Lucene search
K

1246 matches found

Metasploit
Metasploit
added yesterday10 views

FTP Fetch

Fetch and execute an x64 payload from an FTP server. Module Options msf use payload/cmd/windows/ftp/x64/downloadexec msf payloaddownloadexec show actions ...actions... msf payloaddownloadexec set ACTION msf payloaddownloadexec show options ...show and set options... msf payloaddownloadexec run Th...

6.2AI score
Exploits0
Metasploit
Metasploit
added yesterday9 views

FTP Fetch, Linux Command Shell, Reverse TCP Inline

Fetch and execute an PPC64 payload from an FTP server. Connect back to attacker and spawn a command shell Module Options msf use payload/cmd/linux/ftp/ppc64/shellreversetcp msf payloadshellreversetcp show actions ...actions... msf payloadshellreversetcp set ACTION msf payloadshellreversetcp show...

6.2AI score
Exploits0
Metasploit
Metasploit
added yesterday10 views

FTP Fetch, Linux x64 Pingback, Reverse TCP Inline

Fetch and execute an x64 payload from an FTP server. Connect back to attacker and report UUID Linux x64 Module Options msf use payload/cmd/linux/ftp/x64/pingbackreversetcp msf payloadpingbackreversetcp show actions ...actions... msf payloadpingbackreversetcp set ACTION msf payloadpingbackreverset...

6.2AI score
Exploits0
Metasploit
Metasploit
added yesterday8 views

FTP Fetch, Reverse TCP Stager

Fetch and execute a x86 payload from an FTP server. Connect back to the attacker Module Options msf use payload/cmd/linux/ftp/x86/meterpreter/reversetcp msf payloadreversetcp show actions ...actions... msf payloadreversetcp set ACTION msf payloadreversetcp show options ...show and set options...

6.2AI score
Exploits0
Metasploit
Metasploit
added yesterday9 views

FTP Fetch, Linux Execute Command

Fetch and execute an RISC-V 32-bit payload from an FTP server. Execute an arbitrary command Module Options msf use payload/cmd/linux/ftp/riscv32le/exec msf payloadexec show actions ...actions... msf payloadexec set ACTION msf payloadexec show options ...show and set options... msf payloadexec run...

6.2AI score
Exploits0
Metasploit
Metasploit
added yesterday8 views

FTP Fetch

Fetch and execute an x64 payload from an FTP server. Module Options msf use payload/cmd/linux/ftp/x64/meterpreterreversehttps msf payloadmeterpreterreversehttps show actions ...actions... msf payloadmeterpreterreversehttps set ACTION msf payloadmeterpreterreversehttps show options ...show and set...

6.2AI score
Exploits0
Nuclei
Nuclei
added 4 days ago51 views

Klog Server <=2.41 - Unauthenticated Command Injection

Klog Server 2.4.1 and prior is susceptible to an unauthenticated command injection vulnerability. The authenticate.php file uses the user HTTP POST parameter in a call to the shellexec PHP function without appropriate input validation, allowing arbitrary command execution as the apache user. The...

10CVSS7.5AI score0.87987EPSS
Exploits8References5
Metasploit
Metasploit
added 2026/06/29 7:4 p.m.143 views

Linux Execute Command

Execute an arbitrary command. Module Options msf use payload/linux/loongarch64/exec msf payloadexec show actions ...actions... msf payloadexec set ACTION msf payloadexec show options ...show and set options... msf payloadexec run frozenstringliteral: true This module requires Metasploit:...

6AI score
Exploits0
Information Security Automation
Information Security Automation
added 2026/06/26 5:0 p.m.5 views

June Linux Patch Wednesday

June Linux Patch Wednesday. A total of 1,888 vulnerabilities 324 in the Linux kernel, and a whopping 728 in Chromium ❗️. For comparison, there were 1,638 vulnerabilities in May. The increase isn't as dramatic as it was from April to May, but it's still a new record. One of the vulnerabilities has...

8.8CVSS7AI score0.01849EPSS
Exploits21
Metasploit
Metasploit
added 2026/06/18 7:1 p.m.174 views

OS Command Exec, Unix Command Shell, Bind TCP (via socat)

Execute an OS command from PHP. Creates an interactive shell via socat Module Options msf use payload/php/unix/cmd/bindsocattcp msf payloadbindsocattcp show actions ...actions... msf payloadbindsocattcp set ACTION msf payloadbindsocattcp show options ...show and set options... msf...

5.9AI score
Exploits0
Metasploit
Metasploit
added 2026/06/18 7:1 p.m.165 views

Unix Command Shell, Bind TCP (via socat)

Creates an interactive shell via socat Module Options msf use payload/cmd/unix/bindsocattcp msf payloadbindsocattcp show actions ...actions... msf payloadbindsocattcp set ACTION msf payloadbindsocattcp show options ...show and set options... msf payloadbindsocattcp run This module requires...

9.2CVSS5.9AI score0.24469EPSS
Exploits3
Packet Storm
Packet Storm
added 2026/06/12 12:0 a.m.77 views

📄 Palo Alto GlobalProtect Authentication Bypass

This Metasploit module exploits an authentication bypass vulnerability in Palo Alto Networks PAN-OS GlobalProtect portal and gateway components. The vulnerability stems from CWE-565: Reliance on Cookies without Validation and Integrity Checking. An unauthenticated remote attacker can forge...

9.1CVSS5.5AI score0.86678EPSS
Exploits11
Packet Storm News
Packet Storm News
added 2026/06/05 12:0 a.m.15 views

ClickFix Server Creation

This Metasploit module creates a web server which hosts a ClickFix type exploit. When a user visits the site they are given instructions on pasting our payload into a run dialog. When using a custom html page, please use INSERTPAYLOADHERE as the spot to put the generated payload in...

5.4AI score
Exploits0
GithubExploit
GithubExploit
added 2026/05/23 11:37 p.m.86 views

programming-for-penetration-testing-buffer-overflow-exploit

Buffer Overflow Exploit in Ruby Overview This project was...

6.1AI score
Exploits0
Packet Storm
Packet Storm
added 2026/05/14 12:0 a.m.73 views

📄 GestioIP 3.5.7 Remote Command Execution

This Metasploit module exploits a command execution via file upload. If GestioIP is configured to use no authentication for admin account, no password is required to exploit the vulnerability. Otherwise, an authenticated user with admin right on the web site is required to exploit. This module...

9.8CVSS5.9AI score0.45109EPSS
Exploits5
Packet Storm News
Packet Storm News
added 2026/05/08 12:0 a.m.17 views

VIM Plugin Persistence

This Metasploit module creates a VIM Plugin which executes a payload on VIM startup...

5.8AI score
Exploits0
Packet Storm
Packet Storm
added 2026/04/24 12:0 a.m.121 views

📄 Microsoft MMC (.MSC) File Execution Abuse Leading / Admin Creation

This Metasploit local Windows exploit module abuses the way Microsoft Management Console MMC processes specially crafted .msc files to achieve arbitrary PowerShell execution when a user opens the file. The payload is designed to create a new local administrator account or execute a custom command...

7CVSS8.2AI score0.31894EPSS
Exploits7
Packet Storm
Packet Storm
added 2026/04/24 12:0 a.m.81 views

📄 MISP 2.5.27 Workflow Engine Cross Site Scripting

This Metasploit auxiliary module targets a potential stored cross site scripting vulnerability in the MISP Workflow Engine. It is designed to interact with the MISP API, create workflows, and inject malicious payloads into workflow data fields...

5AI score
Exploits0
Packet Storm
Packet Storm
added 2026/04/24 12:0 a.m.90 views

📄 NocoBase 2.0.27 Sandbox Escape / Remote Code Execution

This code is a Metasploit Auxiliary module designed to exploit a remote code execution vulnerability in NocoBase versions 2.0.27 and below. It targets a flaw in the server-side script execution engine flownodes that allows breaking out of the JavaScript sandbox...

9.9CVSS6.7AI score0.36503EPSS
Exploits7
Packet Storm
Packet Storm
added 2026/04/22 12:0 a.m.97 views

📄 Dovecot OTP Replay Attack

This Metasploit auxiliary module targets a vulnerability in Dovecot's OTP One-Time Password authentication system that allows potential replay attacks when authentication caching is enabled and username handling is improperly managed...

6.8CVSS5.7AI score0.00338EPSS
Exploits1
Rows per page
Query Builder