GitHub

apache_spark_rce_cve_2022_33891.md

This module exploits a remote code execution vulnerability (CVE-2022-33891) of Apache Spark. The Apache Spark UI offers the possibility to enable ACLs via the configuration option spark.acls.enable.
GitHub

Add in CVE-2017-9833 and CVE-2021-33558

These two CVEs have been found in the now discontinued Boa web server however according to https://securityaffairs.co/wordpress/138916/hacking/boa-web-servers-attacks ...
Bleeping Computer

Public BlueKeep Exploit Module Released by MetaSploit

A public exploit module for the BlueKeep Windows vulnerability has been added today to the open-source Metasploit penetration testing framework, developed by Rapid7 in collaboration with the ...
CIO

Attack Code Published for Two Actively Exploited Vulnerabilities in Microsoft Software

Attack code for two actively exploited vulnerabilities in Microsoft software, one of which has not yet been patched, was integrated into the open-source Metasploit penetration testing framework. One ...
Dark Reading

Attack Code, Metasploit Module Released For Serious Ruby On Rails Bugs

This just got (more) real: Researchers today unleashed exploit code for a pair of newly found vulnerabilities in the popular Web application programming platform Ruby on Rails (RoR), as well as a new ...
CSOonline

Remote exploit vulnerability in bash CVE-2014-6271

Credit: christin hume / Linux / Modified by IDG Comm. A remotely exploitable vulnerability has been discovered by Stephane Chazelas in bash on Linux and it is unpleasant. The vulnerability has the CVE ...