Jack Heysel – Noise

Metasploit Wrap-Up 01/23/2026

Jack Heysel — Fri, 23 Jan 2026 21:00:28 +0000

Oracle E-Business Suite Unauth RCEThis week, we are pleased to announce the addition of a module that exploits CVE-2025-61882, a pre-authentication remote code execution vulnerability in Oracle E-Business Suite versions 12.2.3 through 12.2.14. The expl...

Metasploit Wrap-Up 12/05/2025

Jack Heysel — Fri, 05 Dec 2025 20:58:04 +0000

Twonky Auth Bypass, RCEs and RISC-V Reverse Shell PayloadsThis was another fantastic week in terms of PR contribution to the Metasploit Framework. Rapid7’s very own Ryan Emmons recently disclosed CVE-2025-13315 and CVE-2025-13316 which exist in Twonky ...

Metasploit Wrap-Up 03/28/2025

Jack Heysel — Fri, 28 Mar 2025 19:44:37 +0000

This Metasploit release includes an exploit module for CVE-2024-30085, an LPE in cldflt.sys which is known as the Windows Cloud Files Mini Filer Driver.

Metasploit Weekly Wrap-Up 01/24/2025

Jack Heysel — Fri, 24 Jan 2025 21:58:01 +0000

LibreNMS Authenticated RCE module and ESC15 improvements

This week the Metasploit Framework was blessed with an authenticated RCE module in LibreNMS, an autodiscovering PHP/MySQL-based network monitoring system. An authenticated attacker can create dangerous directory names on the system and alter sensitive configuration parameters through the web portal. These two

Metasploit Weekly Wrap-Up

Jack Heysel — Fri, 15 Nov 2024 20:37:21 +0000

Palo Alto Expedition RCE module

This week's release includes an exploit module for the Palo ALto Expedition exploit chain that's been making headlines recently. The first vulnerability, CVE-2024-5910, allows attackers to reset the password of the admin user. The second vulnerability, CVE-2024-9464 is an authenticated OS command injection. The module

Metasploit Weekly Wrap-Up 09/06/2024

Jack Heysel — Fri, 06 Sep 2024 17:56:11 +0000

Honey, I shrunk the PHP payloads

This release contains more PHP payload improvements from Julien Voisen. Last week we landed a PR from Julien that added a datastore option to the php/base64 encoder that when enabled, will use zlib to compress the payload which significantly reduced the size, bringing

Metasploit Weekly Wrap-Up 06/28/2024

Jack Heysel — Fri, 28 Jun 2024 20:36:29 +0000

Unauthenticated Command Injection in Netis Router

This week's Metasploit release includes an exploit module for an unauthenticated command injection vulnerability in the Netis MW5360 router which is being tracked as CVE-2024-22729. The vulnerability stems from improper handling of the password parameter within the router's web interface which allows for command

Metasploit Weekly Wrap-Up 04/19/24

Jack Heysel — Fri, 19 Apr 2024 18:42:39 +0000

Welcome Ryan and the new CrushFTP module

It's not every week we add an awesome new exploit module to the Framework while adding the original discoverer of the vulnerability to the Rapid7 team as well. We're very excited to welcome Ryan Emmons to the Emergent Threat Response team, which works

Metasploit Weekly Wrap-Up 02/09/2024

Jack Heysel — Fri, 09 Feb 2024 19:35:23 +0000

This weeks wrap up includes three new exploits for docker, Fortra GoAnywhere and Cacti.

Metasploit Weekly Wrap up

Jack Heysel — Fri, 21 Jul 2023 18:08:03 +0000

This week's weekly wrapup includes two new Metasploit modules - Piwigo Gather Credentials via SQL Injection ( CVE-2023-26876 ) and Openfire authentication bypass with RCE plugin (CVE-2023-32315)

Metasploit Weekly Wrap-Up

Jack Heysel — Fri, 24 Mar 2023 18:33:38 +0000

Zxyel Routers Beware

This week we've released a module written by first time community contributor shr70 that can exploit roughly 45 different Zyxel router and VPN models. The module exploits a buffer overflow vulnerability that results in unauthenticated remote code execution on affected devices. It's rare we see a module

Metasploit Weekly Wrap-Up

Jack Heysel — Fri, 10 Mar 2023 19:00:00 +0000

Wowza, a new credential gatherer and login scanner!

This week Metasploit Framework gained a credential gatherer for Wowza Streaming Engine Manager. Credentials for this application are stored in a file named admin.password in a known location and the file is readable by default by BUILTIN\Users on Windows and