Command Injection

github.com/rancher/rancher is vulnerable to Command Injection. The vulnerability exists because git.go doesn't properly validate user input, allowing an attacker to inject and execute maliciously crafted commands through the rancher host...

Rancher Server - Docker Daemon Code Execution (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Rancher Server - Docker Exploit', 'Description' = %q Utilizing Rancher Server, an attacker can create a docker container with the '/' path mounte...