automatic module_metadata_base.json update
This commit is contained in:
parent
15d81ca04c
commit
13cfdd0e44
|
@ -4978,7 +4978,7 @@
|
||||||
"https"
|
"https"
|
||||||
],
|
],
|
||||||
"targets": null,
|
"targets": null,
|
||||||
"mod_time": "2022-03-07 10:57:40 +0000",
|
"mod_time": "2022-10-13 10:13:27 +0000",
|
||||||
"path": "/modules/auxiliary/admin/http/wp_masterstudy_privesc.rb",
|
"path": "/modules/auxiliary/admin/http/wp_masterstudy_privesc.rb",
|
||||||
"is_install_path": true,
|
"is_install_path": true,
|
||||||
"ref_name": "admin/http/wp_masterstudy_privesc",
|
"ref_name": "admin/http/wp_masterstudy_privesc",
|
||||||
|
@ -19585,7 +19585,7 @@
|
||||||
|
|
||||||
],
|
],
|
||||||
"targets": null,
|
"targets": null,
|
||||||
"mod_time": "2021-06-28 10:41:45 +0000",
|
"mod_time": "2022-10-13 10:13:27 +0000",
|
||||||
"path": "/modules/auxiliary/gather/ldap_hashdump.rb",
|
"path": "/modules/auxiliary/gather/ldap_hashdump.rb",
|
||||||
"is_install_path": true,
|
"is_install_path": true,
|
||||||
"ref_name": "gather/ldap_hashdump",
|
"ref_name": "gather/ldap_hashdump",
|
||||||
|
@ -21389,7 +21389,7 @@
|
||||||
"https"
|
"https"
|
||||||
],
|
],
|
||||||
"targets": null,
|
"targets": null,
|
||||||
"mod_time": "2022-09-12 23:46:10 +0000",
|
"mod_time": "2022-10-18 08:47:24 +0000",
|
||||||
"path": "/modules/auxiliary/gather/suite_crm_export_sqli.rb",
|
"path": "/modules/auxiliary/gather/suite_crm_export_sqli.rb",
|
||||||
"is_install_path": true,
|
"is_install_path": true,
|
||||||
"ref_name": "gather/suite_crm_export_sqli",
|
"ref_name": "gather/suite_crm_export_sqli",
|
||||||
|
@ -21618,7 +21618,7 @@
|
||||||
|
|
||||||
],
|
],
|
||||||
"targets": null,
|
"targets": null,
|
||||||
"mod_time": "2022-01-12 16:51:40 +0000",
|
"mod_time": "2022-10-13 10:13:27 +0000",
|
||||||
"path": "/modules/auxiliary/gather/vmware_vcenter_vmdir_ldap.rb",
|
"path": "/modules/auxiliary/gather/vmware_vcenter_vmdir_ldap.rb",
|
||||||
"is_install_path": true,
|
"is_install_path": true,
|
||||||
"ref_name": "gather/vmware_vcenter_vmdir_ldap",
|
"ref_name": "gather/vmware_vcenter_vmdir_ldap",
|
||||||
|
@ -21709,7 +21709,7 @@
|
||||||
"microsoft-ds"
|
"microsoft-ds"
|
||||||
],
|
],
|
||||||
"targets": null,
|
"targets": null,
|
||||||
"mod_time": "2022-10-03 10:41:15 +0000",
|
"mod_time": "2022-10-13 10:13:27 +0000",
|
||||||
"path": "/modules/auxiliary/gather/windows_secrets_dump.rb",
|
"path": "/modules/auxiliary/gather/windows_secrets_dump.rb",
|
||||||
"is_install_path": true,
|
"is_install_path": true,
|
||||||
"ref_name": "gather/windows_secrets_dump",
|
"ref_name": "gather/windows_secrets_dump",
|
||||||
|
@ -22047,7 +22047,7 @@
|
||||||
|
|
||||||
],
|
],
|
||||||
"targets": null,
|
"targets": null,
|
||||||
"mod_time": "2019-07-03 08:33:26 +0000",
|
"mod_time": "2022-10-13 10:13:27 +0000",
|
||||||
"path": "/modules/auxiliary/gather/xymon_info.rb",
|
"path": "/modules/auxiliary/gather/xymon_info.rb",
|
||||||
"is_install_path": true,
|
"is_install_path": true,
|
||||||
"ref_name": "gather/xymon_info",
|
"ref_name": "gather/xymon_info",
|
||||||
|
@ -36630,7 +36630,7 @@
|
||||||
"https"
|
"https"
|
||||||
],
|
],
|
||||||
"targets": null,
|
"targets": null,
|
||||||
"mod_time": "2021-12-14 16:40:52 +0000",
|
"mod_time": "2022-10-13 10:13:27 +0000",
|
||||||
"path": "/modules/auxiliary/scanner/http/wp_abandoned_cart_sqli.rb",
|
"path": "/modules/auxiliary/scanner/http/wp_abandoned_cart_sqli.rb",
|
||||||
"is_install_path": true,
|
"is_install_path": true,
|
||||||
"ref_name": "scanner/http/wp_abandoned_cart_sqli",
|
"ref_name": "scanner/http/wp_abandoned_cart_sqli",
|
||||||
|
@ -36743,7 +36743,7 @@
|
||||||
"https"
|
"https"
|
||||||
],
|
],
|
||||||
"targets": null,
|
"targets": null,
|
||||||
"mod_time": "2021-10-12 18:43:41 +0000",
|
"mod_time": "2022-10-13 10:13:27 +0000",
|
||||||
"path": "/modules/auxiliary/scanner/http/wp_bulletproofsecurity_backups.rb",
|
"path": "/modules/auxiliary/scanner/http/wp_bulletproofsecurity_backups.rb",
|
||||||
"is_install_path": true,
|
"is_install_path": true,
|
||||||
"ref_name": "scanner/http/wp_bulletproofsecurity_backups",
|
"ref_name": "scanner/http/wp_bulletproofsecurity_backups",
|
||||||
|
@ -36803,7 +36803,7 @@
|
||||||
"https"
|
"https"
|
||||||
],
|
],
|
||||||
"targets": null,
|
"targets": null,
|
||||||
"mod_time": "2021-12-14 16:40:52 +0000",
|
"mod_time": "2022-10-13 10:13:27 +0000",
|
||||||
"path": "/modules/auxiliary/scanner/http/wp_chopslider_id_sqli.rb",
|
"path": "/modules/auxiliary/scanner/http/wp_chopslider_id_sqli.rb",
|
||||||
"is_install_path": true,
|
"is_install_path": true,
|
||||||
"ref_name": "scanner/http/wp_chopslider_id_sqli",
|
"ref_name": "scanner/http/wp_chopslider_id_sqli",
|
||||||
|
@ -37073,7 +37073,7 @@
|
||||||
"https"
|
"https"
|
||||||
],
|
],
|
||||||
"targets": null,
|
"targets": null,
|
||||||
"mod_time": "2021-12-15 16:42:46 +0000",
|
"mod_time": "2022-10-13 10:13:27 +0000",
|
||||||
"path": "/modules/auxiliary/scanner/http/wp_email_sub_news_sqli.rb",
|
"path": "/modules/auxiliary/scanner/http/wp_email_sub_news_sqli.rb",
|
||||||
"is_install_path": true,
|
"is_install_path": true,
|
||||||
"ref_name": "scanner/http/wp_email_sub_news_sqli",
|
"ref_name": "scanner/http/wp_email_sub_news_sqli",
|
||||||
|
@ -37184,7 +37184,7 @@
|
||||||
"https"
|
"https"
|
||||||
],
|
],
|
||||||
"targets": null,
|
"targets": null,
|
||||||
"mod_time": "2021-12-15 16:42:46 +0000",
|
"mod_time": "2022-10-13 10:13:27 +0000",
|
||||||
"path": "/modules/auxiliary/scanner/http/wp_learnpress_sqli.rb",
|
"path": "/modules/auxiliary/scanner/http/wp_learnpress_sqli.rb",
|
||||||
"is_install_path": true,
|
"is_install_path": true,
|
||||||
"ref_name": "scanner/http/wp_learnpress_sqli",
|
"ref_name": "scanner/http/wp_learnpress_sqli",
|
||||||
|
@ -37245,7 +37245,7 @@
|
||||||
"https"
|
"https"
|
||||||
],
|
],
|
||||||
"targets": null,
|
"targets": null,
|
||||||
"mod_time": "2021-12-14 16:40:52 +0000",
|
"mod_time": "2022-10-13 10:13:27 +0000",
|
||||||
"path": "/modules/auxiliary/scanner/http/wp_loginizer_log_sqli.rb",
|
"path": "/modules/auxiliary/scanner/http/wp_loginizer_log_sqli.rb",
|
||||||
"is_install_path": true,
|
"is_install_path": true,
|
||||||
"ref_name": "scanner/http/wp_loginizer_log_sqli",
|
"ref_name": "scanner/http/wp_loginizer_log_sqli",
|
||||||
|
@ -37405,7 +37405,7 @@
|
||||||
"https"
|
"https"
|
||||||
],
|
],
|
||||||
"targets": null,
|
"targets": null,
|
||||||
"mod_time": "2022-02-13 15:50:24 +0000",
|
"mod_time": "2022-10-13 10:13:27 +0000",
|
||||||
"path": "/modules/auxiliary/scanner/http/wp_modern_events_calendar_sqli.rb",
|
"path": "/modules/auxiliary/scanner/http/wp_modern_events_calendar_sqli.rb",
|
||||||
"is_install_path": true,
|
"is_install_path": true,
|
||||||
"ref_name": "scanner/http/wp_modern_events_calendar_sqli",
|
"ref_name": "scanner/http/wp_modern_events_calendar_sqli",
|
||||||
|
@ -37513,7 +37513,7 @@
|
||||||
"https"
|
"https"
|
||||||
],
|
],
|
||||||
"targets": null,
|
"targets": null,
|
||||||
"mod_time": "2022-02-13 15:40:57 +0000",
|
"mod_time": "2022-10-13 10:13:27 +0000",
|
||||||
"path": "/modules/auxiliary/scanner/http/wp_registrationmagic_sqli.rb",
|
"path": "/modules/auxiliary/scanner/http/wp_registrationmagic_sqli.rb",
|
||||||
"is_install_path": true,
|
"is_install_path": true,
|
||||||
"ref_name": "scanner/http/wp_registrationmagic_sqli",
|
"ref_name": "scanner/http/wp_registrationmagic_sqli",
|
||||||
|
@ -37575,7 +37575,7 @@
|
||||||
"https"
|
"https"
|
||||||
],
|
],
|
||||||
"targets": null,
|
"targets": null,
|
||||||
"mod_time": "2022-02-24 15:43:21 +0000",
|
"mod_time": "2022-10-13 10:13:27 +0000",
|
||||||
"path": "/modules/auxiliary/scanner/http/wp_secure_copy_content_protection_sqli.rb",
|
"path": "/modules/auxiliary/scanner/http/wp_secure_copy_content_protection_sqli.rb",
|
||||||
"is_install_path": true,
|
"is_install_path": true,
|
||||||
"ref_name": "scanner/http/wp_secure_copy_content_protection_sqli",
|
"ref_name": "scanner/http/wp_secure_copy_content_protection_sqli",
|
||||||
|
@ -37734,7 +37734,7 @@
|
||||||
"https"
|
"https"
|
||||||
],
|
],
|
||||||
"targets": null,
|
"targets": null,
|
||||||
"mod_time": "2021-12-15 16:42:46 +0000",
|
"mod_time": "2022-10-13 10:13:27 +0000",
|
||||||
"path": "/modules/auxiliary/scanner/http/wp_total_upkeep_downloader.rb",
|
"path": "/modules/auxiliary/scanner/http/wp_total_upkeep_downloader.rb",
|
||||||
"is_install_path": true,
|
"is_install_path": true,
|
||||||
"ref_name": "scanner/http/wp_total_upkeep_downloader",
|
"ref_name": "scanner/http/wp_total_upkeep_downloader",
|
||||||
|
@ -50411,7 +50411,7 @@
|
||||||
|
|
||||||
],
|
],
|
||||||
"targets": null,
|
"targets": null,
|
||||||
"mod_time": "2022-05-24 11:50:06 +0000",
|
"mod_time": "2022-10-13 10:13:27 +0000",
|
||||||
"path": "/modules/auxiliary/server/capture/mssql.rb",
|
"path": "/modules/auxiliary/server/capture/mssql.rb",
|
||||||
"is_install_path": true,
|
"is_install_path": true,
|
||||||
"ref_name": "server/capture/mssql",
|
"ref_name": "server/capture/mssql",
|
||||||
|
@ -50645,7 +50645,7 @@
|
||||||
|
|
||||||
],
|
],
|
||||||
"targets": null,
|
"targets": null,
|
||||||
"mod_time": "2022-05-27 14:41:06 +0000",
|
"mod_time": "2022-10-13 10:13:27 +0000",
|
||||||
"path": "/modules/auxiliary/server/capture/smb.rb",
|
"path": "/modules/auxiliary/server/capture/smb.rb",
|
||||||
"is_install_path": true,
|
"is_install_path": true,
|
||||||
"ref_name": "server/capture/smb",
|
"ref_name": "server/capture/smb",
|
||||||
|
@ -50687,7 +50687,7 @@
|
||||||
|
|
||||||
],
|
],
|
||||||
"targets": null,
|
"targets": null,
|
||||||
"mod_time": "2022-04-11 14:26:25 +0000",
|
"mod_time": "2022-10-13 10:13:27 +0000",
|
||||||
"path": "/modules/auxiliary/server/capture/smtp.rb",
|
"path": "/modules/auxiliary/server/capture/smtp.rb",
|
||||||
"is_install_path": true,
|
"is_install_path": true,
|
||||||
"ref_name": "server/capture/smtp",
|
"ref_name": "server/capture/smtp",
|
||||||
|
@ -50763,7 +50763,7 @@
|
||||||
|
|
||||||
],
|
],
|
||||||
"targets": null,
|
"targets": null,
|
||||||
"mod_time": "2022-03-13 13:27:38 +0000",
|
"mod_time": "2022-10-13 10:13:27 +0000",
|
||||||
"path": "/modules/auxiliary/server/capture/vnc.rb",
|
"path": "/modules/auxiliary/server/capture/vnc.rb",
|
||||||
"is_install_path": true,
|
"is_install_path": true,
|
||||||
"ref_name": "server/capture/vnc",
|
"ref_name": "server/capture/vnc",
|
||||||
|
@ -74649,6 +74649,60 @@
|
||||||
],
|
],
|
||||||
"needs_cleanup": true
|
"needs_cleanup": true
|
||||||
},
|
},
|
||||||
|
"exploit_linux/local/zimbra_postfix_priv_esc": {
|
||||||
|
"name": "Zimbra sudo + postfix privilege escalation",
|
||||||
|
"fullname": "exploit/linux/local/zimbra_postfix_priv_esc",
|
||||||
|
"aliases": [
|
||||||
|
|
||||||
|
],
|
||||||
|
"rank": 600,
|
||||||
|
"disclosure_date": "2022-10-13",
|
||||||
|
"type": "exploit",
|
||||||
|
"author": [
|
||||||
|
"EvergreenCartoons",
|
||||||
|
"Ron Bowes"
|
||||||
|
],
|
||||||
|
"description": "This module exploits a vulnerable sudo configuration that permits the\n zimbra user to execute postfix as root. In turn, postfix can execute\n arbitrary shellscripts, which means it can execute a root shell.",
|
||||||
|
"references": [
|
||||||
|
"CVE-2022-3569",
|
||||||
|
"URL-https://twitter.com/ldsopreload/status/1580539318879547392"
|
||||||
|
],
|
||||||
|
"platform": "Linux",
|
||||||
|
"arch": "x86, x64",
|
||||||
|
"rport": null,
|
||||||
|
"autofilter_ports": [
|
||||||
|
|
||||||
|
],
|
||||||
|
"autofilter_services": [
|
||||||
|
|
||||||
|
],
|
||||||
|
"targets": [
|
||||||
|
"Auto"
|
||||||
|
],
|
||||||
|
"mod_time": "2022-10-17 15:00:56 +0000",
|
||||||
|
"path": "/modules/exploits/linux/local/zimbra_postfix_priv_esc.rb",
|
||||||
|
"is_install_path": true,
|
||||||
|
"ref_name": "linux/local/zimbra_postfix_priv_esc",
|
||||||
|
"check": true,
|
||||||
|
"post_auth": false,
|
||||||
|
"default_credential": false,
|
||||||
|
"notes": {
|
||||||
|
"Reliability": [
|
||||||
|
"repeatable-session"
|
||||||
|
],
|
||||||
|
"Stability": [
|
||||||
|
"crash-safe"
|
||||||
|
],
|
||||||
|
"SideEffects": [
|
||||||
|
"ioc-in-logs"
|
||||||
|
]
|
||||||
|
},
|
||||||
|
"session_types": [
|
||||||
|
"shell",
|
||||||
|
"meterpreter"
|
||||||
|
],
|
||||||
|
"needs_cleanup": true
|
||||||
|
},
|
||||||
"exploit_linux/local/zimbra_slapper_priv_esc": {
|
"exploit_linux/local/zimbra_slapper_priv_esc": {
|
||||||
"name": "Zimbra zmslapd arbitrary module load",
|
"name": "Zimbra zmslapd arbitrary module load",
|
||||||
"fullname": "exploit/linux/local/zimbra_slapper_priv_esc",
|
"fullname": "exploit/linux/local/zimbra_slapper_priv_esc",
|
||||||
|
@ -83551,7 +83605,7 @@
|
||||||
"targets": [
|
"targets": [
|
||||||
"Automatic Target"
|
"Automatic Target"
|
||||||
],
|
],
|
||||||
"mod_time": "2021-08-27 17:15:33 +0000",
|
"mod_time": "2022-10-13 10:13:27 +0000",
|
||||||
"path": "/modules/exploits/multi/http/cockpit_cms_rce.rb",
|
"path": "/modules/exploits/multi/http/cockpit_cms_rce.rb",
|
||||||
"is_install_path": true,
|
"is_install_path": true,
|
||||||
"ref_name": "multi/http/cockpit_cms_rce",
|
"ref_name": "multi/http/cockpit_cms_rce",
|
||||||
|
@ -102954,7 +103008,7 @@
|
||||||
"targets": [
|
"targets": [
|
||||||
"Automatic Target"
|
"Automatic Target"
|
||||||
],
|
],
|
||||||
"mod_time": "2021-08-27 17:15:33 +0000",
|
"mod_time": "2022-10-13 10:13:27 +0000",
|
||||||
"path": "/modules/exploits/unix/http/cacti_filter_sqli_rce.rb",
|
"path": "/modules/exploits/unix/http/cacti_filter_sqli_rce.rb",
|
||||||
"is_install_path": true,
|
"is_install_path": true,
|
||||||
"ref_name": "unix/http/cacti_filter_sqli_rce",
|
"ref_name": "unix/http/cacti_filter_sqli_rce",
|
||||||
|
@ -102965,7 +103019,7 @@
|
||||||
"Stability": [
|
"Stability": [
|
||||||
"crash-safe"
|
"crash-safe"
|
||||||
],
|
],
|
||||||
"Side Effects": [
|
"SideEffects": [
|
||||||
"config-changes",
|
"config-changes",
|
||||||
"ioc-in-logs"
|
"ioc-in-logs"
|
||||||
],
|
],
|
||||||
|
@ -203648,7 +203702,7 @@
|
||||||
"autofilter_ports": null,
|
"autofilter_ports": null,
|
||||||
"autofilter_services": null,
|
"autofilter_services": null,
|
||||||
"targets": null,
|
"targets": null,
|
||||||
"mod_time": "2019-11-17 13:44:19 +0000",
|
"mod_time": "2022-10-18 08:47:24 +0000",
|
||||||
"path": "/modules/post/android/gather/hashdump.rb",
|
"path": "/modules/post/android/gather/hashdump.rb",
|
||||||
"is_install_path": true,
|
"is_install_path": true,
|
||||||
"ref_name": "android/gather/hashdump",
|
"ref_name": "android/gather/hashdump",
|
||||||
|
@ -203947,7 +204001,7 @@
|
||||||
"autofilter_ports": null,
|
"autofilter_ports": null,
|
||||||
"autofilter_services": null,
|
"autofilter_services": null,
|
||||||
"targets": null,
|
"targets": null,
|
||||||
"mod_time": "2019-11-02 08:54:04 +0000",
|
"mod_time": "2022-10-13 10:13:27 +0000",
|
||||||
"path": "/modules/post/bsd/gather/hashdump.rb",
|
"path": "/modules/post/bsd/gather/hashdump.rb",
|
||||||
"is_install_path": true,
|
"is_install_path": true,
|
||||||
"ref_name": "bsd/gather/hashdump",
|
"ref_name": "bsd/gather/hashdump",
|
||||||
|
@ -205503,7 +205557,7 @@
|
||||||
"autofilter_ports": null,
|
"autofilter_ports": null,
|
||||||
"autofilter_services": null,
|
"autofilter_services": null,
|
||||||
"targets": null,
|
"targets": null,
|
||||||
"mod_time": "2021-04-21 10:19:30 +0000",
|
"mod_time": "2022-10-13 10:13:27 +0000",
|
||||||
"path": "/modules/post/linux/gather/hashdump.rb",
|
"path": "/modules/post/linux/gather/hashdump.rb",
|
||||||
"is_install_path": true,
|
"is_install_path": true,
|
||||||
"ref_name": "linux/gather/hashdump",
|
"ref_name": "linux/gather/hashdump",
|
||||||
|
@ -205545,7 +205599,7 @@
|
||||||
"autofilter_ports": null,
|
"autofilter_ports": null,
|
||||||
"autofilter_services": null,
|
"autofilter_services": null,
|
||||||
"targets": null,
|
"targets": null,
|
||||||
"mod_time": "2022-09-08 08:48:33 +0000",
|
"mod_time": "2022-10-13 10:13:27 +0000",
|
||||||
"path": "/modules/post/linux/gather/mimipenguin.rb",
|
"path": "/modules/post/linux/gather/mimipenguin.rb",
|
||||||
"is_install_path": true,
|
"is_install_path": true,
|
||||||
"ref_name": "linux/gather/mimipenguin",
|
"ref_name": "linux/gather/mimipenguin",
|
||||||
|
@ -209945,7 +209999,7 @@
|
||||||
"autofilter_ports": null,
|
"autofilter_ports": null,
|
||||||
"autofilter_services": null,
|
"autofilter_services": null,
|
||||||
"targets": null,
|
"targets": null,
|
||||||
"mod_time": "2019-03-24 08:11:24 +0000",
|
"mod_time": "2022-10-13 10:13:27 +0000",
|
||||||
"path": "/modules/post/solaris/gather/hashdump.rb",
|
"path": "/modules/post/solaris/gather/hashdump.rb",
|
||||||
"is_install_path": true,
|
"is_install_path": true,
|
||||||
"ref_name": "solaris/gather/hashdump",
|
"ref_name": "solaris/gather/hashdump",
|
||||||
|
|
Loading…
Reference in New Issue