metasploit - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	MSF:AUXILIARY-SERVER-	Microsoft Windows SMB to MSSQL Relay_MSF:AUXILIARY-SERVER-RELAY-SMB_TO_MSSQL- This module supports running an SMB server which validates credentials, and then attempts to execute a relay attack against an MSSQL server on the ...	N/A	N/A	Nov 24, 2025	METASPLOIT
CRITICAL 9.8	MSF:EXPLOIT-MULTI-	Flowise Custom MCP Remote Code Execution_MSF:EXPLOIT-MULTI-HTTP-FLOWISE_CUSTOMMCP_RCE- This module exploits a remote code execution vulnerability in Flowise versions >= 2.2.7-patch.1 ...	N/A	N/A	Nov 22, 2025	METASPLOIT
CRITICAL 10	MSF:EXPLOIT-MULTI-	Flowise JS Injection RCE_MSF:EXPLOIT-MULTI-HTTP-FLOWISE_JS_RCE- This module exploits a remote code execution vulnerability in Flowise versions >= 2.2.7-patch.1 ...	N/A	N/A	Nov 22, 2025	METASPLOIT
NONE	MSF:EXPLOIT-WINDOWS-	Notepad++ Plugin Persistence_MSF:EXPLOIT-WINDOWS-PERSISTENCE-NOTEPADPP_PLUGIN_PERSISTENCE- This module create persistence by adding a malicious plugin to Notepad++, as it blindly loads and executes...	N/A	N/A	Nov 22, 2025	METASPLOIT
NONE	MSF:EXPLOIT-WINDOWS-	Windows WSL via Registry Persistence_MSF:EXPLOIT-WINDOWS-PERSISTENCE-WSL-REGISTRY- This module will install a payload in WSL and execute it at user logon or system startup via the registry value in "CurrentVersion\R...	N/A	N/A	Nov 20, 2025	METASPLOIT
NONE	MSF:EXPLOIT-WINDOWS-	Windows Persistent Service Installer_MSF:EXPLOIT-WINDOWS-PERSISTENCE-SERVICE- This Module will generate and upload an executable to a remote host. It will create a new service which will start the payload whenever t...	N/A	N/A	Nov 18, 2025	METASPLOIT
NONE	MSF:AUXILIARY-ADMIN-	Fortinet FortiWeb create new local admin_MSF:AUXILIARY-ADMIN-HTTP-FORTINET_FORTIWEB_CREATE_ADMIN- This auxiliary module exploits an authentication bypass via path traversal vulnerability in the Fortinet FortiWeb management interface to...	N/A	N/A	Nov 14, 2025	METASPLOIT
CRITICAL 9.8	MSF:EXPLOIT-WINDOWS-	Windows Server Update Service Deserialization Remote Code Execution_MSF:EXPLOIT-WINDOWS-HTTP-WSUS_DESERIALIZATION_RCE- This module exploits deserialization vulnerability...	N/A	N/A	Nov 12, 2025	METASPLOIT
NONE	MSF:EXPLOIT-WINDOWS-	LINQPad Deserialization_MSF:EXPLOIT-WINDOWS-PERSISTENCE-LINQPAD_DESERIALIZATION- This module exploits a bug in LIQPad up to version 5.48.00. The bug is only exploitable in paid version...	N/A	N/A	Nov 11, 2025	METASPLOIT
HIGH 7.2	MSF:EXPLOIT-LINUX-	Centreon authenticated command injection leading to RCE via broker engine “reload” parameter_MSF:EXPLOIT-LINUX-HTTP-CENTREON_AUTH_RCE_CVE_2025_5946- Centreon is a platform designed to monitor your cloud and on-premises infrastructure. This module exploits an command injection vulnerabi...	N/A	N/A	Nov 5, 2025	METASPLOIT