metasploit - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	MSF:PAYLOAD-CMD-	TFTP Fetch, Linux Command Shell, Find Port Inline_MSF:PAYLOAD-CMD-LINUX-TFTP-PPC-SHELL_FIND_PORT- Fetch and execute an PPC payload from an TFTP server. Spawn a shell on an established connection Module Options msf use payload/cmd/linux/tftp/ppc/...	N/A	N/A	Dec 9, 2025	METASPLOIT
NONE	MSF:PAYLOAD-CMD-	HTTP Fetch, Linux Command Shell, Bind TCP Inline_MSF:PAYLOAD-CMD-LINUX-HTTP-PPC-SHELL_BIND_TCP- Fetch and execute an PPC payload from an HTTP server. Listen for a connection and spawn a command shell Module Options msf use payload/cmd/linux/ht...	N/A	N/A	Dec 9, 2025	METASPLOIT
CRITICAL 9.8	MSF:EXPLOIT-MULTI-	WordPress AI Engine Plugin MCP Unauthenticated Admin Creation to RCE_MSF:EXPLOIT-MULTI-HTTP-WP_AI_ENGINE_MCP_RCE- This module exploits an unauthenticated vulnerability in the WordPress AI Engine plugin versions use exploit/multi/http/wpaienginemcprce msf exploi...	N/A	N/A	Dec 4, 2025	METASPLOIT
NONE	MSF:PAYLOAD-LINUX-	Linux Command Shell, Reverse TCP Inline_MSF:PAYLOAD-LINUX-RISCV32LE-SHELL_REVERSE_TCP- Connect back to attacker and spawn a command shell. Module Options msf use payload/linux/riscv32le/shellreversetcp msf payloadshellreversetcp show ...	N/A	N/A	Dec 1, 2025	METASPLOIT
NONE	MSF:PAYLOAD-LINUX-	Linux Command Shell, Reverse TCP Inline_MSF:PAYLOAD-LINUX-RISCV64LE-SHELL_REVERSE_TCP- Connect back to attacker and spawn a command shell. Module Options msf use payload/linux/riscv64le/shellreversetcp msf payloadshellreversetcp show ...	N/A	N/A	Dec 1, 2025	METASPLOIT
CRITICAL 9.3	MSF:AUXILIARY-GATHER-	Twonky Server Log Leak Authentication Bypass_MSF:AUXILIARY-GATHER-TWONKY_AUTHBYPASS_LOGLEAK- This module leverages an authentication bypass in Twonky Server 8.5.2. By exploiting an authorization flaw to access a privileged web API endpoint ...	N/A	N/A	Nov 28, 2025	METASPLOIT
CRITICAL 9.3	MSF:EXPLOIT-MULTI-	Monsta FTP downloadFile Remote Code Execution_MSF:EXPLOIT-MULTI-HTTP-MONSTA_FTP_DOWNLOADFILE_RCE- This module exploits a pre-authenticated remote code execution vulnerability in Monsta FTP versions use exploit/multi/http/monstaftpdownloadfilerce...	N/A	N/A	Nov 27, 2025	METASPLOIT
CRITICAL 9.8	MSF:EXPLOIT-LINUX-	Fortinet FortiWeb unauthenticated RCE_MSF:EXPLOIT-LINUX-HTTP-FORTINET_FORTIWEB_RCE- This exploit module exploits an authentication bypass via path traversal vulnerability in the Fortinet FortiWeb management interface to create a ne...	N/A	N/A	Nov 26, 2025	METASPLOIT
NONE	MSF:EXPLOIT-LINUX-	IGEL OS Privilege Escalation (via systemd service)_MSF:EXPLOIT-LINUX-LOCAL-IGEL_NETWORK_PRIV_ESC- Escalate privileges for IGEL OS Workspace Edition sessions, by modifying network-manager.service using setupcmd SUID and network, then restarting t...	N/A	N/A	Nov 26, 2025	METASPLOIT
NONE	MSF:EXPLOIT-LINUX-	IGEL OS Persistent Payload_MSF:EXPLOIT-LINUX-PERSISTENCE-IGEL_PERSISTENCE- Gain persistence for specified payload on IGEL OS Workspace Edition, by writing a payload to disk or base64-encoding and executing from registry. M...	N/A	N/A	Nov 26, 2025	METASPLOIT