8f2525aba7
Land #20705 , adds modules for Flowise RCEs (CVE-2025-59528, CVE-2025-8943)
...
Add Flowise RCE exploits (CVE-2025-59528, CVE-2025-8943)
2025-11-21 21:20:22 +01:00
8702256ec2
Remove manual substitution and add BadChars for backslash and quote in flowise_js_rce
2025-11-21 19:34:33 +01:00
6215da4754
Apply review suggestions: use case/when, improve error handling, simplify code
2025-11-20 22:41:08 +01:00
8cd32c04ea
Update modules/exploits/multi/http/flowise_js_rce.rb
...
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com >
2025-11-20 21:55:43 +01:00
db082959f4
Update modules/exploits/multi/http/flowise_custommcp_rce.rb
...
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com >
2025-11-20 21:55:20 +01:00
bb728c44d7
Merge pull request #20560 from cdelafuente-r7/feat/mitre/T1021
...
Add T1021 "Remote Services" MITRE technique and sub-technique references
2025-11-20 11:19:31 -06:00
9624f75617
Simplify code formatting: shorten lines and improve readability
2025-11-19 23:05:01 +01:00
3102b31767
Move FETCH_COMMAND WGET to Unix/Linux target DefaultOptions only
2025-11-19 22:59:22 +01:00
44cf2e309f
Add Flowise RCE exploits (CVE-2025-59528, CVE-2025-8943) with shared mixin, documentation, and Docker Compose setup
2025-11-19 22:12:49 +01:00
df1c157471
Improve Flowise CustomMCP RCE exploit stability with Basic Auth support and HTTP response validation
2025-11-19 20:12:31 +01:00
f991bd58a4
Update modules/exploits/multi/http/flowise_custommcp_rce.rb
...
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com >
2025-11-19 19:57:48 +01:00
7ba143452c
Change checkcode
...
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com >
2025-11-19 19:57:03 +01:00
8178313a46
Delete SSL param
...
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com >
2025-11-19 19:56:43 +01:00
a187b9824e
Remove CVE ID from title
...
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com >
2025-11-19 19:56:23 +01:00
179a545312
Remove false positive references
2025-11-19 17:34:15 +01:00
b26c4f5c7b
Add Flowise Custom MCP RCE exploit (CVE-2025-8943)
2025-11-18 22:25:39 +01:00
88aadcc856
Add Flowise Custom MCP RCE exploit (CVE-2025-8943)
2025-11-18 22:03:59 +01:00
b481b9ef7b
gitea_git_fetch_rce aarch64 payload support
...
Add support for the Linux Dropper to use payloads targeted to ARCH_AARCH64
2025-10-26 19:19:11 -05:00
ff73363159
Update modules/exploits/multi/http/vvveb_auth_rce_cve_2025_8518.rb
...
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com >
2025-10-21 19:10:16 +03:00
45a87eaaca
small fixes
2025-10-20 09:41:48 -07:00
74c7f98ad9
code review changes from @msutovsky-r7
2025-10-20 09:00:24 -07:00
9ad83f6454
Add Vvveb CMS Authenticated RCE (CVE-2025-8518)
2025-10-18 17:12:05 -07:00
3b727fbaf2
Code review
2025-10-14 16:25:43 +02:00
0a755ea03a
Add references to MITRE ATT&CK T1021 - Remote Services
2025-10-14 16:25:30 +02:00
68c74e1bcf
remove unnecessary writabledir variable and check
2025-10-13 19:54:05 -04:00
f3219668e0
remove unnedcessary sudo
2025-10-13 17:48:02 -04:00
1e9dd04505
update periodic_script to new persistence mechanism
2025-10-13 17:48:00 -04:00
93b3ec34ac
exploit/multi/local/periodic_script_persistence: Unset DefaultTarget
2025-10-11 21:47:11 +11:00
9dc5696cc4
Update dash characters in module references
2025-10-07 14:03:32 -04:00
fd21209e4d
Add missing CVEs from VulnCheck
2025-10-07 13:59:13 -04:00
5af0dd3357
fix: WebLogic server detection regex
...
Some WebLogic server versions reports their version with a dash
between 'Server' and 'Version', like
'<p id="footerVersion">WebLogic Server-Version: 12.2.1.3.0</p>'
2025-09-23 09:58:50 +02:00
c718a965d7
Merge pull request #20508 from h00die/modern_persistence_cron
...
update cron to persistence mixin
2025-09-18 12:04:00 +02:00
cb2f3992de
chore: fix white-space issue
2025-09-18 11:48:17 +02:00
6ddaa076c1
Apply suggestions from code review
...
Co-authored-by: Diego Ledda <diego_ledda@rapid7.com >
2025-09-17 15:41:25 -04:00
32aa0d84e4
Land #20525 , moves obsidian plugin module to persistence category and mixin
...
update obsidian to persistence mixin
2025-09-16 14:58:15 +02:00
15cdbfac2e
update at persistence to use attck ref
2025-09-12 14:13:26 +02:00
fd1d70ef93
update at persistence to mixin
2025-09-12 14:13:26 +02:00
e79c10ac66
cron updated with mixin udpates
2025-09-09 11:55:19 -04:00
9e461ea875
switch to attck ref
2025-09-09 11:50:31 -04:00
785397bb0c
cron to multi with persistence mixin
2025-09-09 11:50:31 -04:00
7972017936
Merge pull request #20397 from vognik/CVE-2025-34300
...
Add Lighthouse Studio unauthenticated RCE (CVE-2025-34300)
2025-09-08 16:48:29 -07:00
5c1673bb20
update obsidian to persistence mixin
2025-09-06 15:05:21 -04:00
9283562ee5
Land #20493 , adds XWiki unauthenticated exploit module (CVE-2025-24893)
...
Add XWiki Unauthenticated RCE (CVE-2025-24893)
2025-09-01 13:37:31 +02:00
5d59fbd333
Land #19903 , adds module for periodic script persistence
...
Add OSX Periodic Script Peristence
2025-08-29 20:12:12 +02:00
2681e7cfed
Update docs
2025-08-29 17:53:07 +02:00
57f14339d9
Adds x64 to BSD target
2025-08-29 14:47:11 +02:00
071a4a34fc
fix tests
2025-08-29 08:41:43 +04:00
9b1d07dea8
removed unnecessary fail_with from check function
...
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com >
2025-08-29 06:55:59 +03:00
ae64436441
Fixes payload delivery, updates targets
2025-08-28 15:47:24 +02:00
bdad398541
Update Payload Generation
2025-08-25 15:49:30 +03:00
msutovsky-r7