adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
63,675 Commits 27 Branches 1,043 Tags
c8c91fcaf321876fcdae2cfd5ea4aa7ed7718fa9
Commit Graph

4808 Commits

Author SHA1 Message Date
Grant Willcox 51df37de87 Add in documentation and also update the module to handle NarratorQuickstart.exe which sometimes comes up and can lead to visual indicators 2022-03-28 17:53:53 -05:00
Grant Willcox 0f2813f70c Update module and documentation for edits found whilst doing final pass of code 2022-03-16 16:55:03 -05:00
mauricelambert e678615f27 Fix items from code review 2022-03-16 16:54:38 -05:00
mauricelambert 33e12bf06f Correct CVE number, comments and documentation 2022-03-16 16:54:24 -05:00
mauricelambert b745a24a9d Random payload && TARGETURI option 2022-03-16 16:54:15 -05:00
mauricelambert d35b2528df Add markdown documentation for rb_dos_iis_2022_21907 2022-03-16 16:54:14 -05:00
bwatters b4de9fa92a Land #16344, Add module for CVE-2022-21999 and More Railgun Definitions 
Merge branch 'land-16344' into upstream-master
 2022-03-16 08:37:05 -05:00
Anshik Singh 9fbd547fcb Add in Bluestacks reference and then polish up documentation to fix msftidy errors and typos. 2022-03-15 11:01:30 -05:00
space-r7 4a8707982a fix module name in output 2022-03-14 09:35:56 -05:00
space-r7 c646d01671 add systems tested 2022-03-14 09:17:43 -05:00
space-r7 99664efed7 use full user name, add test output to docs 2022-03-14 09:15:36 -05:00
space-r7 96e7e55496 Land #16252, add GitLab GraphQL user enum module 2022-03-11 14:53:13 -06:00
Jake Baines e3061d1ddd Added blog link. Switched to service_details and create_credential_and_login. Added some exit print info and updated docs 2022-03-11 07:00:21 -08:00
space-r7 07e6eef201 rename module, modify check 2022-03-10 17:02:58 -06:00
space-r7 b747e55dda Land #16303, add Dirty Pipe exploit 2022-03-10 11:16:28 -06:00
space-r7 872b9c9a7c modify docs to reflect changes, remove 'return' 2022-03-10 10:39:32 -06:00
Tim W bcc9d01958 add documentation 2022-03-09 08:34:20 +00:00
adfoster-r7 22f88f9ab7 Add docs 2022-03-08 23:52:24 +00:00
space-r7 7a9d30e5b1 Land #16227, add wp masterstudy privesc module 2022-03-07 10:58:23 -06:00
Spencer McIntyre 42e0c027ab Land #16248, Added Apache APISIX RCE module 2022-03-07 09:47:04 -05:00
h00die 86cad29799 wp masterstudy review 2022-03-06 08:07:20 -05:00
red 23a09be333 Fix typo in document of cve_2021_4034 
ContOS => CentOS
 2022-03-05 23:58:31 +08:00
space-r7 f116f9e701 add docs 2022-03-04 15:54:58 -06:00
Spencer McIntyre 9ef50a2d23 Fixup typos 2022-03-04 12:34:14 -05:00
Heyder Andrade 4d5716d891 Updated documentation 2022-03-04 02:21:42 +01:00
bwatters fb658fbb13 Land #16245, pfSense Authenticated File Write (CVE-2021-41282) 
Merge branch 'land-16245' into upstream-master
 2022-03-03 15:08:34 -06:00
Spencer McIntyre 6be3443680 Land #16103, LPE in polkit's pkexec (CVE-2021-4034) 2022-03-03 09:24:11 -05:00
Heyder Andrade 236efab669 Update documentation 
Add referece to CVE-2022-24112
msftidy_docs
 2022-03-03 02:20:56 +01:00
bwatters e649fe3f69 Fix some markdown issues, update docs and add arch check for payloads 2022-03-02 16:30:52 -06:00
bwatters 06e897436c Add Fedora results to docs and some minor final cleanup 2022-03-02 09:12:01 -06:00
bwatters 58aed837b2 Update docs and options 2022-03-01 14:48:48 -06:00
Jake Baines fbdb6614bc Initial version of CVE-2021-4191 GitLab user enumeration 2022-03-01 06:57:39 -08:00
Heyder Andrade a6d33ea98e Add module documentation 2022-03-01 12:54:17 +01:00
bwatters 0081811c52 Land #16185, Firefox CVE-2020-26950 use after free browser exploit 
Merge branch 'land-16185' into upstream-master
 2022-02-28 14:38:23 -06:00
space-r7 0d10409d67 Land #16131, add modern events calendar sqli 2022-02-28 12:27:45 -06:00
Jake Baines 65e16a1a72 Initial implementation of pfSense auth file creation bug (CVE-2021-41282) 2022-02-27 18:12:54 -08:00
Tim W 579811418f update documentation with note about Firefox 82.0.1 2022-02-26 12:35:38 +00:00
bwatters ecaf8b1ba9 Land #16204, Hikvision Unauthenticated RCE (CVE-2021-36260) 
Merge branch 'land-16204' into upstream-master
 2022-02-25 16:37:08 -06:00
bwatters b69db83398 Land #16202, Add exploit for CVE-2022-21882 (Win32k LPE) 
Merge branch 'land-16202' into upstream-master
 2022-02-25 15:55:48 -06:00
h00die 2195edbb8d masterstudy privesc 2022-02-25 16:36:47 -05:00
Grant Willcox 217afa0f3b Land #16190, Axis Camera App RCE (No CVE) 2022-02-25 11:35:03 -06:00
Jake Baines d055a7d811 Altered some randomization, the json extracted by check, and fixed some wording 2022-02-24 18:48:21 -08:00
Grant Willcox a500435080 Land #16182, wordpress Secure Copy COntent Protection and Content Locking Unauthenticated SQLi (CVE-2021-24931) 2022-02-24 15:55:29 -06:00
Grant Willcox 9b53ed5f5c Add final randomization parts before landing 2022-02-24 15:43:21 -06:00
Grant Willcox 8d080135bb First round of review edits 2022-02-24 13:46:33 -06:00
Spencer McIntyre 544f8e161a Land #16164, Create Module For CVE-2021-42321 2022-02-24 11:36:12 -05:00
Jake Baines e1616a520f Fixed a couple of typos. Changed a CheckCode. Randomized the replaced tmp file name 2022-02-24 06:38:36 -08:00
Grant Willcox fddd3f15c2 Fix up code so that it will not block on attempting to delete the configuration on the folder, just in case the configuration doesn't exist in the first place. Instead print a warning and continue. 2022-02-22 17:52:29 -06:00
adfoster-r7 dc301a12bd Land #16156, Authenticated Microweber v1.2.10 Local File Inclusion 2022-02-22 18:20:59 +00:00
Jake Baines 4cd3563bc7 Initial commit of exploit for CVE-2021-36260 2022-02-19 13:13:24 -08:00