Lucene search
K
PacketstormRecent

50738 matches found

Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•3602 views

Apache 2.4.49/2.4.50 Traversal Remote Code Execution Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Apache 2.4.49/2.4.50 Traversal RCE scanner', 'Description' = %q This module scans for an unauthenticated RCE vulnerability which exists in Apache...

9.8CVSS7.4AI score0.99992EPSS
Exploits173
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•197 views

Abandoned Cart For WooCommerce SQL Injection Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Abandoned Cart for WooCommerce SQLi Scanner', 'Description' = %q Abandoned Cart, a plugin for WordPress which extends the WooCommerce plugin, pri...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•213 views

SAP CTC Service Verb Tampering User Management

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework This module is based on, inspired by, or is a port of a plugin available in the Onapsis Bizploit Opensource ERP Penetration Testing framework -...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/09/01 12:0 a.m.•222 views

Apache Mod_cgi Bash Environment Variable Injection (Shellshock) Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Apache modcgi Bash Environment Variable Injection Shellshock Scanner', 'Description' = %q This module scans for the Shellshock vulnerability, a...

10CVSS7.4AI score0.99999EPSS
Exploits148
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•148 views

IBM Lotus Notes Sametime Room Name Bruteforce

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'enumerable' class MetasploitModule 'IBM Lotus Notes Sametime Room Name Bruteforce', 'Description' = %q This module bruteforces Sametime meeting room names via t...

4.3CVSS7.1AI score0.09048EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•435 views

CheckPoint Firewall-1 SecuRemote Topology Service Hostname Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'CheckPoint Firewall-1 SecuRemote Topology Service Hostname Disclosure', 'Description' = %q This module sends a query to the port 264/TCP on...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•193 views

Apache Commons FileUpload and Apache Tomcat Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Apache Commons FileUpload and Apache Tomcat DoS', 'Description' = %q This module triggers an infinite loop in Apache Commons FileUpload 1.0 throu...

7.5CVSS7.2AI score0.83175EPSS
Exploits8
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•144 views

Microsoft Windows Deployment Services Unattend Gatherer

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft Windows Deployment Services Unattend Gatherer', 'Description' = %q This module will search remote file shares for unattended installati...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•178 views

Sielco Sistemi Winlog Remote File Access

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Sielco Sistemi Winlog Remote File Access', 'Description' = %q This module exploits a directory traversal in Sielco Sistemi Winlog. The...

4.3CVSS7AI score0.27488EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•154 views

Archer C7 Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Archer C7 Directory Traversal Vulnerability', 'Description' = %q This module exploits a directory traversal vulnerability in the PATHINFO found a...

7.8CVSS7AI score0.83772EPSS
Exploits5
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•131 views

Oracle DB SQL Injection Via SYS.DBMS_METADATA.GET_GRANTED_XML

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Oracle DB SQL Injection via SYS.DBMSMETADATA.GETGRANTEDXML', 'Description' = %q This module will escalate an Oracle DB user to DBA by exploiting ...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•169 views

SNMP Windows Username Enumeration

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SNMP Windows Username Enumeration', 'Description' = ' This module will use LanManager/psProcessUsername OID values to enumerate local user accoun...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•140 views

XM Easy Personal FTP Server 5.7.0 NLST Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'XM Easy Personal FTP Server 5.7.0 NLST DoS', 'Description' = %q You need a valid login to DoS this FTP server, but even anonymous can do it as lo...

4CVSS7AI score0.3586EPSS
Exploits5
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•184 views

Android Browser Open in New Tab Cookie Theft

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Android Browser "Open in New Tab" Cookie Theft', 'Description' = %q In Android's stock AOSP Browser application and WebView component, the "open ...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•171 views

Novell EDirectory EMBox Unauthenticated File Access

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Novell eDirectory eMBox Unauthenticated File Access', 'Description' = %q This module will access Novell eDirectory's eMBox service and can run th...

7.5CVSS7AI score0.58179EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•179 views

ws Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ws - Denial of Service', 'Description' = %q This module exploits a Denial of Service vulnerability in npm module "ws". By sending a specially...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•139 views

Apple Filing Protocol Info Enumerator

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Apple Filing Protocol Info Enumerator', 'Description' = %q This module fetches AFP server information, including server name, network address,...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•172 views

Fake DNS Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'resolv' class MetasploitModule 'Fake DNS Service', 'Description' = %q This module provides a DNS service that redirects all queries to a particular address. ,...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•223 views

HTTP Client Automatic Exploiter 2 (Browser Autopwn)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "HTTP Client Automatic Exploiter 2 Browser Autopwn", 'Description' = %q This module will automatically serve browser exploits. Here are the option...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•258 views

IBM DB2 Db2rcmd.exe Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'IBM DB2 db2rcmd.exe Command Execution Vulnerability', 'Description' = %q This module exploits a vulnerability in the Remote Command Server...

7.2CVSS7.1AI score0.02212EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•248 views

WordPress Traversal Directory Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WordPress Traversal Directory DoS', 'Description' = %q Cross-site request forgery CSRF vulnerability in the wpajaxupdateplugin function in...

7.1CVSS6.9AI score0.38445EPSS
Exploits6
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•220 views

SAP MaxDB Cons.exe Remote Command Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SAP MaxDB cons.exe Remote Command Injection', 'Description' = %q SAP MaxDB is prone to a remote command-injection vulnerability because the...

10CVSS7AI score0.80311EPSS
Exploits8
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•175 views

Webmin Edit_html.cgi File Parameter Traversal Arbitrary File Access

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Webmin edithtml.cgi file Parameter Traversal Arbitrary File Access', 'Description' = %q This module exploits a directory traversal in Webmin 1.58...

5CVSS7AI score0.20456EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•195 views

WPAD.dat File Server

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WPAD.dat File Server', 'Description' = %q This module generates a valid wpad.dat file for WPAD mitm attacks. Usually this module is used in...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•177 views

Mutiny 5 Arbitrary File Read And Delete

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Mutiny 5 Arbitrary File Read and Delete', 'Description' = %q This module exploits the EditDocument servlet from the frontend on the Mutiny 5...

8.5CVSS7.4AI score0.40338EPSS
Exploits8
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•154 views

Solar FTP Server Malformed USER Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Solar FTP Server Malformed USER Denial of Service', 'Description' = %q This module will send a format string as USER to Solar FTP, causing a READ...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•157 views

ManageEngine Password Manager SQLAdvancedALSearchResult.cc Pro SQL Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ManageEngine Password Manager SQLAdvancedALSearchResult.cc Pro SQL Injection', 'Description' = %q ManageEngine Password Manager Pro PMP has an...

6.5CVSS7AI score0.33591EPSS
Exploits9
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•139 views

D-Link I2eye Video Conference AutoAnswer (WDBRPC)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'D-Link i2eye Video Conference AutoAnswer WDBRPC', 'Description' = %q This module can be used to enable auto-answer mode for the D-Link i2eye vide...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•201 views

Samsung Internet Browser SOP Bypass

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Samsung Internet Browser SOP Bypass', 'Description' = %q This module takes advantage of a Same-Origin Policy SOP bypass vulnerability in the...

7.5CVSS7.1AI score0.78843EPSS
Exploits7
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•173 views

Microsoft SQL Server SQL Injection SUSER_SNAME Windows Domain Account Enumeration

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft SQL Server SQLi SUSERSNAME Windows Domain Account Enumeration', 'Description' = %q This module can be used to bruteforce RIDs associate...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•187 views

Android Mercury Browser Intent URI Scheme And Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Android Mercury Browser Intent URI Scheme and Directory Traversal Vulnerability', 'Description' = %q This module exploits an unsafe intent URI...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•175 views

Plixer Scrutinizer NetFlow And SFlow Analyzer HTTP Authentication Bypass

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Plixer Scrutinizer NetFlow and sFlow Analyzer HTTP Authentication Bypass', 'Description' = %q This will add an administrative account to...

5CVSS7AI score0.44458EPSS
Exploits5
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•318 views

Java RMI Registry Interfaces Enumeration

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'rex/java/serialization' class MetasploitModule 'Java RMI Registry Interfaces Enumeration', 'Description' = %q This module gathers information from an RMI endpoi...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•220 views

IBM Lotus Notes Sametime User Enumeration

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'enumerable' class MetasploitModule 'IBM Lotus Notes Sametime User Enumeration', 'Description' = %q This module extracts usernames using the IBM Lotus Notes...

5CVSS7.4AI score0.13151EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•251 views

FileZilla FTP Server Admin Interface Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'FileZilla FTP Server Admin Interface Denial of Service', 'Description' = %q This module triggers a Denial of Service condition in the FileZilla F...

7.8CVSS7.4AI score0.5286EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•222 views

Android Open Source Platform (AOSP) Browser UXSS

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Android Open Source Platform AOSP Browser UXSS', 'Description' = %q This module exploits a Universal Cross-Site Scripting UXSS vulnerability...

5.8CVSS7.4AI score0.18278EPSS
Exploits7
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•151 views

Cisco DCNM Auth Bypass

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'securerandom' require 'base64' class MetasploitModule 'Cisco DCNM auth bypass', 'Description' = %q This exploit is able to add an admin account to a Cisco DCNM...

10CVSS7AI score0.85649EPSS
Exploits7
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•151 views

SolarWinds Serv-U Unauthenticated Arbitrary File Read

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SolarWinds Serv-U Unauthenticated Arbitrary File Read', 'Description' = %q This module exploits an unauthenticated file read vulnerability, due t...

8.6CVSS7.3AI score0.99614EPSS
Exploits8
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•218 views

Tomcat UTF-8 Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Tomcat UTF-8 Directory Traversal Vulnerability', 'Description' = %q This module tests whether a directory traversal vulnerability is present in...

4.3CVSS7AI score0.99708EPSS
Exploits22
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•170 views

Viproy CUCDM IP Phone XML Services Speed Dial Attack Tool

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'rexml/document' class MetasploitModule 'Viproy CUCDM IP Phone XML Services - Speed Dial Attack Tool', 'Description' = %q The BVSMWeb portal in the web framework...

7.5CVSS6.7AI score0.21879EPSS
Exploits4
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•152 views

Mac OS X Safari .webarchive File Format UXSS

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'uri' class MetasploitModule 'Mac OS X Safari .webarchive File Format UXSS', 'Description' = %q Generates a .webarchive file for Mac OS X Safari that will attemp...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•152 views

EMC CTA 10.0 Unauthenticated XXE Arbitrary File Read

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'EMC CTA v10.0 Unauthenticated XXE Arbitrary File Read', 'Description' = %q EMC CTA v10.0 is susceptible to an unauthenticated XXE attack that...

7.8CVSS7AI score0.53342EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•354 views

Pulse Secure VPN Arbitrary File Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Pulse Secure VPN Arbitrary File Disclosure', 'Description' = %q This module exploits a pre-auth directory traversal in the Pulse Secure VPN serve...

10CVSS7.4AI score0.99999EPSS
Exploits22
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•411 views

Apache mod_isapi Dangling Pointer

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Apache modisapi Dangling Pointer', 'Description' = %q This module triggers a use-after-free vulnerability in the Apache Software Foundation...

10CVSS6.9AI score0.94248EPSS
Exploits13
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•209 views

Wordpress XMLRPC Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Wordpress XMLRPC DoS', 'Description' = %q Wordpress XMLRPC parsing is vulnerable to a XML based denial of service. This vulnerability affects...

5CVSS6.9AI score0.24385EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•223 views

MMS Client

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'MMS Client', 'Description' = %q This module sends an MMS message to multiple phones of the same carrier. You can use it to send a malicious...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•167 views

EMC AlphaStor Library Manager Arbitrary Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'EMC AlphaStor Library Manager Arbitrary Command Execution', 'Description' = %q EMC AlphaStor Library Manager is prone to a remote command-injecti...

10CVSS7AI score0.35753EPSS
Exploits6
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•241 views

NetBIOS Response Brute Force Spoof

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NetBIOS Response Brute Force Spoof Direct', 'Description' = %q This module continuously spams NetBIOS responses to a target for given hostname,...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•247 views

Flexense HTTP Server Denial Of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Flexense HTTP Server Denial Of Service', 'Description' = %q This module triggers a Denial of Service vulnerability in the Flexense HTTP server...

7.5CVSS7AI score0.76544EPSS
Exploits6
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•248 views

Brocade Enable Login Check Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'metasploit/framework/credentialcollection' require 'metasploit/framework/loginscanner/telnet' class MetasploitModule 'Brocade Enable Login Check Scanner',...

7.2AI score0.53618EPSS
Exploits41
Total number of security vulnerabilities50738