metasploit-gs

activecollab_chat.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

agent_tesla_panel_rce.rb

Rubocop recently landed modules continued

2021-02-25 14:13:40 +00:00

ajaxplorer_checkinstall_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

apache_activemq_upload_jsp.rb

Update exploit code to add missing slashes to certain important parts of the code where the exploit might fail if a custom path is supplied, and also improve the error handling in the code overall

2021-06-14 15:02:38 -05:00

apache_apisix_api_default_token_rce.rb

Improve some error handling

2022-03-21 15:22:00 -04:00

apache_flink_jar_upload_exec.rb

Update more modules to use the vars_form_data api

2022-05-11 18:18:21 +01:00

apache_jetspeed_file_upload.rb

Fix exploit/multi/http/apache_jetspeed_file_upload

2019-02-25 11:32:06 -06:00

apache_mod_cgi_bash_env_exec.rb

Update DisclosureDate to ISO 8601 in my modules

2018-11-16 12:18:28 -06:00

apache_nifi_processor_rce.rb

Rubocop recently landed modules continued

2021-02-25 14:13:40 +00:00

apache_normalize_path_rce.rb

update modules and docs

2021-10-10 17:01:15 +04:00

apache_roller_ognl_injection.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

apprain_upload_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

atlassian_confluence_namespace_ognl_injection.rb

Check the target platform for compatibility

2022-06-15 17:11:56 -04:00

atlassian_confluence_webwork_ognl_injection.rb

Add Windows support to CVE-2021-26084 exploit

2021-10-14 16:58:04 -05:00

atlassian_crowd_pdkinstall_plugin_upload_rce.rb

Run Rubocop layout rules on modules

2021-08-27 17:19:43 +01:00

atutor_sqli.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

atutor_upload_traversal.rb

Run Rubocop layout rules on modules

2021-08-27 17:19:43 +01:00

auxilium_upload_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

axis2_deployer.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

baldr_upload_exec.rb

Run Rubocop layout rules on modules

2021-08-27 17:19:43 +01:00

bassmaster_js_injection.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

bolt_file_upload.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

builderengine_upload_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

caidao_php_backdoor_exec.rb

fix URLs not resolving

2022-02-16 17:22:40 -06:00

cisco_dcnm_upload_2019.rb

fix cisco advisory links

2022-01-13 18:55:39 +00:00

cisco_dcnm_upload.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

clipbucket_fileupload_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

cmsms_object_injection_rce.rb

Handle nil versions for rubygems 4

2021-02-25 16:47:49 +00:00

cmsms_showtime2_rce.rb

Handle nil versions for rubygems 4

2021-02-25 16:47:49 +00:00

cmsms_upload_rename_rce.rb

Handle nil versions for rubygems 4

2021-02-25 16:47:49 +00:00

cockpit_cms_rce.rb

Run Rubocop layout rules on modules

2021-08-27 17:19:43 +01:00

coldfusion_ckeditor_file_upload.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

coldfusion_rds_auth_bypass.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

confluence_widget_connector.rb

linting for confluence_widget_connecter and add catch for all scenarios where clear_response returns nil

2022-07-01 08:43:47 -04:00

cups_bash_env_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

cuteflow_upload_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

cve_2021_35464_forgerock_openam.rb

Update docs, pin version and fix the check method

2021-07-09 16:39:58 -04:00

dexter_casinoloader_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

dotcms_file_upload_rce.rb

Update modules/exploits/multi/http/dotcms_file_upload_rce.rb

2022-06-01 10:54:02 -04:00

drupal_drupageddon.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

eaton_nsm_code_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

eventlog_file_upload.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

extplorer_upload_exec.rb

Add Meterpreter compatibility metadata

2021-10-06 13:54:51 +01:00

familycms_less_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

freenas_exec_raw.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

gestioip_exec.rb

fix URLs not resolving

2022-02-16 17:22:40 -06:00

getsimplecms_unauth_code_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

git_client_command_exec.rb

fix URLs not resolving

2022-02-16 17:22:40 -06:00

git_lfs_clone_command_exec.rb

Run Rubocop layout rules on modules

2021-08-27 17:19:43 +01:00

git_submodule_command_exec.rb

change modules to use hash in build_commit_object

2021-08-12 10:18:13 -05:00

git_submodule_url_exec.rb

add notes to updated modules

2021-08-12 10:18:13 -05:00

gitea_git_hooks_rce.rb

Update gitea git hooks rce check method

2021-10-01 01:11:11 +01:00

gitlab_exif_rce.rb

Changed qx delimiter to # and added it to badchars. Defaulted to a staged payload

2021-11-03 10:51:37 -07:00

gitlab_file_read_rce.rb

Run Rubocop layout rules on modules

2021-08-27 17:19:43 +01:00

gitlab_shell_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

gitlist_arg_injection.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

gitorious_graph.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

glassfish_deployer.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

glossword_upload_exec.rb

Add Meterpreter compatibility metadata

2021-10-06 13:54:51 +01:00

glpi_install_rce.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

gogs_git_hooks_rce.rb

cleanup and removes cookies filtering

2021-04-16 17:31:11 +01:00

horde_csv_rce.rb

Rubocop recently landed modules

2021-02-16 15:08:08 +00:00

horde_form_file_upload.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

horde_href_backdoor.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

horizontcms_upload_exec.rb

Run Rubocop layout rules on modules

2021-08-27 17:19:43 +01:00

hp_sitescope_issuesiebelcmd.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

hp_sitescope_uploadfileshandler.rb

Add Meterpreter compatibility metadata

2021-10-06 13:54:51 +01:00

hp_sys_mgmt_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

hyperic_hq_script_console.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

ibm_openadmin_tool_soap_welcomeserver_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

ispconfig_php_exec.rb

fix URLs not resolving

2022-02-16 17:22:40 -06:00

jboss_bshdeployer.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

jboss_deploymentfilerepository.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

jboss_invoke_deploy.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

jboss_maindeployer.rb

Rename stop_service to cleanup_service for services that use reference counting

2022-03-10 10:28:25 +11:00

jboss_seam_upload_exec.rb

Zeitwerk rex folder

2021-02-08 12:24:12 +00:00

jenkins_metaprogramming.rb

Handle nil versions for rubygems 4

2021-02-25 16:47:49 +00:00

jenkins_script_console.rb

Use the standard Linux stager

2022-09-13 16:10:48 -04:00

jenkins_xstream_deserialize.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

jira_hipchat_template.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

jira_plugin_upload.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

joomla_http_header_rce.rb

Handle nil versions for rubygems 4

2021-02-25 16:47:49 +00:00

kong_gateway_admin_api_rce.rb

Run Rubocop layout rules on modules

2021-08-27 17:19:43 +01:00

kordil_edms_upload_exec.rb

Add Meterpreter compatibility metadata

2021-10-06 13:54:51 +01:00

lcms_php_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

liferay_java_unmarshalling.rb

Backport miscellaneous fixes to my modules

2020-08-14 13:40:23 -05:00

log1cms_ajax_create_folder.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

log4shell_header_injection.rb

Add the HttpListenerBindPort to the log4shell exploit

2022-03-22 09:06:22 -04:00

magento_unserialize.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

makoserver_cmd_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

manage_engine_dc_pmp_sqli.rb

Handle nil versions for rubygems 4

2021-02-25 16:47:49 +00:00

manageengine_auth_upload.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

manageengine_sd_uploader.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

manageengine_search_sqli.rb

Use zeitwerk for lib/msf/core folder

2020-12-07 10:31:45 +00:00

mantisbt_manage_proj_page_rce.rb

Handle nil versions for rubygems 4

2021-02-25 16:47:49 +00:00

mantisbt_php_exec.rb

Handle nil versions for rubygems 4

2021-02-25 16:47:49 +00:00

maracms_upload_exec.rb

Run Rubocop layout rules on modules

2021-08-27 17:19:43 +01:00

mediawiki_syntaxhighlight.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

mediawiki_thumb.rb

Fix file reads on Windows for binary files

2022-03-21 12:47:39 +00:00

metasploit_static_secret_key_base.rb

fix URLs not resolving

2022-02-16 17:22:40 -06:00

metasploit_webui_console_command_execution.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

microfocus_obm_auth_rce.rb

Run Rubocop layout rules on modules

2021-08-27 17:19:43 +01:00

microfocus_ucmdb_unauth_deser.rb

Run Rubocop layout rules on modules

2021-08-27 17:19:43 +01:00

mma_backdoor_upload.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

mobilecartly_upload_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

monstra_fileupload_exec.rb

Handle nil versions for rubygems 4

2021-02-25 16:47:49 +00:00

moodle_admin_shell_upload.rb

rubocop

2021-10-11 16:23:09 -04:00

moodle_spelling_binary_rce.rb

fix URLs not resolving

2022-02-16 17:22:40 -06:00

moodle_spelling_path_rce.rb

more libs for moodle and teacher priv esc to rce module

2021-09-04 13:31:11 -04:00

moodle_teacher_enrollment_priv_esc_to_rce.rb

rubocop

2021-10-11 16:23:09 -04:00

movabletype_upgrade_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

mutiny_subnetmask_exec.rb

Removed redundant cleanup calls which exploit_driver will call anyway

2022-03-11 12:08:51 +11:00

mybb_rce_cve_2022_24734.rb

Fixes from code review

2022-05-30 16:24:18 +02:00

nas4free_php_exec.rb

fix URLs not resolving

2022-02-16 17:22:40 -06:00

navigate_cms_rce.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

netwin_surgeftp_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

nibbleblog_file_upload.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

nostromo_code_exec.rb

Handle nil versions for rubygems 4

2021-02-25 16:47:49 +00:00

novell_servicedesk_rce.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

nuuo_nvrmini_upgrade_rce.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

october_upload_bypass_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

op5_license.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

op5_welcome.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

openfire_auth_bypass.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

openmediavault_cmd_exec.rb

fix URLs not resolving

2022-02-16 17:22:40 -06:00

openmrs_deserialization.rb

Handle nil versions for rubygems 4

2021-02-25 16:47:49 +00:00

openx_backdoor_php.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

opmanager_socialit_file_upload.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

opmanager_sumpdu_deserialization.rb

Add a note about exploitable versions

2021-09-16 17:08:23 -04:00

oracle_ats_file_upload.rb

Fix exploit/multi/http/oracle_ats_file_upload

2019-02-25 11:35:34 -06:00

oracle_reports_rce.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

oracle_weblogic_wsat_deserialization_rce.rb

Rename stop_service to cleanup_service for services that use reference counting

2022-03-10 10:28:25 +11:00

orientdb_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

oscommerce_installer_unauth_code_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

pandora_upload_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

phoenix_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

php_cgi_arg_injection.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

php_fpm_rce.rb

Update php_fpm_rce.rb

2022-06-03 11:23:53 +03:00

php_utility_belt_rce.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

php_volunteer_upload_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

phpfilemanager_rce.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

phpldapadmin_query_engine.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

phpmailer_arg_injection.rb

Fix a whitespace issue, restore option naming

2022-06-29 12:24:29 -04:00

phpmoadmin_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

phpmyadmin_3522_backdoor.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

phpmyadmin_lfi_rce.rb

Handle nil versions for rubygems 4

2021-02-25 16:47:49 +00:00

phpmyadmin_null_termination_exec.rb

Handle nil versions for rubygems 4

2021-02-25 16:47:49 +00:00

phpmyadmin_preg_replace.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

phpscheduleit_start_date.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

phpstudy_backdoor_rce.rb

Run Rubocop layout rules on modules

2021-08-27 17:19:43 +01:00

phptax_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

phpwiki_ploticus_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

pimcore_unserialize_rce.rb

Handle nil versions for rubygems 4

2021-02-25 16:47:49 +00:00

playsms_filename_exec.rb

Update more modules to use the vars_form_data api

2022-05-11 18:18:21 +01:00

playsms_template_injection.rb

Run Rubocop layout rules on modules

2021-08-27 17:19:43 +01:00

playsms_uploadcsv_exec.rb

Update more modules to use the vars_form_data api

2022-05-11 18:18:21 +01:00

plone_popen2.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

pmwiki_pagelist.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

polarcms_upload_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

processmaker_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

processmaker_plugin_upload.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

qdpm_authenticated_rce.rb

Using FileDropper Mixin

2022-07-27 19:32:50 +02:00

qdpm_upload_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

rails_actionpack_inline_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

rails_double_tap.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

rails_dynamic_render_code_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

rails_json_yaml_code_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

rails_secret_deserialization.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

rails_web_console_v2_code_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

rails_xml_yaml_code_exec.rb

fix URLs not resolving

2022-02-16 17:22:40 -06:00

rocket_servergraph_file_requestor_rce.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

sflog_upload_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

shiro_rememberme_v124_deserialize.rb

Run Rubocop layout rules on modules

2021-08-27 17:19:43 +01:00

shopware_createinstancefromnamedarguments_rce.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

simple_backdoors_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

sit_file_upload.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

snortreport_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

solarwinds_store_manager_auth_filter.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

solr_velocity_rce.rb

Run Rubocop layout rules on modules

2021-08-27 17:19:43 +01:00

sonicwall_gms_upload.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

sonicwall_scrutinizer_methoddetail_sqli.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

splunk_mappy_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

splunk_upload_app_exec.rb

Fix file reads on Windows for binary files

2022-03-21 12:47:39 +00:00

spree_search_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

spree_searchlogic_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

spring_cloud_function_spel_injection.rb

Fix the check method, add docs

2022-03-31 09:01:08 -04:00

spring_framework_rce_spring4shell.rb

Rename the function to emphasize truthy

2022-05-13 09:16:01 -04:00

struts2_code_exec_showcase.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

struts2_content_type_ognl.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

struts2_multi_eval_ognl.rb

Run Rubocop layout rules on modules

2021-08-27 17:19:43 +01:00

struts2_namespace_ognl.rb

Fix TARGETURI support in struts2_namespace_ognl

2018-12-14 13:08:50 -06:00

struts2_rest_xstream.rb

Fix missing split in struts2_rest_xstream

2019-07-10 11:15:36 -05:00

struts_code_exec_classloader.rb

Update a couple of modules for the new SMB server

2022-05-16 14:39:45 -04:00

struts_code_exec_exception_delegator.rb

exploits: Set tftphost option for modules which use Windows TFTP stager

2022-06-29 19:10:52 +10:00

struts_code_exec_parameters.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

struts_code_exec.rb

exploits: Set tftphost option for modules which use Windows TFTP stager

2022-06-29 19:10:52 +10:00

struts_default_action_mapper.rb

Add Meterpreter compatibility metadata

2021-10-06 13:54:51 +01:00

struts_dev_mode.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

struts_dmi_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

struts_dmi_rest_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

struts_include_params.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

stunshell_eval.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

stunshell_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

sun_jsws_dav_options.rb

Use zeitwerk for lib/msf/core folder

2020-12-07 10:31:45 +00:00

sysaid_auth_file_upload.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

sysaid_rdslogs_file_upload.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

testlink_upload_exec.rb

Add Meterpreter compatibility metadata

2021-10-06 13:54:51 +01:00

tomcat_jsp_upload_bypass.rb

Modules: Prefer CVE references over cve.mitre.org URL references

2022-04-19 20:42:23 +00:00

tomcat_mgr_deploy.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

tomcat_mgr_upload.rb

Update more modules to use the vars_form_data api

2022-05-11 18:18:21 +01:00

totaljs_cms_widget_exec.rb

Handle nil versions for rubygems 4

2021-02-25 16:47:49 +00:00

traq_plugin_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

trendmicro_threat_discovery_admin_sys_time_cmdi.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

ubiquiti_unifi_log4shell.rb

More redundant cleanup calls

2022-03-11 12:22:27 +11:00

uptime_file_upload_1.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

uptime_file_upload_2.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

v0pcr3w_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

vbseo_proc_deutf.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

vbulletin_getindexablecontent.rb

Enforce Style/RedundantBegin for new modules

2021-05-13 04:01:03 +01:00

vbulletin_unserialize.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

vbulletin_widget_template_rce.rb

Enforce Style/RedundantBegin for new modules

2021-05-13 04:01:03 +01:00

vbulletin_widgetconfig_rce.rb

Migrate old uses of manual autocheck to use the new prepend autocheck

2021-02-02 10:15:46 +00:00

visual_mining_netcharts_upload.rb

Remove superfluous default_cred? methods

2021-04-07 06:12:25 -05:00

vmware_vcenter_log4shell.rb

Add and use a Log4Shell mixin

2022-02-03 16:09:49 -05:00

vmware_vcenter_uploadova_rce.rb

Update module credits

2021-07-14 15:10:25 -05:00

vtiger_install_rce.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

vtiger_logo_upload_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

vtiger_php_exec.rb

fix URLs not resolving

2022-02-16 17:22:40 -06:00

vtiger_soap_upload.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

weblogic_admin_handle_rce.rb

Improve here doc formatting

2021-07-08 01:19:21 -05:00

webnms_file_upload.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

webpagetest_upload_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

werkzeug_debug_rce.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

wikka_spam_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

wp_ait_csv_rce.rb

Run Rubocop layout rules on modules

2021-08-27 17:19:43 +01:00

wp_catch_themes_demo_import.rb

display full path in print_status()

2022-01-04 14:43:04 -06:00

wp_crop_rce.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

wp_db_backup_rce.rb

Handle nil versions for rubygems 4

2021-02-25 16:47:49 +00:00

wp_dnd_mul_file_rce.rb

Run Rubocop layout rules on modules

2021-08-27 17:19:43 +01:00

wp_file_manager_rce.rb

Run Rubocop layout rules on modules

2021-08-27 17:19:43 +01:00

wp_ninja_forms_unauthenticated_file_upload.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

wp_plugin_backup_guard_rce.rb

Run Rubocop layout rules on modules

2021-08-27 17:19:43 +01:00

wp_plugin_modern_events_calendar_rce.rb

Run Rubocop layout rules on modules

2021-08-27 17:19:43 +01:00

wp_plugin_sp_project_document_rce.rb

Run Rubocop layout rules on modules

2021-08-27 17:19:43 +01:00

wp_popular_posts_rce.rb

wp_popular_posts_rce

2021-12-08 16:45:19 -05:00

wp_responsive_thumbnail_slider_upload.rb

Handle nil versions for rubygems 4

2021-02-25 16:47:49 +00:00

wp_simple_file_list_rce.rb

Run Rubocop layout rules on modules

2021-08-27 17:19:43 +01:00

wso2_file_upload_rce.rb

Rename the function to emphasize truthy

2022-05-13 09:16:01 -04:00

x7chat2_php_exec.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

zabbix_script_exec.rb

Rename the function to emphasize truthy

2022-05-13 09:16:01 -04:00

zemra_panel_rce.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

zenworks_configuration_management_upload.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

zenworks_control_center_upload.rb

Convert disclosure dates to iso8601

2020-10-02 21:00:37 +01:00

zpanel_information_disclosure_rce.rb

Use zeitwerk for lib/msf/core folder

2020-12-07 10:31:45 +00:00