infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
45,371 Commits
7 Branches
556 Tags
421 MiB
Commit Graph

2552 Commits (c57a9dde087630c333f673e68d5db785a0486528)

Author SHA1 Message Date
William Vu 34a1c48d7c
Land #10671, struts2_namespace_ognl updates 
There are still some outstanding concerns, but I want to unblock this.
 2018-10-12 09:16:44 -07:00
William Vu 12cb3b4d3e
Land #10750, formatting and AKA reference fixes 2018-10-05 01:34:14 -07:00
Jacob Robles ff06f81f89
Land #10704, Navigate CMS Unauthenticated RCE 2018-10-04 04:48:35 -07:00
William Vu b42af6cd96
Land #10728, metadata updates for @rastating 2018-10-02 11:46:30 -07:00
Brent Cook 1ee8734717
Land #10570, AKA Metadata Refactor 2018-09-17 20:31:07 -07:00
William Vu 2ee6a49a27
Land #10649, https://seclists.org references 2018-09-17 15:09:39 -07:00
Wei Chen 3e801c22fb
Land #10546, Add Apache Struts exploit: CVE-2018-11776 2018-09-07 12:56:02 -07:00
William Vu cc7f500b83
Land #10604, CVE for ghostscript_failed_restore 2018-09-07 12:36:01 -07:00
Wei Chen eb39f6da51
Land #10564, Add Ghostscript exploit from taviso 2018-09-05 19:09:11 -07:00
William Vu 4360b9e82e
Land #10566, struts2_rest_xstream normalize_uri 2018-08-30 14:00:53 -07:00
Jacob Robles d7728afe42
Land #10540, weblogic_deserialize, add check method and linux target 2018-08-30 04:13:58 -07:00
William Vu add03ca7f8
Land #10543, struts2_rest_xstream targeting fixes 2018-08-28 16:55:02 -07:00
William Vu 98ee549705
Land #10538, PSH target for struts2_rest_xstream 2018-08-28 16:55:01 -07:00
Brent Cook f22e6ec2bf
Land #10527, Fix msftdiy EDB link check, enable HTTPS 2018-08-27 08:53:05 -07:00
Jacob Robles 376a343472
Land #10487, add php5 session file target 2018-08-27 08:49:42 -07:00
William Vu bf7c530f7e
Land #10456, known_hosts fix for SSH modules 2018-08-16 13:43:26 -07:00
Adam Cammack 43f1f8eeb2
Land #10405, Cleanup dropped files for CMSMS 2018-08-01 12:46:44 -07:00
Jacob Robles 7e180a390c
Land #10060, vTiger CRM v6.3.0 Upload RCE 2018-07-30 10:34:17 -07:00
Wei Chen 3a67d89711
Land #10383, Add WP Responsive Thumbnail Slider Plugin Exploit Module 2018-07-26 21:56:35 -07:00
Wei Chen e075836ad5
Land #10346, update check method and doc for CMS Made Simple 2018-07-20 15:49:07 -07:00
Wei Chen fdc24fe453
Land #10327, Add CMS Made Simple Upload/Rename Authenticated RCE 2018-07-19 10:20:10 -07:00
William Vu 88518ec4ae
Land #10064, Claymore Dual Miner API RCE 2018-07-16 16:04:38 -07:00
William Vu dbd03f9914
Land #10278, gitlist_arg_injection fixes 2018-07-12 17:05:33 -07:00
Wei Chen 465dceb182
Land #10299, Add 88 CVEs to various auxiliary and exploit modules 2018-07-12 16:28:05 -07:00
Shelby Pace 8586e6fc8f
Land #10260, Add phpMyAdmin v4.8.1/4.8.0 LFI RCE 2018-07-12 11:24:03 -05:00
Shelby Pace 45f354e55d
Land #10231, Monstra Fileupload Exec 2018-07-12 11:24:02 -05:00
Jacob Robles d480ee8e20
Land #10275, Update missing CVE references for exploit modules 2018-07-12 11:24:01 -05:00
Wei Chen e915bb0f66
Land #10262, Add GitList argument injection exploit module 2018-07-06 12:30:10 -07:00
Wei Chen d4054c24bd
Land #9896, Java JMX Package Name Randomization 
Land #9896
 2018-07-02 11:43:42 -07:00
William Vu d4dfb98fb9
Land #10207, msftidy fixes 2018-06-26 12:40:50 -07:00
Jacob Robles 95cb9f3654
Land #9825, Add 'phpMyAdmin Authenticated Remote Code Execution' 2018-06-18 06:55:53 -07:00
Brent Cook 0dc0d3c0ba
fix incorrect disclosure date 2018-05-25 03:06:42 -05:00
William Vu 012de0f6b1
Land #10038, struts_code_exec_parameters EXE fix 2018-05-17 08:16:33 -07:00
William Vu cbac801b88
Land #8727, CVE-2017-9791 exploit 2018-05-17 08:16:33 -07:00
Jacob Robles b2b97db28b
Land #9878, Add MSF module for EDB 6768, Mantis <= v1.1.3 Post-auth RCE 2018-05-09 17:48:53 -07:00
Jacob Robles dcbc871883
Land #9988, playsms_uploadcsv_exec 2018-05-07 09:35:08 -07:00
Jacob Robles 75196b4fc6
Land #9944, playsms_filename_exec.rb 2018-05-07 09:35:08 -07:00
Jacob Robles 8739befa70
Land #9821, osCommerce 2.3.4.1 - Remote Code Execution 2018-05-03 09:21:02 -07:00
Aaron Soto c38bca1799
Land #9908, msfd_rce_remote and msfd_rce_browser 2018-04-30 09:49:50 -05:00
Brent Cook 62c6340d70
Land #9794, Added support for regional dialects 2018-04-06 14:20:42 -07:00
Chris Higgins ded6a50883
Land #8539, ProcessMaker Plugin Upload exploit 2018-04-04 19:06:18 -07:00
William Vu b870091380
Land #9423, PSH for jenkins_xstream_deserialize 2018-03-27 14:21:47 -05:00
h00die c56e571b18
Land #9702 exploit for clipbucket 2018-03-27 13:55:43 -05:00
Jacob Robles fbee660136
Land #9554, Eclipse Equinoxe OSGi console RCE 2018-03-07 07:49:31 -08:00
William Vu 3fd2862f76
Land #9639, multi/handler exit on disabled handler 
If DisablePayloadHandler is set, abort instead of hanging.
 2018-03-01 07:48:02 -08:00
Sonny Gonzalez 667cc5bcca
Land #9653, fix Y2k38 issue (until Jan 1, 2038) 2018-03-01 09:28:11 -06:00
Chris Higgins d2c203bcb9
Lands #9504, MagniComp SysInfo privilege escalation 2018-02-20 09:24:13 -06:00
bwatters-r7 64746d8325
Land # 9407, Add BMC Server Automation RSCD Agent RCE exploit module 
Merge branch 'land-9407' into upstream-master
 2018-02-01 11:23:59 -06:00
Aaron Soto 395320ba97 Land #9379, Oracle Weblogic RCE exploit and documentation 2018-01-26 18:08:56 -06:00
Brent Cook 294a8e0ada
Land #9413, Expand the number of class names searched when checking for an exploitable JMX server 2018-01-24 17:12:43 -06:00