 jheysel-r7
|
dd3093c806
|
Merge pull request #20203 from bcoles/rubocop-modules-exploits-linux-upnp
modules/exploits/linux/upnp: Resolve RuboCop violations
|
2025-05-20 10:46:46 -07:00 |
|
|
jheysel-r7
|
2810fdaa4a
|
Merge pull request #20165 from bcoles/rubocop-modules-exploits-linux-browser
modules/exploits/linux/browser: Resolve RuboCop violations
|
2025-05-20 09:19:34 -07:00 |
|
|
msutovsky-r7
|
561eef98c1
|
Land #20188, adds module for CVE-2024-7399 Samsung MagicINFO 9 Server
Samsung MagicINFO 9 Server RCE (CVE-2024-7399) Module
|
2025-05-19 09:49:09 +02:00 |
|
|
bcoles
|
d567248b16
|
modules/exploits/linux/upnp: Resolve RuboCop violations
|
2025-05-18 16:29:41 +10:00 |
|
|
jheysel-r7
|
71565c6cdc
|
Update modules/exploits/linux/browser/adobe_flashplayer_aslaunch.rb
Co-authored-by: Simon Janusz <85949464+sjanusz-r7@users.noreply.github.com>
|
2025-05-16 15:07:08 -07:00 |
|
|
Diego Ledda
|
c68b10b640
|
Merge pull request #20164 from bcoles/rubocop-modules-exploits-linux-games
modules/exploits/linux/games: Resolve RuboCop violations
|
2025-05-16 10:27:24 +02:00 |
|
|
h4x-x0r
|
647545c5ef
|
Update magicinfo_traversal.rb
|
2025-05-15 22:13:08 +01:00 |
|
|
h4x-x0r
|
bd181f8a13
|
Update magicinfo_traversal.rb
|
2025-05-15 22:11:23 +01:00 |
|
|
h4x-x0r
|
6d2a1e529e
|
Update magicinfo_traversal.rb
|
2025-05-15 20:11:59 +01:00 |
|
|
Brendan
|
76471731f9
|
Merge pull request #20112 from cdelafuente-r7/mod/ivanti/rce/cve_2025_22457
Ivanti Connect Secure Unauthenticated RCE via Stack-based Buffer Overflow CVE-2025-22457
|
2025-05-15 11:44:49 -05:00 |
|
|
bcoles
|
42a383e4c7
|
modules/exploits/linux/games: Resolve RuboCop violations
|
2025-05-16 00:09:30 +10:00 |
|
|
adfoster-r7
|
b67a0f7851
|
Merge pull request #20194 from adfoster-r7/ensure-thinkphp-rce-runs-on-metasploit-pro
Ensure thinkphp rce runs on metasploit pro
|
2025-05-15 14:14:33 +01:00 |
|
|
adfoster-r7
|
20cda86177
|
Ensure thinkphp rce runs on metasploit pro
|
2025-05-15 12:55:12 +01:00 |
|
|
Diego Ledda
|
d12b6fe3ba
|
Merge pull request #20163 from bcoles/rubocop-modules-exploits-linux-antivirus
modules/exploits/linux/antivirus: Resolve RuboCop violations
|
2025-05-15 13:11:08 +02:00 |
|
|
msutovsky-r7
|
c598d8b4b0
|
Land #20020, adds module for Nextcloud Workflow Remote Code Execution
Add exploit module for the nextcloud workflow vulnerability CVE-2023-26482
|
2025-05-15 12:31:51 +02:00 |
|
|
Christophe De La Fuente
|
365caab8fc
|
Update the error message in case of Broken pipe error and update the documentation
|
2025-05-15 12:10:53 +02:00 |
|
|
whotwagner
|
97ecaa7c30
|
Refactoring indentations
|
2025-05-15 09:16:26 +00:00 |
|
|
whotwagner
|
61dc956bb3
|
Update modules/exploits/unix/webapp/nextcloud_workflows_rce.rb
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com>
|
2025-05-15 11:15:05 +02:00 |
|
|
whotwagner
|
72c9d5b038
|
Update modules/exploits/unix/webapp/nextcloud_workflows_rce.rb
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com>
|
2025-05-15 11:14:25 +02:00 |
|
|
whotwagner
|
9b619cbc58
|
Update modules/exploits/unix/webapp/nextcloud_workflows_rce.rb
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com>
|
2025-05-15 11:12:05 +02:00 |
|
|
whotwagner
|
0e0b84d252
|
Error message if nextcloud-upload fails
|
2025-05-14 13:53:59 +00:00 |
|
|
msutovsky-r7
|
fe5f56cac0
|
Land #20159, adds module for privilege escalation in Wordpress (CVE-2025-2563)
Add Unauthenticated privesc for WP User Registration & Membership plugin (CVE-2025-2563)
|
2025-05-14 15:33:30 +02:00 |
|
|
msutovsky-r7
|
7d8d0230cb
|
Land #20026, adds module for CVE-2024-57487
New Exploit Module & Documentation for CVE-2024-57487
|
2025-05-14 08:00:20 +02:00 |
|
|
Chocapikk
|
88ffe892e0
|
Remove lower bound
|
2025-05-13 21:48:49 +02:00 |
|
|
Valentin Lobstein
|
7f98f2fad7
|
Update modules/exploits/multi/http/wp_user_registration_membership_escalation.rb
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com>
|
2025-05-13 21:42:10 +02:00 |
|
|
Chocapikk
|
c415675c39
|
Reduce wordpress_version calls
|
2025-05-13 21:42:10 +02:00 |
|
|
Chocapikk
|
a2ff0c1f92
|
Apply suggestion to store created WordPress admin creds
|
2025-05-13 21:42:09 +02:00 |
|
|
Chocapikk
|
e335841bb0
|
Add Unauthenticated privesc for WP User Registration & Membership plugin (CVE-2025-2563)
|
2025-05-13 21:42:09 +02:00 |
|
|
aaryan-11-x
|
1e523e4e0b
|
MsfTidy Fixes again
|
2025-05-13 23:54:36 +05:30 |
|
|
Brendan
|
cb6495e5bc
|
Merge pull request #20146 from Chocapikk/wp_suretriggers_auth_bypass
Add WP SureTriggers ≤1.0.78 admin-creation & RCE module (CVE-2025-3102)
|
2025-05-13 10:53:44 -05:00 |
|
|
Christophe De La Fuente
|
3d121839c8
|
Fix from code review #2
|
2025-05-13 17:17:41 +02:00 |
|
|
whotwagner
|
09aaf5865c
|
Rearranged code and removed wait_for_payload_session
|
2025-05-13 13:48:56 +00:00 |
|
|
whotwagner
|
ad9651db5d
|
Update modules/exploits/unix/webapp/nextcloud_workflows_rce.rb
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com>
|
2025-05-13 13:48:56 +00:00 |
|
|
whotwagner
|
9b0aee41f4
|
Update modules/exploits/unix/webapp/nextcloud_workflows_rce.rb
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com>
|
2025-05-13 13:48:56 +00:00 |
|
|
whotwagner
|
83786100b3
|
Update modules/exploits/unix/webapp/nextcloud_workflows_rce.rb
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com>
|
2025-05-13 13:48:56 +00:00 |
|
|
whotwagner
|
2ba8e1c255
|
Update modules/exploits/unix/webapp/nextcloud_workflows_rce.rb
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com>
|
2025-05-13 13:48:56 +00:00 |
|
|
whotwagner
|
6aa2170fbc
|
Update modules/exploits/unix/webapp/nextcloud_workflows_rce.rb
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com>
|
2025-05-13 13:48:56 +00:00 |
|
|
whotwagner
|
c9521a0eab
|
Removed thread from exploit_nextcloud_workflows
|
2025-05-13 13:48:56 +00:00 |
|
|
whotwagner
|
4a5d556671
|
Removed linux_dropper from exploit_nextcloud_workflows
|
2025-05-13 13:48:56 +00:00 |
|
|
whotwagner
|
d0a3eb4332
|
Fixed refacturing-bugs
|
2025-05-13 13:48:56 +00:00 |
|
|
whotwagner
|
92e30b8391
|
Update modules/exploits/unix/webapp/nextcloud_workflows_rce.rb
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com>
|
2025-05-13 13:48:56 +00:00 |
|
|
whotwagner
|
5a75e0bb2d
|
Reformatting res.code for login-failure
|
2025-05-13 13:48:56 +00:00 |
|
|
whotwagner
|
fde19395ce
|
Update modules/exploits/unix/webapp/nextcloud_workflows_rce.rb
Co-authored-by: Diego Ledda <diego_ledda@rapid7.com>
|
2025-05-13 13:48:56 +00:00 |
|
|
whotwagner
|
b1e3b0708e
|
Fixed get_html_document in parse_tokens
|
2025-05-13 13:48:56 +00:00 |
|
|
whotwagner
|
2245516a21
|
Update modules/exploits/unix/webapp/nextcloud_workflows_rce.rb
Co-authored-by: msutovsky-r7 <martin_sutovsky@rapid7.com>
|
2025-05-13 13:48:56 +00:00 |
|
|
whotwagner
|
14daed78b2
|
Update modules/exploits/unix/webapp/nextcloud_workflows_rce.rb
Co-authored-by: Diego Ledda <diego_ledda@rapid7.com>
|
2025-05-13 13:48:56 +00:00 |
|
|
whotwagner
|
4a08b93542
|
Update modules/exploits/unix/webapp/nextcloud_workflows_rce.rb
Co-authored-by: Diego Ledda <diego_ledda@rapid7.com>
|
2025-05-13 13:48:56 +00:00 |
|
|
whotwagner
|
5f42b3439e
|
Update modules/exploits/unix/webapp/nextcloud_workflows_rce.rb
Co-authored-by: Diego Ledda <diego_ledda@rapid7.com>
|
2025-05-13 13:48:56 +00:00 |
|
|
whotwagner
|
e6781e60f0
|
Changed ranking to Excellent
|
2025-05-13 13:48:36 +00:00 |
|
|
jenkins-metasploit
|
e819362398
|
automatic module_metadata_base.json update
|
2025-05-13 13:45:30 +00:00 |
|