This module exploits a remote code execution vulnerability (CVE-2022-33891) of Apache Spark. The Apache Spark UI offers the possibility to enable ACLs via the configuration option spark.acls.enable.

This exploit is a proof-of-work exploit of the RFI vulnerabilities CVE-2024-25096 and CVE-2023-3452, which allow the attacker to establish an interactive remote shell session on the target.

***Disclaimer: The following information is for educational purposes only. Unauthorized use of this code for malicious purposes is illegal and can result in severe consequences. The author is not ...

A public exploit module for the BlueKeep Windows vulnerability has been added today to the open-source Metasploit penetration testing framework, developed by Rapid7 in collaboration with the ...

EJPT learning glimpses: Metasploit framework: module: exploit SMBGhost (CVE-2020-0796) CVE-2020-0796, widely known as SMBGhost, is a "wormable" critical vulnerability in the Microsoft Server Message ...

The developers of the Metasploit penetration testing framework have released today a weaponized exploit for the BlueKeep Windows vulnerability. While other security researchers have released defanged ...

If you’ve got a way to crack Google Chrome, the Metasploit team wants to pay you for it. Today Rapid 7 announced that it has a total of $5,000 to reward to contributors who send in exploits for its ...

Metasploit 6.2.0 has been released with 138 new modules, 148 new improvements/features, and 156 bug fixes since version 6.1.0 was released in August 2021. Metasploit is a penetration testing framework ...