infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Land #6384, more joomla rce references

bug/bundler_fix
Christian Mehlmauer 2015-12-22 22:54:58 +01:00
parent 84675e352b 18398afb56
commit 424e7b6bfe
No known key found for this signature in database
GPG Key ID: DCF54A05D6E62591
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
modules/exploits/multi/http/joomla_http_header_rce.rb
View File

@ -31,6 +31,8 @@ class Metasploit3 < Msf::Exploit::Remote
'References' =>
[
['CVE', '2015-8562'],
['EDB', '38977'], # PoC from Gary
['EDB', '39033'], # Exploit modified to use "X-Forwarded-For" header instead of "User-Agent"
['URL', 'https://blog.sucuri.net/2015/12/joomla-remote-code-execution-the-details.html'],
['URL', 'https://blog.sucuri.net/2015/12/remote-command-execution-vulnerability-in-joomla.html'],
['URL', 'https://developer.joomla.org/security-centre/630-20151214-core-remote-code-execution-vulnerability.html'],