adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
75,842 Commits 27 Branches 1,043 Tags
c70043f84286ed1eff7da2fef5dd7f2122b81663
Commit Graph

3016 Commits

Author SHA1 Message Date
Chocapikk 7d559e0b34 Add exploit module for CVE-2024-8856 - WP Time Capsule RCE 2024-12-11 01:14:17 +01:00
Aaryan Golatkar ef1b38654b Added perfect-survey to data/wordlists/wp-exploitable-plugins.txt 2024-12-10 18:59:20 +05:30
Chocapikk a123234141 Add CVE-2024-10924 2024-12-05 16:19:09 +01:00
Diego Ledda 58702f238c Land #19574, Windows Access Mode Mismatch LPE in ks.sys (CVE-2024-35230) 
Land #19574, Windows Access Mode Mismatch LPE in ks.sys (CVE-2024-35230)
 2024-12-04 16:39:43 +01:00
jheysel-r7 c4b7954f15 Land #19596, Wordpress Plugin Post SMTP Account Takeover 2024-11-29 09:05:03 -08:00
Ashley Donaldson 7f6bdb385d Added LDAP query searching for likely Pre-Windows-2000 computers 2024-11-25 12:30:27 +11:00
Jack Heysel 7a5bc60aab Windows Access Mode Mismatch LPE in ks.sys [CVE-2024-35250] 2024-11-05 15:31:44 -08:00
Spencer McIntyre e709a18128 Merge pull request #19404 from bwatters-r7/smb2http_relay 
SMB to NTLM HTTP Relay with ESC8 module
 2024-11-05 14:12:08 -05:00
Spencer McIntyre 006ed90f1c Move the ESC8 module and document the attack 2024-11-04 09:37:12 -05:00
dwelch-r7 1bfa0755a8 Land #19518, Add support for RISC-V 32-bit / 64-bit Little Endian payloads 2024-11-01 11:18:30 +00:00
h00die 9da5177d11 remove old code 2024-10-29 16:44:48 -04:00
jheysel-r7 87af327507 Merge branch 'master' into wp_ultimate_member_sorting_sqli 2024-10-29 16:34:10 -04:00
Spencer McIntyre 05a149dadc Merge pull request #19572 from cdelafuente-r7/fix/mod/ldap/ad_cs_cert_template 
Fix UPDATE certificate templates with `admin/ldap/ad_cs_cert_template`
 2024-10-22 15:03:31 -04:00
Christophe De La Fuente ae213813b5 Updates from code review 2024-10-22 14:41:02 +02:00
adfoster-r7 9c0efc67fb Merge pull request #19567 from bcoles/wordlists 
data/wordlists: Add default passwords for common single-board computers
 2024-10-21 11:58:23 +01:00
Christophe De La Fuente 43f13c7e90 Add the msPKI-Template-Schema-Version attribute to ESC1, ESC2 and ESC3 templates 2024-10-18 18:57:50 +02:00
bcoles e50767bb6f data/wordlists: Add default passwords for common single-board computers 2024-10-19 00:49:14 +11:00
Spencer McIntyre 8e38010d6e Add an ESC15 template 2024-10-17 11:23:31 -04:00
bcoles 1c748d376a Add RISC-V 32-bit/64-bit ELF templates 2024-10-15 22:51:32 +11:00
Chocapikk 668424a444 Add unauth SQLi exploit module for Ultimate Member plugin (CVE-2024-1071) 2024-10-14 18:14:10 +02:00
Chocapikk 8553f625a4 Add auxiliary/scanner/http/wp_fastest_cache_sqli 2024-10-14 18:03:46 +02:00
Brendan dbc020a745 Merge pull request #19441 from Takahiro-Yoko/cve_2023_0386_priv_esc 
Land #19441, Add module: Linux Priv Esc (OverlayFS copying bug) CVE-2023-0386
 2024-09-26 14:07:17 -05:00
bwatters-r7 3e6572abde Update binary 2024-09-26 13:45:44 -05:00
Takah1ro e89e573160 Update exploit binary 2024-09-24 19:36:39 +09:00
Takah1ro 755830024c Update exploit binary and remove unnecessary 2024-09-24 08:37:20 +09:00
cgranleese-r7 44efbc21a8 Add automated acceptance tests for cmd_exec 2024-09-19 11:09:14 +01:00
dledda-r7 0bf524482c Land #19345, Post module Windows LPE CVE-2024-30088 2024-09-17 08:13:21 -04:00
Takah1ro dd932844b6 Remove unused variables 2024-09-09 08:15:08 +09:00
Takah1ro 8366252ba2 Not call payload directory 2024-09-07 12:28:40 +09:00
Takah1ro 692531bb87 Call payload directory 2024-09-07 12:16:04 +09:00
Takah1ro 2b63f8bb88 Rename exploit 2024-09-07 10:29:41 +09:00
Takah1ro fd7321dd3f Strip_comments 2024-09-06 22:58:31 +09:00
Takah1ro 72a9164024 Update pre-compiled binary 2024-09-06 22:29:09 +09:00
Takah1ro 3d20dd6ddf Add module: 
Linux Priv Esc (OverlayFS copying bug) CVE-2023-0386
 2024-09-05 22:54:55 +09:00
Jack Heysel 7bfd814297 Removed memory polling 2024-08-30 12:52:18 -07:00
Jack Heysel b011b67f80 Responded to comments 2024-08-29 22:25:20 -07:00
Chocapikk bc7840ea7f Add wp_givewp_rce exploit module 2024-08-27 19:50:35 +02:00
Jack Heysel 6689614d8f Responded to comments 2024-08-22 13:06:29 -07:00
Jack Heysel 31348dac33 Windows LPE CVE-2024-30088 2024-08-21 23:16:37 -07:00
cgranleese-r7 63ac22950f Adds support to test custom payload branches 2024-08-21 15:02:19 +01:00
bwatters 636c72965c Land #19084, Add CVE-2022-1373 and CVE-2022-2334 exploit chain 
Merge branch 'land-19084' into upstream-master
 2024-07-19 12:22:25 -05:00
bwatters 1881d4e8b4 commit and sign binary 2024-07-19 12:07:59 -05:00
Christophe De La Fuente e9c511c979 Add documentation and some updates 2024-07-16 16:34:28 +02:00
Christophe De La Fuente 1abc42a873 Add module 2024-07-09 18:34:27 +02:00
Chocapikk bea708d24c Add exploit module for CVE-2024-5084: WordPress Hash Form Plugin RCE 2024-05-28 18:27:02 +02:00
Zach Goldman 26a108aadc Land #19046, Apache Solr Backup Restore RCE [CVE-2023-50386] 2024-04-23 14:08:33 -04:00
Imran E. Dawoodjee afd4b8af2e Remove x86 things, include AutoCheck 2024-04-19 22:49:40 +08:00
Spencer McIntyre 854d22e5db Land #17294, Add additional reliability metadata 2024-04-18 15:26:34 -04:00
adfoster-r7 0e1961d7e9 Add additional reliability metadata 2024-04-17 21:47:27 +01:00
fanqiaojun 6b2bdc893b chore: remove repetitive words 
Signed-off-by: fanqiaojun <fanqiaojun@yeah.net>
 2024-04-15 11:06:50 +08:00