Imran E. Dawoodjee
|
2918acc0d2
|
Added links to functionality and cleaned up `check`
to make it much cleaner per @bcoles's recommendations.
|
2018-12-08 03:17:52 +08:00 |
|
Imran E. Dawoodjee
|
92c56472ba
|
Improved module and added documentation.
|
2018-12-07 03:02:37 +08:00 |
Julien Legras
|
2735c71bda
|
Fixed typos, removed not working cleaning
|
2018-12-04 18:42:54 +01:00 |
asoto-r7
|
c27c149a4d
|
Land #10947, HPE Intelligent Management Center Java Deserialization RCE
|
2018-12-03 17:07:31 -06:00 |
William Vu
|
ab8df35645
|
Add module doc
|
2018-12-01 12:05:08 -06:00 |
Jacob Robles
|
dec08a0b43
|
Land #10954, apache spark unauth rce module
|
2018-11-29 13:56:21 -06:00 |
|
Jacob Robles
|
5180ec4cf8
|
Update documentation
Fix headers and remove options output
|
2018-11-29 08:28:39 -06:00 |
|
Julien Legras
|
2b61c4e118
|
Fixes for PR
|
2018-11-29 15:02:03 +01:00 |
h00die
|
e3e7285288
|
Land #9946 a UEB local priv escalation
|
2018-11-27 21:19:34 -05:00 |
|
h00die
|
38a99ac90a
|
ueb privesc updates
|
2018-11-27 21:18:05 -05:00 |
|
h00die
|
4af5ab3089
|
ueb privesc updates
|
2018-11-27 21:14:05 -05:00 |
Brendan Coles
|
180876d8fc
|
Add check for SMAP
|
2018-11-27 23:24:02 +00:00 |
Brent Cook
|
b05bb616bf
|
Land #10987, add exploit for PHP imap_open function against various web apps
|
2018-11-27 16:44:51 -06:00 |
|
Brent Cook
|
66cae6240f
|
Land #10994, Added exploit for CVE-2018-18955
|
2018-11-27 16:12:05 -06:00 |
Shelby Pace
|
6712363bb5
|
Land #10737, add TeamCity XML-RPC exploit module
|
2018-11-27 14:59:37 -06:00 |
|
Shelby Pace
|
064c79a4ae
|
note about cmd_stager flavor
|
2018-11-27 14:46:19 -06:00 |
Wei Chen
|
d523124faf
|
Land #10965, Add the macOS LPE from pwn2own2018 (CVE-2018-4237)
|
2018-11-27 14:00:35 -06:00 |
|
Brendan Coles
|
c1722a922f
|
Fix markdown
|
2018-11-27 19:43:08 +00:00 |
|
Brendan Coles
|
aae86241ef
|
Update version check
|
2018-11-27 18:13:29 +00:00 |
|
Brent Cook
|
0fddb8e31c
|
Land #10768, Exploit for Netgear CVE-2016-1555
|
2018-11-26 11:45:10 -06:00 |
|
h00die
|
e2d58afe13
|
cleaned up code, added custom
|
2018-11-25 10:59:53 -05:00 |
|
Brendan Coles
|
be6cfde921
|
Land #11015, Fix payload and console check for Xorg_privesc Linux targets
|
2018-11-25 04:51:27 +00:00 |
|
Brendan Coles
|
01ed57cbb3
|
Remove check for nosuid
|
2018-11-25 01:53:07 +00:00 |
|
Brendan Coles
|
f0999e3a7e
|
Add documentation
|
2018-11-25 00:54:58 +00:00 |
Aaron Ringo
|
1783617770
|
consolelock check updated to use id, payload upload changed, documentation updated, misc formatting
|
2018-11-24 15:10:21 -06:00 |
|
h00die
|
945755b058
|
add custom php_imap target
|
2018-11-24 14:18:13 -05:00 |
|
h00die
|
45f2c5beb2
|
update php_imap_open docs
|
2018-11-24 07:26:42 -05:00 |
|
h00die
|
e36cef3b96
|
e107 exploitable now
|
2018-11-23 20:16:53 -05:00 |
|
Brent Cook
|
a59913434d
|
Land #10916, Xorg SUID privesc
|
2018-11-21 19:46:11 -06:00 |
|
h00die
|
4c59a271e2
|
added suitecrm to imap_open exploit
|
2018-11-20 18:33:42 -05:00 |
|
Brent Cook
|
d5d8216377
|
Land #10977, Add documentation and some enhancement to freesshd_authbypass module
|
2018-11-20 11:44:49 -06:00 |
Tim W
|
57bad6b213
|
move offsets to hash
fix
|
2018-11-20 17:58:34 +08:00 |
|
Tim W
|
bee3c3d4d3
|
add documentation
|
2018-11-20 16:53:34 +08:00 |
|
Tim W
|
0649ad9876
|
add documentation
|
2018-11-20 16:09:18 +08:00 |
|
h00die
|
aca3f44c9b
|
fix markdown formatting
|
2018-11-18 21:38:25 -05:00 |
|
h00die
|
4b09584047
|
php_imap_open_rce
|
2018-11-18 21:28:19 -05:00 |
Carsten Maartmann-Moe
|
eab26a04c3
|
Added documentation
|
2018-11-17 09:55:41 +01:00 |
|
Imran E. Dawoodjee
|
0edd3a9138
|
Fixed numbering error in documentation.
|
2018-11-16 21:34:05 +08:00 |
|
Imran E. Dawoodjee
|
08b3efa046
|
Enhanced module and added documentation.
|
2018-11-16 21:18:45 +08:00 |
|
Jacob Robles
|
795aa3c99c
|
Land #10828, git submodule url exec CVE-2018-17456
|
2018-11-14 12:39:13 -06:00 |
|
Julien Legras
|
5f9570cbcf
|
Added WordPress Duplicator <= 1.2.40 and documentation
|
2018-11-14 16:39:42 +01:00 |
|
Aaron Ringo
|
4fc047db87
|
Added advanced option to check console lock on linux systems, default true & updated docs
|
2018-11-13 22:33:12 -06:00 |
|
Shelby Pace
|
ac8932c144
|
update 9631 to a current branch
|
2018-11-13 15:15:25 -06:00 |
|
Aaron Ringo
|
538055c406
|
Initial documentation for Xorg Privesc Module
killed white spaces
|
2018-11-12 15:44:13 -06:00 |
Green-m
|
3be917d0e4
|
Add doc for exploit module spark_unauth_rce.
|
2018-11-12 17:08:36 +08:00 |
|
Brendan Coles
|
1f14a9846d
|
Land #10767, Add Cisco Prime Infrastructure remote root exploit
|
2018-11-10 17:08:16 +00:00 |
|
Wei Chen
|
a32d8083f0
|
Land #10847 - Add blueimp's jQuery (Arbitrary) File Upload
CVE-2018-9206
|
2018-11-05 11:37:20 -06:00 |
|
Brent Cook
|
86469cc5a0
|
Land #10836, Add Morris worm sendmail debug mode exploit
|
2018-11-02 11:17:33 -05:00 |
|
Brent Cook
|
1d81f3764f
|
Land #10700, Add Morris worm fingerd exploit and VAX reverse shell
|
2018-11-02 11:16:46 -05:00 |
|
Shelby Pace
|
6f58a15e00
|
removed template line
|
2018-10-24 15:14:15 -05:00 |
|
Shelby Pace
|
cecc7177f7
|
added documentation for modules
|
2018-10-24 09:47:05 -05:00 |
|
William Vu
|
bf5fe2864f
|
Update module doc
|
2018-10-23 16:28:49 -05:00 |
|
William Vu
|
326597e842
|
Update module doc with new output
|
2018-10-23 07:14:19 -05:00 |
|
William Vu
|
3d06c10ad0
|
Link to Apache AllowOverride directive and change
|
2018-10-23 03:51:16 -05:00 |
|
William Vu
|
a55f7ff30a
|
Clarify vuln (re)discovery vs. disclosure
https://www.bleepingcomputer.com/news/security/jquery-file-upload-plugin-vulnerable-for-8-years-and-only-hackers-knew/
|
2018-10-23 03:22:45 -05:00 |
|
William Vu
|
df23507772
|
Add module doc
|
2018-10-22 23:35:42 -05:00 |
|
William Vu
|
f40647b2a4
|
Link to Docker environment in module doc
|
2018-10-22 18:32:37 -05:00 |
|
William Vu
|
114692ee56
|
Add module doc and promise a Docker environment
|
2018-10-22 18:32:37 -05:00 |
|
Green-m
|
8a89e8c00c
|
Move doc as the module do.
|
2018-10-22 18:10:39 +08:00 |
|
William Vu
|
8a6075c882
|
Add module doc
|
2018-10-20 14:15:26 -05:00 |
|
Wei Chen
|
3cee96d8ed
|
Land #10664, add Windows SetImeInfoEx Win32k NULL Pointer Dereference
|
2018-10-18 14:42:14 -05:00 |
|
Tim W
|
1e5f3f2f7b
|
add documentation
|
2018-10-18 12:45:53 +08:00 |
|
Wei Chen
|
8e442cc980
|
Update documenation
|
2018-10-15 15:45:39 -05:00 |
|
Wei Chen
|
5433d2cca9
|
Sync up upstream master
|
2018-10-15 14:19:07 -05:00 |
Pedro Ribeiro
|
ab63044fe0
|
Update cisco_prime_inf_rce.md
|
2018-10-15 22:37:47 +07:00 |
|
Pedro Ribeiro
|
53f9c359e9
|
Update cisco_prime_inf_rce.md
|
2018-10-15 22:37:22 +07:00 |
|
Pedro Ribeiro
|
38ad735b04
|
Create cisco_prime_inf_rce.md
|
2018-10-15 22:35:26 +07:00 |
|
h00die
|
8877582086
|
Land #10668 rsh stack clash solaris priv esc
|
2018-10-14 10:34:48 -04:00 |
|
William Vu
|
5b14d94957
|
Land #10671, struts2_namespace_ognl updates
There are still some outstanding concerns, but I want to unblock this.
|
2018-10-12 11:08:33 -05:00 |
|
Shelby Pace
|
a67122aaf7
|
updated doc, added x86_64 binary
|
2018-10-11 12:37:51 -05:00 |
|
Shelby Pace
|
04cc40136f
|
changed formatting, deleted post, renamed files
|
2018-10-10 14:41:14 -05:00 |
|
Jacob Robles
|
6544c6636c
|
Add documentation
|
2018-10-10 12:23:52 -05:00 |
Dhiraj Mishra
|
48432491a2
|
Adding documentation
Documentation path: documentation/modules/exploit/windows/local/ms18_8120_win32k_privsec.md
|
2018-10-10 22:11:05 +05:30 |
|
Imran E. Dawoodjee
|
c86f68cb60
|
Minor changes to module, updated documentation.
|
2018-10-09 20:39:00 +06:30 |
|
Imran E. Dawoodjee
|
78624b7020
|
Updated documentation and fixed the code (mostly).
|
2018-10-09 10:52:06 +06:30 |
|
Shelby Pace
|
bed497c6ae
|
Land #10672, Add COMMGR Buffer Overflow module
|
2018-10-08 10:04:52 -05:00 |
|
Imran E. Dawoodjee
|
fcb0b90d7a
|
Fixed numbering in the documentation steps, offed some whitespace,
streamlined the send_request_cgi, removed the conn_check.
|
2018-10-08 15:04:32 +06:30 |
|
Imran E. Dawoodjee
|
f70aa354fc
|
Added documentation for
modules/exploit/linux/http/netgear_unauth_exec.rb
|
2018-10-08 11:35:33 +06:30 |
|
Brent Cook
|
c9ebe5ae23
|
Land #9745, Add ifwatchd QNX privilege escalation exploit module
|
2018-10-06 05:03:50 -04:00 |
|
Brent Cook
|
e2f97c75a0
|
Land #10616, update Unitrends UEB module to support vulnerabilities in version 10
|
2018-10-05 16:20:38 -05:00 |
|
Brent Cook
|
a51243ce91
|
Land #10745, Update lastore_daemon_dbus_priv_esc tested versions
|
2018-10-05 11:35:31 -04:00 |
bwatters-r7
|
28fb27187a
|
Land #10418, Add DCOM/RPC NTLM Reflection (MS16-075) Via Reflective DLL
Merge branch 'land-10418' into upstream-master
|
2018-10-04 16:54:53 -05:00 |
|
bwatters-r7
|
523040e488
|
Add note about compiling problems
|
2018-10-04 16:42:23 -05:00 |
|
Brendan Coles
|
fe7ce02dfd
|
Update tested versions
|
2018-10-04 21:13:21 +00:00 |
|
Jacob Robles
|
071aa04111
|
Land #10738, Add Zahir Enterprise 6 build 10b BOF
|
2018-10-04 11:00:12 -05:00 |
|
Jacob Robles
|
b5c13690c0
|
Add documentation for Zahir Import File Module
|
2018-10-04 10:12:12 -05:00 |
|
Jacob Robles
|
8b955f8ec5
|
Land #10704, Navigate CMS Unauthenticated RCE
|
2018-10-04 06:44:21 -05:00 |
Dylan Pindur
|
11d9b44922
|
Add exploit module for TeamCity Agent XMLRPC
|
2018-10-03 18:33:10 +08:00 |
|
Jacob Robles
|
97729727d8
|
Minor modifications
|
2018-10-02 06:57:04 -05:00 |
|
Tim W
|
dea3f90e0b
|
add documentation with the current status
|
2018-10-01 17:54:00 +08:00 |
Pyriphlegethon
|
2b86297138
|
Refactor
|
2018-09-27 11:16:54 +02:00 |
|
Pyriphlegethon
|
2d568f884e
|
Add documentation for Navigate CMS Unauthenticated Remote Code Execution
|
2018-09-26 22:44:20 +02:00 |
|
Brent Cook
|
1607c2b890
|
Land #10428, Update Windows MySQL UDF files, add docs
|
2018-09-24 21:11:52 -05:00 |
|
asoto-r7
|
d981530f78
|
Update documentation with correct module name and detailed notes about Tomcat versions
|
2018-09-24 12:47:58 -05:00 |
|
h00die
|
b486708b02
|
Land #10663 extremeparr solaris LPE
|
2018-09-23 13:53:18 -04:00 |
|
Brendan Coles
|
7687e6e7b7
|
Update tested versions
|
2018-09-22 03:57:03 +00:00 |
|
bwatters-r7
|
849547793b
|
Land #10643, CVE-2018-8440 ALPC Scheduler
Merge branch 'land-10643' into upstream-master
|
2018-09-21 15:38:45 -05:00 |
|
Jacob Robles
|
47bf780b88
|
specify meterpreter, update documentation
Warning is after spell...
|
2018-09-21 12:31:56 -05:00 |
|
Jacob Robles
|
6db716d2ec
|
Update documentation
|
2018-09-21 07:15:14 -05:00 |
|
Jacob Robles
|
42ccc37bca
|
Added description to module
|
2018-09-19 10:22:51 -05:00 |
|
Jacob Robles
|
05095c8f8d
|
Add documentation
|
2018-09-19 09:29:51 -05:00 |
Hubert Lin
|
36fa8f2ffc
|
Added exploit module for Delta Electronics Delta Industrial Automation COMMGR 1.08 Stack Buffer Overflow.
|
2018-09-19 15:28:46 +08:00 |
|
Hubert Lin
|
827219aff3
|
Revert "Added exploit module for Delta Electronics Delta Industrial Automation COMMGR 1.08 Stack Buffer Overflow"
This reverts commit d06587caef.
|
2018-09-19 15:22:12 +08:00 |
|
Hubert Lin
|
d06587caef
|
Added exploit module for Delta Electronics Delta Industrial Automation COMMGR 1.08 Stack Buffer Overflow
|
2018-09-19 15:09:40 +08:00 |
|
William Vu
|
6a63feced4
|
Merge remote-tracking branch 'upstream/master' into pr/10418
|
2018-09-18 19:54:44 -05:00 |
|
Brendan Coles
|
4fb223b293
|
Add Solaris RSH Stack Clash Privilege Escalation module
|
2018-09-18 17:38:59 +00:00 |
|
Brendan Coles
|
2f5bd4b714
|
Add Solaris 'EXTREMEPARR' dtappgather Privilege Escalation module
|
2018-09-18 07:23:10 +00:00 |
|
Brendan Coles
|
a8c459db18
|
Update description with correct patched release
|
2018-09-13 08:22:13 +00:00 |
|
Brendan Coles
|
0db1c34c40
|
Add check for Solaris system patches
|
2018-09-12 07:36:54 +00:00 |
|
Brendan Coles
|
e75b5592f7
|
Add ForceExploit option
|
2018-09-11 09:23:50 +00:00 |
|
Brendan Coles
|
d658ccf653
|
Add Solaris libnspr NSPR_LOG_FILE Privilege Escalation module
|
2018-09-11 08:11:11 +00:00 |
|
h00die
|
d8f2d08058
|
finish up docs and 10 exploit
|
2018-09-10 21:08:30 -04:00 |
|
h00die
|
589fb4bf3b
|
first try at ueb mix
|
2018-09-09 22:41:01 -04:00 |
|
Wei Chen
|
718aaca0f4
|
Land #10546, Add Apache Struts exploit: CVE-2018-11776
|
2018-09-07 14:54:23 -05:00 |
|
William Vu
|
f34146b288
|
Add module doc
|
2018-09-05 19:57:15 -05:00 |
|
asoto-r7
|
da7a29f715
|
Documentation update
|
2018-08-31 13:57:41 -05:00 |
|
Jacob Robles
|
e49435a766
|
Update weblogic module docs
Update the module docs to match the new name
of the module.
|
2018-08-31 06:00:41 -05:00 |
|
Shelby Pace
|
6ec8522786
|
Land #10482, Add Network Manager VPNC Privesc
|
2018-08-30 10:46:54 -05:00 |
|
Jacob Robles
|
9d3e1c1942
|
Land #10540, weblogic_deserialize, add check method and linux target
|
2018-08-30 06:08:03 -05:00 |
|
Jacob Robles
|
d5ad683ba6
|
More doc updates
|
2018-08-29 10:59:36 -05:00 |
|
Jacob Robles
|
88c908665d
|
Update documentation
|
2018-08-29 06:24:30 -05:00 |
|
Jacob Robles
|
086ec5bdfb
|
Fix generated strings in pdf
|
2018-08-29 06:24:20 -05:00 |
|
asoto-r7
|
b373dcc5d4
|
First draft of module and documentation for struts_namespace_rce against CVE-2018-11776
|
2018-08-28 16:53:26 -05:00 |
|
Jacob Robles
|
94e8cdac37
|
Move files to correct location
|
2018-08-28 12:38:54 -05:00 |
|
Jacob Robles
|
49c5a91fa7
|
Add linux target to weblogic_deserialize module
|
2018-08-28 11:51:04 -05:00 |
|
William Vu
|
672dbb7acb
|
Land #9364, HP PJL/SNMP CVE-2017-2741 exploit
Finally!
|
2018-08-23 22:47:09 -05:00 |
|
h00die
|
b8ce6782d9
|
Land #10517 updated docs for CloudMe Sync
|
2018-08-23 20:54:01 -04:00 |
|
Wei Chen
|
2193dd662d
|
Land #10504, add Foxit Reader UAF Module and Docs
|
2018-08-23 18:56:07 -05:00 |
|
Shelby Pace
|
5f9432ed6a
|
added rca to cloudme doc
|
2018-08-23 16:12:13 -05:00 |
Matthew Kienow
|
ecc6c473d8
|
Add note about unauthenticated telnetd service
|
2018-08-23 15:50:41 -04:00 |
|
Matthew Kienow
|
ee6bf7a77c
|
Fix documentation markdown table format
|
2018-08-23 15:23:41 -04:00 |
|
Matthew Kienow
|
18712c25cd
|
Add uname to module documentation scenario
|
2018-08-23 15:23:41 -04:00 |
|
Matthew Kienow
|
77b77287cc
|
Add module and payload documentation
|
2018-08-23 15:23:40 -04:00 |
Mumbai
|
46b45f379b
|
Add documentation for MS16 Reflection DCOM->RPC
|
2018-08-21 11:27:07 -04:00 |
|
Jacob Robles
|
fd6880d0d0
|
Add Foxit Reader UAF Module and Docs
|
2018-08-21 08:21:51 -05:00 |
|
Tim W
|
b8b48fd37a
|
Land #10313, add linux autostart persistence module
|
2018-08-20 18:17:50 +08:00 |
|
Tim W
|
865898cba7
|
minor fixes
|
2018-08-20 17:51:41 +08:00 |
|
Brendan Coles
|
f09148d843
|
Add documentation
|
2018-08-19 08:20:41 +00:00 |
|
Tim W
|
ac71bc86ee
|
Land #10320, add module for persistence in /etc/rc.local
|
2018-08-19 15:30:50 +08:00 |
|
Tim W
|
e38775b504
|
minor tweaks
|
2018-08-19 15:27:04 +08:00 |
Eliott Teissonniere
|
a22acf3f3e
|
Document autostart module
|
2018-08-17 14:24:28 +08:00 |
Quentin Kaiser
|
e36b027b1f
|
Typo fix + Garfield ref.
|
2018-08-10 22:47:18 +02:00 |
|
Quentin Kaiser
|
01f0a11777
|
Hashicorp Consul RCE via Services API (documentation).
|
2018-08-10 22:45:58 +02:00 |
|
Quentin Kaiser
|
f2a0bf5364
|
Hashicorp Consul RCE via rexec API (documentation).
|
2018-08-10 21:36:09 +02:00 |
|
Jacob Robles
|
66e5685ed2
|
Moved to exploit/windows
|
2018-08-09 11:35:14 -05:00 |
|
Jacob Robles
|
228bd4c3ab
|
Add weblogic_deserialize module CVE-2018-2628
|
2018-08-08 17:55:41 -05:00 |
|
h00die
|
d299831efe
|
updated windows udf files and documentation
|
2018-08-07 14:50:47 -04:00 |
|
Tim W
|
8785ec21b6
|
Land #9884, add linux ufo priv esc module
|
2018-08-02 17:53:36 +08:00 |
|
Wei Chen
|
bcfb3d099b
|
Land #10255, Adding Micro Focus Secure Messaging Gateway RCE
|
2018-07-30 21:07:02 -05:00 |
|
Wei Chen
|
7d08c71722
|
Update documentation about how to make it vulnerable again
|
2018-07-30 21:05:46 -05:00 |
|
William Vu
|
129fd44350
|
Land #10305, SonicWall XML-RPC RCE
|
2018-07-30 14:14:26 -05:00 |
|
William Vu
|
51ffe7abba
|
Add header to doc
|
2018-07-30 14:07:54 -05:00 |
|
Jacob Robles
|
952ab801e8
|
Land #10060, vTiger CRM v6.3.0 Upload RCE
|
2018-07-30 12:32:24 -05:00 |
|
Jacob Robles
|
fe9315dc89
|
Update module, Add documentation
|
2018-07-30 12:11:08 -05:00 |
|
Wei Chen
|
32384cf850
|
Land #10387, Update mov_ss and add mov_ss_dll
|
2018-07-27 14:52:21 -05:00 |
|
bwatters-r7
|
d343458dc5
|
Update documentation with build instructions
remove superfluous directory
|
2018-07-27 11:31:59 -05:00 |
|
bwatters-r7
|
1981c3c24b
|
Fix documentation
|
2018-07-27 11:21:06 -05:00 |
|
bwatters-r7
|
eab62c18c6
|
Update mov_ss and add mov_ss_dll
|
2018-07-27 09:40:34 -05:00 |
|
Wei Chen
|
1bcf2f9b37
|
Land #10383, Add WP Responsive Thumbnail Slider Plugin Exploit Module
|
2018-07-26 23:53:25 -05:00 |
|
Wei Chen
|
72d634b10b
|
Update module and its documentation
|
2018-07-26 23:08:20 -05:00 |
|
Shelby Pace
|
6accca4181
|
added documentation and check method
|
2018-07-26 15:32:37 -05:00 |
|
Wei Chen
|
6c2e8f2402
|
Land #10300, Add root exploit for Axis network cameras
|
2018-07-25 14:46:04 -05:00 |
|
Wei Chen
|
f169afff6a
|
Add documentation and a new reference
|
2018-07-25 14:44:44 -05:00 |
|
h00die
|
f1e1407901
|
add musl-cross info
|
2018-07-21 14:22:27 -04:00 |
|
h00die
|
17b94f7cf3
|
add smap disabling instructions
|
2018-07-21 14:20:24 -04:00 |
|
h00die
|
85c2e5298f
|
patch up docs
|
2018-07-21 14:06:57 -04:00 |
|
h00die
|
4a9e6fac66
|
patch up docs
|
2018-07-21 14:00:29 -04:00 |
|
Brendan Coles
|
19239c72c0
|
Update cmsms_upload_rename_rce check and docs
|
2018-07-19 18:26:42 +00:00 |
|
Wei Chen
|
28e3f3a5f0
|
Land #10327, Add CMS Made Simple Upload/Rename Authenticated RCE
|
2018-07-19 12:18:12 -05:00 |
|
Tim W
|
70a1df70a1
|
Land #9753, Linux BPF sign extension local privesc
|
2018-07-18 18:44:14 +08:00 |
|
Jacob Robles
|
1e004769ca
|
CMS Made Simple Upload/Rename Authenticated RCE
|
2018-07-17 09:00:39 -05:00 |
|
Eliott Teissonniere
|
01e6362828
|
Fix documentation wording
|
2018-07-17 13:01:49 +02:00 |
|
Brendan Coles
|
6bf184dbcf
|
Update tested versions
|
2018-07-17 06:24:16 +00:00 |
|
William Vu
|
9a7c34e6e9
|
Land #10064, Claymore Dual Miner API RCE
|
2018-07-16 18:02:20 -05:00 |
|
Eliott Teissonniere
|
bfd521f2cb
|
Small note about network not available
|
2018-07-16 11:56:55 +02:00 |
|
Eliott Teissonniere
|
aa58634b24
|
Document rc.local
|
2018-07-16 09:34:20 +02:00 |
|
Jacob Robles
|
6e450973b9
|
Land #10295, Add QNAP Q'Center change_passwd Command Execution exploit
|
2018-07-14 10:09:46 -05:00 |
|
Brendan Coles
|
9bdec97b2e
|
Fix bpf_sign_extension_priv_esc
|
2018-07-13 23:01:17 +00:00 |
|
Wei Chen
|
b40a146723
|
Land #10297, Add priv escalation mod for CVE-2018-8897
|
2018-07-13 10:54:25 -05:00 |
|
Wei Chen
|
d7a0d7ecf3
|
Add some documentation for mov_ss.md
|
2018-07-13 01:17:28 -05:00 |
|
Brendan Coles
|
1ad571f136
|
Fix password typo
|
2018-07-13 16:02:15 +10:00 |
|
Brendan Coles
|
392cf3bbe1
|
Are hosts?
|
2018-07-13 15:00:31 +10:00 |
|
Brendan Coles
|
a020d48caf
|
Move module documentation to documentation directory
|
2018-07-13 04:46:25 +00:00 |
|
Brendan Coles
|
358347358f
|
Add documentation
|
2018-07-13 04:18:56 +00:00 |
|
William Vu
|
c9001699cd
|
Land #10027, Hadoop unauthed command execution
|
2018-07-12 21:58:49 -05:00 |
|
William Vu
|
50252c75d6
|
Clean up module
With a little rubocop -a.
|
2018-07-12 21:58:00 -05:00 |
|
William Vu
|
acb20e5a29
|
Land #9780, CouchDB auth bypass and RCE
|
2018-07-12 03:36:17 -05:00 |
|
Shelby Pace
|
1ded8ffb29
|
Land #10260, Add phpMyAdmin v4.8.1/4.8.0 LFI RCE
|
2018-07-11 11:10:52 -05:00 |
|
Shelby Pace
|
10cd6c99d9
|
Land #10231, Monstra Fileupload Exec
|
2018-07-10 14:23:15 -05:00 |
|
Shelby Pace
|
476a3a276f
|
modified capitalization and wording
|
2018-07-10 14:12:02 -05:00 |
|
Brent Cook
|
1af360d7e0
|
Land #10108, add IBM QRadar SIEM exploit
|
2018-07-10 11:52:32 -05:00 |
|
Brent Cook
|
625050767e
|
add module docs
|
2018-07-10 11:51:57 -05:00 |
|
Shelby Pace
|
b5fb970aec
|
Land #10133, Add HID discoveryd RCE exploit
|
2018-07-06 14:32:29 -05:00 |
|
Wei Chen
|
545e91af00
|
Land #10262, Add GitList argument injection exploit module
|
2018-07-06 14:28:20 -05:00 |
|
Jacob Robles
|
fe1b17684a
|
Add Targets and Session file inclusion
|
2018-07-06 12:17:26 -05:00 |
ReverseBrain
|
43d71cdc09
|
Initial Claymore Dual Miner RCE doc commit
|
2018-07-06 02:50:16 +02:00 |
|
Shelby Pace
|
5d0652fab1
|
changed inconsistent capitalization
|
2018-07-05 15:56:41 -05:00 |
|
Shelby Pace
|
2b452d5681
|
added documentation and check
|
2018-07-05 15:47:21 -05:00 |
|
Brent Cook
|
05a0d79be7
|
Land #10219, Add HP VAN SDN Controller exploit
|
2018-07-05 14:21:44 -05:00 |
|
William Vu
|
830c17f07e
|
Update outdated print in module doc
|
2018-07-05 14:18:33 -05:00 |
|
Jacob Robles
|
43096d9d78
|
Add phpMyAdmin v4.8.1/4.8.0 LFI RCE
Module and Doc
|
2018-07-05 13:33:35 -05:00 |
|
William Vu
|
53d5d82498
|
Rename module to match new vector
|
2018-07-05 13:31:16 -05:00 |
flandini
|
b00f0e87e0
|
Add SonicWall XML-RPC Remote Code Execution exploit module
|
2018-07-05 12:06:13 -05:00 |
Mehmet İnce
|
a272dcabd7
|
Fix typos and additional updates regarding to review
|
2018-07-05 13:33:40 +01:00 |
|
Mehmet İnce
|
4c1c2e9288
|
Adding Micro Focus Secure Messaging Gateway RCE
|
2018-07-04 17:47:13 +01:00 |
|
William Vu
|
12a0aaeaf1
|
Add module doc
|
2018-07-03 18:31:43 -05:00 |
|
Shelby Pace
|
8f8d015741
|
changed some wording
|
2018-07-02 09:57:28 -05:00 |
|
Shelby Pace
|
54fce378fa
|
added target versions to documentation
|
2018-07-02 09:20:17 -05:00 |
|
Green-m
|
7a966e7b9d
|
Change unauthorized to unauthenticated
|
2018-07-01 22:43:54 -04:00 |
Ishaq Mohammed
|
32db22804e
|
Docs Update
Docs Update
|
2018-06-30 12:45:43 +05:30 |
|
Ishaq Mohammed
|
128438f444
|
Merge pull request #2 from touhidshaikh/monstra_fileupload_exec
Monstra fileupload exec
|
2018-06-30 12:03:14 +05:30 |
Touhid M Shaikh
|
d0abe843c4
|
monstra_fileupload_exec doc
monstra_fileupload_exec Doc
|
2018-06-30 11:52:43 +05:30 |
|
Shelby Pace
|
3b5555542c
|
add exploit module and documentation
|
2018-06-29 15:17:12 -05:00 |
|
Jacob Robles
|
fc3199259b
|
Land #9958, Nagios xi 2 electric
|
2018-06-29 12:16:18 -05:00 |
|
Jacob Robles
|
675a736ab7
|
Update Docs
|
2018-06-29 11:08:31 -05:00 |
Daniel Teixeira
|
857dc39cd0
|
FTPShell client 6.70 (Enterprise edition)
|
2018-06-27 16:36:04 +01:00 |
|
Brendan Coles
|
b8f0ca2cd7
|
Add documentation
|
2018-06-22 13:53:35 +00:00 |
|
Jacob Robles
|
cb50d0fade
|
Land #9825, Add 'phpMyAdmin Authenticated Remote Code Execution'
|
2018-06-18 08:51:53 -05:00 |
|
Jacob Robles
|
2e2ded22fc
|
Use Gem::Version
Simplify version comparisons
|
2018-06-18 08:35:47 -05:00 |
|
Jacob Robles
|
122ea2ddcb
|
Update module, Add docs
Changed the module to an exploit module and
added documentation.
|
2018-06-18 07:33:05 -05:00 |
|
bwatters-r7
|
29f4870fa0
|
Land #10101, Add glibc 'realpath()' Privilege Escalation exploit
|
2018-06-12 16:41:07 -05:00 |
|
William Vu
|
c3c6bc19da
|
Land #10059, CVE-2018-1111 exploit
|
2018-06-12 15:02:06 -05:00 |
|
William Vu
|
4dd744495d
|
Add basic module doc
|
2018-06-12 15:01:40 -05:00 |
|
Brendan Coles
|
2c0c99e980
|
Add documentation
|
2018-06-03 05:41:53 +00:00 |
|
Brent Cook
|
61a98b94b6
|
Land #9528, WebKit apple safari trident exploit (CVE-2016-4657)
|
2018-06-02 21:52:52 -05:00 |
|
Brent Cook
|
742e7898f4
|
add documentation
|
2018-06-02 21:51:24 -05:00 |
|
bwatters-r7
|
1e57aa5a57
|
Land #9777, Slui File Handler Hijack LPE
|
2018-05-30 15:22:12 -05:00 |
|
Brendan Coles
|
83fceba92f
|
Add documentation
|
2018-05-26 21:51:45 +00:00 |
|
bwatters-r7
|
40d5f46277
|
Lad #10017, D-Link DSL-2750B Unauthenticated OS Command Injection
Merge branch 'land-10017' into upstream-master
|
2018-05-22 10:54:33 -05:00 |
|
Tim W
|
88ab836e15
|
Land #9987, AF_PACKET chocobo_root exploit
|
2018-05-21 17:05:53 +08:00 |
lucyoa
|
6ae55aadd4
|
Fixing documentation, improving exploits code
|
2018-05-20 12:55:46 -04:00 |
|
bwatters-r7
|
294b263159
|
Land #9966, Add Reliable Datagram Sockets (RDS) Privilege Escalation exploit
Merge branch 'land-9966' into upstream-master
|
2018-05-18 17:06:04 -05:00 |
|
Brendan Coles
|
6858a1caf9
|
Add compilation instructions to documentation
|
2018-05-18 22:10:47 +10:00 |
|
Tim W
|
6594cbb5cc
|
Land #9947, AF_PACKET packet_set_ring exploit
|
2018-05-17 18:43:52 +08:00 |
|
William Vu
|
436e414b93
|
Land #7815, CVE-2016-9299 exploit
|
2018-05-16 05:29:41 -05:00 |
Green-m
|
c5bdd2ca9d
|
Add doc for this module
|
2018-05-15 03:47:09 -04:00 |
|
lucyoa
|
8dd7a27f7b
|
Fixes according to code review
|
2018-05-14 05:46:23 -04:00 |
|
lucyoa
|
382364a3ff
|
Adding documentation, improving description
|
2018-05-13 15:04:40 -04:00 |
|
Tim W
|
ed5f2bffa9
|
Land #9919, add libuser roothelper privilege escalation exploit
|
2018-05-12 17:11:21 +08:00 |
|
Jacob Robles
|
9811de430c
|
Land #9878, Add MSF module for EDB 6768, Mantis <= v1.1.3 Post-auth RCE
|
2018-05-09 11:55:22 -05:00 |
|
William Vu
|
0240c3f010
|
Land #9980, PAN-OS readSessionVarsFromFile exploit
|
2018-05-07 14:55:00 -05:00 |
|
Jacob Robles
|
a18459a14c
|
Fix indentation, documentation update
|
2018-05-07 09:22:21 -05:00 |
|
Touhid M Shaikh
|
4c5c8c956c
|
added doc
added doc
|
2018-05-07 18:50:53 +05:30 |
|
Jacob Robles
|
222b1fb27c
|
Land #9944, playsms_filename_exec.rb
|
2018-05-07 07:43:16 -05:00 |
|
Jacob Robles
|
4b8ceab522
|
Fix indentation, update documentation
|
2018-05-07 07:22:53 -05:00 |
|
Brendan Coles
|
2331a610d6
|
Update documentation
|
2018-05-07 07:15:17 +00:00 |
|
Brendan Coles
|
4574de76e7
|
Add documentation
|
2018-05-07 07:11:42 +00:00 |
HD Moore
|
369c74aa19
|
Doc typo
|
2018-05-06 22:32:26 -05:00 |
|
HD Moore
|
dece3e3386
|
Doc update
|
2018-05-06 22:25:55 -05:00 |
|
HD Moore
|
1997a57627
|
Count gooder
|
2018-05-06 22:21:40 -05:00 |