腾讯网

Metasploit 发布 7 个新漏洞利用模块,覆盖 FreePBX、Cacti 和 SmarterMail

本周 Metasploit 框架的最新更新为渗透测试人员和红队成员带来重大增强,新增了七个针对常用企业软件的漏洞利用模块。本次更新的亮点包括三个针对 FreePBX 的复杂模块,以及针对 Cacti 和 SmarterMail ...
腾讯网

高危Lucee漏洞:通过计划任务滥用实现认证RCE,Metasploit模块已公开

高性能开源CFML(ColdFusion Markup Language)应用服务器Lucee近日曝出严重安全漏洞。该漏洞编号为CVE-2025-34074,CVSS评分高达9.4,允许已认证管理员通过滥用Lucee计划任务功能执行任意远程代码。 漏洞技术细节 Lucee凭借对Java集成、HTTP、ORM和动态脚本的支持,被开发者 ...
Bleeping Computer

Public BlueKeep Exploit Module Released by MetaSploit

A public exploit module for the BlueKeep Windows vulnerability has been added today to the open-source Metasploit penetration testing framework, developed by Rapid7 in collaboration with the ...
Bleeping Computer

Metasploit 6.2.0 improves credential theft, SMB support features, more

Metasploit 6.2.0 has been released with 138 new modules, 148 new improvements/features, and 156 bug fixes since version 6.1.0 was released in August 2021. Metasploit is a penetration testing framework ...
ZDNet

Metasploit, popular hacking and security tool, gets long-awaited update

The open-source Metasploit Framework 5.0 has long been used by hackers and security professionals alike to break into systems. Now, this popular system penetration testing platform, which enables you ...