cb6495e5bc
Merge pull request #20146 from Chocapikk/wp_suretriggers_auth_bypass
...
Add WP SureTriggers ≤1.0.78 admin-creation & RCE module (CVE-2025-3102)
2025-05-13 10:53:44 -05:00
5faa0a5b6b
Merge pull request #19777 from msutovsky-r7/linqpad_deserialization
...
Linqpad deserialization persistence
2025-05-13 08:03:30 -05:00
619a284408
Land #20156 , modules/post: Resolve RuboCop violations and typos
...
Land #20156 , modules/post: Resolve RuboCop violations and typos
2025-05-13 12:24:41 +02:00
81a405355c
modules/post: Resolve RuboCop violations and typos
2025-05-13 09:23:28 +10:00
0b0132c11a
Update web crawlers to support HTTP logging
2025-05-12 17:46:20 +01:00
9363dc4759
Merge pull request #20143 from bcoles/rubocop-modules-auxiliary-analyze
...
modules/auxiliary/analyze: Resolve RuboCop violations
2025-05-12 10:05:17 -04:00
cbb4934882
Land #20133 , resolves Rubocop violations for modules/auxiliary/cloud
...
modules/auxiliary/cloud: Resolve RuboCop violations
2025-05-12 12:30:14 +02:00
8c647cd1ad
Land #20118 , changes target option for smb_to_ldap module
...
Fix the smb_to_ldap module's missing target option
2025-05-12 09:56:06 +02:00
40002f87f4
Apply suggestion to store created WordPress admin creds
2025-05-11 17:53:06 +02:00
604672433a
Update modules/exploits/multi/http/wp_suretriggers_auth_bypass.rb
...
Co-authored-by: bcoles <bcoles@gmail.com >
2025-05-11 17:19:12 +02:00
ca6e413bea
Update modules/exploits/multi/http/wp_suretriggers_auth_bypass.rb
...
Co-authored-by: bcoles <bcoles@gmail.com >
2025-05-11 17:18:51 +02:00
04915c8c95
Update modules/exploits/multi/http/wp_suretriggers_auth_bypass.rb
...
Co-authored-by: bcoles <bcoles@gmail.com >
2025-05-11 17:18:37 +02:00
5c8013ad92
Update modules/exploits/multi/http/wp_suretriggers_auth_bypass.rb
...
Co-authored-by: bcoles <bcoles@gmail.com >
2025-05-11 17:18:29 +02:00
db75455d2b
Merge pull request #20128 from bcoles/rubocop-modules-auxiliary-bnat
...
modules/auxiliary/bnat: Resolve RuboCop violations
2025-05-09 10:02:49 -04:00
9ee2ec861f
Merge pull request #20120 from bcoles/rubocop-modules-post-windows
...
modules/post/windows: Resolve RuboCop violations
2025-05-09 09:33:17 -04:00
45336dd612
modules/post/windows: Resolve RuboCop violations
2025-05-09 10:51:17 +10:00
21a9fa848c
Add credits
2025-05-07 23:59:06 +02:00
879027bd5a
Update
2025-05-07 23:50:20 +02:00
2e9d7db238
Update modules/exploits/multi/http/wp_suretriggers_auth_bypass.rb
...
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com >
2025-05-07 23:34:58 +02:00
23809f0d08
Update modules/exploits/multi/http/wp_suretriggers_auth_bypass.rb
...
Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com >
2025-05-07 23:34:51 +02:00
4d0c7bb71a
Add WP SureTriggers ≤1.0.78 admin-creation & RCE module (CVE-2025-3102)
2025-05-07 17:45:30 +02:00
eb88eb5bc1
Merge pull request #20119 from bcoles/rubocop-modules-post-linux
...
modules/post/linux: Resolve RuboCop violations
2025-05-07 13:56:34 +01:00
126682d72e
modules/auxiliary/analyze: Resolve RuboCop violations
2025-05-07 21:38:27 +10:00
5127207dc1
Land #20134 , modules/auxiliary/parser: Resolve RuboCop violations
2025-05-07 10:24:59 +01:00
49c041f291
Land #20137 , modules/exploits/unix/dhcp: Resolve RuboCop violations
2025-05-07 09:55:41 +01:00
b52340440d
Merge pull request #20135 from bcoles/rubocop-modules-auxiliary-voip
...
modules/auxiliary/voip: Resolve RuboCop violations
2025-05-06 13:02:24 -04:00
5c4108d7c5
modules/auxiliary/voip: Resolve RuboCop violations
2025-05-07 00:47:05 +10:00
ba9ecec381
Merge pull request #19952 from jheysel-r7/get_naa_creds_via_relay
...
Add SMB to HTTP relay support for get_naa_creds
2025-05-06 10:43:10 -04:00
4ed90bb73a
Merge pull request #20136 from bcoles/rubocop-modules-exploits-unix-fileformat
...
modules/exploits/unix/fileformat: Resolve RuboCop violations
2025-05-06 10:22:56 -04:00
37c52bb4c7
modules/exploits/unix/dhcp: Resolve RuboCop violations
2025-05-07 00:22:34 +10:00
c431ae830c
Land #20130 , resolves Rubocop violations in auxiliary/client
...
modules/auxiliary/client: Resolve RuboCop violations
2025-05-06 15:36:06 +02:00
e5138fcd01
modules/exploits/unix/fileformat: Resolve RuboCop violations
2025-05-06 23:30:37 +10:00
6db17f03be
modules/auxiliary/parser: Resolve RuboCop violations
2025-05-06 22:56:58 +10:00
fd8343a706
modules/auxiliary/cloud: Resolve RuboCop violations
2025-05-06 22:49:03 +10:00
24a86cd74a
Refactoring based on comments
2025-05-06 08:43:57 +02:00
2635b8fab4
Land #20124 , adds auxiliary module for path traversal in Sante PACS Server
...
Sante PACS Server Path Traversal (CVE-2025-2264) Module
2025-05-06 08:31:36 +02:00
0cbe2cb6b6
Land #20129 , resolves Rubocop violations in modules/exploits/unix/x11
...
modules/exploits/unix/x11: Resolve RuboCop violations
2025-05-06 08:28:51 +02:00
0c2ba466c6
Update pacsserver_traversal.rb
2025-05-06 04:02:33 +01:00
355dfdda1f
Merge pull request #20122 from bcoles/rubocop-modules-auxiliary-vsploit
...
modules/auxiliary/vsploit: Resolve RuboCop violations
2025-05-05 22:56:29 +01:00
ae412f0154
Promote the DOMAIN option
...
LDAP now uses the LDAPDomain option but this module intends to use it
for both LDAP and HTTP so deregister LDAPDomain, and reregister DOMAIN
as a non-advanced, required option.
2025-05-05 11:16:35 -04:00
d95146e315
Use retry to speed things up but also wait longer
2025-05-05 11:06:09 -04:00
e4d03ad3e0
Land #20125 , removes quotes around constant
...
Modules: Remove quotes surrounding quoted license constant
2025-05-05 08:49:15 +02:00
f73e982d23
modules/auxiliary/client: Resolve RuboCop violations
2025-05-04 23:26:52 +10:00
127e4c553f
modules/exploits/unix/x11: Resolve RuboCop violations
2025-05-04 16:24:31 +10:00
0589879271
modules/auxiliary/bnat: Resolve RuboCop violations
2025-05-04 12:09:08 +10:00
832c725b93
Update pacsserver_traversal.rb
2025-05-03 20:36:10 +01:00
a99333a9ca
Modules: Remove quotes surrounding quoted license constant
2025-05-03 12:57:40 +10:00
60387de6c9
cleanup
...
cleanup
2025-05-02 23:28:29 +01:00
514f51d7dc
CVE-2025-2264
...
CVE-2025-2264
2025-05-02 22:56:30 +01:00
90417306bb
Merge branch 'master' into add-opnsense-login-scanner
2025-05-02 07:20:01 -07:00
Brendan