Lucene search
K

5 matches found

Rapid7 Blog
Rapid7 Blog
added 2023/02/17 9:17 p.m.108 views

Metasploit Wrap-Up

Cisco RV Series Auth Bypass and Command Injection Thanks to community contributor neterum, Metasploit framework just gained an awesome new module which targets Cisco Small Business RV Series Routers. The module actually exploits two vulnerabilities, an authentication bypass CVE-2022-20705 and a...

7.5CVSS0.8AI score0.86194EPSS
Exploits8
0day.today
0day.today
added 2023/02/15 12:0 a.m.374 views

GitLab GitHub Repo Import Deserialization Remote Code Execution Exploit

An authenticated user can import a repository from GitHub into GitLab. If a user attempts to import a repo from an attacker-controlled server, the server will reply with a Redis serialization protocol object in the nested defaultbranch. GitLab will cache this object and then deserialize it when...

9.9CVSS9.6AI score0.86194EPSS
Exploits5
GithubExploit
GithubExploit
added 2022/10/14 8:47 p.m.413 views

Exploit for Injection in Gitlab

This is a PoC exploit for CVE-2022-2992, an authenticated remote...

9.9CVSS9.4AI score0.86194EPSS
Exploits5
Circl
Circl
added 2022/10/09 2:7 p.m.11 views

CVE-2022-2992

creationtimestamp| type| source ---|---|--- 2022-10-09 14:07:43+00:00| published-proof-of-concept| https://t.me/intelexch/25958 2022-10-10 07:03:55+00:00| published-proof-of-concept| https://t.me/proxybar/1026 2022-10-11 02:32:29+00:00| exploited| https://t.me/CyberSecurityTechnologies/6946...

9.9CVSS8.6AI score0.86194EPSS
Exploits5References5
GithubExploit
GithubExploit
added 2022/10/08 11:42 a.m.913 views

Exploit for Injection in Gitlab

CVE-2022-2992 Authenticated Remote Command Execution in Gitlab...

9.9CVSS9.9AI score0.86194EPSS
Exploits5
Rows per page
Query Builder