infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Add more ranks, remove module warnings 

../vmware_mount.rb
Rank = Excellent
Exploit uses check code for target availability,
the vulnerability does not require user action,
and the exploit uses privilege escalation to run
arbitrary executables

../movabletype_upgrade_exec.rb
Rank = ExcellentRanking
Exploit utilizes code injection,
has a check for availability

../uptime_file_upload_2.rb
Rank = ExcellentRanking
Exploit allows execution of arbitrary commands,
has a check for availability

../zpanel_information_disclosure_rce.rb
Rank = ExcellentRanking
Exploit allows remote code execution,
implements version check for pChart

../spip_connect_exec.rb
Rank = ExcellentRanking
Exploit utilizes code injection,
has a check for availability

../wp_optimizepress_upload.rb
Rank = ExcellentRanking
Exploit allows execution of arbitrary code,
has a check for availability

../wing_ftp_admin_exec.rb
Rank = ExcellentRanking
Exploit allows execution of arbitrary commands,
has a check for availability

../novell_mdm_lfi.rb
Rank = ExcellentRanking
Exploit allows execution of arbitrary code,
has a check for availability

../run_as.rb
Rank = ExcellentRanking
Exploit utilizes command injection,
checks system type, and does not require user action
bug/bundler_fix
Bryan Chu 2017-05-03 11:12:55 -04:00
parent 494711ee65
commit 88bef00f61
9 changed files with 18 additions and 26 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
modules/exploits/linux/local/vmware_mount.rb
View File

@ -3,10 +3,8 @@
# Current source: https://github.com/rapid7/metasploit-framework # Current source: https://github.com/rapid7/metasploit-framework
## ##
require 'msf/core'
require 'rex'
class MetasploitModule < Msf::Exploit::Local class MetasploitModule < Msf::Exploit::Local
Rank = ExcellentRanking
include Msf::Exploit::EXE include Msf::Exploit::EXE
include Msf::Post::File include Msf::Post::File
@ -55,7 +53,7 @@ class MetasploitModule < Msf::Exploit::Local
)) ))
register_options([ register_options([
OptString.new("WRITABLEDIR", [ true, "A directory where you can write files.", "/tmp" ]), OptString.new("WRITABLEDIR", [ true, "A directory where you can write files.", "/tmp" ]),
], self.class) ])
end end
def check def check

5
modules/exploits/multi/http/movabletype_upgrade_exec.rb
View File

@ -3,9 +3,8 @@
# Current source: https://github.com/rapid7/metasploit-framework # Current source: https://github.com/rapid7/metasploit-framework
## ##
require 'msf/core'
class MetasploitModule < Msf::Exploit::Remote class MetasploitModule < Msf::Exploit::Remote
Rank = ExcellentRanking
include Exploit::Remote::HttpClient include Exploit::Remote::HttpClient
@ -65,7 +64,7 @@ class MetasploitModule < Msf::Exploit::Remote
register_options( register_options(
[ [
OptString.new('TARGETURI', [true, 'The URI path of the Movable Type installation', '/mt']) OptString.new('TARGETURI', [true, 'The URI path of the Movable Type installation', '/mt'])
], self.class) ])
end end
def check def check

6
modules/exploits/multi/http/uptime_file_upload_2.rb
View File

@ -3,10 +3,10 @@
# Current source: https://github.com/rapid7/metasploit-framework # Current source: https://github.com/rapid7/metasploit-framework
## ##
require 'msf/core'
require 'nokogiri' require 'nokogiri'
class MetasploitModule < Msf::Exploit::Remote class MetasploitModule < Msf::Exploit::Remote
Rank = ExcellentRanking
include Msf::Exploit::Remote::HttpClient include Msf::Exploit::Remote::HttpClient
include Msf::Exploit::PhpEXE include Msf::Exploit::PhpEXE
@ -52,14 +52,14 @@ class MetasploitModule < Msf::Exploit::Remote
Opt::RPORT(9999), Opt::RPORT(9999),
OptString.new('USERNAME', [true, 'The username to authenticate as', 'sample']), OptString.new('USERNAME', [true, 'The username to authenticate as', 'sample']),
OptString.new('PASSWORD', [true, 'The password to authenticate with', 'sample']) OptString.new('PASSWORD', [true, 'The password to authenticate with', 'sample'])
], self.class) ])
register_advanced_options( register_advanced_options(
[ [
OptString.new('UptimeWindowsDirectory', [true, 'Uptime installation path for Windows', 'C:\\Program Files\\uptime software\\']), OptString.new('UptimeWindowsDirectory', [true, 'Uptime installation path for Windows', 'C:\\Program Files\\uptime software\\']),
OptString.new('UptimeLinuxDirectory', [true, 'Uptime installation path for Linux', '/usr/local/uptime/']), OptString.new('UptimeLinuxDirectory', [true, 'Uptime installation path for Linux', '/usr/local/uptime/']),
OptString.new('CmdPath', [true, 'Path to cmd.exe', 'c:\\windows\\system32\\cmd.exe']) OptString.new('CmdPath', [true, 'Path to cmd.exe', 'c:\\windows\\system32\\cmd.exe'])
], self.class) ])
end end
def print_status(msg='') def print_status(msg='')

4
modules/exploits/multi/http/zpanel_information_disclosure_rce.rb
View File

@ -3,12 +3,12 @@
# Current source: https://github.com/rapid7/metasploit-framework # Current source: https://github.com/rapid7/metasploit-framework
## ##
require 'msf/core'
require 'msf/core/exploit/php_exe' require 'msf/core/exploit/php_exe'
require 'nokogiri' require 'nokogiri'
require 'uri' require 'uri'
class MetasploitModule < Msf::Exploit::Remote class MetasploitModule < Msf::Exploit::Remote
Rank = ExcellentRanking
include Msf::Exploit::Remote::HttpClient include Msf::Exploit::Remote::HttpClient
include Msf::Exploit::FileDropper include Msf::Exploit::FileDropper
@ -62,7 +62,7 @@ class MetasploitModule < Msf::Exploit::Remote
register_options( register_options(
[ [
OptString.new('TARGETURI', [true, 'The base path to Zpanel', '/zpanel']) OptString.new('TARGETURI', [true, 'The base path to Zpanel', '/zpanel'])
], self.class) ])
end end
def get_setting(res, setting_name) def get_setting(res, setting_name)

5
modules/exploits/unix/webapp/spip_connect_exec.rb
View File

@ -3,9 +3,8 @@
# Current source: https://github.com/rapid7/metasploit-framework # Current source: https://github.com/rapid7/metasploit-framework
## ##
require 'msf/core'
class MetasploitModule < Msf::Exploit::Remote class MetasploitModule < Msf::Exploit::Remote
Rank = ExcellentRanking
include Msf::Exploit::Remote::HttpClient include Msf::Exploit::Remote::HttpClient
@ -46,7 +45,7 @@ class MetasploitModule < Msf::Exploit::Remote
register_options( register_options(
[ [
OptString.new('TARGETURI', [true, 'The base path to SPIP application', '/']), OptString.new('TARGETURI', [true, 'The base path to SPIP application', '/']),
], self.class) ])
end end
def check def check

2
modules/exploits/unix/webapp/wp_optimizepress_upload.rb
View File

@ -3,10 +3,10 @@
# Current source: https://github.com/rapid7/metasploit-framework # Current source: https://github.com/rapid7/metasploit-framework
## ##
require 'msf/core'
require 'uri' require 'uri'
class MetasploitModule < Msf::Exploit::Remote class MetasploitModule < Msf::Exploit::Remote
Rank = ExcellentRanking
include Msf::Exploit::Remote::HTTP::Wordpress include Msf::Exploit::Remote::HTTP::Wordpress
include Msf::Exploit::Remote::HttpClient include Msf::Exploit::Remote::HttpClient

3
modules/exploits/windows/ftp/wing_ftp_admin_exec.rb
View File

@ -3,9 +3,8 @@
# Current source: https://github.com/rapid7/metasploit-framework # Current source: https://github.com/rapid7/metasploit-framework
## ##
require 'msf/core'
class MetasploitModule < Msf::Exploit::Remote class MetasploitModule < Msf::Exploit::Remote
Rank = ExcellentRanking
include Msf::Exploit::CmdStager include Msf::Exploit::CmdStager
include Msf::Exploit::Remote::HttpClient include Msf::Exploit::Remote::HttpClient

7
modules/exploits/windows/http/novell_mdm_lfi.rb
View File

@ -3,9 +3,8 @@
# Current source: https://github.com/rapid7/metasploit-framework # Current source: https://github.com/rapid7/metasploit-framework
## ##
require 'msf/core'
class MetasploitModule < Msf::Exploit::Remote class MetasploitModule < Msf::Exploit::Remote
Rank = ExcellentRanking
include Msf::Exploit::Remote::HttpClient include Msf::Exploit::Remote::HttpClient
include Msf::Exploit::EXE include Msf::Exploit::EXE
@ -44,11 +43,11 @@ class MetasploitModule < Msf::Exploit::Remote
register_options([ register_options([
OptString.new('TARGETURI', [true, 'Path to the Novell Zenworks MDM install', '/']), OptString.new('TARGETURI', [true, 'Path to the Novell Zenworks MDM install', '/']),
OptInt.new('RPORT', [true, "Default remote port", 80]) OptInt.new('RPORT', [true, "Default remote port", 80])
], self.class) ])
register_advanced_options([ register_advanced_options([
OptBool.new('SSL', [true, "Negotiate SSL connection", false]) OptBool.new('SSL', [true, "Negotiate SSL connection", false])
], self.class) ])
end end
def get_version def get_version

6
modules/exploits/windows/local/run_as.rb
View File

@ -3,10 +3,8 @@
# Current source: https://github.com/rapid7/metasploit-framework # Current source: https://github.com/rapid7/metasploit-framework
## ##
require 'msf/core'
require 'rex'
class MetasploitModule < Msf::Exploit::Local class MetasploitModule < Msf::Exploit::Local
Rank = ExcellentRanking
include Msf::Post::Windows::Runas include Msf::Post::Windows::Runas
include Msf::Post::Windows::Priv include Msf::Post::Windows::Priv
@ -46,7 +44,7 @@ class MetasploitModule < Msf::Exploit::Local
OptString.new('APPLICATION_NAME', [false, 'Application to be executed (lpApplicationName)', nil ]), OptString.new('APPLICATION_NAME', [false, 'Application to be executed (lpApplicationName)', nil ]),
OptString.new('COMMAND_LINE', [false, 'Command line to execute (lpCommandLine)', nil ]), OptString.new('COMMAND_LINE', [false, 'Command line to execute (lpCommandLine)', nil ]),
OptBool.new('USE_CUSTOM_COMMAND', [true, 'Specify custom APPLICATION_NAME and COMMAND_LINE', false ]) OptBool.new('USE_CUSTOM_COMMAND', [true, 'Specify custom APPLICATION_NAME and COMMAND_LINE', false ])
], self.class) ])
end end
def exploit def exploit