adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
f255724e0101bea134a18eaaebcbcb2929e554e9
metasploit-gs/documentation/modules/exploit/multi/http
T
History
James Lee f255724e01 Changes to support older Solr (tested 5.3.0) 
Use a new parameter instead of a header because older versions don't
have access to the request object.

There was an issue where the exploit would fail if the exec returned -1
despite the payload otherwise working, fixed by not trying to return
output in that case.

Also updates the documentation to reflect that we have a Java target now
and quoting is no longer a concern.
2020-12-13 19:05:47 -06:00
..
agent_tesla_panel_rce.md
Fix up items mentioned by @space-r7 during her review
2020-06-18 09:56:20 -05:00
atutor_upload_traversal.md
Improve autoselect (incorporate suggestions from code review)
2020-06-18 16:39:11 -04:00
axis2_deployer.md
sample output to scenarios conversion in docs
2017-05-31 21:21:38 -04:00
baldr_upload_exec.md
Further edits for RuboCop and msftidy_docs.rb compliance
2020-08-06 11:18:39 -05:00
builderengine_upload_exec.md
Add doc and make minor changes
2017-05-16 14:47:19 -05:00
caidao_php_backdoor_exec.md
module doc standardizations
2020-01-20 21:26:59 -05:00
cisco_dcnm_upload_2019.md
module doc standardizations
2020-01-20 21:26:59 -05:00
clipbucket_fileupload_exec.md
fix install lines
2020-03-24 09:36:17 -04:00
cmsms_object_injection_rce.md
Apply suggestions from code review
2019-11-03 00:32:10 +01:00
cmsms_showtime2_rce.md
scenario to scenarios
2020-01-16 10:36:38 -05:00
cmsms_upload_rename_rce.md
Update cmsms_upload_rename_rce check and docs
2018-07-19 18:26:42 +00:00
coldfusion_ckeditor_file_upload.md
Remove extra new lines
2019-01-10 06:44:22 -06:00
confluence_widget_connector.md
h1 to h2
2020-01-16 11:46:36 -05:00
drupal_drupageddon.md
drupageddon docs
2016-09-15 13:29:06 -04:00
freenas_exec_raw.md
remove and check for instruction text
2020-03-24 09:15:04 -04:00
git_submodule_command_exec.md
rename module docs so they are viewable
2017-08-29 18:09:30 -05:00
git_submodule_url_exec.md
add documentation
2018-10-18 12:45:53 +08:00
gitlist_arg_injection.md
changed inconsistent capitalization
2018-07-05 15:56:41 -05:00
glassfish_deployer.md
fix install lines
2020-03-24 09:36:17 -04:00
horde_csv_rce.md
Add 'Horde CSV import arbitrary PHP code execution' (CVE-2020-8518)
2020-03-14 16:07:51 +01:00
horde_form_file_upload.md
Apply fix requests on documentation
2019-03-30 10:19:55 +00:00
ibm_openadmin_tool_soap_welcomeserver_exec.md
Add documentation
2017-06-01 06:03:10 +00:00
jenkins_metaprogramming.md
Don't be lazy and spell out "introduction" in docs
2019-09-30 16:58:00 -05:00
jenkins_script_console.md
doc cleanup
2020-03-24 08:47:21 -04:00
jenkins_xstream_deserialize.md
Add docs
2017-11-07 10:58:28 -05:00
jira_plugin_upload.md
Fixed typos and errors in documentation
2018-02-25 15:29:24 -05:00
liferay_java_unmarshalling.md
Update post-RuboCop style in my recent modules
2020-04-22 10:52:00 -05:00
magento_unserialize.md
doc cleanup
2020-03-24 08:47:21 -04:00
makoserver_cmd_exec.md
module doc standardizations
2020-01-20 21:26:59 -05:00
mantisbt_manage_proj_page_rce.md
Add MSF module for EDB 6768
2018-04-14 08:51:51 -04:00
maracms_upload_exec.md
Add maracms_upload_exec.rb exploit module and docs
2020-09-22 16:53:29 -04:00
mediawiki_syntaxhighlight.md
sample output to scenarios conversion in docs
2017-05-31 21:21:38 -04:00
monstra_fileupload_exec.md
module options to options
2020-01-16 10:49:22 -05:00
navigate_cms_rce.md
module options to options
2020-01-16 10:49:22 -05:00
nostromo_code_exec.md
Update documentation/modules/exploit/multi/http/nostromo_code_exec.md
2019-10-30 15:38:50 +01:00
october_upload_bypass_exec.md
verification to verification steps
2020-01-16 10:41:12 -05:00
openmrs_deserialization.md
update scenarios section
2019-12-04 12:19:58 -06:00
oracle_weblogic_wsat_deserialization_rce.md
vulnerable application h1 to h2
2020-01-16 10:44:35 -05:00
orientdb_exec.md
module doc standardizations
2020-01-20 21:26:59 -05:00
oscommerce_installer_unauth_code_exec.md
Update oscommerce_installer_unauth_code_exec.md
2018-04-06 13:05:14 +01:00
php_fpm_rce.md
Update code and documentation
2020-02-17 18:25:10 +01:00
phpmailer_arg_injection.md
Update docs to reflect the final phpmailer module
2017-01-10 17:44:22 -05:00
phpmyadmin_lfi_rce.md
Add Targets and Session file inclusion
2018-07-06 12:17:26 -05:00
phpmyadmin_null_termination_exec.md
Use Gem::Version
2018-06-18 08:35:47 -05:00
phpstudy_backdoor_rce.md
Add phpstudy backdoor exploit module
2020-02-23 10:23:32 +08:00
pimcore_unserialize_rce.md
scenario to scenarios
2020-01-16 10:36:38 -05:00
playsms_filename_exec.md
module options to options
2020-01-16 10:49:22 -05:00
playsms_template_injection.md
Cleanup more status methods and move the module
2020-04-03 10:21:27 -04:00
playsms_uploadcsv_exec.md
module options to options
2020-01-16 10:49:22 -05:00
processmaker_exec.md
sample output to scenarios
2020-01-16 11:15:06 -05:00
processmaker_plugin_upload.md
Update tested versions
2018-03-20 02:49:56 +00:00
rails_actionpack_inline_exec.md
Add documentation for rails_actionpack_inline_exec
2016-07-07 16:15:51 -05:00
rails_double_tap.md
module doc standardizations
2020-01-20 21:26:59 -05:00
rails_dynamic_render_code_exec.md
Don't be lazy and spell out "introduction" in docs
2019-09-30 16:58:00 -05:00
rails_web_console_v2_code_exec.md
sample output to scenarios conversion in docs
2017-05-31 21:21:38 -04:00
shiro_rememberme_v124_deserialize.md
Update Apache Shiro RCE module docs
2020-04-28 14:24:17 -04:00
shopware_createinstancefromnamedarguments_rce.md
module doc standardizations
2020-01-20 21:26:59 -05:00
solr_velocity_rce.md
Changes to support older Solr (tested 5.3.0)
2020-12-13 19:05:47 -06:00
sonicwall_scrutinizer_methoddetail_sqli.md
update doc
2016-05-13 23:31:38 -05:00
splunk_upload_app_exec.md
Update splunk_upload_app_exec.md
2019-03-19 22:44:07 +01:00
struts2_content_type_ognl.md
module doc standardizations
2020-01-20 21:26:59 -05:00
struts2_namespace_ognl.md
Update documentation with correct module name and detailed notes about Tomcat versions
2018-09-24 12:47:58 -05:00
struts2_rest_xstream.md
module doc standardizations
2020-01-20 21:26:59 -05:00
struts_dmi_exec.md
Add mod doc for struts_dmi_rest_exec and update struts_dmi_exec.md
2016-06-08 23:15:44 -05:00
struts_dmi_rest_exec.md
Add mod doc for struts_dmi_rest_exec and update struts_dmi_exec.md
2016-06-08 23:15:44 -05:00
tomcat_jsp_upload_bypass.md
fixed msftidy errors and added documentation
2017-10-11 07:57:01 -04:00
tomcat_mgr_deploy.md
update documentation to point to meterpreter again
2017-04-26 17:49:08 -05:00
tomcat_mgr_upload.md
fixes deploy and upload
2017-01-15 20:31:33 -05:00
totaljs_cms_widget_exec.md
Move totaljs cms module and doc
2019-10-15 10:11:14 -05:00
trendmicro_threat_discovery_admin_sys_time_cmdi.md
doc cleanup
2020-03-24 08:47:21 -04:00
vbulletin_getindexablecontent.md
Switch to use res.get_json_document from JSON.parse and more cleanup.
2020-05-28 11:16:44 -05:00
vbulletin_widget_template_rce.md
Whitespace adjustment and remove superfluous return statements
2020-08-12 13:59:25 -04:00
vbulletin_widgetconfig_rce.md
module doc standardizations
2020-01-20 21:26:59 -05:00
vtiger_logo_upload_exec.md
Update module, Add documentation
2018-07-30 12:11:08 -05:00
werkzeug_debug_rce.md
adding docs for #4888 #5697 #6731
2016-07-29 23:11:57 -04:00
wp_crop_rce.md
modified scenario output for path
2019-03-25 13:58:58 -05:00
wp_db_backup_rce.md
add documentation and finished module
2019-06-25 11:21:15 -05:00
wp_dnd_mul_file_rce.md
add session_created, fix typo
2020-06-04 10:32:17 -05:00
wp_responsive_thumbnail_slider_upload.md
Update module and its documentation
2018-07-26 23:08:20 -05:00