Lucene search
+L

43 matches found

kitploit
kitploit
added 2016/02/19 9:30 p.m.22 views

Foolav - Pentest Tool For Antivirus Evasion and Running Arbitrary Payload on Target Wintel Host

Executable compiled with this code is useful during penetration tests where there is a need to execute some payload meterpreter maybe? while being certain that it will not be detected by antivirus software. The only requirement is to be able to upload two files: binary executable and payload file...

7.5AI score
Exploits0References1
seebug
seebug
added 2014/07/01 12:0 a.m.26 views

HP AutoPass License Server File Upload

No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Exploit::Remote::HttpClient include...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.39 views

D-Link DIR615h OS Command Injection

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.24 views

Microsoft SQL Server Payload Execution

No description provided by source. $Id: mssqlpayload.rb 11392 2010-12-21 20:36:34Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of us...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.20 views

SAP Management Console OSExecute Payload Execution

No description provided by source. $Id: sapmgmtconosexecpayload.rb 14048 2011-10-24 16:42:07Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.29 views

VMWare Setuid vmware-mount Unsafe popen(3)

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'rex' require...

7.1AI score
Exploits0
exploitdb
exploitdb
added 2013/08/29 12:0 a.m.41 views

VMware - Setuid VMware-mount Unsafe popen(3) (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'rex' require 'msf/core/post/common' require...

6.9CVSS7.4AI score0.04638EPSS
Exploits4
metasploit
metasploit
added 2013/08/27 4:29 a.m.62 views

VMWare Setuid vmware-mount Unsafe popen(3)

VMWare Workstation up to and including 9.0.2 build-1031769 and Player have a setuid executable called vmware-mount that invokes lsbrelease in the PATH with popen3. Since PATH is user-controlled, and the default system shell on Debian-derived distributions does not drop privs, we can put an...

6.9CVSS6.8AI score0.04638EPSS
Exploits4
zdt
zdt
added 2013/05/20 12:0 a.m.41 views

D-Link DIR615h OS Command Injection Vulnerability

Some D-Link Routers are vulnerable to an authenticated OS command injection on their web interface, where default credentials are admin/admin or admin/password. Since it is a blind os command injection vulnerability, there is no output for the executed command when using the cmd generic payload...

7.7AI score
Exploits0
packetstorm
packetstorm
added 2013/05/20 12:0 a.m.39 views

D-Link DIR615h OS Command Injection

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'D-Link DIR615h OS Command Injection',...

0.1AI score
Exploits0
metasploit
metasploit
added 2013/05/12 1:46 p.m.35 views

SAP Management Console OSExecute Payload Execution

This module executes an arbitrary payload through the SAP Management Console SOAP Interface. A valid username and password for the SAP Management Console must be provided. This module has been tested successfully on both Windows and Linux platforms running SAP Netweaver. In order to exploit a Lin...

7.5AI score
Exploits0
metasploit
metasploit
added 2013/05/06 1:33 p.m.51 views

D-Link DIR615h OS Command Injection

Some D-Link Routers are vulnerable to an authenticated OS command injection on their web interface, where default credentials are admin/admin or admin/password. Since it is a blind os command injection vulnerability, there is no output for the executed command when using the cmd generic payload...

7.8AI score
Exploits0
metasploit
metasploit
added 2013/01/22 12:54 a.m.49 views

SonicWALL GMS 6 Arbitrary File Upload

This module exploits a code execution flaw in SonicWALL GMS. It exploits two vulnerabilities in order to get its objective. An authentication bypass in the Web Administration interface allows to abuse the "appliance" application and upload an arbitrary payload embedded in a JSP. The module has be...

9.8CVSS8.1AI score0.89402EPSS
Exploits9
packetstorm
packetstorm
added 2012/09/06 12:0 a.m.23 views

HP SiteScope Remote Code Execution

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 /Apache-Coyote/ include...

7AI score
Exploits0
zdt
zdt
added 2012/08/30 12:0 a.m.24 views

AP NetWeaver HostControl Command Injection

Exploit for windows platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core'...

7.1AI score
Exploits0
metasploit
metasploit
added 2012/07/30 7:1 a.m.95 views

MS10-104 Microsoft Office SharePoint Server 2007 Remote Code Execution

This module exploits a vulnerability found in SharePoint Server 2007 SP2. The software contains a directory traversal, that allows a remote attacker to write arbitrary files to the filesystem, sending a specially crafted SOAP ConvertFile request to the Office Document Conversions Launcher Service...

7.5CVSS7.8AI score0.93916EPSS
Exploits9
zdt
zdt
added 2011/10/23 12:0 a.m.24 views

SAP Management Console OSExecute Payload Execution

Exploit for php platform in category web applications $Id: sapmgmtconosexecpayload.rb 14048 2011-10-24 16:42:07Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more informati...

7.1AI score
Exploits0
exploitdb
exploitdb
added 2011/02/08 12:0 a.m.219 views

Microsoft SQL Server - Payload Execution (via SQL Injection) (Metasploit)

$Id: mssqlpayloadsqli.rb 11730 2011-02-08 23:31:44Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

6.6AI score
Exploits0
packetstorm
packetstorm
added 2011/01/29 12:0 a.m.84 views

Microsoft SQL Server Payload Execution via SQL injection

$Id: mssqlpayload.rb 11392 2010-12-21 20:36:34Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

10CVSS1.4AI score0.90609EPSS
Exploits8
exploitdb
exploitdb
added 2010/12/21 12:0 a.m.44 views

Microsoft SQL Server - Payload Execution (Metasploit)

$Id: mssqlpayload.rb 11392 2010-12-21 20:36:34Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

6.6AI score
Exploits0
Rows per page
Query Builder