Lucene search
K
PacketstormRecent

50738 matches found

Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•323 views

GitLab GraphQL API User Enumeration

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'GitLab GraphQL API User Enumeration', 'Description' = %q This module queries the GitLab GraphQL API without authentication to acquire the list of...

5.3CVSS7AI score0.80004EPSS
Exploits4
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•326 views

VICIdial Multiple Authenticated SQL Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'VICIdial Multiple Authenticated SQLi', 'Description' = %q This module exploits several authenticated SQL Inject vulnerabilities in VICIdial...

9CVSS7AI score0.03431EPSS
Exploits1
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•145 views

SAP SOAP Service RFC_PING Login Brute Forcer

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework This module is based on, inspired by, or is a port of a plugin available in the Onapsis Bizploit Opensource ERP Penetration Testing framework -...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•246 views

ManageEngine Support Center Plus Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "ManageEngine Support Center Plus Directory Traversal", 'Description' = %q This module exploits a directory traversal vulnerability found in...

5CVSS7.1AI score0.59859EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•165 views

Novell Zenworks Mobile Device Management Admin Credentials

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Novell Zenworks Mobile Device Management Admin Credentials', 'Description' = %q This module attempts to pull the administrator credentials from a...

7.5CVSS7AI score0.68079EPSS
Exploits10
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•136 views

InfoVista VistaPortal Application Bruteforce Login Utility

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'InfoVista VistaPortal Application Bruteforce Login Utility', 'Description' = % This module attempts to scan for InfoVista VistaPortal Web...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•211 views

Telerik Report Server Auth Bypass

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Telerik Report Server Auth Bypass', 'Description' = %q This module exploits an authentication bypass vulnerability in Telerik Report Server...

9.9CVSS7.2AI score0.97482EPSS
Exploits14
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•522 views

Synology Forget Password User Enumeration Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Synology Forget Password User Enumeration Scanner', 'Description' = %q This module attempts to enumerate users on the Synology NAS by sending GET...

5.3CVSS7AI score0.75016EPSS
Exploits6
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•176 views

SAP SOAP RFC PFL_CHECK_OS_FILE_EXISTENCE File Existence Check

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework This module is based on, inspired by, or is a port of a plugin available in the Onapsis Bizploit Opensource ERP Penetration Testing framework -...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•152 views

Simple Web Server 2.3-RC1 Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Simple Web Server 2.3-RC1 Directory Traversal', 'Description' = %q This module exploits a directory traversal vulnerability found in Simple Web...

5CVSS7.1AI score0.17772EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•331 views

Konica Minolta FTP Utility 1.00 Directory Traversal Information Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Konica Minolta FTP Utility 1.00 Directory Traversal Information Disclosure', 'Description' = %q This module exploits a directory traversal...

7.8CVSS7.1AI score0.60676EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•565 views

VNC Authentication None Detection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'VNC Authentication None Detection', 'Description' = 'Detect VNC servers that support the "None" authentication method.', 'References' = 'CVE',...

7.5CVSS6.9AI score0.91522EPSS
Exploits13
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•148 views

RIPS Scanner Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'RIPS Scanner Directory Traversal', 'Description' = %q This module exploits a directory traversal vulnerability in the RIPS Scanner v0.54, allowin...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•186 views

Accellion FTA Statecode Cookie Arbitrary File Read

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Accellion FTA 'statecode' Cookie Arbitrary File Read", 'Description' = %q This module exploits a file disclosure vulnerability in the Accellion...

9.8CVSS7AI score0.84178EPSS
Exploits12
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•363 views

MediaWiki SVG XML Entity Expansion Remote File Access

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'MediaWiki SVG XML Entity Expansion Remote File Access', 'Description' = %q This module attempts to read a remote file from the server using a...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•245 views

Httpdasm Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Httpdasm Directory Traversal', 'Description' = %q This module allows for traversing the file system of a host running httpdasm v0.92. , 'Author' ...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•293 views

Cisco SSL VPN Bruteforce Login Utility

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Cisco SSL VPN Bruteforce Login Utility', 'Description' = % This module scans for Cisco SSL VPN web login portals and performs login brute force t...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•1138 views

MS17-010 SMB Remote Code Execution Detection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'MS17-010 SMB RCE Detection', 'Description' = %q Uses information disclosure to determine if MS17-010 has been patched or not. Specifically, it...

9.3CVSS8.2AI score0.99693EPSS
Exploits93
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•436 views

Cassandra Web File Read

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Cassandra Web File Read Vulnerability', 'Description' = %q This module exploits an unauthenticated directory traversal vulnerability in Cassandra...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•160 views

SAP Management Console Brute Force

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SAP Management Console Brute Force', 'Description' = %q This module simply attempts to brute force the username and password for the SAP Manageme...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•1094 views

Dahua DVR Authentication Bypass Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule %qDahua DVR Auth Bypass Scanner, 'Description' = %qScans for Dahua-based DVRs and then grabs settings. Optionally resets a user's password and...

7.5CVSS7AI score0.70713EPSS
Exploits6
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•399 views

Cisco ASA Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Cisco ASA Directory Traversal', 'Description' = %q This module exploits a directory traversal vulnerability in Cisco's Adaptive Security Applianc...

7.5CVSS6.9AI score0.99903EPSS
Exploits18
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•283 views

Supermicro Onboard IPMI Url_redirect.cgi Authenticated Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'uri' class MetasploitModule 'Supermicro Onboard IPMI urlredirect.cgi Authenticated Directory Traversal', 'Description' = %q This module abuses a directory...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•261 views

Easy File Sharing FTP Server 3.6 Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Easy File Sharing FTP Server 3.6 Directory Traversal', 'Description' = %q This module exploits a directory traversal vulnerability found in Easy...

7.5CVSS7.1AI score0.15348EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•371 views

Apache Reverse Proxy Bypass Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Apache Reverse Proxy Bypass Vulnerability Scanner', 'Description' = %q Scan for poorly configured reverse proxy servers. By default, this module...

5CVSS7.3AI score0.90734EPSS
Exploits12
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•224 views

Sybase Easerver 6.3 Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Sybase Easerver 6.3 Directory Traversal', 'Description' = %q This module exploits a directory traversal vulnerability found in Sybase EAserver's...

5CVSS7AI score0.63612EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•352 views

NFS Mount Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NFS Mount Scanner', 'Description' = %q This module scans NFS mounts and their permissions. , 'Author' = '', 'References' = 'CVE', '1999-0170',...

10CVSS7AI score0.1841EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•171 views

Apple Remote Desktop Root

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Apple Remote Desktop Root Vulnerability', 'Description' = 'Enable and set root account to a chosen password on unpatched macOS High Sierra hosts...

9.3CVSS7AI score0.36886EPSS
Exploits6
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•431 views

Fortinet SSL VPN Bruteforce Login Utility

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Fortinet SSL VPN Bruteforce Login Utility', 'Description' = % This module scans for Fortinet SSL VPN web login portals and performs login brute...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•171 views

IBM WebSphere MQ Channel Name Bruteforce

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'IBM WebSphere MQ Channel Name Bruteforce', 'Description' = 'This module uses a dictionary to bruteforce MQ channel names. For all identified...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•506 views

Log4Shell HTTP Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Log4Shell HTTP Scanner', 'Description' = %q Versions of Apache Log4j2 impacted by CVE-2021-44228 which allow JNDI features used in configuration,...

10CVSS10AI score0.99999EPSS
Exploits353
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•258 views

SAP Host Agent Information Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'rexml/document' class MetasploitModule 'SAP Host Agent Information Disclosure', 'Description' = %q This module attempts to retrieve Computer and OS info from Ho...

5CVSS7.1AI score0.20873EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•256 views

NTP Mode 7 PEER_LIST Denial Of Service Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NTP Mode 7 PEERLIST DoS Scanner', 'Description' = %q This module identifies NTP servers which permit "PEERLIST" queries and return responses that...

5CVSS6.7AI score0.97549EPSS
Exploits23
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•162 views

Spring Cloud Config Server Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Spring Cloud Config Server Directory Traversal', 'Description' = %q This module exploits an unauthenticated directory traversal vulnerability whi...

6.5CVSS7.4AI score0.85295EPSS
Exploits6
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•232 views

Multiple DVR Manufacturers Configuration Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Multiple DVR Manufacturers Configuration Disclosure', 'Description' = %q This module takes advantage of an authentication bypass vulnerability at...

7.5CVSS7AI score0.76109EPSS
Exploits4
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•152 views

Cisco ASA Clientless SSL VPN (WebVPN) Brute-force Login Utility

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Cisco ASA Clientless SSL VPN WebVPN Brute-force Login Utility', 'Description' = %q This module scans for Cisco ASA Clientless SSL VPN WebVPN web...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•455 views

DNS Amplification Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'DNS Amplification Scanner', 'Description' = %q This module can be used to discover DNS servers which expose recursive name lookups which can be...

7.8CVSS7AI score0.5726EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•161 views

HP Intelligent Management IctDownloadServlet Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HP Intelligent Management IctDownloadServlet Directory Traversal', 'Description' = %q This module exploits a lack of authentication and a directo...

7.5CVSS7AI score0.18464EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•461 views

HTTP Open Proxy Detection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HTTP Open Proxy Detection', 'Description' = %q Checks if an HTTP proxy is open. False positive are avoided verifying the HTTP return code and...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•181 views

OpenMind Message-OS Portal Login Brute Force Utility

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'OpenMind Message-OS Portal Login Brute Force Utility', 'Description' = % This module scans for OpenMind Message-OS provisioning web login portal,...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•412 views

Supermicro Onboard IPMI CGI Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'uri' class MetasploitModule 'Supermicro Onboard IPMI CGI Vulnerability Scanner', 'Description' = %q This module checks for known vulnerabilities in the CGI...

10CVSS7AI score0.71929EPSS
Exploits10
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•520 views

Libssh Authentication Bypass Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'libssh Authentication Bypass Scanner', 'Description' = %q This module exploits an authentication bypass in libssh server code where a...

9.1CVSS7AI score0.91789EPSS
Exploits11
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•245 views

LimeSurvey Zip Path Traversals

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'LimeSurvey Zip Path Traversals', 'Description' = %q This module exploits an authenticated path traversal vulnerability found in LimeSurvey versio...

9.8CVSS7AI score0.96986EPSS
Exploits6
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•257 views

Apache ActiveMQ JSP Files Source Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Apache ActiveMQ JSP Files Source Disclosure', 'Description' = %q This module exploits a source code disclosure in Apache ActiveMQ. The...

5CVSS7.4AI score0.78018EPSS
Exploits6
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•208 views

JBoss Status Servlet Information Gathering

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'JBoss Status Servlet Information Gathering', 'Description' = %q This module queries the JBoss status servlet to collect sensitive information,...

5CVSS6.9AI score0.53728EPSS
Exploits9
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•194 views

Ruby On Rails JSON Processor YAML Deserialization Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Ruby on Rails JSON Processor YAML Deserialization Scanner', 'Description' = %q This module attempts to identify Ruby on Rails instances vulnerabl...

7.5CVSS7.4AI score0.99449EPSS
Exploits22
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•205 views

Ruby On Rails XML Processor YAML Deserialization Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Ruby on Rails XML Processor YAML Deserialization Scanner', 'Description' = %q This module attempts to identify Ruby on Rails instances vulnerable...

7.5CVSS7.4AI score0.99449EPSS
Exploits21
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•238 views

Chef Web UI Brute Force Utility

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'metasploit/framework/loginscanner/chefwebui' require 'metasploit/framework/credentialcollection' class MetasploitModule 'Chef Web UI Brute Force Utility',...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•327 views

Apache Axis2 Brute Force Utility

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'metasploit/framework/loginscanner/axis2' require 'metasploit/framework/credentialcollection' class MetasploitModule 'Apache Axis2 Brute Force Utility',...

10CVSS7AI score0.89871EPSS
Exploits17
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•305 views

Cisco IOS HTTP Unauthorized Administrative Access

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Cisco IOS HTTP Unauthorized Administrative Access', 'Description' = %q This module exploits a vulnerability in the Cisco IOS HTTP Server. By...

9.3CVSS7AI score0.6845EPSS
Exploits8
Total number of security vulnerabilities50738