William Vu 12d4ad68e3 Fix things in ThinkPHP and ManageEngine exploits ...

Current pattern is print_good instead of vprint_good for this particular
message directly or indirectly called by execute_command.

CmdStagerFlavor is checked at the top level, but it is also checked per
target. Moving this to where it's more appropriate.

2020-05-20 22:47:03 -05:00

..

adobe_robohelper_authbypass.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

altn_securitygateway.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

altn_webadmin.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

amlibweb_webquerydll_app.rb

Change author name to nick.

2017-11-09 03:00:24 +11:00

apache_activemq_traversal_upload.rb

reformat date to iso standard

2020-03-05 15:03:05 +00:00

apache_chunked.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

apache_mod_rewrite_ldap.rb

Change author name to nick.

2017-11-09 03:00:24 +11:00

apache_modjk_overflow.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

apache_tika_jp2_jscript.rb

tika 1.15-1.17

2019-07-30 16:55:06 -04:00

avaya_ccr_imageupload_exec.rb

Set needs_cleanup flag for exploits that need it

2019-08-02 10:23:53 -05:00

badblue_ext_overflow.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

badblue_passthru.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

bea_weblogic_jsessionid.rb

80 pages left

2017-09-13 22:03:34 -04:00

bea_weblogic_post_bof.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

bea_weblogic_transfer_encoding.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

belkin_bulldog.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

ca_arcserve_rpc_authbypass.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

ca_igateway_debug.rb

Change author name to nick.

2017-11-09 03:00:24 +11:00

ca_totaldefense_regeneratereports.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

cogent_datahub_command.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

cogent_datahub_request_headers_bof.rb

Fix CVE numbers

2018-07-09 13:22:08 -05:00

coldfusion_fckeditor.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

cyclope_ess_sqli.rb

Set needs_cleanup flag for exploits that need it

2019-08-02 10:23:53 -05:00

desktopcentral_deserialization.rb

Fix things in ThinkPHP and ManageEngine exploits

2020-05-20 22:47:03 -05:00

desktopcentral_file_upload.rb

Fix http://seclists.org links to https://

2018-09-15 18:54:45 -05:00

desktopcentral_statusupdate_upload.rb

Fix http://seclists.org links to https://

2018-09-15 18:54:45 -05:00

disk_pulse_enterprise_bof.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

disk_pulse_enterprise_get.rb

Update all module splats from http:// to https://

2019-08-15 18:10:44 -05:00

diskboss_get_bof.rb

Updated per review comments.

2017-12-08 10:42:43 -06:00

disksavvy_get_bof.rb

Revised 88 aux and exploit modules to add CVEs / references

2018-07-12 17:34:52 -05:00

disksorter_bof.rb

Revised 88 aux and exploit modules to add CVEs / references

2018-07-12 17:34:52 -05:00

dnn_cookie_deserialization_rce.rb

Update the dnn_cookie_deserialization_rce for the new library

2020-04-15 15:13:42 -04:00

dup_scout_enterprise_login_bof.rb

Revised 88 aux and exploit modules to add CVEs / references

2018-07-12 17:34:52 -05:00

dupscts_bof.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

easychatserver_seh.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

easyfilesharing_post.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

easyfilesharing_seh.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

easyftp_list.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

edirectory_host.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

edirectory_imonitor.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

efs_easychatserver_username.rb

revisionism

2019-01-10 19:19:14 +00:00

efs_fmws_userid_bof.rb

Check for nil response due to connection failure

2020-01-05 21:39:34 +00:00

ektron_xslt_exec_ws.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

ektron_xslt_exec.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

ericom_access_now_bof.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

exchange_ecp_viewstate.rb

Fix punctuation typo in exchange_ecp_viewstate

2020-05-20 09:47:11 -05:00

ezserver_http.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

fdm_auth_header.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

file_sharing_wizard_seh.rb

Run rubocop -a on subset of files

2020-03-06 10:41:45 +00:00

generic_http_dll_injection.rb

Fix HTTP/SMB mixin order to restore SSL option

2019-01-29 11:09:34 -06:00

geutebrueck_gcore_x64_rce_bo.rb

Update all module splats from http:// to https://

2019-08-15 18:10:44 -05:00

gitstack_rce.rb

Documentation accuracy

2018-03-09 07:31:55 -06:00

hp_autopass_license_traversal.rb

80 pages left

2017-09-13 22:03:34 -04:00

hp_imc_bims_upload.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

hp_imc_java_deserialize.rb

ysoserial: Cleaned up ysoserial payload in hp_imc_java_deserialize

2018-12-18 15:17:51 -06:00

hp_imc_mibfileupload.rb

80 pages left

2017-09-13 22:03:34 -04:00

hp_loadrunner_copyfiletoserver.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

hp_mpa_job_acct.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

hp_nnm_getnnmdata_hostname.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

hp_nnm_getnnmdata_icount.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

hp_nnm_getnnmdata_maxage.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

hp_nnm_nnmrptconfig_nameparams.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

hp_nnm_nnmrptconfig_schdparams.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

hp_nnm_openview5.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

hp_nnm_ovalarm_lang.rb

80 pages left

2017-09-13 22:03:34 -04:00

hp_nnm_ovas.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

hp_nnm_ovbuildpath_textfile.rb

Set needs_cleanup flag for exploits that need it

2019-08-02 10:23:53 -05:00

hp_nnm_ovwebhelp.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

hp_nnm_ovwebsnmpsrv_main.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

hp_nnm_ovwebsnmpsrv_ovutil.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

hp_nnm_ovwebsnmpsrv_uro.rb

80 pages left

2017-09-13 22:03:34 -04:00

hp_nnm_snmp.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

hp_nnm_snmpviewer_actapp.rb

80 pages left

2017-09-13 22:03:34 -04:00

hp_nnm_toolbar_01.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

hp_nnm_toolbar_02.rb

80 pages left

2017-09-13 22:03:34 -04:00

hp_nnm_webappmon_execvp.rb

80 pages left

2017-09-13 22:03:34 -04:00

hp_nnm_webappmon_ovjavalocale.rb

80 pages left

2017-09-13 22:03:34 -04:00

hp_openview_insight_backdoor.rb

Update false negatives on post auth information

2018-08-20 16:05:58 -05:00

hp_pcm_snac_update_certificates.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

hp_pcm_snac_update_domain.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

hp_power_manager_filename.rb

80 pages left

2017-09-13 22:03:34 -04:00

hp_power_manager_login.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

hp_sitescope_dns_tool.rb

This fixes broken links to the community.rapid7.com blog

2020-02-18 09:06:11 -06:00

hp_sitescope_runomagentcommand.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

httpdx_handlepeer.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

httpdx_tolog_format.rb

80 pages left

2017-09-13 22:03:34 -04:00

ia_webmail.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

ibm_tivoli_endpoint_bof.rb

Tweakz, yo.

2017-09-22 18:49:09 -05:00

ibm_tpmfosd_overflow.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

ibm_tsm_cad_header.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

icecast_header.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

integard_password_bof.rb

80 pages left

2017-09-13 22:03:34 -04:00

intersystems_cache.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

intrasrv_bof.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

ipswitch_wug_maincfgret.rb

Update false negatives

2018-08-20 18:08:19 -05:00

jira_collector_traversal.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

kaseya_uploader.rb

Fix http://seclists.org links to https://

2018-09-15 18:54:45 -05:00

kaseya_uploadimage_file_upload.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

kentico_staging_syncserver.rb

Remove some whitespace for msftidy compliance

2020-05-04 10:14:00 -04:00

kolibri_http.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

landesk_thinkmanagement_upload_asp.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

lexmark_markvision_gfd_upload.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

mailenable_auth_header.rb

80 pages left

2017-09-13 22:03:34 -04:00

manage_engine_opmanager_rce.rb

Fix http://seclists.org links to https://

2018-09-15 18:54:45 -05:00

manageengine_adshacluster_rce.rb

Code review changes

2018-07-12 14:27:28 +02:00

manageengine_appmanager_exec.rb

Update all module splats from http:// to https://

2019-08-15 18:10:44 -05:00

manageengine_apps_mngr.rb

Update false negatives

2018-08-20 18:08:19 -05:00

manageengine_connectionid_write.rb

This fixes broken links to the community.rapid7.com blog

2020-02-18 09:06:11 -06:00

maxdb_webdbm_database.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

maxdb_webdbm_get_overflow.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

mcafee_epolicy_source.rb

Change author name to nick.

2017-11-09 03:00:24 +11:00

mdaemon_worldclient_form2raw.rb

Change author name to nick.

2017-11-09 03:00:24 +11:00

minishare_get_overflow.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

miniweb_upload_wbem.rb

revisionism

2019-01-10 19:19:14 +00:00

navicopa_get_overflow.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

netdecision_http_bof.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

netgear_nms_rce.rb

Fix http://seclists.org links to https://

2018-09-15 18:54:45 -05:00

novell_imanager_upload.rb

Fix msftidy warnings

2020-02-26 14:56:08 +00:00

novell_mdm_lfi.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

novell_messenger_acceptlang.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

nowsms.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

oats_weblogic_console.rb

Check #attributes for nil, and make sure target is oats console

2019-05-24 10:06:47 -05:00

octopusdeploy_deploy.rb

Update use_single_quotes to wrap_double_quotes

2019-03-29 18:14:56 -05:00

oracle9i_xdb_pass.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

oracle_beehive_evaluation.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

oracle_beehive_prepareaudiotoplay.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

oracle_btm_writetofile.rb

Set needs_cleanup flag for exploits that need it

2019-08-02 10:23:53 -05:00

oracle_endeca_exec.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

oracle_event_processing_upload.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

osb_uname_jlist.rb

80 pages left

2017-09-13 22:03:34 -04:00

peercast_url.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

php_apache_request_headers_bof.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

privatewire_gateway.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

psoproxy91_overflow.rb

Change author name to nick.

2017-11-09 03:00:24 +11:00

rabidhamster_r4_log.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

rejetto_hfs_exec.rb

Fix http://seclists.org links to https://

2018-09-15 18:54:45 -05:00

sambar6_search_results.rb

Change author name to nick.

2017-11-09 03:00:24 +11:00

sap_configservlet_exec_noauth.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

sap_host_control_cmd_exec.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

sapdb_webtools.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

savant_31_overflow.rb

Change author name to nick.

2017-11-09 03:00:24 +11:00

sepm_auth_bypass_rce.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

serviio_checkstreamurl_cmd_exec.rb

revisionism

2019-01-10 19:19:14 +00:00

servu_session_cookie.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

sharepoint_workflows_xoml.rb

Cleanup cmdstager options

2020-03-24 17:14:47 -04:00

shoutcast_format.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

shttpd_post.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

solarwinds_fsm_userlogin.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

solarwinds_storage_manager_sql.rb

Set needs_cleanup flag for exploits that need it

2019-08-02 10:23:53 -05:00

sonicwall_scrutinizer_sqli.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

ssrs_navcorrector_viewstate.rb

Update existing modules to use explicit parameters

2020-04-15 15:13:41 -04:00

steamcast_useragent.rb

Change author name to nick.

2017-11-09 03:00:24 +11:00

sws_connection_bof.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

sybase_easerver.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

syncbreeze_bof.rb

Revised 88 aux and exploit modules to add CVEs / references

2018-07-12 17:34:52 -05:00

sysax_create_folder.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

tomcat_cgi_cmdlineargs.rb

Set needs_cleanup flag for exploits that need it

2019-08-02 10:23:53 -05:00

trackercam_phparg_overflow.rb

Land #8686, add 'download' and simplified URI request methods to http client mixin

2017-08-14 01:40:17 -04:00

trackit_file_upload.rb

Fix http://seclists.org links to https://

2018-09-15 18:54:45 -05:00

trendmicro_officescan_widget_exec.rb

Update all module splats from http:// to https://

2019-08-15 18:10:44 -05:00

trendmicro_officescan.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

ultraminihttp_bof.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

umbraco_upload_aspx.rb

Set needs_cleanup flag for exploits that need it

2019-08-02 10:23:53 -05:00

vmware_vcenter_chargeback_upload.rb

Set needs_cleanup flag for exploits that need it

2019-08-02 10:23:53 -05:00

vxsrchs_bof.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

webster_http.rb

Change author name to nick.

2017-11-09 03:00:24 +11:00

xampp_webdav_upload_php.rb

Update false negatives

2018-08-20 18:08:19 -05:00

xitami_if_mod_since.rb

Change author name to nick.

2017-11-09 03:00:24 +11:00

zenworks_assetmgmt_uploadservlet.rb

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

zenworks_uploadservlet.rb

Update CVE references for exploit modules

2018-07-08 18:46:04 -05:00