Lucene search
K

31 matches found

Metasploit
Metasploit
added 5 days ago25 views

FTP Fetch, Windows Upload/Execute, Reverse Ordinal TCP Stager (No NX or Win7)

Fetch and execute an x86 payload from an FTP server. Uploads an executable and runs it staged. Connect back to the attacker Module Options msf use payload/cmd/windows/ftp/x86/upexec/reverseordtcp msf payloadreverseordtcp show actions ...actions... msf payloadreverseordtcp set ACTION msf...

6.2AI score
Exploits0
Metasploit
Metasploit
added 5 days ago25 views

FTP Fetch, Windows Upload/Execute, Reverse All-Port TCP Stager

Fetch and execute an x86 payload from an FTP server. Uploads an executable and runs it staged. Try to connect back to the attacker, on all possible ports 1-65535, slowly Module Options msf use payload/cmd/windows/ftp/x86/upexec/reversetcpallports msf payloadreversetcpallports show actions...

6.2AI score
Exploits0
Metasploit
Metasploit
added 5 days ago28 views

FTP Fetch, Windows Upload/Execute, Hidden Bind Ipknock TCP Stager

Fetch and execute an x86 payload from an FTP server. Uploads an executable and runs it staged. Listen for a connection. First, the port will need to be knocked from the IP defined in KHOST. This IP will work as an authentication method you can spoof it with tools like hping. After that you could...

6.2AI score
Exploits0
Metasploit
Metasploit
added 5 days ago35 views

FTP Fetch, Windows Upload/Execute, Hidden Bind TCP Stager

Fetch and execute an x86 payload from an FTP server. Uploads an executable and runs it staged. Listen for a connection from a hidden port and spawn a command shell to the allowed host. Module Options msf use payload/cmd/windows/ftp/x86/upexec/bindhiddentcp msf payloadbindhiddentcp show actions...

6.2AI score
Exploits0
Metasploit
Metasploit
added 5 days ago34 views

FTP Fetch, Windows Upload/Execute, Windows x86 Bind Named Pipe Stager

Fetch and execute an x86 payload from an FTP server. Uploads an executable and runs it staged. Listen for a pipe connection Windows x86 Module Options msf use payload/cmd/windows/ftp/x86/upexec/bindnamedpipe msf payloadbindnamedpipe show actions ...actions... msf payloadbindnamedpipe set ACTION m...

6.2AI score
Exploits0
Metasploit
Metasploit
added 2026/04/02 7:2 p.m.206 views

HTTPS Fetch, Windows Upload/Execute, Reverse All-Port TCP Stager

Fetch and execute an x86 payload from an HTTPS server. Uploads an executable and runs it staged. Try to connect back to the attacker, on all possible ports 1-65535, slowly Module Options msf use payload/cmd/windows/https/x86/upexec/reversetcpallports msf payloadreversetcpallports show actions...

6AI score
Exploits0
Metasploit
Metasploit
added 2026/04/02 7:2 p.m.209 views

HTTP Fetch, Windows Upload/Execute, Hidden Bind Ipknock TCP Stager

Fetch and execute an x86 payload from an HTTP server. Uploads an executable and runs it staged. Listen for a connection. First, the port will need to be knocked from the IP defined in KHOST. This IP will work as an authentication method you can spoof it with tools like hping. After that you could...

6AI score
Exploits0
Metasploit
Metasploit
added 2026/04/02 7:2 p.m.161 views

HTTP Fetch, Windows Upload/Execute, Reverse UDP Stager with UUID Support

Fetch and execute an x86 payload from an HTTP server. Uploads an executable and runs it staged. Connect back to the attacker with UUID Support Module Options msf use payload/cmd/windows/http/x86/upexec/reverseudp msf payloadreverseudp show actions ...actions... msf payloadreverseudp set ACTION ms...

6AI score
Exploits0
Positive Technologies
Positive Technologies
added 2025/11/05 12:0 a.m.11 views

PT-2025-45132

A vulnerability in the web UI of Cisco Unified CCX could allow an authenticated, remote attacker to upload and execute arbitrary files. This vulnerability is due to an insufficient input validation associated to specific UI features. An attacker could exploit this vulnerability by uploading a...

6.5CVSS7.3AI score0.00359EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-23919

Malware in sbrugna...

8.8CVSS8.6AI score0.01478EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/03/14 12:0 a.m.12 views

CVE-2024-28424

zenml v0.55.4 was discovered to contain an arbitrary file upload vulnerability in the load function at /materializers/cloudpicklematerializer.py. This vulnerability allows attackers to execute arbitrary code via uploading a crafted file...

8.1AI score0.00713EPSS
Exploits0References1
Metasploit
Metasploit
added 2022/05/11 5:43 p.m.123 views

Powershell Exec, Windows Upload/Execute, Windows x86 Bind Named Pipe Stager

Execute an x86 payload from a command via PowerShell. Uploads an executable and runs it staged. Listen for a pipe connection Windows x86 Module Options msf use payload/cmd/windows/powershell/upexec/bindnamedpipe msf payloadbindnamedpipe show actions ...actions... msf payloadbindnamedpipe set ACTI...

7.2AI score
Exploits0
Metasploit
Metasploit
added 2022/05/11 5:43 p.m.162 views

Powershell Exec, Windows Upload/Execute, Bind TCP Stager (RC4 Stage Encryption, Metasm)

Execute an x86 payload from a command via PowerShell. Uploads an executable and runs it staged. Listen for a connection Module Options msf use payload/cmd/windows/powershell/upexec/bindtcprc4 msf payloadbindtcprc4 show actions ...actions... msf payloadbindtcprc4 set ACTION msf payloadbindtcprc4...

7.2AI score
Exploits0
Metasploit
Metasploit
added 2022/05/11 5:43 p.m.146 views

Powershell Exec, Windows Upload/Execute, Reverse TCP Stager (RC4 Stage Encryption DNS, Metasm)

Execute an x86 payload from a command via PowerShell. Uploads an executable and runs it staged. Connect back to the attacker Module Options msf use payload/cmd/windows/powershell/upexec/reversetcprc4dns msf payloadreversetcprc4dns show actions ...actions... msf payloadreversetcprc4dns set ACTION...

7.1AI score
Exploits0
Metasploit
Metasploit
added 2022/05/11 5:43 p.m.150 views

Powershell Exec, Windows Upload/Execute, Bind IPv6 TCP Stager with UUID Support (Windows x86)

Execute an x86 payload from a command via PowerShell. Uploads an executable and runs it staged. Listen for an IPv6 connection with UUID Support Windows x86 Module Options msf use payload/cmd/windows/powershell/upexec/bindipv6tcpuuid msf payloadbindipv6tcpuuid show actions ...actions... msf...

7.2AI score
Exploits0
Metasploit
Metasploit
added 2022/05/11 5:43 p.m.150 views

Powershell Exec, Windows Upload/Execute, Reverse All-Port TCP Stager

Execute an x86 payload from a command via PowerShell. Uploads an executable and runs it staged. Try to connect back to the attacker, on all possible ports 1-65535, slowly Module Options msf use payload/cmd/windows/powershell/upexec/reversetcpallports msf payloadreversetcpallports show actions...

7.1AI score
Exploits0
OSV
OSV
added 2022/03/17 9:15 p.m.5 views

CVE-2022-26500

Improper limitation of path names in Veeam Backup & Replication 9.5U3, 9.5U4,10.x, and 11.x allows remote authenticated users access to internal API functions that allows attackers to upload and execute arbitrary code...

8.8CVSS7.8AI score0.05942EPSS
Exploits0References3
CNVD
CNVD
added 2020/08/10 12:0 a.m.3 views

flatCore Code Issue Vulnerability

flatCore is a lightweight content management system CMS based on PHP and SQLite. A security vulnerability exists in flatCore versions prior to 1.5.7. An attacker can exploit the vulnerability to upload and execute .php files...

9CVSS7.1AI score0.02429EPSS
Exploits1References1
OSV
OSV
added 2019/07/01 7:15 p.m.5 views

CVE-2019-7669

Prima Systems FlexAir, Versions 2.3.38 and prior. Improper validation of file extensions when uploading files could allow a remote authenticated attacker to upload and execute malicious applications within the application’s web root with root privileges...

8.8CVSS5.9AI score0.31419EPSS
Exploits2References4
BDU FSTEC
BDU FSTEC
added 2019/01/18 12:0 a.m.6 views

The vulnerability of the IIoT Monitor platform, related to the lack of restrictions on file uploads, allows attackers to upload and execute malicious files.

The vulnerability of the IIoT Monitor platform lies in the lack of restrictions on file uploads. Exploiting this vulnerability allows a remote attacker to upload and execute malicious files, which can be automatically processed within the product environment...

9.4CVSS7.6AI score0.3198EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder