Showing 7,361 of 22,177 total issues
Method initialize
has 68 lines of code (exceeds 25 allowed). Consider refactoring. Open
Open
def initialize(info = {})
super(
update_info(
info,
'Name' => 'Apache Struts 2 Forced Multi OGNL Evaluation',
Method exploit
has 68 lines of code (exceeds 25 allowed). Consider refactoring. Open
Open
def exploit
if !datastore['ForceExploit'] && is_root?
fail_with Failure::BadConfig, 'Session already has root privileges. Set ForceExploit to override.'
end
Method initialize
has 68 lines of code (exceeds 25 allowed). Consider refactoring. Open
Open
def initialize(info = {})
super(
update_info(
info,
'Name' => 'CVE-2022-21999 SpoolFool Privesc',
Method exploit
has 68 lines of code (exceeds 25 allowed). Consider refactoring. Open
Open
def exploit
@reg_keys = []
check_permissions!
case get_uac_level
when UAC_PROMPT_CREDS_IF_SECURE_DESKTOP,
Method initialize
has 68 lines of code (exceeds 25 allowed). Consider refactoring. Open
Open
def initialize(info = {})
super(
update_info(
info,
'Name' => 'SharePoint DataSet / DataTable Deserialization',
Method exploit
has 68 lines of code (exceeds 25 allowed). Consider refactoring. Open
Open
def exploit
tmp_target = target
case get_target_name
when targets[1]
target = targets[1]
Method initialize
has 68 lines of code (exceeds 25 allowed). Consider refactoring. Open
Open
def initialize(info = {})
super(
update_info(
info,
'Name' => 'Zoho Password Manager Pro XML-RPC Java Deserialization',
Method leak_web_config
has 68 lines of code (exceeds 25 allowed). Consider refactoring. Open
Open
def leak_web_config
print_status('Leaking the ViewState validation key...')
web_id = sharepoint_get_site_web_id('cookie' => cookie)
fail_with(Failure::UnexpectedReply, 'Failed to retrieve the site web ID') unless web_id
Method initialize
has 68 lines of code (exceeds 25 allowed). Consider refactoring. Open
Open
def initialize(info = {})
super(
update_info(
info,
'Name' => 'AddressSanitizer (ASan) SUID Executable Privilege Escalation',
Method initialize
has 68 lines of code (exceeds 25 allowed). Consider refactoring. Open
Open
def initialize(info = {})
super(
update_info(
info,
'Name' => 'Kemp LoadMaster Local sudo privilege escalation',
Method initialize
has 68 lines of code (exceeds 25 allowed). Consider refactoring. Open
Open
def initialize(info = {})
super(
update_info(
info,
'Name' => 'Serv-U FTP Server prepareinstallation Privilege Escalation',
Method initialize
has 68 lines of code (exceeds 25 allowed). Consider refactoring. Open
Open
def initialize(info = {})
super(
update_info(
info,
'Name' => 'Lucee Administrator imgProcess.cfm Arbitrary File Write',
Method exploit
has 68 lines of code (exceeds 25 allowed). Consider refactoring. Open
Open
def exploit
downfile = datastore['DOWNFILE'] || rand_text_alpha(8+rand(4))
uri = '/apply.cgi'
user = datastore['HttpUsername']
pass = datastore['HttpPassword']
Method initialize
has 68 lines of code (exceeds 25 allowed). Consider refactoring. Open
Open
def initialize(info = {})
super(
update_info(
info,
'Name' => 'Zyxel Firewall ZTP Unauthenticated Command Injection',
Method initialize
has 68 lines of code (exceeds 25 allowed). Consider refactoring. Open
Open
def initialize(info = {})
super(
update_info(
info,
'Name' => 'OpenTSDB 2.4.0 unauthenticated command injection',
Method initialize
has 68 lines of code (exceeds 25 allowed). Consider refactoring. Open
Open
def initialize(info = {})
super(
update_info(
info,
'Name' => 'Bitbucket Git Command Injection',
Method get_creds
has 68 lines of code (exceeds 25 allowed). Consider refactoring. Open
Open
def get_creds
credentials = []
# call credenumerate to get the ptr needed
adv32 = session.railgun.advapi32
begin
Method cmd_execute
has 68 lines of code (exceeds 25 allowed). Consider refactoring. Open
Open
def cmd_execute(*args)
if (args.length == 0)
args.unshift("-h")
end
Method mikrotik_swos_config_eater
has 68 lines of code (exceeds 25 allowed). Consider refactoring. Open
Open
def mikrotik_swos_config_eater(thost, tport, config)
if framework.db.active
credential_data = {
address: thost,
port: tport,
Method initialize
has 68 lines of code (exceeds 25 allowed). Consider refactoring. Open
Open
def initialize(info = {})
ret = super(info)
register_advanced_options(
[