Lucene search
K
PacketstormRecent

50738 matches found

Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•162 views

NFR Agent FSFUI Record Arbitrary Remote File Access

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NFR Agent FSFUI Record Arbitrary Remote File Access', 'Description' = %q NFRAgent.exe, a component of Novell File Reporter NFR, allows remote...

10CVSS7AI score0.73514EPSS
Exploits21
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•188 views

Cambium EPMP 1000 Get_chart Command Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Cambium ePMP 1000 'getchart' Command Injection v3.1-3.5-RC7", 'Description' = % This module exploits an OS Command Injection vulnerability in...

9CVSS7AI score0.74556EPSS
Exploits7
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•165 views

Linknat Vos Manager Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Linknat Vos Manager Traversal', 'Description' = %q This module attempts to test whether a file traversal vulnerability is present in version of...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•170 views

NetDecision NOCVision Server Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NetDecision NOCVision Server Directory Traversal', 'Description' = %q This module exploits a directory traversal bug in NetDecision's...

4.3CVSS7AI score0.27397EPSS
Exploits4
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•226 views

Nginx Source Code Disclosure/Download

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Nginx Source Code Disclosure/Download', 'Description' = %q This module exploits a source code disclosure/download vulnerability in versions 0.7 a...

5CVSS7AI score0.71926EPSS
Exploits4
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•276 views

Sage X3 AdxAdmin Login Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'metasploit/framework/loginscanner/x3' require 'metasploit/framework/credentialcollection' class MetasploitModule 'Sage X3 AdxAdmin Login Scanner', 'Description'...

5.3CVSS7AI score0.35792EPSS
Exploits6
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•281 views

Apache Mod_userdir User Enumeration

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Apache "moduserdir" User Enumeration', 'Description' = %qApache with the UserDir directive enabled generates different error codes when a usernam...

5CVSS7AI score0.65563EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•225 views

Dolibarr 16 Pre-auth Contact Database Dump

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Dolibarr 16 pre-auth contact database dump', 'Description' = %q Dolibarr version 16 'Vladimir TOUTAIN', 'Nolan LOSSIGNOL-DRILLIEN' , 'License' =...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•200 views

Chromecast Wifi Enumeration

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Chromecast Wifi Enumeration', 'Description' = %q This module enumerates wireless access points through Chromecast. , 'Author' = 'wvu', 'Reference...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•150 views

S40 0.4.2 CMS Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'S40 0.4.2 CMS Directory Traversal Vulnerability', 'Description' = %q This module exploits a directory traversal vulnerability found in S40 CMS. T...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•145 views

Apache Karaf Default Credentials Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'net/ssh' class MetasploitModule "Apache Karaf Default Credentials Command Execution", 'Description' = %q This module exploits a default misconfiguration flaw on...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•157 views

WordPress GI-Media Library Plugin Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WordPress GI-Media Library Plugin Directory Traversal Vulnerability', 'Description' = %q This module exploits a directory traversal vulnerability...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•171 views

SAP BusinessObjects User Enumeration

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SAP BusinessObjects User Enumeration', 'Description' = %Q This module simply attempts to enumerate SAP BusinessObjects users. The dswsbobje...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•207 views

JBoss Status Servlet Information Gathering

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'JBoss Status Servlet Information Gathering', 'Description' = %q This module queries the JBoss status servlet to collect sensitive information,...

5CVSS6.9AI score0.53728EPSS
Exploits9
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•242 views

Outlook Web App (OWA) / Client Access Server (CAS) IIS HTTP Internal IP Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Outlook Web App OWA / Client Access Server CAS IIS HTTP Internal IP Disclosure', 'Description' = %q This module tests vulnerable IIS HTTP header...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•171 views

HP Intelligent Management FaultDownloadServlet Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HP Intelligent Management FaultDownloadServlet Directory Traversal', 'Description' = %q This module exploits a lack of authentication and a...

7.5CVSS7AI score0.21014EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•197 views

WordPress Email Subscribers And Newsletter Hash SQL Injection Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WordPress Email Subscribers and Newsletter Hash SQLi Scanner', 'Description' = %q Email Subscribers & Newsletters plugin contains an...

9.8CVSS7AI score0.8511EPSS
Exploits7
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•172 views

HTTP Microsoft SQL Injection Table XSS Infection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HTTP Microsoft SQL Injection Table XSS Infection', 'Description' = %q This module implements the mass SQL injection attack in use lately by...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•276 views

NTP Mode 7 GET_RESTRICT DRDoS Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NTP Mode 7 GETRESTRICT DRDoS Scanner', 'Description' = %q This module identifies NTP servers which permit "reslist" queries and obtains the list ...

5CVSS6.7AI score0.97549EPSS
Exploits23
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•326 views

Apache Axis2 Brute Force Utility

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'metasploit/framework/loginscanner/axis2' require 'metasploit/framework/credentialcollection' class MetasploitModule 'Apache Axis2 Brute Force Utility',...

10CVSS7AI score0.89871EPSS
Exploits17
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•158 views

SAP Web GUI Login Brute Forcer

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework This module is based on, inspired by, or is a port of a plugin available in the Onapsis Bizploit Opensource ERP Penetration Testing framework -...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•182 views

HTTP SickRage Password Leak

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HTTP SickRage Password Leak', 'Description' = %q SickRage 'Sven Fassbender', EDB POC 'Shelby Pace' Metasploit Module , 'License' = MSFLICENSE,...

9.8CVSS7AI score0.76519EPSS
Exploits7
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•233 views

FTP Authentication Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'metasploit/framework/credentialcollection' require 'metasploit/framework/loginscanner/ftp' class MetasploitModule 'FTP Authentication Scanner', 'Description' = ...

7.2AI score0.53618EPSS
Exploits41
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•169 views

Novell Groupwise Agents HTTP Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Novell Groupwise Agents HTTP Directory Traversal', 'Description' = %q This module exploits a directory traversal vulnerability in Novell Groupwis...

5CVSS7AI score0.42736EPSS
Exploits4
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•478 views

TVT NVMS-1000 Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'TVT NVMS-1000 Directory Traversal', 'Description' = %q This module exploits an unauthenticated directory traversal vulnerability which exists in...

7.5CVSS7AI score0.96071EPSS
Exploits6
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•271 views

Cerberus FTP Server SFTP Username Enumeration

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'net/ssh' class MetasploitModule 'Cerberus FTP Server SFTP Username Enumeration', 'Description' = %q This module uses a dictionary to brute force valid usernames...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•217 views

Emby SSRF HTTP Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Emby SSRF HTTP Scanner', 'Description' = 'Generates a GET request to the provided web servers and executes an SSRF against the targeted EMBY...

9.8CVSS7AI score0.87154EPSS
Exploits4
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•157 views

WordPress DukaPress Plugin File Read

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WordPress DukaPress Plugin File Read Vulnerability', 'Description' = %q This module exploits a directory traversal vulnerability in WordPress...

5CVSS7AI score0.6846EPSS
Exploits6
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•144 views

ManageEngine DeviceExpert 5.6 ScheduleResultViewer FileName Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ManageEngine DeviceExpert 5.6 ScheduleResultViewer FileName Traversal', 'Description' = %q This module exploits a directory traversal vulnerabili...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•304 views

Cisco IOS HTTP Unauthorized Administrative Access

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Cisco IOS HTTP Unauthorized Administrative Access', 'Description' = %q This module exploits a vulnerability in the Cisco IOS HTTP Server. By...

9.3CVSS7AI score0.6845EPSS
Exploits8
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•207 views

WordPress Subscribe Comments File Read

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WordPress Subscribe Comments File Read Vulnerability', 'Description' = %q This module exploits an authenticated directory traversal vulnerability...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•157 views

TP-Link Wireless Lite N Access Point Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'TP-Link Wireless Lite N Access Point Directory Traversal Vulnerability', 'Description' = %q This module tests whether a directory traversal...

7.8CVSS7AI score0.68716EPSS
Exploits4
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•151 views

Dicoogle PACS Web Server Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Dicoogle PACS Web Server Directory Traversal', 'Description' = %q This module exploits an unauthenticated directory traversal vulnerability in th...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•245 views

Fortinet SSH Backdoor Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Fortinet SSH Backdoor Scanner', 'Description' = %q This module scans for the Fortinet SSH backdoor. , 'Author' = 'operator8203 ', PoC 'wvu' Modul...

10CVSS7AI score0.71268EPSS
Exploits8
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•244 views

HTTP Virtual Host Brute Force Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework May I reuse some methods? require 'cgi' class MetasploitModule 'HTTP Virtual Host Brute Force Scanner', 'Description' = %q This module tries to identify unique virtual...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•152 views

ManageEngine SecurityManager Plus 5.5 Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ManageEngine SecurityManager Plus 5.5 Directory Traversal', 'Description' = %q This module exploits a directory traversal flaw found in...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•170 views

Eaton Xpert Meter SSH Private Key Exposure Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework XXX: This shouldn't be necessary but is now require 'net/ssh' require 'net/ssh/commandstream' class MetasploitModule 'Eaton Xpert Meter SSH Private Key Exposure Scanner'...

10CVSS7.1AI score0.34929EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•227 views

Apache Flink JobManager Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Apache Flink JobManager Traversal', 'Description' = %q This module exploits an unauthenticated directory traversal vulnerability in Apache Flink...

9.1CVSS7.4AI score0.97856EPSS
Exploits14
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•204 views

WordPress Loginizer Log SQL Injection Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WordPress Loginizer log SQLi Scanner', 'Description' = %q Loginizer wordpress plugin contains an unauthenticated timebased SQL injection in...

9.8CVSS7AI score0.53619EPSS
Exploits4
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•167 views

Atlassian Crowd XML Entity Expansion Remote File Access

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Atlassian Crowd XML Entity Expansion Remote File Access', 'Description' = %q This module simply attempts to read a remote file from the server...

9.1CVSS7.4AI score0.66578EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•184 views

Cisco Ironport Bruteforce Login Utility

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Cisco Ironport Bruteforce Login Utility', 'Description' = % This module scans for Cisco Ironport SMA, WSA and ESA web login portals, finds AsyncO...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•174 views

Kodi 17.0 Local File Inclusion

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Kodi 17.0 Local File Inclusion Vulnerability', 'Description' = %q This module exploits a directory traversal flaw found in Kodi before 17.1. ,...

7.5CVSS7AI score0.7763EPSS
Exploits5
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•342 views

Microsoft Exchange Privilege Escalation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft Exchange Privilege Escalation Exploit', 'Description' = %q This module exploits a privilege escalation vulnerability found in Microsoft...

9.3CVSS7AI score0.23799EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•157 views

HP SiteScope SOAP Call GetSiteScopeConfiguration Configuration Access

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HP SiteScope SOAP Call getSiteScopeConfiguration Configuration Access', 'Description' = %q This module exploits an authentication bypass...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•553 views

Joomla API Improper Access Checks

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Joomla API Improper Access Checks', 'Description' = %q Joomla versions between 4.0.0 and 4.2.7, inclusive, contain an improper API access...

5.3CVSS7.2AI score0.99827EPSS
Exploits43
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•197 views

Titan FTP XCRC Directory Traversal Information Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Titan FTP XCRC Directory Traversal Information Disclosure', 'Description' = %q This module exploits a directory traversal vulnerability in the XC...

4CVSS7AI score0.1226EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•218 views

HTTP Git Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HTTP Git Scanner', 'Description' = %q This module can detect situations where there may be information disclosure vulnerabilities that occur when...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•164 views

Carlo Gavazzi Energy Meters Login Brute Force, Extract Info And Dump Plant Database

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Carlo Gavazzi Energy Meters - Login Brute Force, Extract Info and Dump Plant Database', 'Description' = % This module scans for Carlo Gavazzi...

7.5CVSS7.1AI score0.09317EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•213 views

Apache HTTPD Mod_negotiation Filename Bruter

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework modnegotiation bruter http://httpd.apache.org/docs/1.3/content-negotiation.html class MetasploitModule 'Apache HTTPD modnegotiation Filename Bruter', 'Description' = %q...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•342 views

Spring Cloud Config Server Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Directory Traversal in Spring Cloud Config Server', 'Description' = %q This module exploits an unauthenticated directory traversal vulnerability...

7.5CVSS7.4AI score0.95586EPSS
Exploits3
Total number of security vulnerabilities50738