what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 3 of 3

Files from krastanoel

Gitea Git Fetch Remote Code Execution

Posted Nov 17, 2022

Authored by krastanoel, wuhan005, li4n0 | Site metasploit.com

This Metasploit module exploits the Git fetch command in the Gitea repository migration process to allow for remote command execution on the system. This vulnerability affect Gitea versions prior to 1.16.7.

tags | exploit, remote

advisories | CVE-2022-30781

SHA-256 | dba6b158933e4ec6089f6364c6b953e84d8ade82305acdf446dc098ee940e1dd

Download | Favorite | View

Gitea 1.16.6 Remote Code Execution

Posted Sep 15, 2022

Authored by krastanoel, wuhan005, li4n0 | Site metasploit.com

This Metasploit module exploits the Git fetch command in Gitea repository migration process that leads to a remote command execution on the system. This vulnerability affects Gitea versions prior to 1.16.7.

tags | exploit, remote

advisories | CVE-2022-30781

SHA-256 | dd896fa69248da44c654b1dacf601582e7c11220a2ca6e9f2bbf86da8fcd544b

Download | Favorite | View

ZoneMinder Language Settings Remote Code Execution

Posted May 5, 2022

Authored by krastanoel | Site metasploit.com

This Metasploit module exploits an arbitrary file write in the debug log file option chained with a path traversal in the language settings that leads to remote code execution in ZoneMinder surveillance software versions before 1.36.13 and before 1.37.11

tags | exploit, remote, arbitrary, code execution

advisories | CVE-2022-29806

SHA-256 | de41d6871c9da39a780698ac61a0da551342a2766821ef00b00ff323d0ac1fe6

Download | Favorite | View