Publique! Framework 2.3 SQL Injection
Publique! Framework version 2.3 suffers from a remote SQL injection vulnerability.
View ArticleMerethis Centreon 2.3.1 Code Execution
The Centreon supervision and monitoring tool provided by Merethis permits remote code execution from the command help web page allowing an attacker to execute arbitrary commands in the context of the...
View ArticleCisco AnyConnect Path Traversal / Privilege Escalation
The installer component of Cisco AnyConnect Secure Mobility Client for Windows prior to version 4.8.02042 is vulnerable to path traversal and allows local attackers to create/overwrite files in...
View ArticleCisco AnyConnect Privilege Escalation
The installer component of Cisco AnyConnect Secure Mobility Client for Windows prior to 4.8.02042 is vulnerable to path traversal and allows local attackers to create/overwrite files in arbitrary...
View ArticleSpamTitan 7.07 Command Injection
This Metasploit module exploits an improper input sanitization in SpamTitan versions 7.01, 7.02, 7.03 and 7.07 to inject command directives into the SNMP configuration file and get remote code...
View ArticleSaltStack Salt API Unauthenticated Remote Command Execution
This Metasploit module leverages an authentication bypass and directory traversal vulnerabilities in Saltstack Salt's REST API to execute commands remotely on the master as the root user. Every 60...
View ArticleGitea Git Hooks Remote Code Execution
This Metasploit module leverages an insecure setting to get remote code execution on the target OS in the context of the user running Gitea. This is possible when the current user is allowed to create...
View ArticleGogs Git Hooks Remote Code Execution
This Metasploit module leverages an insecure setting to get remote code execution on the target OS in the context of the user running Gogs. This is possible when the current user is allowed to create...
View ArticleDocker Container Escape
This Metasploit module leverages a flaw in runc to escape a Docker container and get command execution on the host as root. This vulnerability is identified as CVE-2019-5736. It overwrites the runc...
View ArticlePrint Spooler Remote DLL Injection
The print spooler service can be abused by an authenticated remote attacker to load a DLL through a crafted DCERPC request, resulting in remote code execution as NT AUTHORITY\SYSTEM. This module uses...
View ArticleMyBB Admin Control Remote Code Execution
This Metasploit module exploits an improper input validation vulnerability in MyBB versions prior to 1.8.30 to execute arbitrary code in the context of the user running the application. The MyBB Admin...
View ArticleWebmin Package Updates Command Injection
This Metasploit module exploits an arbitrary command injection in Webmin versions prior to 1.997. Webmin uses the OS package manager (apt, yum, etc.) to perform package updates and installation. Due to...
View ArticleZoho ManageEngine ServiceDesk Plus 14003 Remote Code Execution
This Metasploit module exploits an unauthenticated remote code execution vulnerability that affects Zoho ManageEngine ServiceDesk Plus versions 14003 and below (CVE-2022-47966). Due to a dependency to...
View ArticleManageEngine ADSelfService Plus Unauthenticated SAML Remote Code Execution
This Metasploit module exploits an unauthenticated remote code execution vulnerability that affects Zoho ManageEngine AdSelfService Plus versions 6210 and below. Due to a dependency to an outdated...
View ArticleZoho ManageEngine Endpoint Central / MSP 10.1.2228.10 Remote Code Execution
This Metasploit module exploits an unauthenticated remote code execution vulnerability that affects Zoho ManageEngine Endpoint Central and MSP versions 10.1.2228.10 and below (CVE-2022-47966). Due to a...
View ArticleAncillary Function Driver (AFD) For Winsock Privilege Escalation
A vulnerability exists in the Windows Ancillary Function Driver for Winsock (afd.sys) can be leveraged by an attacker to escalate privileges to those of NT AUTHORITY\SYSTEM. Due to a flaw in...
View ArticleCacti pollers.php SQL Injection / Remote Code Execution
This Metasploit exploit module leverages sql injection and local file inclusion vulnerabilities in Cacti versions prior to 1.2.26 to achieve remote code execution. Authentication is needed and the...
View Article
