Metasploit Wrap-Up

Credential gatherers, mix-ins, oh my! We're excited that Metasploit now includes support for 28 related post modules for gathering credentials based on the PackRat toolset. This is a continuation of 5433, 11700, and 11719. It was developed by community contributors Kazuyoshi Maruta, Daniel...

CVE-2021-23445

creationtimestamp| type| source ---|---|--- 2021-09-27 20:35:00+00:00| seen| https://t.me/cibsecurity/29500 2024-05-29 20:13:05+00:00| seen| https://t.me/KMPteam/1841 2024-05-30 01:51:17+00:00| seen| https://t.me/HackerNewsAR/1101 2024-05-30 07:23:02+00:00| seen| https://t.me/KMPteam/1901...

Weakpass - Rule-Based Online Generator To Create A Wordlist Based On A Set Of Words

The tool generates a wordlist based on a set of words entered by the user. For example, during penetration testing, you need to gain access to some service, device, account, or Wi-Fi network that is password protected. For example, let it be the Wi-Fi network of EvilCorp. Sometimes, a password is...

CVE-2021-38406

creationtimestamp| type| source ---|---|--- 2021-09-17 22:24:09+00:00| seen| https://t.me/cibsecurity/29062 2023-06-14 21:10:04+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2023-12-03 23:57:55+00:00| seen| https://t.me/arpsyndicate/1063 2024-12-24 20:32:51+00:00| seen|...

CVE-2021-26086

creationtimestamp| type| source ---|---|--- 2021-08-16 07:14:13+00:00| seen| https://t.me/cibsecurity/27346 2021-10-12 05:21:05+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/680 2021-10-13 11:07:01+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/4511...

CVE-2021-32706

creationtimestamp| type| source ---|---|--- 2021-08-04 23:23:43+00:00| seen| https://t.me/cibsecurity/26847 2022-01-12 15:41:13+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/http/piholedomainsapiexec.rb 2025-02-06 03:13:45+00:00| seen|...

CVE-2021-28164

creationtimestamp| type| source ---|---|--- 2021-07-15 20:26:58+00:00| seen| https://t.me/cibsecurity/26189 2021-09-02 09:51:47+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/491 2021-11-12 18:09:42+00:00| seen|...

PT-2021-10740 · Unknown · Phpgurukul Hospital Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Hospital Management System in PHP version 4.0 Description: The issue concerns a SQL injection vulnerability located in the hmsadminbetweendates-detailsreports.php file. This vulnerability can be exploited by remote unauthenticated...

CVE-2021-22214

creationtimestamp| type| source ---|---|--- 2021-06-20 07:41:59+00:00| seen| https://t.me/pwnwikizhchannel/682 2021-06-26 13:37:04+00:00| seen| https://t.me/bhhub/410 2021-11-01 04:09:28+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/784 2021-11-03 11:00:10+00:00|...

CVE-2017-20005

NGINX before 1.13.6 has a buffer overflow for years that exceed four digits, as demonstrated by a file with a modification date in 1969 that causes an integer overflow or a false modification date far in the future, when encountered by the autoindex module...

CVE-2021-37343

creationtimestamp| type| source ---|---|--- 2021-03-26 23:19:21+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/nagiosxiscanner.rb 2021-08-13 16:40:57+00:00| seen| https://t.me/cibsecurity/27296 2022-02-11 18:04:03+00:00| seen|...

NOTICE-OF-CHANGE ANNOUNCEMENT FOR CITRIX SD-WAN 5100 WANOP Edition and 4100 WANOP Edition

Citrix Systems, Inc. announces a Notice of Status Change for the Citrix SD-WAN formerly NetScaler 5100 WANOP and 4100 WANOP appliances. The tables below explain the Citrix SD-WAN life cycle management milestones as well as important information regarding dates and options during this period. The...

NOTICE-OF-CHANGE ANNOUNCEMENT FOR CITRIX SD-WAN Software 10.2.X Releases

Citrix Systems, Inc. announces a Notice of Status Change for the Citrix SD-WAN Software 10.2.X Releases. The tables below explain the Citrix SD-WAN Software life cycle management milestones as well as important information regarding dates and options during this period. The dates and milestones...

CVE-2020-35226

creationtimestamp| type| source ---|---|--- 2021-03-10 22:53:14+00:00| seen| https://t.me/cibsecurity/24733 2024-10-09 19:00:25+00:00| seen| https://t.me/CyberSecurityTechnologies/2861...

CVE-2021-27931

creationtimestamp| type| source ---|---|--- 2021-03-03 22:45:43+00:00| seen| https://t.me/cibsecurity/24429 2023-04-27 09:58:59+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2021/CVE-2021-27931.yaml 2025-01-26 00:00:00+00:00| seen| The Shadowserver...

CVE-2020-27223

creationtimestamp| type| source ---|---|--- 2021-02-27 00:39:46+00:00| seen| https://t.me/cibsecurity/24264 2021-05-22 02:40:44+00:00| seen| https://t.me/pwnwikizhchannel/495...

CVE-2020-28595

creationtimestamp| type| source ---|---|--- 2021-02-11 00:41:53+00:00| seen| https://t.me/cibsecurity/23417 2023-04-11 02:23:08+00:00| seen| https://t.me/CyberSecurityTechnologies/2560...

CVE-2021-22502

creationtimestamp| type| source ---|---|--- 2021-02-09 00:39:10+00:00| seen| https://t.me/cibsecurity/23262 2021-03-17 11:01:15+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/2925 2021-04-29 18:16:56+00:00| seen|...

CVE-2020-2771

creationtimestamp| type| source ---|---|--- 2021-02-03 12:43:01+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/2629 2024-10-21 17:18:46+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/979...

CVE-2020-7200

creationtimestamp| type| source ---|---|--- 2020-12-19 02:44:20+00:00| seen| https://t.me/cibsecurity/21104 2021-03-08 22:58:04+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/hpesim76amfdeserialization.rb 2024-09-16 16:02:19+00:00|...