metasploit - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.8	MSF:EXPLOIT-MULTI-	Langflow AI RCE_MSF:EXPLOIT-MULTI-HTTP-LANGFLOW_UNAUTH_RCE_CVE_2025_3248- Langflow versions prior to 1.3.0 are susceptible to code injection in the /api/v1/validate/code endpoint. ...	N/A	N/A	Aug 29, 2025	METASPLOIT
CRITICAL 9.9	MSF:EXPLOIT-MULTI-	pgAdmin Query Tool authenticated RCE (CVE-2025-2945)_MSF:EXPLOIT-MULTI-HTTP-PGADMIN_QUERY_TOOL_AUTHENTICATED- This module exploits a vulnerability in pgAdmin where an authenticated user can establish a connection to the query tool ...	N/A	N/A	Aug 29, 2025	METASPLOIT
CRITICAL 9.8	MSF:EXPLOIT-MULTI-	Oracle Access Manager unauthenticated Remote Code Execution_MSF:EXPLOIT-MULTI-HTTP-ORACLE_ACCESS_MANAGER_RCE_CVE_2021_35587- This module exploits an unauthenticated deserialization of untrusted data vulnerability in the OpenSSO Agent component of...	N/A	N/A	Aug 29, 2025	METASPLOIT
CRITICAL 9.8	MSF:EXPLOIT-MULTI-	Tomcat Partial PUT Java Deserialization_MSF:EXPLOIT-MULTI-HTTP-TOMCAT_PARTIAL_PUT_DESERIALIZATION- This module exploits a Java deserialization vulnerability in Apache Tomcat's session restoration functionality that can be exploited...	N/A	N/A	Aug 29, 2025	METASPLOIT
NONE	MSF:EXPLOIT-MULTI-	Periodic Script Persistence_MSF:EXPLOIT-MULTI-LOCAL-PERIODIC_SCRIPT_PERSISTENCE- This module will achieve persistence by writing a script to the /etc/periodic directory. According to The Art of Mac Malware no such malw...	N/A	N/A	Aug 29, 2025	METASPLOIT
HIGH 10	MSF:EXPLOIT-SOLARIS-	System V Derived /bin/login Extraneous Arguments Buffer Overflow_MSF:EXPLOIT-SOLARIS-DIALUP-MANYARGS- This exploit connects to a system's modem over dialup and exploits a buffer overflow vulnerability in it's System V derived /bi...	N/A	N/A	Aug 29, 2025	METASPLOIT
CRITICAL 9.8	MSF:EXPLOIT-WINDOWS-	Gladinet CentreStack/Triofox ASP.NET ViewState Deserialization_MSF:EXPLOIT-WINDOWS-HTTP-GLADINET_VIEWSTATE_DESERIALIZATION_CVE_2025_30406- A vulnerability in Gladinet CentreStack and Triofox application using hardcoded cryptographic keys for ViewState could allow an attacker...	N/A	N/A	Aug 29, 2025	METASPLOIT
HIGH 7.8	MSF:EXPLOIT-WINDOWS-	Windows Cloud File Mini Filer Driver Heap Overflow_MSF:EXPLOIT-WINDOWS-LOCAL-CVE_2024_30085_CLOUD_FILES- This module exploits the Windows Cloud Files Mini FIlter Driver cldflt.sys on Windows workstation versions ...	N/A	N/A	Aug 29, 2025	METASPLOIT
MEDIUM 5.3	MSF:EXPLOIT-WINDOWS-	Sitecore CVE-2025-27218 BinaryFormatter Deserialization Exploit_MSF:EXPLOIT-WINDOWS-HTTP-SITECORE_XP_CVE_2025_27218- This module exploits a .NET deserialization vulnerability in Sitecore Experience Manager (XM) and Experience ...	N/A	N/A	Aug 29, 2025	METASPLOIT
NONE	MSF:PAYLOAD-CMD-	TFTP Fetch_MSF:PAYLOAD-CMD-LINUX-TFTP-MIPSLE-METERPRETER_REVERSE_HTTPS- Fetch and execute an MIPSLE payload from a TFTP server. Module Options msf > use...	N/A	N/A	Aug 29, 2025	METASPLOIT