Showing 1 - 6 of 6

Files from chebuya

First Active	2024-03-08
Last Active	2024-05-22

NorthStar C2 Cross Site Scripting / Code Execution: Posted May 22, 2024; Authored by h00die, chebuya | Site metasploit.com; NorthStar C2, prior to commit 7674a44 on March 11 2024, contains a vulnerability where the logs page is vulnerable to a stored cross site scripting issue. An unauthenticated user can simulate an agent registration to cause the cross site scripting attack and take over a users session. With this access, it is then possible to run a new payload on all of the NorthStar C2 compromised hosts (agents), and kill the original agent. Successfully tested against NorthStar C2 commit e7fdce148b6a81516e8aa5e5e037acd082611f73 running on Ubuntu 22.04. The agent was running on Windows 10 19045.; tags | exploit, xss; systems | linux, windows, ubuntu; advisories | CVE-2024-28741; SHA-256 | e5fdc1eb511aee9e0ced55911325ab4ed7c9efe59d20347fc192d3a17a7fa844; Download | Favorite | View

CHAOS 5.0.8 Cross Site Scripting / Remote Command Execution: Posted May 21, 2024; Authored by h00die, chebuya | Site metasploit.com; CHAOS version 5.0.8 is a free and open-source Remote Administration Tool that allows generated binaries to control remote operating systems. The web application contains a remote command execution vulnerability which can be triggered by an authenticated user when generating a new executable. The web application also contains a cross site scripting vulnerability within the view of a returned command being executed on an agent.; tags | exploit, remote, web, xss; advisories | CVE-2024-30850, CVE-2024-31839; SHA-256 | f57ebc1eae72783c36ac9e3df7805d9879e3d1ced0b8232ea872b32518252dce; Download | Favorite | View

CHAOS RAT 5.0.1 Remote Command Execution: Posted Apr 10, 2024; Authored by chebuya; CHAOS RAT web panel version 5.0.1 is vulnerable to command injection, which can be triggered from a cross site scripting attack, allowing an attacker to takeover the RAT server.; tags | exploit, web, xss; advisories | CVE-2024-30850, CVE-2024-31839; SHA-256 | 343ca35b11570c993ed8818aa37a56638c474563d756a7ac0c8f9334b16b6ca5; Download | Favorite | View

Jasmin Ransomware 1.1 Arbitrary File Read: Posted Apr 5, 2024; Authored by chebuya; Jasmin Ransomware version 1.1 suffers from an arbitrary file read vulnerability.; tags | exploit, arbitrary; advisories | CVE-2024-30851; SHA-256 | 31f4b2bfcea7721b795130a73ea23eb4c455761a9210c8e57d648ef7f5a73b61; Download | Favorite | View

NorthStar C2 Agent 1.0 Cross Site Scripting / Remote Command Execution: Posted Mar 12, 2024; Authored by chebuya; NorthStar C2 agent version 1.0 applies insufficient sanitization on agent registration routes, allowing an unauthenticated attacker to send multiple malicious agent registration requests to the teamserver to incrementally build a functioning javascript payload in the logs web page. This cross site scripting payload can be leveraged to execute commands on NorthStar C2 agents.; tags | exploit, web, javascript, xss; advisories | CVE-2024-28741; SHA-256 | e3d03b1bb5d42cd9ee527169a57dc6bfa52c6c6b50d4e1a990a6c9443e01b3b1; Download | Favorite | View

Ladder 0.0.21 Server-Side Request Forgery: Posted Mar 8, 2024; Authored by chebuya; Ladder versions 0.0.1 through 0.0.21 fail to apply sufficient default restrictions on destination addresses, allowing an attacker to make GET requests to addresses that would typically not be accessible from an external context. An attacker can access private address ranges, locally listening services, and cloud instance metadata APIs.; tags | exploit; advisories | CVE-2024-27620; SHA-256 | f06f89665ccf4436395e34e316f44542fe2c8e5818e1b20f6b1def5ff8cf0c48; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days