adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
09debbb93f9a62a11b7a8d8cdabfe5d476b4da72
metasploit-gs/modules/exploits
T
History
Jack Heysel b9b638dd83 Land #19196, Cacti import package RCE 
This exploit module leverages an arbitrary file write vulnerability
(CVE-2024-25641) in Cacti versions prior to 1.2.27 to achieve RCE. It
abuses the Import Packages feature to upload a specially crafted package
that embeds a PHP file.
2024-06-12 15:43:46 -07:00
..
aix
Add invscout RPM Privilege Escalation
2023-05-17 20:17:55 +10:00
android
tests passing
2023-04-04 10:24:09 +01:00
apple_ios
Add additional reliability and stability notes to modules
2024-01-22 23:29:57 +00:00
bsd/finger
bsdi/softcart
dialup/multi/login
firefox/local
freebsd
chore: remove repetitive words
2024-04-15 11:06:50 +08:00
hpux/lpd
irix/lpd
linux
Land #19209, update fileformat modules to show the default template datastore values
2024-05-31 15:12:48 +01:00
mainframe/ftp
multi
Land #19196, Cacti import package RCE
2024-06-12 15:43:46 -07:00
netware
openbsd/local
modules: Check datastore ForceExploit before checking if session is root
2023-02-02 18:17:02 +11:00
osx
Add missing Platform to osx/local/persistence module
2024-03-25 16:00:25 +00:00
qnx
modules: Check datastore ForceExploit before checking if session is root
2023-02-02 18:17:02 +11:00
solaris
Mark unix encoders as compatible with linux
2024-01-19 13:40:43 -05:00
unix
Update wp_ajax_load_more_file_upload.rb
2024-06-01 16:00:45 +02:00
windows
Finish up and document the deserialization RCE
2024-06-12 08:58:37 -04:00
example_linux_priv_esc.rb
small updates to example modules
2023-05-07 13:02:30 -04:00
example_webapp.rb
review comments
2023-05-08 15:25:31 -04:00
example.py
example.rb
Update all links from Wiki site to new docs site.
2023-01-27 09:58:53 -06:00