This Metasploit module exploits a directory traversal vulnerability found in BisonWare BisonFTP server version 3.5. This vulnerability allows an attacker to download arbitrary files from the server by crafting a RETR command including file system traversal strings such as ..//.
b4ba3d3fca35e9bfa3099972c1c3714477a03d3f8ad4111938ee37e4d9b450a8
This Metasploit module exploits a directory traversal vulnerability found in Konica Minolta FTP Utility 1.0. This vulnerability allows an attacker to download arbitrary files from the server by crafting a RETR command that includes file system traversal strings such as ..//.
d72624ea7496900a5c29840fa3d505441427c6e9334e04c00e89ad2b227b11d4
This Metasploit module exploits a directory traversal vulnerability found in PCMan FTP Server 2.0.7. This vulnerability allows an attacker to download arbitrary files from the server by crafting a RETR command that includes file system traversal strings such as ..//.
6e1733341126894c9908c414fb18706d2d746634c72abdeba3b946005202f185
This Metasploit module exploits an information disclosure vulnerability found in Zpanel versions 10.1.0 and below. The vulnerability is due to a vulnerable version of pChart allowing remote, unauthenticated, users to read arbitrary files found on the filesystem. This particular module utilizes this vulnerability to identify the username/password combination of the MySQL instance. With the credentials the attackers can login to PHPMyAdmin and execute SQL commands to drop a malicious payload on the filesystem and call it leading to remote code execution.
e2a78006f6a2c8dd9641e9a3343f7060a143d27b5463d94361969f139f4f5d48