d11c2be4ea
Merge pull request #19375 from h4x-x0r/CVE-2024-20419
...
Cisco Smart Software Manager (SSM) On-Prem Account Takeover (CVE-2024-20419) Module
2024-09-24 12:19:54 -04:00
8e2dbbbd56
Land #19416 , Add Traccar RCE module
...
This module exploits two vulnerabilities in Traccar v5.1 - v5.12 to
obtain remote code execution: A path traversal vulnerability
CVE-2024-24809 and an unrestricted file upload vulnerability
CVE-2024-31214.
2024-09-23 15:25:02 -07:00
e0e7c67ff7
Remove jsessionid parsing now that keep_cookies is being used
2024-09-23 18:12:01 -04:00
f254eeb65e
Added error handling
2024-09-23 14:16:26 -07:00
b475f0dccb
Land #19448 , Improve screensaver management
...
Add a number of improvements to modules/post/multi/manage/screensaver.rb
2024-09-23 08:31:38 -07:00
322188a112
Refactoring
...
Refactored code to remove duplicate requests
2024-09-23 13:29:46 +01:00
ab7e02d23f
Merge pull request #19397 from sjanusz-r7/replace-readline-with-reline
...
Replace Readline with Reline
2024-09-20 14:23:40 +01:00
409b1aed45
Land #19461 , Modernize NetWkstaUserEnum
...
Modernize NetWkstaUserEnum in smb scanner
2024-09-17 10:14:02 -04:00
7abfb6c205
Return nil on error to avoid another exception
2024-09-17 09:59:42 -04:00
0bf524482c
Land #19345 , Post module Windows LPE CVE-2024-30088
2024-09-17 08:13:21 -04:00
6e696e24e5
Land #19457 , WP Plugin LiteSpeed Cache Account Take Over Module
2024-09-17 06:30:33 -04:00
d4378d6c82
change output format to old style
2024-09-16 18:28:01 -04:00
862acbdbae
Improve screensaver management
...
- Add modern ways to unlock Linux machines remotely
- Use proper `register_options`
- Clarify the actions: lock/unlock, start/stop
- Add more platforms
- Add a couple of checks before running the commands
2024-09-16 23:41:37 +02:00
84a8eb7273
Respond to comments
2024-09-16 09:46:57 -07:00
92234641bc
modernize enumuser_domain in smb scanner
2024-09-13 16:12:01 -04:00
96e506d9f5
Fix cookie regex
2024-09-13 09:36:18 -07:00
e7da81c271
Fix AdminCookieError admin_cookie check
2024-09-13 09:35:43 -07:00
300d2f5aa9
Apply suggestions from code review
...
Co-authored-by: Valentin Lobstein <88535377+Chocapikk@users.noreply.github.com >
2024-09-13 11:58:08 -04:00
83a31c8a2a
Land #19454 , Persistence post module using motd
2024-09-13 09:02:22 -04:00
6d659e3aa8
Add modules/exploits/linux/local/motd_persistence.rb
2024-09-12 17:41:47 +02:00
41a354372c
Land #19449 , Fix an exception when the target is not Ubuntu
2024-09-12 11:10:41 -04:00
05f591d005
Cleanup and check method added
...
Cleanup and check method added
2024-09-12 15:43:20 +01:00
38a3e7696d
Responded to comments
2024-09-12 07:36:16 -07:00
30e6af7791
cleanup
...
Code cleanup and better handling of different use cases.
2024-09-12 14:34:45 +01:00
c80a03fece
WP LiteSpeed exploit CVE-2024-44000
2024-09-11 23:31:26 -07:00
dd5dd54af1
beta commit module working
2024-09-11 15:23:46 -07:00
5e2bf5aaca
fix(modules): spip_bigup_unauth_rce minor fix
2024-09-11 11:46:52 -04:00
62e852176d
Land #19444 , SPIP BigUp Plugin Unauthenticated RCE
2024-09-11 10:29:12 -04:00
9de9b525d9
Land #19432 , Refactoring SPIP Modules for Windows Compatibility and Incorporating SPIP Mixin
2024-09-11 14:57:48 +01:00
5e71490b66
Fix a typo when the kernel is not Ubuntu
2024-09-09 14:19:20 -04:00
af5c7ecc8f
Fix bug
2024-09-08 07:54:11 +02:00
4f859f129c
Fix bug
2024-09-08 07:52:40 +02:00
59faa1bf0c
Change version fingerprinting
2024-09-08 07:01:23 +02:00
43fabb07e5
Update doc + module + (mixin see #19444 )
2024-09-08 06:56:13 +02:00
289f47fac1
Update documentation with docker setup, working mixin now, update module
2024-09-08 05:59:11 +02:00
cc6127897f
Add suggestions
2024-09-07 04:00:25 +02:00
0b768791d6
Update modules/exploits/multi/http/spip_bigup_unauth_rce.rb
...
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com >
2024-09-07 01:56:21 +02:00
484cdc940f
Update modules/exploits/multi/http/spip_bigup_unauth_rce.rb
...
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com >
2024-09-07 01:56:09 +02:00
c90f9b1ae5
Update modules/exploits/multi/http/spip_bigup_unauth_rce.rb
...
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com >
2024-09-07 01:55:54 +02:00
92a25e5a29
Add source (oopsie)
2024-09-07 03:11:49 +02:00
8b1e1dab1b
Add some comments and CVE ID
2024-09-07 03:09:42 +02:00
fdc28080c9
Update disclosure date
2024-09-06 22:14:27 +02:00
8608e7021d
Add spip_bigup_unauth_rce module
2024-09-06 22:10:18 +02:00
93ddceb929
Land #19419 , Remove unneeded code in php/base64
...
This remove some useless code in modules/encoders/php/base64.rb
2024-09-05 11:00:56 -07:00
9fad484029
Land #19439 , Update bypassuac_comhijack supported arch
...
This explicitly defines x86 and x64 as supported architectures for the
bypassuac_comhijack module. Prior to this change there were no defined
architectures and if you tried to use an x64 based payload the module
would fail.
2024-09-05 09:41:41 -07:00
152710403d
Land #19330 , Add SSL opt in start_service
...
The start_service method now allows users to specify their SSL
preferences directly through the opts parameter. If the ssl option is
not provided in opts, it will default to the value in datastore["SSL"]
2024-09-05 09:08:07 -07:00
434593dcb4
Suggestion and rubocop fixes
2024-09-05 08:49:32 -07:00
05c3c9ac65
Updated reliability comment
2024-09-04 14:09:04 -07:00
2da95ebc6a
Remove SLEEP datastore option
2024-09-04 13:39:01 -07:00
37042d837e
Add spip_plugin_version function to retrieve plugin version from config.txt or Composed-By header
2024-09-04 22:17:06 +02:00
jheysel-r7