This module exploits a remote code execution vulnerability (CVE-2022-33891) of Apache Spark. The Apache Spark UI offers the possibility to enable ACLs via the configuration option spark.acls.enable.
This exploit is a proof-of-work exploit of the RFI vulnerabilities CVE-2024-25096 and CVE-2023-3452, which allow the attacker to establish an interactive remote shell session on the target.
***Disclaimer: The following information is for educational purposes only. Unauthorized use of this code for malicious purposes is illegal and can result in severe consequences. The author is not ...
A public exploit module for the BlueKeep Windows vulnerability has been added today to the open-source Metasploit penetration testing framework, developed by Rapid7 in collaboration with the ...
EJPT learning glimpses: Metasploit framework: module: exploit SMBGhost (CVE-2020-0796) CVE-2020-0796, widely known as SMBGhost, is a "wormable" critical vulnerability in the Microsoft Server Message ...
The developers of the Metasploit penetration testing framework have released today a weaponized exploit for the BlueKeep Windows vulnerability. While other security researchers have released defanged ...