04 15:32:36 -06:00
Jeff Jarmoc	55600ce276	Update modules/exploits/multi/http/rails_xml_yaml_code_exec.rb ... Remove unecessary include.  Tested against rails 3.2.10.	2013-01-29 11:46:02 -06:00
James Lee	92c736a6a9	Move fork stuff out of exploit into payload mixin ... Tested xml against 3.2.10 and json against 3.0.19	2013-01-28 21:34:39 -06:00
kernelsmith	0b130e49e7	Squashed commit of the following: ... commit 1beebe758c Author: kernelsmith <kernelsmith@kernelsmith> Date: Fri Jan 11 17:55:27 2013 -0600 fixes missing word in descript. of rails exploit simple omission fix in description [Closes #1295]	2013-01-11 19:02:06 -06:00
HD Moore	6471a70053	Pass the X-HTTP-Method-Override parameter for compat	2013-01-10 20:27:13 -06:00
HD Moore	9c652d1d55	Add a note about ruby 1.9 requirements	2013-01-10 17:10:03 -06:00
Bouke van der Bijl	3b491ab998	Change charlisome in the list of authors to charliesome	2013-01-10 16:12:07 +01:00
HD Moore	42ea64c21b	Merge in Rails2 support now that its in master	2013-01-10 02:14:08 -06:00
HD Moore	0b74f98946	Rescue errors and update credits	2013-01-10 01:06:46 -06:00
HD Moore	1e94b090e7	The __END__ trick is no longer needed	2013-01-10 00:29:11 -06:00
HD Moore	acabc14ec3	This restores functionality across all rails 3.x	2013-01-10 00:28:12 -06:00
HD Moore	0e92de8f61	This works against a wider range of RoR 3.x targets	2013-01-10 00:10:26 -06:00
HD Moore	5e7a4f154e	Fix platform/arch	2013-01-09 23:24:37 -06:00
HD Moore	e15c731651	Clarify credit	2013-01-09 23:22:40 -06:00
HD Moore	4c1e501ed0	Exploit for CVE-2013-0156 and new ruby-platform modules	2013-01-09 23:10:13 -06:00