Fri Jul 05 2024
Metasploit Weekly Wrap-Up 07/05/2024
3 new modules - MOVEit Transfer authentication bypass CVE-2024-5806, Zyxel command injection, and Azure CLI credentials gatherer...
This site uses cookies for anonymized analytics. For more information or to change your cookie settings, view our Cookie Policy.
Get visibility into your network with Rapid7's InsightVM
30-Day Trial
Title | Date | Author |
---|---|---|
Land #19295, MOVEit Transfer SFTP auth bypass | Jul 04, 2024 | dledda-r7 |
Land #19204, Zyxel VPN Series Pre-auth Command Injection | Jul 03, 2024 | cdelafuente-r7 |
Land #10113, Azure CLI steal tokens post module. | Jul 03, 2024 | dledda-r7 |
Land #19289, Update apache_nifi_credentials algo regex | Jun 28, 2024 | adfoster-r7 |
Land #19205, Add MS-NRPC users enumeration module | Jun 24, 2024 | smcintyre-r7 |
Land #19259, warn on weak meterpreter keys Fixing meterpreter to support is_weak_key byte flag from mettle | Jun 24, 2024 | smcintyre-r7 |
Fri Jul 05 2024
3 new modules - MOVEit Transfer authentication bypass CVE-2024-5806, Zyxel command injection, and Azure CLI credentials gatherer...
Fri Jun 28 2024
Unauthenticated Command Injection in Netis Router This week's Metasploit release includes an exploit module for an unauthenticated command injection vulnerability in the Netis MW5360 router which is being tracked as CVE-2024-...
Fri Jun 21 2024
This week includes modules that target file traversal & arbitrary file read vulnerabilities for software such as Apache, SolarWinds, & Check Point....
Rapid7’s solution for advanced vulnerability management analytics and reporting.
Free TrialRapid7’s incident detection and response solution unifying SIEM, EDR, and UBA capabilities.
Free TrialVirtual machines full of intentional security vulnerabilities. Exploit at will!
Download Now