Lucene search
K
PacketstormRecent

50738 matches found

Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•212 views

Chromecast YouTube Remote Control

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Chromecast YouTube Remote Control', 'Description' = %q This module acts as a simple remote control for Chromecast YouTube. Only the deprecated DI...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•185 views

TeamViewer Unquoted URI Handler SMB Redirect

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'TeamViewer Unquoted URI Handler SMB Redirect', 'Description' = %q This module exploits an unquoted parameter call within the Teamviewer URI handl...

8.8CVSS7.1AI score0.25895EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•339 views

NTP.org ntpd Reserved Mode Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NTP.org ntpd Reserved Mode Denial of Service', 'Description' = %q This module exploits a denial of service vulnerability within the NTP network...

6.4CVSS7.1AI score0.32288EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•146 views

OpenSSL DTLS ChangeCipherSpec Remote Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'OpenSSL DTLS ChangeCipherSpec Remote DoS', 'Description' = %q This module performs a Denial of Service Attack against Datagram TLS in OpenSSL...

5CVSS7AI score0.80134EPSS
Exploits9
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•236 views

SIP Invite Spoof

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SIP Invite Spoof', 'Description' = %q This module will create a fake SIP invite request making the targeted device ring and display fake caller i...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•221 views

SAP MaxDB Cons.exe Remote Command Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SAP MaxDB cons.exe Remote Command Injection', 'Description' = %q SAP MaxDB is prone to a remote command-injection vulnerability because the...

10CVSS7AI score0.80311EPSS
Exploits8
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•239 views

MS14-068 Microsoft Kerberos Checksum Validation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'MS14-068 Microsoft Kerberos Checksum Validation Vulnerability', 'Description' = %q This module exploits a vulnerability in the Microsoft Kerberos...

9CVSS7AI score0.87448EPSS
Exploits8
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•161 views

HP LaserJet Printer SNMP Enumeration

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HP LaserJet Printer SNMP Enumeration', 'Description' = %q This module allows enumeration of files previously printed. It provides details as...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•204 views

Xerox Administrator Console Password Extractor

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Xerox Administrator Console Password Extractor', 'Description' = %q This module will extract the management console's admin password from the Xer...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•255 views

Pi-Hole Top Domains API Authenticated Exec

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Pi-Hole Top Domains API Authenticated Exec', 'Description' = %q This exploits a command execution in Pi-Hole Web Interface API/Web inetrace page...

8.8CVSS7AI score0.60181EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•196 views

Microsoft Windows NAT Helper Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft Windows NAT Helper Denial of Service', 'Description' = %q This module exploits a denial of service vulnerability within the Internet...

2.6CVSS7.1AI score0.79086EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•404 views

Grandstream UCM62xx IP PBX WebSocket Blind SQL Injection Credential Dump

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Grandstream UCM62xx IP PBX WebSocket Blind SQL Injection Credential Dump', 'Description' = %q This module uses a blind SQL injection CVE-2020-572...

9.8CVSS7AI score0.11875EPSS
Exploits4
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•183 views

WordPress WP EasyCart Plugin Privilege Escalation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WordPress WP EasyCart Plugin Privilege Escalation', 'Description' = %q The WordPress WP EasyCart plugin from version 1.1.30 to 3.0.20 allows...

8.8CVSS7AI score0.18932EPSS
Exploits4
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•150 views

NFR Agent Heap Overflow

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NFR Agent Heap Overflow Vulnerability', 'Description' = %q This module exploits a heap overflow in NFRAgent.exe, a component of Novell File...

10CVSS7AI score0.71194EPSS
Exploits22
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•327 views

Apache Tomcat AJP File Read

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'rex/proto/apachejp' class MetasploitModule 'Apache Tomcat AJP File Read', 'Description' = %q When using the Apache JServ Protocol AJP, care must be taken when...

9.8CVSS7.4AI score0.9927EPSS
Exploits45
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•329 views

Cisco IOX XE Unauthenticated OS Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Cisco IOX XE unauthenticated OS command execution', 'Description' = %q This module leverages both CVE-2023-20198 and CVE-2023-20273 against...

10CVSS7.4AI score0.99571EPSS
Exploits27
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•234 views

NetBIOS Response BadTunnel Brute Force Spoof (NAT Tunnel)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NetBIOS Response "BadTunnel" Brute Force Spoof NAT Tunnel', 'Description' = %q This module listens for a NetBIOS name request and then continuous...

10CVSS7AI score0.77658EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•420 views

OpenSSL Server-Side ChangeCipherSpec Injection Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule Msf::Auxiliary include Msf::Exploit::Remote::Tcp include Msf::Auxiliary::Scanner include Msf::Auxiliary::Report CIPHERSUITES = 0xc014,...

7.4CVSS7.5AI score0.95326EPSS
Exploits9
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•232 views

AlienVault Authenticated SQL Injection Arbitrary File Read

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "AlienVault Authenticated SQL Injection Arbitrary File Read", 'Description' = %q AlienVault 4.6.1 and below is susceptible to an authenticated SQL...

6.5CVSS7.1AI score0.21193EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•282 views

Viproy CUCDM IP Phone XML Services Call Forwarding Tool

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'rexml/document' class MetasploitModule 'Viproy CUCDM IP Phone XML Services - Call Forwarding Tool', 'Description' = %q The BVSMWeb portal in the web framework i...

7.5CVSS6.7AI score0.21879EPSS
Exploits4
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•181 views

Indusoft WebStudio NTWebServer Remote File Access

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Indusoft WebStudio NTWebServer Remote File Access', 'Description' = %q This module exploits a directory traversal vulnerability in Indusoft...

10CVSS7AI score0.32043EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•218 views

SysAid Help Desk Database Credentials Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'openssl' class MetasploitModule 'SysAid Help Desk Database Credentials Disclosure', 'Description' = %q This module exploits a vulnerability in SysAid Help Desk...

8.5CVSS7AI score0.86643EPSS
Exploits10
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•244 views

Microsoft Windows Browser Pool Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft Windows Browser Pool DoS', 'Description' = %q This module exploits a denial of service flaw in the Microsoft Windows SMB service on...

10CVSS7AI score0.68084EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•217 views

Apple Airport Extreme Password Extraction (WDBRPC)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Apple Airport Extreme Password Extraction WDBRPC', 'Description' = %q This module can be used to read the stored password of a vulnerable Apple...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•367 views

Joomla com_contenthistory Error-Based SQL Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Joomla comcontenthistory Error-Based SQL Injection', 'Description' = %q This module exploits a SQL injection vulnerability in Joomla versions 3.2...

7.5CVSS7AI score0.99967EPSS
Exploits8
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•393 views

VSFTPD 2.3.2 Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'VSFTPD 2.3.2 Denial of Service', 'Description' = %q This module triggers a Denial of Service condition in the VSFTPD server in versions before...

4CVSS6.9AI score0.7332EPSS
Exploits9
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•240 views

PostgreSQL Database Name Command Line Flag Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'PostgreSQL Database Name Command Line Flag Injection', 'Description' = %q This module can identify PostgreSQL 9.0, 9.1, and 9.2 servers that are...

6.5CVSS6.9AI score0.54312EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•423 views

Samba Symlink Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Samba Symlink Directory Traversal', 'Description' = %Q This module exploits a directory traversal flaw in the Samba CIFS server. To exploit this...

3.5CVSS6.9AI score0.3053EPSS
Exploits6
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•371 views

Ruby On Rails Devise Authentication Password Reset

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'rexml/element' class MetasploitModule 'Ruby on Rails Devise Authentication Password Reset', 'Description' = %q The Devise authentication gem for Ruby on Rails i...

6.8CVSS7AI score0.14126EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•142 views

XM Easy Personal FTP Server 5.7.0 NLST Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'XM Easy Personal FTP Server 5.7.0 NLST DoS', 'Description' = %q You need a valid login to DoS this FTP server, but even anonymous can do it as lo...

4CVSS7AI score0.3586EPSS
Exploits5
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•250 views

ManageEngine Multiple Products Arbitrary File Download

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ManageEngine Multiple Products Arbitrary File Download', 'Description' = %q This module exploits an arbitrary file download vulnerability in the...

7.5CVSS7AI score0.83399EPSS
Exploits11
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•198 views

Etcd Keys API Information Gathering

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Etcd Keys API Information Gathering', 'Description' = %q This module queries the etcd API to recursively retrieve all of the stored key value...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•191 views

TYPO3 Sa-2010-020 Remote File Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'TYPO3 sa-2010-020 Remote File Disclosure', 'Description' = %q This module exploits a flaw in the way the TYPO3 jumpurl feature matches hashes. Du...

7.1CVSS7AI score0.24558EPSS
Exploits7
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•169 views

Brocade Password Hash Enumeration

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Brocade Password Hash Enumeration', 'Description' = %q This module extracts password hashes from certain Brocade load balancer devices. ,...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•196 views

TikiWiki Information Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'TikiWiki Information Disclosure', 'Description' = %q A vulnerability has been reported in Tikiwiki, which can be exploited by an anonymous user t...

5CVSS7AI score0.53067EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•307 views

ManageEngine DataSecurity Plus Xnode Enumeration

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ManageEngine DataSecurity Plus Xnode Enumeration', 'Description' = %q This module exploits default admin credentials for the DataEngine Xnode...

10CVSS9.6AI score0.77477EPSS
Exploits7
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•290 views

SuiteCRM Authenticated SQL Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SuiteCRM authenticated SQL injection in export functionality', 'Description' = %q This module exploits an authenticated SQL injection in SuiteCRM...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•250 views

ManageEngine Desktop Central Administrator Account Creation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ManageEngine Desktop Central Administrator Account Creation', 'Description' = %q This module exploits an administrator account creation...

9.8CVSS7.4AI score0.81048EPSS
Exploits8
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•407 views

WordPress Google Maps Plugin SQL Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WordPress Google Maps Plugin SQL Injection', 'Description' = %q This module exploits a SQL injection vulnerability in a REST endpoint registered ...

9.8CVSS7.4AI score0.78699EPSS
Exploits6
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•176 views

Solaris LPD Arbitrary File Delete

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Solaris LPD Arbitrary File Delete', 'Description' = %q This module uses a vulnerability in the Solaris line printer daemon to delete arbitrary...

5CVSS7AI score0.29182EPSS
Exploits3
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•234 views

iOS Safari Denial of Service with CSS

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "iOS Safari Denial of Service with CSS", 'Description' = %q This module exploits a vulnerability in WebKit on Apple iOS. If successful, the device...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•534 views

BIND TSIG Badtime Query Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'BIND TSIG Badtime Query Denial of Service', 'Description' = %q A logic error in code which checks TSIG validity can be used to trigger an asserti...

7.5CVSS7.2AI score0.93422EPSS
Exploits5
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•171 views

WordPress Long Password Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WordPress Long Password DoS', 'Description' = %qWordPress before 3.7.5, 3.8.x before 3.8.5, 3.9.x before 3.9.3, and 4.x before 4.0.1 allows remot...

5CVSS6.9AI score0.83162EPSS
Exploits7
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•152 views

Gather Steam Server Information

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Gather Steam Server Information', 'Description' = %q This module uses the A2SINFO request to obtain information from a Steam server. , 'Author' =...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•282 views

MantisBT Admin SQL Injection Arbitrary File Read

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "MantisBT Admin SQL Injection Arbitrary File Read", 'Description' = %q Versions 1.2.13 through 1.2.16 are vulnerable to a SQL injection attack if ...

6.5CVSS7AI score0.11311EPSS
Exploits8
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•259 views

IBM DB2 Db2rcmd.exe Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'IBM DB2 db2rcmd.exe Command Execution Vulnerability', 'Description' = %q This module exploits a vulnerability in the Remote Command Server...

7.2CVSS7.1AI score0.02212EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•125 views

FreeBSD Remote NFS RPC Request Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'FreeBSD Remote NFS RPC Request Denial of Service', 'Description' = %q This module sends a specially-crafted NFS Mount request causing a kernel...

7.8CVSS7AI score0.64373EPSS
Exploits2
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•242 views

NetBIOS Response Brute Force Spoof

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NetBIOS Response Brute Force Spoof Direct', 'Description' = %q This module continuously spams NetBIOS responses to a target for given hostname,...

7.4AI score
Exploits0
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•186 views

GitLab Password Reset Account Takeover

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'GitLab Password Reset Account Takeover', 'Description' = 'This module exploits an account-take-over vulnerability that allows users to take contr...

10CVSS7.4AI score0.94955EPSS
Exploits16
Packet Storm
Packet Storm
•added 2024/08/31 12:0 a.m.•130 views

Oracle Account Discovery

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'csv' class MetasploitModule 'Oracle Account Discovery', 'Description' = %q This module uses a list of well known default authentication credentials to discover...

7.4AI score
Exploits0
Total number of security vulnerabilities50738