Lucene search
K

86 matches found

Metasploit
Metasploit
added 5 days ago19 views

FTP Fetch

Fetch and execute an x86 payload from an FTP server. Module Options msf use payload/cmd/windows/ftp/x86/loadlibrary msf payloadloadlibrary show actions ...actions... msf payloadloadlibrary set ACTION msf payloadloadlibrary show options ...show and set options... msf payloadloadlibrary run This...

6.2AI score
Exploits0
Metasploit
Metasploit
added 5 days ago22 views

FTP Fetch, Find Tag Ordinal Stager

Fetch and execute an x86 payload from an FTP server. Use an established connection Module Options msf use payload/cmd/windows/ftp/x86/patchupmeterpreter/findtag msf payloadfindtag show actions ...actions... msf payloadfindtag set ACTION msf payloadfindtag show options ...show and set options... m...

6.2AI score
Exploits0
Metasploit
Metasploit
added 5 days ago19 views

FTP Fetch, Reverse TCP Stager (IPv6)

Fetch and execute an x86 payload from an FTP server. Connect back to the attacker over IPv6 Module Options msf use payload/cmd/windows/ftp/x86/patchupmeterpreter/reverseipv6tcp msf payloadreverseipv6tcp show actions ...actions... msf payloadreverseipv6tcp set ACTION msf payloadreverseipv6tcp show...

6.2AI score
Exploits0
Metasploit
Metasploit
added 5 days ago23 views

FTP Fetch, Reverse TCP Stager (DNS)

Fetch and execute an x86 payload from an FTP server. Connect back to the attacker Module Options msf use payload/cmd/windows/ftp/x86/patchupmeterpreter/reversetcpdns msf payloadreversetcpdns show actions ...actions... msf payloadreversetcpdns set ACTION msf payloadreversetcpdns show options ...sh...

6.2AI score
Exploits0
Metasploit
Metasploit
added 5 days ago29 views

FTP Fetch, Windows Upload/Execute, Find Tag Ordinal Stager

Fetch and execute an x86 payload from an FTP server. Uploads an executable and runs it staged. Use an established connection Module Options msf use payload/cmd/windows/ftp/x86/upexec/findtag msf payloadfindtag show actions ...actions... msf payloadfindtag set ACTION msf payloadfindtag show option...

6.2AI score
Exploits0
Metasploit
Metasploit
added 5 days ago23 views

FTP Fetch, Windows x64 Reverse HTTP Stager (winhttp)

Fetch and execute an x64 payload from an FTP server. Tunnel communication over HTTP Windows x64 winhttp Module Options msf use payload/cmd/windows/ftp/x64/vncinject/reversewinhttp msf payloadreversewinhttp show actions ...actions... msf payloadreversewinhttp set ACTION msf payloadreversewinhttp...

6.2AI score
Exploits0
Metasploit
Metasploit
added 5 days ago23 views

FTP Fetch, Windows shellcode stage, Reverse Ordinal TCP Stager (No NX or Win7)

Fetch and execute an x86 payload from an FTP server. Custom shellcode stage. Connect back to the attacker Module Options msf use payload/cmd/windows/ftp/x86/custom/reverseordtcp msf payloadreverseordtcp show actions ...actions... msf payloadreverseordtcp set ACTION msf payloadreverseordtcp show...

6.2AI score
Exploits0
Metasploit
Metasploit
added 5 days ago20 views

FTP Fetch, Windows x64 Reverse HTTPS Stager (winhttp)

Fetch and execute an x64 payload from an FTP server. Tunnel communication over HTTPS Windows x64 winhttp Module Options msf use payload/cmd/windows/ftp/x64/meterpreter/reversewinhttps msf payloadreversewinhttps show actions ...actions... msf payloadreversewinhttps set ACTION msf...

6.2AI score
Exploits0
Metasploit
Metasploit
added 5 days ago31 views

FTP Fetch, Find Tag Ordinal Stager

Fetch and execute an x86 payload from an FTP server. Use an established connection Module Options msf use payload/cmd/windows/ftp/x86/peinject/findtag msf payloadfindtag show actions ...actions... msf payloadfindtag set ACTION msf payloadfindtag show options ...show and set options... msf...

6.2AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/06/05 7:16 p.m.12 views

CVE-2026-42075

Evolver is a GEP-powered self-evolving engine for AI agents. Prior to version 1.69.3, a path traversal vulnerability in the skill download fetch command allows attackers to write files to arbitrary locations on the filesystem. The --out= flag accepts user-provided paths without validation, enabli...

8.1CVSS5.6AI score0.00567EPSS
Exploits0References1
NVD
NVD
added 2026/05/04 5:16 p.m.21 views

CVE-2026-42075

Evolver is a GEP-powered self-evolving engine for AI agents. Prior to version 1.69.3, a path traversal vulnerability in the skill download fetch command allows attackers to write files to arbitrary locations on the filesystem. The --out= flag accepts user-provided paths without validation, enabli...

8.1CVSS0.00567EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/04 4:47 p.m.6 views

CVE-2026-42075

Evolver is a GEP-powered self-evolving engine for AI agents. Prior to version 1.69.3, a path traversal vulnerability in the skill download fetch command allows attackers to write files to arbitrary locations on the filesystem. The --out= flag accepts user-provided paths without validation, enabli...

8.1CVSS5.9AI score0.00567EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/05/04 4:47 p.m.16 views

CVE-2026-42075

Evolver (GEP-powered engine) contains a path traversal vulnerability in the fetch (skill download) command prior to version 1.69.3. The --out= flag accepts user-provided paths without validation, enabling an attacker to write files to arbitrary locations on the filesystem and overwrite sensitive ...

8.1CVSS5.9AI score0.00567EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/04 4:47 p.m.38 views

CVE-2026-42075 Evolver: Path Traversal via `--out` flag in `fetch` command allows Arbitrary File Write

Evolver is a GEP-powered self-evolving engine for AI agents. Prior to version 1.69.3, a path traversal vulnerability in the skill download fetch command allows attackers to write files to arbitrary locations on the filesystem. The --out= flag accepts user-provided paths without validation, enabli...

8.1CVSS0.00567EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/04 12:0 a.m.11 views

PT-2026-37049

Name of the Vulnerable Software and Affected Versions Net::IMAP versions prior to 0.4.24 Net::IMAP versions prior to 0.5.14 Net::IMAP versions prior to 0.6.4 Description Several commands in the Net::IMAP Ruby library accept raw string arguments that are sent to the server without validation or...

9.8CVSS5.9AI score0.00813EPSS
Exploits0References33
OSV
OSV
added 2026/04/22 10:6 p.m.6 views

GHSA-R466-RXW4-3J9J Evolver: Path Traversal via `--out` flag in `fetch` command allows Arbitrary File Write

Summary A path traversal vulnerability in the skill download fetch command allows attackers to write files to arbitrary locations on the filesystem. The --out= flag accepts user-provided paths without validation, enabling directory traversal attacks that can overwrite critical system files or...

8.1CVSS6AI score0.00567EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2026/04/22 10:6 p.m.15 views

Evolver: Path Traversal via `--out` flag in `fetch` command allows Arbitrary File Write

Summary A path traversal vulnerability in the skill download fetch command allows attackers to write files to arbitrary locations on the filesystem. The --out= flag accepts user-provided paths without validation, enabling directory traversal attacks that can overwrite critical system files or...

8.1CVSS6AI score0.00567EPSS
Exploits0References4Affected Software1
Metasploit
Metasploit
added 2026/04/02 7:2 p.m.235 views

HTTPS Fetch, Reverse TCP Stager (DNS)

Fetch and execute an x86 payload from an HTTPS server. Connect back to the attacker Module Options msf use payload/cmd/windows/https/x86/vncinject/reversetcpdns msf payloadreversetcpdns show actions ...actions... msf payloadreversetcpdns set ACTION msf payloadreversetcpdns show options ...show an...

6AI score
Exploits0
Metasploit
Metasploit
added 2026/04/02 7:2 p.m.161 views

HTTPS Fetch, Bind TCP Stager (RC4 Stage Encryption, Metasm)

Fetch and execute an x86 payload from an HTTPS server. Listen for a connection Module Options msf use payload/cmd/windows/https/x86/patchupdllinject/bindtcprc4 msf payloadbindtcprc4 show actions ...actions... msf payloadbindtcprc4 set ACTION msf payloadbindtcprc4 show options ...show and set...

6AI score
Exploits0
Metasploit
Metasploit
added 2026/04/02 7:2 p.m.214 views

HTTP Fetch, Reverse TCP Stager (RC4 Stage Encryption, Metasm)

Fetch and execute an x86 payload from an HTTP server. Connect back to the attacker Module Options msf use payload/cmd/windows/http/x86/vncinject/reversetcprc4 msf payloadreversetcprc4 show actions ...actions... msf payloadreversetcprc4 set ACTION msf payloadreversetcprc4 show options ...show and...

6AI score
Exploits0
Rows per page
Query Builder