metasploit-framework

Commit Graph

Author	SHA1	Message	Date
Chris John Riley	f88ec5cbc8	Add normalize_uri to modules that may have been missed by PULL 1045. Please ensure PULL 1045 is in place prior to looking at this (as it implements normalize_uri) ref --> https://github.com/rapid7/metasploit-framework/pull/1045	2012-11-08 17:42:48 +01:00
James Lee	13a5892e95	Add a mixin for uploading/executing bins with PHP And use it in three modules that had copy-paste versions of the same idea.	2012-10-12 02:57:41 -05:00
sinn3r	b4270bb480	Add OSVDB-83767: SFlog Upload Exec Module This module exploits multiiple flaws in SFlog!. By default, the CMS has a default admin cred of "admin:secret", which can be abused to access admin features such as blog management. Through the management interface, we can upload a backdoor that's accessible by any remote user, and then we gain code execution.	2012-09-06 18:30:45 -05:00

Author

SHA1

Message

Date

Chris John Riley

f88ec5cbc8

Add normalize_uri to modules that may have

been missed by PULL 1045.

Please ensure PULL 1045 is in place prior to
looking at this (as it implements normalize_uri)

ref --> https://github.com/rapid7/metasploit-framework/pull/1045

2012-11-08 17:42:48 +01:00

James Lee

13a5892e95

Add a mixin for uploading/executing bins with PHP

And use it in three modules that had copy-paste versions of the same
idea.

2012-10-12 02:57:41 -05:00

sinn3r

b4270bb480

Add OSVDB-83767: SFlog Upload Exec Module

This module exploits multiiple flaws in SFlog!. By default, the
CMS has a default admin cred of "admin:secret", which can be
abused to access admin features such as blog management.  Through
the management interface, we can upload a backdoor that's accessible
by any remote user, and then we gain code execution.

2012-09-06 18:30:45 -05:00

3 Commits (08ba2c70d3f0a4a2908b5f933e7fff314252b223)