metasploit-gs

Author	SHA1	Message	Date
msutovsky-r7	cb9f5e8743	Update modules/exploits/multi/http/wp_tatsu_rce.rb	2025-06-12 11:35:01 +02:00
Martin Sutovsky	0b2e4bc337	Adds module for CVE-2021-25094	2025-06-11 19:03:00 +02:00
msutovsky-r7	f20e72b6c8	Land #20256 , adds RCE module for Remote For Mac 2025.7 Add Remote for Mac 2025.6 unauthenticated RCE module	2025-06-08 16:03:58 +02:00
Martin Sutovsky	6105b99465	Fixed response parsing	2025-06-08 15:36:37 +02:00
Martin Sutovsky	16541d9f64	Fixes notes	2025-06-08 12:17:58 +02:00
Martin Sutovsky	c9713a7184	Code reformat, rubocoping	2025-06-08 12:06:33 +02:00
root	8b1113d225	Update: Improved RCE detection logic and payload options for Remote for Mac 2025.6	2025-06-07 17:52:45 +01:00
Brendan	19e8e6cdf8	Merge pull request #20187 from Chocapikk/wp_ottokit Add CVE-2025-27007 in existing `exploit(multi/http/wp_suretriggers_auth_bypass)` module	2025-06-05 11:03:00 -05:00
Brendan	8e4890fbc0	Merge pull request #20286 from msutovsky-r7/fix/add_priority_udev_persistence Adds different udev rule naming for udev persistence	2025-06-04 09:08:49 -05:00
Brendan	26156dfac2	Merge pull request #20265 from remmons-r7/cve_2025_4427_4428 Exploit module for CVE-2025-4427/CVE-2025-4428 - Ivanti EPMM (AKA MobileIron Core) Authentication Bypass to EL Injection	2025-06-04 09:05:04 -05:00
Martin Sutovsky	f7fd84b82d	Adds different approach to udev rule naming	2025-06-04 15:24:43 +02:00
msutovsky-r7	5fbf46ba7f	Land #19472 , adds exploits/linux/local/udev_persistence Add modules/exploits/linux/local/udev_persistence.rb	2025-06-04 13:21:04 +02:00
Martin Sutovsky	6806385292	Update	2025-06-04 12:56:51 +02:00
Martin Sutovsky	0d31440722	Update the module	2025-06-04 12:19:36 +02:00
bwatters-r7	17bf77fca1	Switch to in-memory python over fetch payloads	2025-06-03 13:39:01 -05:00
Julien Voisin	486390d881	Update ms10_061_spoolss.rb	2025-06-02 20:45:44 +02:00
Julien Voisin	08c5654ef2	Update modules/exploits/freebsd/samba/trans2open.rb Co-authored-by: cgranleese-r7 <69522014+cgranleese-r7@users.noreply.github.com>	2025-06-02 16:05:12 +02:00
Julien Voisin	7738d146b9	Update modules/exploits/solaris/samba/trans2open.rb Co-authored-by: cgranleese-r7 <69522014+cgranleese-r7@users.noreply.github.com>	2025-06-02 16:05:06 +02:00
Julien Voisin	54c5e7df18	Update modules/exploits/windows/smb/ms10_061_spoolss.rb Co-authored-by: cgranleese-r7 <69522014+cgranleese-r7@users.noreply.github.com>	2025-06-02 16:04:59 +02:00
remmons-r7	c2556382f1	Reword "pt" to "part" in the Metasploit module	2025-05-30 10:52:28 -05:00
root	7aa1d17124	rex version fix	2025-05-30 16:46:08 +01:00
root	11a51bf489	rex version payloads	2025-05-30 16:43:40 +01:00
Julien Voisin	0106a4440e	Merge branch 'master' into aka_equationgroup	2025-05-30 17:17:54 +02:00
root	dbfaece2a2	badchars fix + extend payloads	2025-05-30 14:19:56 +01:00
root	ca8a3c586a	added 2025.7 support	2025-05-30 14:12:52 +01:00
root	69870ee703	Update Remote for Mac 2025.6 RCE module with improvements and fixes	2025-05-30 11:21:07 +01:00
adfoster-r7	f1d7f2ed22	Revert "Ensure thinkphp rce runs on metasploit pro"	2025-05-29 10:54:51 +01:00
root	cf3e1764c5	Finalize Remote for Mac 2025.6 RCE module (no CVE yet)	2025-05-29 04:29:15 +01:00
remmons-r7	704e498f39	Add ivanti_epmm_rce_cve_2025_4427_4428.rb Add a module for CVE-2025-4427 and CVE-2025-4428, unauthenticated RCE chain in Ivanti EPMM.	2025-05-28 17:32:56 -05:00
Diego Ledda	ce6e0d1164	Merge pull request #20096 from h00die-gr3y/CVE-2025-30406 Gladinet CentreStack/Triofox ASP.NET ViewState Deserialization [CVE-2025-30406]	2025-05-28 13:46:13 +02:00
root	38f0178ad8	Update exploit: fix PacketStorm reference, add CVE placeholder	2025-05-28 09:27:28 +01:00
root	1860c16aa8	Add Remote for Mac 2025.6 unauthenticated RCE module	2025-05-28 07:42:34 +01:00
Chocapikk	2e158d2d1a	Fix User-Agent issue	2025-05-22 23:47:20 +02:00
cgranleese-r7	f6faa5598b	Fixes modules to now correctly use a hash with report note	2025-05-22 10:59:50 +01:00
jheysel-r7	73d1350842	Merge pull request #20215 from bcoles/rubocop-Lint/Syntax Modules: Resolve Rubocop Lint/Syntax violations	2025-05-21 14:26:49 -07:00
Chocapikk	a09a0a25eb	Fix `finalize_admin`	2025-05-21 20:18:43 +02:00
Chocapikk	0c556ff139	Fix	2025-05-21 20:10:02 +02:00
Chocapikk	38b7cfd753	Refactor	2025-05-21 19:46:47 +02:00
jheysel-r7	ca40f6ecbc	Merge pull request #20214 from Chocapikk/invision_customcss_rce Add Invision Community 5.0.6 customCss RCE (CVE-2025-47916)	2025-05-21 09:29:14 -07:00
jheysel-r7	0600de2d90	Merge pull request #20177 from msutovsky-r7/clinic_management_system_sqli2rce Clinic Patient's Management System SQLi (CVE-2025-3096)	2025-05-21 08:42:16 -07:00
bcoles	943c94774a	Modules: Resolve Rubocop Lint/Syntax violations	2025-05-21 18:27:24 +10:00
Martin Sutovsky	1d6ec73a3c	Fixes file cleanup	2025-05-21 09:05:41 +02:00
Valentin Lobstein	4d3e786a6e	Update invision_customcss_rce.rb	2025-05-21 08:39:52 +02:00
Martin Sutovsky	86335ba84c	Fixes URI path	2025-05-21 07:33:00 +02:00
Chocapikk	14501a6084	Add lower bound version	2025-05-20 23:00:08 +02:00
Valentin Lobstein	5a436d27b9	Update modules/exploits/multi/http/invision_customcss_rce.rb Co-authored-by: Julien Voisin <jvoisin@users.noreply.github.com>	2025-05-20 21:28:30 +02:00
jheysel-r7	18dc39e9a5	Merge pull request #20213 from bcoles/modules-exploits-linux-pop3 modules/exploits/linux/pop3: Resolve RuboCop violations	2025-05-20 11:22:05 -07:00
jheysel-r7	3a0e294f50	Merge pull request #20212 from bcoles/modules-exploits-linux-redis modules/exploits/linux/redis: Resolve RuboCop violations	2025-05-20 11:21:35 -07:00
jheysel-r7	426aaa80fb	Merge pull request #20211 from bcoles/modules-exploits-linux-ids modules/exploits/linux/ids: Resolve RuboCop violations	2025-05-20 10:57:03 -07:00
jheysel-r7	b99e161003	Merge pull request #20210 from bcoles/modules-exploits-linux-imap modules/exploits/linux/imap: Resolve RuboCop violations	2025-05-20 10:50:58 -07:00

1 2 3 4 5 ...

19606 Commits