b979217227
Land #18239 , Add version numbers to apache nifi rce module
2023-07-31 22:28:52 +01:00
b2869a5550
version numbers for apache nifi rce
2023-07-31 17:16:26 -04:00
5d9a65eeb0
version numbers for apache nifi rce
2023-07-31 16:14:57 -04:00
a7402fb5f1
Land #18205 , Add rudder-server SQLI RCE (CVE-2023-30625) exploit
2023-07-31 15:15:07 +02:00
0996938113
Add note for Windows compatibility
2023-07-28 17:06:38 +02:00
40ef9d496a
add docs for wd_mycloud_unauthenticated_cmd_injection
2023-07-28 10:16:50 +03:00
6b11439fa1
Remove basic auth and API_USER/PASS options
2023-07-28 00:44:44 +02:00
103f9a3f60
Update install instructions and scenario
2023-07-26 18:08:54 +02:00
00f2fe03be
Update documentation/modules/exploit/multi/http/rudder_server_sqli_rce.md
...
Co-authored-by: jheysel-r7 <Jack_Heysel@rapid7.com >
2023-07-26 16:26:17 +02:00
fa3638b10e
Update documentation/modules/exploit/multi/http/rudder_server_sqli_rce.md
...
Co-authored-by: jheysel-r7 <Jack_Heysel@rapid7.com >
2023-07-26 16:26:17 +02:00
5018c0cdc5
Add documentation
2023-07-26 16:26:17 +02:00
c7f8ce5acd
Land #18199 , VMWare vRealize Network Insight pre-authenticated RCE CVE-2023-20887
2023-07-25 17:45:30 +02:00
52b417b1af
Update documentation/modules/exploit/multi/http/wp_plugin_fma_shortcode_unauth_rce.md
2023-07-25 14:06:45 +01:00
c1d84e950c
Update based on bwatters-r7 comments
2023-07-25 14:06:44 +01:00
a3daab88e6
Added documentation and updated exploitable plugins list
2023-07-25 14:06:42 +01:00
586971c1fd
Fix incomplete copy pasta in docs
2023-07-21 14:38:07 -04:00
1af22cfd22
Land #18096 , Add initial proxies datastore support for kerberos workflows
2023-07-21 11:37:04 +01:00
08a2a293a9
Add proxies datastore support to kerberos
2023-07-21 11:19:50 +01:00
ee26e7f926
Rubocop fixes
2023-07-20 16:40:28 -04:00
421b06119f
Update docs
2023-07-20 14:55:27 -04:00
d03157fcc1
Installation instructions
2023-07-19 14:23:17 -04:00
530934f78a
review comments
2023-07-19 11:42:47 -04:00
01434662fa
Land #18182 , Add module and doc for cve-2023-26876
...
Merge branch 'land-18182' into upstream-master
2023-07-18 20:10:47 -05:00
297c484a1c
Land #18173 , Add Openfire Authentication Bypass RCE [CVE-2023-32315]
...
Merge branch 'land-18173' into upstream-master
2023-07-18 18:13:20 -05:00
a0f04a7018
Land #17681 , Add datastore option for Jenkins home directory
2023-07-18 14:17:15 +01:00
ddb1cc0497
Fix all warns from msftidy rename the docs with the correct name
2023-07-17 23:57:39 +00:00
1e75365f8e
Update with all changes proposed by smcintyre-r7
2023-07-13 23:38:55 +00:00
3f0d0ee34c
Merge branch 'rapid7:master' into piwigo_cve_26876
2023-07-13 09:59:43 -03:00
fb8947aa49
change the comment at mysql image
2023-07-13 12:58:30 +00:00
5b638bb37b
add module and doc for cve-2023-26876
2023-07-12 15:45:40 -03:00
10c1b79c37
Land #17861 , pfSense Config Data RCE as root
...
This module exploits a vulnerability in pfSense version
2.6.0 and below which allows for authenticated users to
execute arbitrary operating systems commands as root.
2023-07-12 14:32:06 -04:00
34f25fbb65
pfSense Config Data Remote Command Execution as root (CVE-2023-27253) Module
2023-07-12 13:27:02 -04:00
5cb5c18550
Land #18170 , Add module for SmarterMail Build 6985 - dotNET Deserialization Remote Code Execution (CVE-2019-7214)
2023-07-10 23:56:09 +01:00
420147d02e
Land #18164 , WooCommerce Payments auxiliary module
...
This module exploits an auth bypass and priv esc vulnerability
in order to create an admin wordpress user.
2023-07-10 17:19:56 -04:00
5261d842bc
Update documentation/modules/auxiliary/scanner/http/wp_woocommerce_payments_add_user.md
2023-07-10 14:18:50 -04:00
a3ea55f2a6
added documentation
2023-07-08 12:30:54 +00:00
1706812099
Implemented requested changes
...
* Small fixes in Description - removed backticks
* Implemented Windows Command target
* Removed PowerShell Stager, in Targets and in exploit method
* Implemented Rex::Socket::Tcp in place of TCPSocket
* Updated TARGET section in documentation
* Added TARGET 0 - Windows Command scenario
* Removed PowerShell Stager scenario
* Replaced 'Using configured payload' lines to use Windows Command payload
for the 2nd, 3rd, and 4th scenarios. Did not rerun the scenarios, however
2023-07-07 04:14:20 -04:00
24ef4e1b90
Update documentation/modules/exploit/windows/http/smartermail_rce.md
...
Co-authored-by: adfoster-r7 <60357436+adfoster-r7@users.noreply.github.com >
2023-07-06 18:49:49 +03:00
ad0d3e79a9
SmarterMail RCE module and documentation
2023-07-06 08:00:28 -04:00
3abcb3ebaa
Explain ADMINID field more
2023-07-05 13:10:41 -05:00
ce19ce5b72
Apply fixes from review
2023-07-05 12:24:51 -05:00
f1b5cd46f4
Apache RocketMQ update config RCE
2023-07-05 12:38:51 -04:00
f77e7db637
woocommerce payments auth bypass
2023-07-04 13:09:27 -04:00
375a315b3d
woocommerce payments auth bypass
2023-07-04 13:05:07 -04:00
67f7a33d77
Land #18114 , .NET assembly execution enhancements
...
Allow .NET assembly execution within the meterpreter process
2023-06-27 09:32:43 -04:00
1e7af0457a
Update jenkins_gather.md
...
Change Windows default to C:\ProgramData\Jenkins\.jenkins.
2023-06-26 21:29:27 +02:00
bf1e6bddd1
Land #18134 , Add exploit for CVE-2023-25194
...
This exploits a Java deserialization vulnerbility
in Apache Druid which arises from a JNDI injection
within Apache Kafka clients.
2023-06-23 16:52:04 -04:00
d68eb84334
Land #18065 , Updates jenkins_gather module to work with newer version of Jenkins
2023-06-23 10:44:06 +01:00
9176d0d3e0
Updates jenkins_gather to work with newer version of Jenkins
2023-06-23 10:02:03 +01:00
b026b38851
Apply suggestions from code review
...
Co-authored-by: jheysel-r7 <Jack_Heysel@rapid7.com >
2023-06-23 09:36:50 +02:00
adfoster-r7