Lucene search
K
PacketstormRecent

50738 matches found

Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•360 views

Check Point Security Gateway Arbitrary File Read

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Check Point Security Gateway Arbitrary File Read', 'Description' = %q This module leverages an unauthenticated arbitrary root file read...

8.6CVSS7.2AI score0.99978EPSS
Exploits52
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•257 views

NTP Monitor List Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NTP Monitor List Scanner', 'Description' = %q This module identifies NTP servers which permit "monlist" queries and obtains the recent clients...

5CVSS7.4AI score0.97549EPSS
Exploits23
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•138 views

Dell OpenManage POST Request Heap Overflow (win32)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Dell OpenManage POST Request Heap Overflow win32', 'Description' = %q This module exploits a heap overflow in the Dell OpenManage Web Server...

5CVSS7AI score0.1583EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•172 views

IpSwitch WhatsUp Gold TFTP Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "IpSwitch WhatsUp Gold TFTP Directory Traversal", 'Description' = %q This modules exploits a directory traversal vulnerability in IpSwitch WhatsUp...

7.8CVSS7AI score0.57601EPSS
Exploits4
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•170 views

Ubee DDW3611b Cable Modem Wifi Enumeration

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Ubee DDW3611b Cable Modem Wifi Enumeration', 'Description' = %q This module will extract WEP keys and WPA preshared keys from certain Ubee cable...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•278 views

QNAP NAS/NVR Administrator Hash Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'QNAP NAS/NVR Administrator Hash Disclosure', 'Description' = %q This module exploits combined heap and stack buffer overflows for QNAP NAS and NV...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•239 views

ownCloud Phpinfo Reader

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ownCloud Phpinfo Reader', 'Description' = %q Docker containers of ownCloud compiled after February 2023, which have version 0.2.0 before 0.2.1 or...

10CVSS7AI score0.78428EPSS
Exploits5
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•231 views

Generic Emailer (SMTP)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'yaml' class MetasploitModule 'Generic Emailer SMTP', 'Description' = %q This module can be used to automate email delivery. This code is based on Joshua Abraham...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•242 views

Oracle SMB Relay Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Oracle SMB Relay Code Execution', 'Description' = %q This module will help you to get Administrator access to OS using an unprivileged Oracle...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•162 views

SonicWALL SSL-VPN Format String

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SonicWALL SSL-VPN Format String Vulnerability', 'Description' = %q There is a format string vulnerability within the SonicWALL SSL-VPN Appliance ...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•269 views

IBM BigFix Relay Server Sites and Package Enum

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'IBM BigFix Relay Server Sites and Package Enum', 'Description' = %q This module retrieves masthead, site, and available package information from...

5.3CVSS7.1AI score0.22547EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•153 views

Novell File Reporter Agent Arbitrary File Delete

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Novell File Reporter Agent Arbitrary File Delete', 'Description' = %q NFRAgent.exe in Novell File Reporter allows remote attackers to delete...

5CVSS7.4AI score0.16807EPSS
Exploits5
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•174 views

Guild FTPd 0.999.8.11/0.999.14 Heap Corruption

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Guild FTPd 0.999.8.11/0.999.14 Heap Corruption', 'Description' = %q Guild FTPd 0.999.8.11 and 0.999.14 are vulnerable to heap corruption. You nee...

10CVSS7AI score0.60692EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•188 views

rsyslog Long Tag Off-By-Two Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'rsyslog Long Tag Off-By-Two DoS', 'Description' = %q This module triggers an off-by-two overflow in the rsyslog daemon. This flaw is unlikely to...

5CVSS6.9AI score0.20759EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•528 views

SNMP Community Login Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'metasploit/framework/communitystringcollection' require 'metasploit/framework/loginscanner/snmp' class MetasploitModule 'SNMP Community Login Scanner',...

6.9AI score0.27166EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•269 views

Beckhoff TwinCAT SCADA PLC 2.11.0.2004 Denial Of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Beckhoff TwinCAT SCADA PLC 2.11.0.2004 DoS', 'Description' = %q The Beckhoff TwinCAT version 'Luigi Auriemma', Public exploit 'jfa', Metasploit...

5CVSS7AI score0.50556EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•251 views

Kaseya VSA Master Administrator Account Creation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Kaseya VSA Master Administrator Account Creation', 'Description' = %q This module abuses the setAccount page on Kaseya VSA between 7 and 9.1 to...

9.8CVSS7.4AI score0.82102EPSS
Exploits13
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•675 views

Apache Range Header Denial of Service (Apache Killer)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Apache Range Header DoS Apache Killer', 'Description' = %q The byterange filter in the Apache HTTP Server 2.0.x through 2.0.64, and 2.2.x through...

7.8CVSS7.2AI score0.98945EPSS
Exploits17
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•149 views

Oracle Secure Backup Authentication Bypass / Command Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Oracle Secure Backup Authentication Bypass/Command Injection Vulnerability', 'Description' = %q This module exploits an authentication bypass...

5CVSS7AI score0.5156EPSS
Exploits6
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•375 views

Microsoft SRV2.SYS SMB Negotiate ProcessID Function Table Dereference

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft SRV2.SYS SMB Negotiate ProcessID Function Table Dereference', 'Description' = %q This module exploits an out of bounds function table...

10CVSS7.4AI score0.90121EPSS
Exploits20
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•172 views

General Electric D20ME TFTP Server Buffer Overflow / Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework The General Electric D20 and possibly other devices have numerous buffer overruns in their TFTP servers and probably other servers. There are many buffer overruns like i...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•234 views

Microsoft Vista SP0 SMB Negotiate Protocol Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft Vista SP0 SMB Negotiate Protocol DoS', 'Description' = %q This module exploits a flaw in Windows Vista that allows a remote...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•182 views

Joomla Real Estate Manager Component Error-Based SQL Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Joomla Real Estate Manager Component Error-Based SQL Injection', 'Description' = %q This module exploits a SQL injection vulnerability in Joomla...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•257 views

Cambium CnPilot R200/r201 Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Cambium cnPilot r200/r201 Command Execution as 'root'", 'Description' = %q Cambium cnPilot r200/r201 device software versions 4.2.3-R4 to 4.3.3-R...

9CVSS7.4AI score0.39181EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•133 views

AlienVault Authenticated SQL Injection Arbitrary File Read

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "AlienVault Authenticated SQL Injection Arbitrary File Read", 'Description' = %q AlienVault 4.5.0 is susceptible to an authenticated SQL injection...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•171 views

SAP SOAP EPS_DELETE_FILE File Deletion

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework This module is based on, inspired by, or is a port of a plugin available in the Onapsis Bizploit Opensource ERP Penetration Testing framework -...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•192 views

Iomega StorCenter Pro NAS Web Authentication Bypass

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Iomega StorCenter Pro NAS Web Authentication Bypass', 'Description' = %q The Iomega StorCenter Pro Network Attached Storage device web interface...

9.8CVSS7.1AI score0.23195EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•201 views

7-Technologies IGSS 9 IGSSdataServer.exe Denial Of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule '7-Technologies IGSS 9 IGSSdataServer.exe DoS', 'Description' = %q The 7-Technologies SCADA IGSS Data Server IGSSdataServer.exe 'jfa', Metasploit...

5CVSS7AI score0.21149EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•377 views

HP ILO 4 1.00-2.50 Authentication Bypass Administrator Account Creation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HP iLO 4 1.00-2.50 Authentication Bypass Administrator Account Creation', 'Description' = %q This module exploits an authentication bypass in HP...

10CVSS7AI score0.99335EPSS
Exploits9
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•200 views

Ruby on Rails JSON Processor Floating Point Heap Overflow Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Ruby on Rails JSON Processor Floating Point Heap Overflow DoS', 'Description' = %q When Ruby attempts to convert a string representation of a lar...

6.8CVSS7AI score0.34968EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•226 views

TFTP Brute Forcer

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'TFTP Brute Forcer', 'Description' = 'This module uses a dictionary to brute force valid TFTP image names from a TFTP server.', 'Author' =...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•294 views

Squid Proxy Range Header Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Squid Proxy Range Header DoS', 'Description' = %q The range handler in The Squid Caching Proxy Server 3.0-4.1.4 and 5.0.1-5.0.5 suffers from...

6.5CVSS7AI score0.95785EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•213 views

Oracle Application Testing Suite Post-Auth DownloadServlet Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'rkelly' class MetasploitModule 'Oracle Application Testing Suite Post-Auth DownloadServlet Directory Traversal', 'Description' = %q This module exploits a...

6.5CVSS7AI score0.05503EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•179 views

Xerox Workcentre 5735 LDAP Service Redential Extractor

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Xerox Workcentre 5735 LDAP Service Redential Extractor', 'Description' = %q This module extract the printer's LDAP username and password from Xer...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•502 views

Microsoft Exchange ProxyLogon Collector

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework begin auxiliary class class MetasploitModule 'Microsoft Exchange ProxyLogon Collector', 'Description' = %q This module exploit a vulnerability on Microsoft Exchange Serv...

9.8CVSS7.6AI score0.99999EPSS
Exploits63
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•269 views

Oracle ISQLPlus SID Check

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Oracle iSQLPlus SID Check', 'Description' = %q This module attempts to bruteforce the SID on the Oracle application server iSQLPlus login pages. ...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•229 views

Brother Debut http Denial Of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Brother Debut http Denial Of Service', 'Description' = %q The Debut embedded HTTP server MSFLICENSE, 'Author' = 'z00n ', vulnerability disclosure...

7.8CVSS7AI score0.59386EPSS
Exploits7
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•151 views

AD CS Certificate Template Management

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'AD CS Certificate Template Management', 'Description' = %q This module can create, read, update, and delete AD CS certificate templates from a...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•304 views

Joomla Account Creation And Privilege Escalation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Joomla Account Creation and Privilege Escalation', 'Description' = %q This module creates an arbitrary account with administrative privileges in...

9.8CVSS7AI score0.97426EPSS
Exploits15
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•965 views

Hikvision IP Camera Unauthenticated Password Change Via Improper Authentication Logic

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Hikvision IP Camera Unauthenticated Password Change Via Improper Authentication Logic', 'Description' = %q Many Hikvision IP cameras contain...

10CVSS7AI score0.99998EPSS
Exploits11
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•392 views

Microsoft IIS 6.0 ASP Stack Exhaustion Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft IIS 6.0 ASP Stack Exhaustion Denial of Service', 'Description' = %q The vulnerability allows remote unauthenticated attackers to force...

4.3CVSS7AI score0.57231EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•227 views

NetDecision 4.2 TFTP Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "NetDecision 4.2 TFTP Directory Traversal", 'Description' = %q This modules exploits a directory traversal vulnerability in NetDecision 4.2 TFTP...

10CVSS7AI score0.5451EPSS
Exploits7
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•439 views

Microsoft SQL Server SUSER_SNAME SQL Logins Enumeration

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft SQL Server SUSERSNAME SQL Logins Enumeration', 'Description' = %q This module can be used to obtain a list of all logins from a SQL...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•205 views

Microsoft SQL Server SQL Injection NTLM Stealer

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft SQL Server SQLi NTLM Stealer', 'Description' = %q This module can be used to help capture or relay the LM/NTLM credentials of the accou...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•182 views

Cisco PVC2300 POE Video Camera Configuration Download

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Cisco PVC2300 POE Video Camera configuration download', 'Description' = %q This module exploits an information disclosure vulnerability in Cisco...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•147 views

Novell EDirectory DHOST Predictable Session Cookie

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Novell eDirectory DHOST Predictable Session Cookie', 'Description' = %q This module is able to predict the next session cookie value issued by th...

7.5CVSS7AI score0.49864EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•189 views

Cisco IKE Information Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Cisco IKE Information Disclosure', 'Description' = %q A vulnerability in Internet Key Exchange version 1 IKEv1 packet processing code in Cisco IO...

7.5CVSS7.2AI score0.87687EPSS
Exploits7
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•181 views

Oracle DB SQL Injection Via SYS.LT.COMPRESSWORKSPACE

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Oracle DB SQL Injection via SYS.LT.COMPRESSWORKSPACE', 'Description' = %q This module exploits an sql injection flaw in the COMPRESSWORKSPACE...

5.5CVSS7AI score0.1143EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•190 views

D-Link DIR-600 / DIR-300 Unauthenticated Remote Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'D-Link DIR-600 / DIR-300 Unauthenticated Remote Command Execution', 'Description' = %q This module exploits an OS Command Injection vulnerability...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•180 views

C2S DVR Management Password Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'C2S DVR Management Password Disclosure', 'Description' = %q C2S DVR allows an unauthenticated user to disclose the username & password by...

7.4AI score
Exploits0
Total number of security vulnerabilities50738