Niboucha Redouane
|
3df276230a
|
write whole FTP link, looks like some browsers dropped FTP support, and markdown does not render it as a link
|
2020-08-13 15:19:33 +02:00 |
Niboucha Redouane
|
66d3b1cd59
|
Add exploit for CVE-2019-13372
|
2020-08-13 15:07:11 +02:00 |
Brendan Coles
|
384a71b06a
|
Land #13271, Update auxiliary/server/capture/smtp to store credentials
|
2020-07-11 17:30:06 +00:00 |
h00die
|
85bd740640
|
review comments
|
2020-07-11 15:19:16 -04:00 |
kalba-security
|
df42399f61
|
Add installation instructions to docs
|
2020-07-09 17:20:07 -04:00 |
kalba-security
|
36397a3e8f
|
Add cmdstager support
|
2020-07-09 15:21:12 -05:00 |
kalba-security
|
3eceeca911
|
Add Pandora FMS Events Remote Code Execution module and docs
|
2020-07-09 15:21:12 -05:00 |
Shelby Pace
|
895c170394
|
Land #13769, add FortiMail auth bypass scanner
|
2020-07-09 09:28:45 -05:00 |
Spencer McIntyre
|
16ff439296
|
Land #13807, Add F5 BIG-IP TMUI Directory Traversal and File Upload RCE (CVE-2020-5902)
|
2020-07-07 13:44:01 -04:00 |
William Vu
|
3ec597ce38
|
Update module doc
|
2020-07-07 12:12:38 -05:00 |
Patrick
|
361df36f33
|
Apply suggestions from code review by space-r7
Co-authored-by: Shelby Pace <40177151+space-r7@users.noreply.github.com>
|
2020-07-07 10:56:27 +02:00 |
William Vu
|
ac3b31a911
|
Add module doc
|
2020-07-06 18:07:52 -05:00 |
Shelby Pace
|
a2309f018e
|
Land #13740, add springcloud dir traversal
|
2020-07-06 09:48:40 -05:00 |
Brendan Coles
|
f9a5de87f8
|
Land #13789, Add OpenSIS Unauthenticated PHP Code Execution module
|
2020-07-04 15:49:45 +00:00 |
EgiX
|
d62b8d16c6
|
Update opensis_chain_exec.md
|
2020-07-03 17:43:10 +02:00 |
EgiX
|
ab703f376b
|
Create opensis_chain_exec.md
|
2020-07-01 23:51:17 +02:00 |
gwillcox-r7
|
c311ea5b5b
|
Land #13768, Netgear R6700 Admin Password Reset (CVE-2020-10923 and CVE-2020-10924)
|
2020-07-01 14:58:53 -05:00 |
William Vu
|
08c1402be9
|
Land #13733, AnyDesk GUI CVE-2020-13160 exploit
|
2020-07-01 14:47:07 -05:00 |
Spencer McIntyre
|
a27bf9df38
|
Fix some grammatical mistakes and set a default target for anydesk
|
2020-07-01 15:27:33 -04:00 |
gwillcox-r7
|
fdfef2729f
|
Update documentation and modules to better list the range of versions affected now that we know which versions we can target and the CVE IDs. Also update the firmware links to archive.org links in case they ever get removed which is more common than you think
|
2020-07-01 13:28:46 -05:00 |
gwillcox-r7
|
ddb41d5a50
|
Update module and documentation with new output from the exploit
|
2020-07-01 13:28:32 -05:00 |
gwillcox-r7
|
3db867e5eb
|
Futher updates to the module documentation since technically this module doesn't send the packet to UDP port 23 to enable the telnet server.
|
2020-07-01 13:28:15 -05:00 |
Radek Domanski
|
1e520f27e9
|
Updating md as per comments
|
2020-07-01 13:27:32 -05:00 |
Radek Domanski
|
a19c50044f
|
Fixing firmware download link
|
2020-07-01 13:27:30 -05:00 |
Radek Domanski
|
4a62d473a0
|
Commit initial files
|
2020-07-01 13:26:42 -05:00 |
Dhiraj Mishra
|
532d6f6e39
|
Docs
|
2020-07-01 16:50:33 +04:00 |
Shelby Pace
|
2b1af9acaa
|
Land #13610, add atutor auth dir trav / rce
|
2020-06-29 11:58:34 -05:00 |
William Vu
|
3ba619acee
|
Land #13521, Bolt CMS authenticated RCE
|
2020-06-28 23:50:53 -05:00 |
William Vu
|
b81629d099
|
Clean up module
|
2020-06-28 23:07:10 -05:00 |
William Vu
|
72dbbedcfc
|
Clean up module doc
|
2020-06-26 11:25:41 -05:00 |
gwillcox-r7
|
ad47a2e9c9
|
Land #13770, Update IBM DRM modules with URL and correct versions
|
2020-06-26 10:34:12 -05:00 |
Pedro Ribeiro
|
9995d13316
|
Update IBM DRM RCE docs
|
2020-06-26 11:29:59 +07:00 |
Pedro Ribeiro
|
eb954da04d
|
Fix IBM DRM SSH docs
|
2020-06-26 11:26:47 +07:00 |
Pedro Ribeiro
|
75ed69c7a7
|
update IBM download docs too
|
2020-06-26 11:25:25 +07:00 |
William Vu
|
7273ac1a92
|
Move module to unix/webapp
|
2020-06-25 12:44:42 -05:00 |
William Vu
|
c03c580d12
|
Merge remote-tracking branch 'upstream/master' into pr/13521
|
2020-06-25 12:21:57 -05:00 |
Patrick
|
a17b881c96
|
added more vulnerable versions
|
2020-06-25 18:34:23 +02:00 |
Christophe De La Fuente
|
77276ee3e2
|
Land #13604, Ignition Automation RCE module
|
2020-06-25 18:14:57 +02:00 |
Christophe De La Fuente
|
2203310d64
|
Remove spaces at EOL
|
2020-06-25 18:12:29 +02:00 |
Pedro Ribeiro
|
b630524703
|
Update inductive_ignition_rce.md
|
2020-06-25 22:48:35 +07:00 |
gwillcox-r7
|
0dde85f562
|
Land #13739, Cisco AnyConnect Priv Esc via Path Traversal
|
2020-06-24 17:47:52 -05:00 |
gwillcox-r7
|
15de510623
|
Add in RuboCop and msftidy_docs.rb fixes
|
2020-06-24 17:19:21 -05:00 |
Christophe De La Fuente
|
5f64444d4f
|
Update module and documentation from code review
|
2020-06-24 23:34:26 +02:00 |
Dhiraj Mishra
|
9984cabc02
|
springcloud_traversal2.md
|
2020-06-23 11:12:26 +04:00 |
Christophe De La Fuente
|
3997dbdade
|
Updates from code review
|
2020-06-22 16:06:09 +02:00 |
h00die
|
6e93dcf8c2
|
Land #13645, Trend Micro WebSecurity RCE
|
2020-06-22 06:51:26 -04:00 |
h00die
|
6a3633c2c0
|
fixing up some styles and such
|
2020-06-20 12:05:48 -04:00 |
Christophe De La Fuente
|
2e33241a90
|
Update module and add documentation
|
2020-06-19 20:17:11 +02:00 |
kalba-security
|
57f40053da
|
Improve autoselect (incorporate suggestions from code review)
|
2020-06-18 16:39:11 -04:00 |
Shelby Pace
|
738dd4b5ce
|
Land #12277, add Agent Tesla panel rce module
|
2020-06-18 15:06:15 -05:00 |