122 matches found
Exploit for CVE-2025-34085
CVE-2025-34085 Multi-Target RCE Scanner Mass-exploitation s...
CVE-2025-34085
An unrestricted file upload vulnerability in the WordPress Simple File List plugin prior to version 4.2.3 allows unauthenticated remote attackers to achieve remote code execution. The plugin's upload endpoint ee-upload-engine.php restricts file uploads based on extension, but lacks proper...
CVE-2025-34085
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority as it is a duplicate of CVE-2020-36847...
PT-2025-28831
Name of the Vulnerable Software and Affected Versions: Simple File List plugin for WordPress versions prior to 4.2.3 Description: An unrestricted file upload vulnerability exists in the Simple File List plugin for WordPress. The plugin’s upload endpoint ee-upload-engine.php restricts file uploads...
📄 WordPress Tatsu 3.3.11 Remote Code Execution
This Metasploit module exploits an unauthenticated remote code execution in the Tatsu WordPress plugin in versions 3.3.11 and below. The module uploads a malicious zip with a PHP payload that gets executed in the second part of exploit. This module requires Metasploit:...
OS Command Exec, Unix Command Shell, Bind TCP (via nodejs)
Execute an OS command from PHP. Continually listen for a connection and spawn a command shell via nodejs Module Options msf use payload/php/unix/cmd/bindnodejs msf payloadbindnodejs show actions ...actions... msf payloadbindnodejs set ACTION msf payloadbindnodejs show options ...show and set...
OS Command Exec, Unix Command Shell, Bind TCP (via R)
Execute an OS command from PHP. Continually listen for a connection and spawn a command shell via R Module Options msf use payload/php/unix/cmd/bindr msf payloadbindr show actions ...actions... msf payloadbindr set ACTION msf payloadbindr show options ...show and set options... msf payloadbindr r...
OS Command Exec, Unix Command Shell, Reverse TCP (via jjs)
Execute an OS command from PHP. Connect back and create a command shell via jjs Module Options msf use payload/php/unix/cmd/reversejjs msf payloadreversejjs show actions ...actions... msf payloadreversejjs set ACTION msf payloadreversejjs show options ...show and set options... msf...
OS Command Exec, Unix Command Shell, Reverse TCP SSL (via Ruby)
Execute an OS command from PHP. Connect back and create a command shell via Ruby, uses SSL Module Options msf use payload/php/unix/cmd/reverserubyssl msf payloadreverserubyssl show actions ...actions... msf payloadreverserubyssl set ACTION msf payloadreverserubyssl show options ...show and set...
OS Command Exec, Unix Command Shell, Bind TCP (via jjs)
Execute an OS command from PHP. Listen for a connection and spawn a command shell via jjs Module Options msf use payload/php/unix/cmd/bindjjs msf payloadbindjjs show actions ...actions... msf payloadbindjjs set ACTION msf payloadbindjjs show options ...show and set options... msf payloadbindjjs r...
OS Command Exec, Unix Command Shell, Bind TCP (via Ruby)
Execute an OS command from PHP. Continually listen for a connection and spawn a command shell via Ruby Module Options msf use payload/php/unix/cmd/bindruby msf payloadbindruby show actions ...actions... msf payloadbindruby set ACTION msf payloadbindruby show options ...show and set options... msf...
OS Command Exec, Unix Command Shell, Bind TCP (via Zsh)
Execute an OS command from PHP. Listen for a connection and spawn a command shell via Zsh. Note: Although Zsh is often available, please be aware it isn't usually installed by default. Module Options msf use payload/php/unix/cmd/bindzsh msf payloadbindzsh show actions ...actions... msf...
OS Command Exec, Unix Command, Generic Command Execution
Execute an OS command from PHP. Executes the supplied command Module Options msf use payload/php/unix/cmd/generic msf payloadgeneric show actions ...actions... msf payloadgeneric set ACTION msf payloadgeneric show options ...show and set options... msf payloadgeneric run This module requires...
OS Command Exec, Unix Command Shell, Reverse TCP SSL (via php)
Execute an OS command from PHP. Creates an interactive shell via php, uses SSL Module Options msf use payload/php/unix/cmd/reversephpssl msf payloadreversephpssl show actions ...actions... msf payloadreversephpssl set ACTION msf payloadreversephpssl show options ...show and set options... msf...
OS Command Exec, Unix Command Shell, Reverse TCP (via Python)
Execute an OS command from PHP. Connect back and create a command shell via Python Module Options msf use payload/php/unix/cmd/reversepython msf payloadreversepython show actions ...actions... msf payloadreversepython set ACTION msf payloadreversepython show options ...show and set options... msf...
OS Command Exec, Unix Command Shell, Reverse UDP (via socat)
Execute an OS command from PHP. Creates an interactive shell via socat Module Options msf use payload/php/unix/cmd/reversesocatudp msf payloadreversesocatudp show actions ...actions... msf payloadreversesocatudp set ACTION msf payloadreversesocatudp show options ...show and set options... msf...
OS Command Exec, Unix Command Shell, Reverse TCP (stub)
Execute an OS command from PHP. Creates an interactive shell through an inbound connection stub only, no payload Module Options msf use payload/php/unix/cmd/reversestub msf payloadreversestub show actions ...actions... msf payloadreversestub set ACTION msf payloadreversestub show options ...show...
OS Command Exec, Unix Command Shell, Reverse TCP (via R)
Execute an OS command from PHP. Connect back and create a command shell via R Module Options msf use payload/php/unix/cmd/reverser msf payloadreverser show actions ...actions... msf payloadreverser set ACTION msf payloadreverser show options ...show and set options... msf payloadreverser run This...
PHP Exec, PHP Command Shell, Reverse TCP (via PHP)
Execute a PHP payload as an OS command from a Posix-compatible shell. Reverse PHP connect back shell with checks for disabled functions Module Options msf use payload/cmd/unix/php/reversephp msf payloadreversephp show actions ...actions... msf payloadreversephp set ACTION msf payloadreversephp sh...
PHP Exec, PHP Meterpreter, Bind TCP Stager
Execute a PHP payload as an OS command from a Posix-compatible shell. Run a meterpreter server in PHP. Listen for a connection Module Options msf use payload/cmd/unix/php/meterpreter/bindtcp msf payloadbindtcp show actions ...actions... msf payloadbindtcp set ACTION msf payloadbindtcp show option...