adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
61,155 Commits 27 Branches 1,043 Tags
bfc45359ffba537bbf838159ef43d50edccbc521
Commit Graph

611 Commits

Author SHA1 Message Date
Spencer McIntyre bfc45359ff More documentation updates and address PR feedback 2021-07-06 11:27:06 -04:00
Spencer McIntyre deb78275d0 Make the requested documentation changes 2021-07-06 09:55:19 -04:00
bwatters 0a43ec7e4a Add module for CVE-2021-35464; pre-auth RCE in ForgeRock OpenAM server 2021-07-02 16:05:39 -05:00
Grant Willcox 537a7763f5 Land #15337, Update apache_activemq_upload_jsp.rb to fix missing checks and add missing slashes to some requests 2021-06-14 15:28:40 -05:00
Grant Willcox 5b274770ef Update exploit code to add missing slashes to certain important parts of the code where the exploit might fail if a custom path is supplied, and also improve the error handling in the code overall 2021-06-14 15:02:38 -05:00
Wyatt Dahlenburg eb76aae2a7 Merge branch 'master' of github.com:rapid7/metasploit-framework into hashicorp_nomad 2021-05-25 15:56:13 -05:00
Wyatt Dahlenburg 6dccf0dd20 Adding Nomad documentation 2021-05-18 10:12:04 -05:00
Alan Foster 2b837a9d11 Add ssl setup documentation for gitlab 2021-05-17 23:59:08 +01:00
Alan Foster 5a0360228f Update cockpit cms module 2021-05-12 17:20:31 +01:00
Brendan Coles 4a93f15c80 Land #15136, Set microfocus_ucmdb_unauth_deser default payload to reverse_python 2021-05-02 10:27:05 +00:00
Pedro Ribeiro e6b605369e UCMDB: remove warning from docs and change Linux target to reverse_python 2021-05-02 16:53:02 +07:00
Tim W 165b25275a minor documentation fix 2021-04-30 22:32:47 +01:00
Grant Willcox f267f0866c Fix up documentation typos and improve JavaScript using comments from @timwr's review. 2021-04-30 10:54:09 -05:00
Grant Willcox 9b528645b1 Fix minor typo on the Pwn2Own year 2021-04-27 13:26:27 -05:00
Grant Willcox 5541988d10 Upload working exploit and documentation for CVE-2021-21220 2021-04-27 13:23:35 -05:00
Erran Carey dcf457f7e9 Fix a typo in Eclipse Equinox product name 
The osgi_console_exec module docs had a few stray characters for the
product name and description. The product name confused me when
googling for this module.
 2021-04-23 11:57:48 +01:00
agalway-r7 93c7727622 Land #15058, Cockpit CMS RCE 2021-04-21 13:21:55 +01:00
h00die 51f9e1ae73 cockpit cms rce 2021-04-18 18:52:04 -04:00
Tim W 97425602e9 fix typo and docs in chrome_simplifiedlowering_overflow 2021-04-16 14:59:43 +01:00
Tim W 7c575cd38f Land #15007, add a chrome renderer exploit (CVE-2020-16040) 2021-04-08 22:18:20 +01:00
rajvardhan agarwal c863c324ae Add exploit for CVE-2020-16040 2021-04-06 17:25:27 +05:30
Christophe De La Fuente 73a8b7aa5f Add Gitea and Gogs RCE modules and documentations 2021-03-31 16:47:29 +02:00
William Vu 151b8f2f92 Update vmware_vcenter_uploadova_rce module doc 2021-03-30 21:08:21 -05:00
Spencer McIntyre 006faaab9a Land #14924, Add auxiliary and exploit modules for CVE-2020-6207 in SAP Solution Manager 2021-03-25 17:48:56 -04:00
Vladimir Ivanov b066145cf1 Minor updates 
Updated documentation auxiliary module cve_2020_6207_solman_rce.md
Updated documentation in exploit module cve_2020_6207_solman_rs.md
 2021-03-25 17:07:20 +03:00
Grant Willcox f01b434160 Land #14896, Fix apache_activemq_upload_jsp exploit module for Java 8 2021-03-24 10:22:03 -05:00
Grant Willcox 9d7e9990f4 Update documentation wording a bit to be more appropriate 2021-03-24 09:17:22 -05:00
Vladimir Ivanov d76224066f Rename option URIPATH to TARGETURI 2021-03-23 13:33:39 +03:00
Vladimir Ivanov 6e13a26fd3 Delete links to launchpad.support.sap.com in doc files 2021-03-22 11:03:53 +03:00
Vladimir Ivanov 42726a70c0 client.rb - library for auxiliary and exploit modules 
cve_2020_6207_solman_rce.rb - auxiliary module
cve_2020_6207_solman_rce.md - documentation for auxiliary module
cve_2020_6207_solman_rs.rb - exploit module
cve_2020_6207_solman_rs.md - documentation for exploit module
 2021-03-21 16:51:21 +03:00
alanfoster 308a42e95b Fix apache_activemq_upload_jsp exploit module for Java 8 2021-03-20 15:26:34 +00:00
Alan Foster 9a92ac87a1 Ensure documentation files have md extension 2021-03-15 10:24:50 +00:00
Spencer McIntyre d580e7d122 Fix some documentation, remove unnecessary code and fix a filename typo 2021-03-11 12:09:29 -06:00
Spencer McIntyre a227d00275 Add additional setup notes for some modules 2021-03-11 12:09:29 -06:00
Spencer McIntyre 8d2e644f4f Add a new Java Deserialization mixin and use it to set the shell 2021-03-11 12:09:29 -06:00
William Vu 729994d4af Update module doc 2021-03-05 17:25:37 -06:00
William Vu 7bbb4cc09a Add module doc 2021-03-05 17:25:37 -06:00
Brendan Coles 69031fa91f Add Apache Flink JAR Upload Java Code Execution 2021-02-22 23:00:57 +00:00
Pedro Ribeiro 79cac47ba3 add suggestions by cdelafuente-r7 2021-02-09 14:24:49 +07:00
Pedro Ribeiro 33edfaa8f6 mention that it has been tested on 2019.11 too 2021-01-30 21:47:31 +07:00
Pedro Ribeiro b8fe5fabf8 fix typo another typo 2021-01-28 22:50:05 +07:00
Pedro Ribeiro 446316ef6c fix typo at the end of app list 2021-01-28 22:49:32 +07:00
Pedro Ribeiro dcd9a6a214 add more clarification regarding affected products 2021-01-28 20:41:08 +07:00
Pedro Ribeiro 7ea5c3ffce add clarification about c3p0 2021-01-28 18:23:20 +07:00
Pedro Ribeiro c73fa70543 do the rubocop thing and add docs 2021-01-28 18:21:51 +07:00
Spencer McIntyre 74898461b4 Land #14654, Add exploit for Micro Focus UCMDB unauthenticated RCE 2021-01-27 10:00:22 -05:00
Spencer McIntyre fc6957fbf6 Fix a couple of issues in the markdown formatting 2021-01-27 10:00:02 -05:00
Pedro Ribeiro 7220dc3ff6 add new note on broken payloads 2021-01-24 22:39:01 +07:00
Pedro Ribeiro 12157163f7 Merge branch 'obm_deser' into ucmdb 2021-01-24 22:25:57 +07:00
Pedro Ribeiro bf4ac7b1a8 add UCMDB sploit 2021-01-24 22:25:45 +07:00