what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 4 of 4

Files from Onur ER

Pandora FMS Ping Authenticated Remote Code Execution

Posted Apr 6, 2020

Authored by Onur ER | Site metasploit.com

This Metasploit module exploits a vulnerability found in Pandora FMS 7.0NG and lower. net_tools.php in Pandora FMS 7.0NG allows remote attackers to execute arbitrary OS commands.

tags | exploit, remote, arbitrary, php

SHA-256 | 13c1b77ffe29ebb14e76ff947c09afeab3c3fd57df6d696dbd84ba9e2f67037a

Download | Favorite | View

OpenNetAdmin Ping Command Injection

Posted Feb 21, 2020

Authored by Onur ER, mattpascoe | Site metasploit.com

This Metasploit module exploits a command injection in OpenNetAdmin between versions 8.5.14 and 18.1.1.

tags | exploit

SHA-256 | 2b228bdd522a3322b945c5bb606015c9a7078570c659b03b557125d2bb27bf4a

Download | Favorite | View

OpenNetAdmin 18.1.1 Command Injection

Posted Dec 12, 2019

Authored by Onur ER, mattpascoe | Site metasploit.com

This Metasploit module exploits a command injection in OpenNetAdmin versions 8.5.14 through 18.1.1.

tags | exploit

SHA-256 | 35cfdca0ccb7572d95d29ab998df91c435fbe8a884d9e9397433812a1e2dba84

Download | Favorite | View

Ajenti 2.1.31 Command Injection

Posted Dec 2, 2019

Authored by Jeremy Brown, Onur ER | Site metasploit.com

This Metasploit module exploits a command injection in Ajenti version 2.1.31. By injecting a command into the username POST parameter to api/core/auth, a shell can be spawned.

tags | exploit, shell

SHA-256 | 19a60244a9981506c6ee38b26a274f9f9a7867cb46ae450c4e77577fc35a1e1f

Download | Favorite | View