e6354f3452
Revert "Report more vulns when importing acunetix XML file"
2026-02-20 17:32:42 +00:00
ea51c45bf5
Land #20859 , breaks up utils/exe.rb into separated files
...
utils/exe.rb break-up
2026-02-20 12:41:15 +01:00
322df15b65
Bump version of framework to 6.4.116
2026-02-19 16:10:44 +00:00
81e54d42e4
Merge pull request #20856 from msutovsky-r7/exploit/cve-2026-21858
...
Adds module for Ni8mare (CVE-2026-21858)
2026-02-16 10:06:14 -05:00
7251d88419
Merge pull request #20969 from sjanusz-r7/report-more-acunetix-vulns
...
Report more vulns when importing acunetix XML file
2026-02-13 15:26:40 +00:00
8b58c62375
Merge pull request #20807 from webbsssss/fix/acunetix-vulnerability-import
...
Fix #17932 : Allow Acunetix vulnerabilities to be imported without complete web_page data
2026-02-13 15:25:54 +00:00
f741d568b4
Report more vulns when importing acunetix XML file
2026-02-13 14:55:13 +00:00
473e801148
Bump version of framework to 6.4.115
2026-02-13 14:27:51 +00:00
7e03a89304
Land #20798 , adds module for FreeBSD rtsold/rtsol command injection (CVE-2025-14558)
...
Add module for rtsold/rtsol DNSSL Command Injection (CVE-2025-14558)
2026-02-13 10:57:03 +01:00
4adf87ac18
Merge pull request #20929 from jheysel-r7/feat/mod/cve-2026-24061
...
GNU Inetutils Telnet Auth Bypass (CVE-2026-24061)
2026-02-11 11:12:29 -08:00
6d2ec5d89d
Ensure temp rhost files are cleaned up
2026-02-11 13:48:11 +00:00
c3c8aad4e6
Merge pull request #20599 from BenoitDePaoli/fix/userpass_password_persistence
...
fix(console): prevent RHOSTS temp file deletion after services -R
2026-02-11 13:45:55 +00:00
877d2d81d0
Merge pull request #20953 from zeroSteiner/fix/ssh-socket-channels/1
...
Fix SSH Socket Channels
2026-02-11 11:54:50 +00:00
00abe36f9a
Bump version of framework to 6.4.114
2026-02-11 09:32:52 +00:00
9512135c84
Merge branch 'master' into rtsold_dnssl_cmdinject
2026-02-10 16:19:53 -05:00
d569fc552d
Apply the #shutdown to the correct socket
2026-02-10 16:12:11 -05:00
0f3cd49118
Fix TCP server channel parameters
2026-02-10 15:04:51 -05:00
53b4f2921d
chore: lint
2026-02-10 14:58:33 -05:00
b59dfdf352
Refactor rtsold: move RA methods to ipv6.rb
...
. Move packet building to library, fix link-local address usage, and add CheckCode message.
2026-02-10 14:41:12 -05:00
fc0257bcad
Adds default fmt argument to to_executable in msf/core/exploit/exe, comments refactor, adds to_win32pe_dll
2026-02-10 11:52:43 +01:00
436488d533
Removes format from to_executable_windows
2026-02-10 11:05:53 +01:00
d748cf9775
Rolling back to_executable_windows
2026-02-10 11:04:06 +01:00
c02ac3920d
Reapply "Vulnerability Report Enhancement"
...
This reverts commit c35537252f
2026-02-10 09:46:37 +00:00
3f45447399
Fixes OSX placeholder
2026-02-10 09:04:42 +01:00
64b3babf1c
Fixes JSP and WAR formats, code reformat
2026-02-10 08:48:57 +01:00
cfb8483188
Merge pull request #20775 from rmtsixq/fix/postgresql-15-schema-permissions
...
Fix PostgreSQL 15+ public schema permission issue
2026-02-09 20:33:10 +00:00
f41eda1128
Add GHSA and OSV reference type support
...
Add support for GHSA (GitHub Security Advisories) and OSV (Open Source
Vulnerabilities) as structured reference types in Metasploit modules.
Convert 49 hardcoded GHSA URLs to structured ['GHSA', 'GHSA-xxxx'] format
across existing modules, and add support for repository-specific GHSA
references with an optional third parameter ['GHSA', 'GHSA-xxxx', 'repo'].
Update reference validation, module validator, and info_fixups to handle
the new reference types correctly.
2026-02-09 15:17:23 +01:00
951c412654
Replaces regex =~ with index
2026-02-09 14:15:14 +01:00
8af6bae699
Merge pull request #20906 from rudraditya21/fix/ssh-cmd-exec-trailing-newlines
...
Fix SSH command shells dying on cmd_exec with trailing newline
2026-02-09 12:25:11 +00:00
0871fb1827
Fixes argument positions for war/jsp formats
2026-02-07 13:18:02 +01:00
e8268bdcbc
fix: add OSX::App inclusion in EXE module
2026-02-06 12:51:14 -05:00
daff3638e0
fix: including all the mixins
2026-02-06 10:44:03 -05:00
e7d2c719f8
fix: refactor boiler plate utils/exe break-up
2026-02-06 10:37:05 -05:00
540ce8127b
Change Ruby Function to create temp file
2026-02-06 15:35:11 +01:00
2289e889be
Merge pull request #20903 from jheysel-r7/fix/enum_user_directories
...
Fix enum_user_directories Duplicate Directories
2026-02-06 14:34:40 +00:00
189f3744c7
fix: removed function calling singleton windows
2026-02-06 09:31:21 -05:00
d6044ece89
fix: finalizing boilerplates utils/exe break-up
2026-02-06 08:58:49 -05:00
77279da46f
Fixes typo
2026-02-06 14:36:32 +01:00
4e6e666996
fix: boilerplate bsd and solaris utils/exe breakup
2026-02-06 08:18:04 -05:00
db064a4f49
Merge pull request #20895 from rudraditya21/fixed/ldap-entry-cache-misses
...
added: negative caching for LDAP lookup misses
2026-02-06 13:15:57 +00:00
0113f4984c
Adds base for osx
2026-02-06 12:33:26 +01:00
c6023e2ea8
revert exe common
2026-02-06 12:02:07 +01:00
fb0dcc5ccf
Fixes module name for x64
2026-02-06 12:01:58 +01:00
70b33eb458
Apply suggestion from @dledda-r7
2026-02-06 12:01:03 +01:00
039ade75aa
x64 windows boilerplate utils/exe breakup
2026-02-06 11:59:34 +01:00
e60d9a205f
fix: x86 windows boilerplate
2026-02-06 11:54:39 +01:00
4ec3bff82f
fix: x86 windows with boilerplate utils/exe breakup
2026-02-06 11:53:33 +01:00
1b6485f2eb
Restores x86
2026-02-06 11:49:14 +01:00
95ff1fb6e8
Fixes bugs
2026-02-06 11:49:13 +01:00
d64f0efcf5
Fixes set_template_default_winpe_dll
2026-02-06 11:49:13 +01:00
Simon Janusz