Lucene search
K
PacketstormRecent

50738 matches found

Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•242 views

Apple OSX/iOS/Windows Safari Non-HTTPOnly Cookie Theft

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Apple OSX/iOS/Windows Safari Non-HTTPOnly Cookie Theft', 'Description' = %q A vulnerability exists in versions of OSX, iOS, and Windows Safari...

4.3CVSS7AI score0.09964EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•280 views

Citrix MetaFrame ICA Published Applications Bruteforcer

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Citrix MetaFrame ICA Published Applications Bruteforcer', 'Description' = %q This module attempts to brute force program names within the Citrix...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•141 views

Wireshark CAPWAP Dissector Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Wireshark CAPWAP Dissector DoS', 'Description' = %q This module injects a malformed UDP packet to crash Wireshark and TShark 1.8.0 to 1.8.7, as...

5CVSS6.9AI score0.60643EPSS
Exploits7
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•305 views

Siemens SIPROTEC 4 and SIPROTEC Compact EN100 Ethernet Module Denial Of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Siemens SIPROTEC 4 and SIPROTEC Compact EN100 Ethernet Module - Denial of Service', 'Description' = %q This module sends a specially crafted pack...

7.8CVSS7AI score0.74497EPSS
Exploits7
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•195 views

Adobe ColdFusion Unauthenticated Arbitrary File Read

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Adobe ColdFusion Unauthenticated Arbitrary File Read', 'Description' = %q This module exploits a remote unauthenticated deserialization of...

9.8CVSS7.3AI score0.97339EPSS
Exploits13
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•225 views

3Com SuperStack Switch Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule '3Com SuperStack Switch Denial of Service', 'Description' = %q This module causes a temporary denial of service condition against 3Com SuperStack...

7.1CVSS7.1AI score0.39064EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•173 views

Rancher Authenticated API Credential Exposure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Rancher Authenticated API Credential Exposure', 'Description' = %q An issue was discovered in Rancher versions up to and including 2.5.15 and 2.6...

9.9CVSS7.4AI score0.0293EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•236 views

Jenkins Domain Credential Recovery

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'json' class MetasploitModule 'Jenkins Domain Credential Recovery', 'Description' = %q This module will collect Jenkins domain credentials, and uses the script...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•190 views

Android Stock Browser Iframe Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Android Stock Browser Iframe DOS", 'Description' = %q This module exploits a vulnerability in the native browser that comes with Android 4.0.3. I...

5CVSS7.1AI score0.06448EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•176 views

NetBIOS Name Service Spoofer

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NetBIOS Name Service Spoofer', 'Description' = %q This module forges NetBIOS Name Service NBNS responses. It will listen for NBNS requests sent t...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•244 views

SAMR Computer Management

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'rubysmb/dcerpc/client' class MetasploitModule 'SAMR Computer Management', 'Description' = %q Add, lookup and delete computer / machine accounts via MS-SAMR. By...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•132 views

Microsoft RRAS InterfaceAdjustVLSPointers NULL Dereference

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft RRAS InterfaceAdjustVLSPointers NULL Dereference', 'Description' = %q This module triggers a NULL dereference in svchost.exe on all...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•212 views

D-Link Central WiFiManager SQL Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'csv' require 'digest' class MetasploitModule 'D-Link Central WiFiManager SQL injection', 'Description' = %q This module exploits a SQLi vulnerability found in...

9.8CVSS7AI score0.68019EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•190 views

MS15-034 HTTP Protocol Stack Request Handling Denial-of-Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'MS15-034 HTTP Protocol Stack Request Handling Denial-of-Service', 'Description' = %q This module will check if scanned hosts are vulnerable to...

10CVSS7AI score0.99999EPSS
Exploits16
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•131 views

F5 BIG-IP Backend Cookie Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'F5 BIG-IP Backend Cookie Disclosure', 'Description' = %q This module identifies F5 BIG-IP load balancers and leaks backend information pool name,...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•157 views

IBM Lotus Sametime Version Enumeration

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'uri' class MetasploitModule Release .+?/i , 'api', 'meeting', /^meeting=.$/i , 'api', 'appshare', /^appshare=.$/i , 'api', 'docshare', /^docshare=.$/i , 'api',...

5CVSS7.1AI score0.13151EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•231 views

Android Content Provider File Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Android Content Provider File Disclosure', 'Description' = %q This module exploits a cross-domain issue within the Android web browser to...

4.3CVSS7AI score0.26952EPSS
Exploits8
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•193 views

XM Easy Personal FTP Server 5.6.0 NLST Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'XM Easy Personal FTP Server 5.6.0 NLST DoS', 'Description' = %q This module is a port of shinnai's script. You need a valid login, but even...

4CVSS7.4AI score0.3586EPSS
Exploits5
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•202 views

Android Browser File Theft

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Android Browser File Theft', 'Description' = %q This module steals the cookie, password, and autofill databases from the Browser application on...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•143 views

Chromecast Factory Reset Denial Of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Chromecast Factory Reset DoS', 'Description' = %q This module performs a factory reset on a Chromecast, causing a denial of service DoS. No user...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•230 views

Microsoft SQL Server NTLM Stealer

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft SQL Server NTLM Stealer', 'Description' = %q This module can be used to help capture or relay the LM/NTLM credentials of the account...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•181 views

GNU Wget FTP Symlink Arbitrary Filesystem Access

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'GNU Wget FTP Symlink Arbitrary Filesystem Access', 'Description' = %q This module exploits a vulnerability in Wget when used in recursive -r mode...

9.3CVSS7.4AI score0.39883EPSS
Exploits4
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•145 views

URGENT/11 Scanner, Based On Detection Tool By Armis

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'URGENT/11 Scanner, Based on Detection Tool by Armis', 'Description' = %q This module detects VxWorks and the IPnet IP stack, along with devices...

7.5CVSS7AI score0.23354EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•258 views

Webmin File Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Webmin File Disclosure', 'Description' = %q A vulnerability has been reported in Webmin and Usermin, which can be exploited by malicious people t...

5CVSS7AI score0.77953EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•191 views

ZyXEL GS1510-16 Password Extractor

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ZyXEL GS1510-16 Password Extractor', 'Description' = %q This module exploits a vulnerability in ZyXEL GS1510-16 routers to extract the admin...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•242 views

MS10-065 Microsoft IIS 5 NTFS Stream Authentication Bypass

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'MS10-065 Microsoft IIS 5 NTFS Stream Authentication Bypass', 'Description' = %q This module bypasses basic authentication for Internet Informatio...

6.8CVSS7AI score0.31118EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•170 views

ManageEngine Eventlog Analyzer Managed Hosts Administrator Credential Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'rexml/document' class MetasploitModule 'ManageEngine Eventlog Analyzer Managed Hosts Administrator Credential Disclosure', 'Description' = %q ManageEngine...

7.5CVSS7AI score0.72757EPSS
Exploits10
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•203 views

Apple TV Image Remote Control

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Apple TV Image Remote Control', 'Description' = %q This module will show an image on an AppleTV device for a period of time. Some AppleTV devices...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•132 views

HP Data Protector Manager RDS Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HP Data Protector Manager RDS DOS', 'Description' = %q This module causes a remote DOS on HP Data Protector's RDS service. By sending a malformed...

5CVSS7AI score0.48867EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•319 views

ManageEngine ADAudit Plus Xnode Enumeration

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ManageEngine ADAudit Plus Xnode Enumeration', 'Description' = %q This module exploits default admin credentials for the DataEngine Xnode server i...

10CVSS9.6AI score0.77477EPSS
Exploits7
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•255 views

RPC Denial of Service targeting *nix rpcbind/libtirpc

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'RPC DoS targeting nix rpcbind/libtirpc', 'Description' = %q This module exploits a vulnerability in certain versions of rpcbind, LIBTIRPC, and...

7.8CVSS7.2AI score0.81921EPSS
Exploits4
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•513 views

BADPDF Malicious PDF Creator

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'BADPDF Malicious PDF Creator', 'Description' = ' This module can either creates a blank PDF file which contains a UNC link which can be used to...

7.5CVSS7AI score0.86898EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•369 views

SAP Internet Graphics Server (IGS) XMLCHART XXE

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SAP Internet Graphics Server IGS XMLCHART XXE', 'Description' = %q This module exploits CVE-2018-2392 and CVE-2018-2393, two XXE vulnerabilities...

7.5CVSS7AI score0.40591EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•217 views

Nuuo Central Management Server User Session Token Bruteforce

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'benchmark' class MetasploitModule 'Nuuo Central Management Server User Session Token Bruteforce', 'Description' = %q Nuuo Central Management Server below versio...

9.8CVSS7AI score0.29639EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•160 views

Nuuo Central Management Server Authenticated Arbitrary File Download

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Nuuo Central Management Server Authenticated Arbitrary File Download', 'Description' = %q The Nuuo Central Management Server allows an...

9.8CVSS7AI score0.19653EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•165 views

Satel Iberia SenNet Data Logger And Electricity Meters Command Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Satel Iberia SenNet Data Logger and Electricity Meters Command Injection Vulnerability', 'Description' = %q This module exploits an OS Command...

9CVSS7.1AI score0.15538EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•163 views

Microsoft SQL Server SQL Injection Escalate Db_Owner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft SQL Server SQLi Escalate DbOwner', 'Description' = %q This module can be used to escalate SQL Server user privileges to sysadmin throug...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•390 views

Veritas Backup Exec Server Registry Access

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Veritas Backup Exec Server Registry Access', 'Description' = %q This modules exploits a remote registry access flaw in the BackupExec Windows...

10CVSS7AI score0.54155EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•293 views

Piwigo CVE-2023-26876 Gather Credentials via SQL Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Piwigo CVE-2023-26876 Gather Credentials via SQL Injection ', 'Description' = %q This module allows an authenticated user to retrieve the usernam...

8.8CVSS7AI score0.09725EPSS
Exploits5
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•176 views

HP Intelligent Management SOM Account Creation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HP Intelligent Management SOM Account Creation', 'Description' = %q This module exploits a lack of authentication and access control in HP...

7.5CVSS7AI score0.23927EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•183 views

Canon Wireless Printer Denial Of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Canon Wireless Printer Denial Of Service', 'Description' = %q The HTTP management interface on several models of Canon Wireless printers allows f...

5CVSS7AI score0.15641EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•254 views

Regsvr32.exe (.sct) Command Delivery Server

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Regsvr32.exe .sct Command Delivery Server', 'Description' = %q This module uses the Regsvr32.exe Application Whitelisting Bypass technique as a w...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•254 views

Oracle DB 10gR2, 11gR1/R2 DBMS_JVM_EXP_PERMS OS Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Oracle DB 10gR2, 11gR1/R2 DBMSJVMEXPPERMS OS Command Execution', 'Description' = %q This module exploits a flaw 0 day in DBMSJVMEXPPERMS package...

6.5CVSS6.6AI score0.1125EPSS
Exploits4
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•251 views

Oracle DB SQL Injection Via SYS.DBMS_CDC_PUBLISH.ALTER_AUTOLOG_CHANGE_SOURCE

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Oracle DB SQL Injection via SYS.DBMSCDCPUBLISH.ALTERAUTOLOGCHANGESOURCE', 'Description' = %q The module exploits an sql injection flaw in the...

5.5CVSS7AI score0.0954EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•136 views

Schneider Modicon Remote START/STOP Command

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Schneider Modicon Remote START/STOP Command', 'Description' = %q The Schneider Modicon with Unity series of PLCs use Modbus function code 90 0x5a...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•152 views

SolarWinds TFTP Server 10.4.0.10 Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SolarWinds TFTP Server 10.4.0.10 Denial of Service' , 'Description' = %q The SolarWinds TFTP server can be shut down by sending a 'netascii' read...

5CVSS7AI score0.55953EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•289 views

Jenkins cli Ampersand Replacement Arbitrary File Read

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Jenkins cli Ampersand Replacement Arbitrary File Read', 'Description' = %q This module utilizes the Jenkins cli protocol to run the help command...

9.8CVSS7.2AI score0.99999EPSS
Exploits46
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•162 views

SonicWALL SSL-VPN Format String

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SonicWALL SSL-VPN Format String Vulnerability', 'Description' = %q There is a format string vulnerability within the SonicWALL SSL-VPN Appliance ...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•278 views

Typo3 Sa-2009-002 File Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Typo3 sa-2009-002 File Disclosure', 'Description' = %q This module exploits a file disclosure vulnerability in the jumpUrl mechanism of Typo3. Th...

5CVSS7AI score0.42227EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•201 views

D-Link DSL 320B Password Extractor

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'D-Link DSL 320B Password Extractor', 'Description' = %q This module exploits an authentication bypass vulnerability in D-Link DSL 320B 'EDB',...

7.4AI score
Exploits0
Total number of security vulnerabilities50738