infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Avoid specific versions in module names 

They tend to be a lie and give people the idea that only that version is
vulnerable.
bug/bundler_fix
Tod Beardsley 2014-01-06 13:47:24 -06:00
parent 185e15c50c
commit c0a82ec091
No known key found for this signature in database
GPG Key ID: 1EFFB682ADB9F193
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
modules/exploits/multi/http/vtiger_soap_upload.rb
View File

@ -15,7 +15,7 @@ class Metasploit3 < Msf::Exploit::Remote
def initialize(info = {})
super(update_info(info,
'Name' => 'vTigerCRM v5.4.0 SOAP AddEmailAttachment Arbitrary File Upload',
'Name' => 'vTiger CRM SOAP AddEmailAttachment Arbitrary File Upload',
'Description' => %q{
vTiger CRM allows an user to bypass authentication when requesting SOAP services.
In addition, arbitrary file upload is possible through the AddEmailAttachment SOAP