Files from Zach Hanley ≈ Packet Storm

Fortinet FortiOS / FortiProxy / FortiSwitchManager Authentication Bypass

October 19, 2022, 7:35 am

This Metasploit module exploits an authentication bypass vulnerability in the Fortinet FortiOS, FortiProxy, and FortiSwitchManager API to gain access to a chosen account and then adds an SSH key to the...

View Article

Fortinet FortiNAC keyUpload.jsp Arbitrary File Write

March 15, 2023, 7:45 am

This Metasploit module uploads a payload to the /tmp directory in addition to a cron job to /etc/cron.d which executes the payload in the context of the root user. The core vulnerability is an...

View Article

PaperCut MF/NG Authentication Bypass / Remote Code Execution

April 25, 2023, 8:33 am

PaperCut MF/NG proof of concept exploit that uses an authentication bypass vulnerability chained with abuse of built-in scripting functionality to execute code.

View Article

Ivanti Sentry Authentication Bypass / Remote Code Execution

September 13, 2023, 8:44 am

This Metasploit module exploits an authentication bypass in Ivanti Sentry which exposes API functionality which allows for code execution in the context of the root user.

View Article

Lexmark Device Embedded Web Server Remote Code Execution

September 19, 2023, 8:57 am

An unauthenticated remote code execution vulnerability exists in the embedded webserver in certain Lexmark devices through 2023-02-19. The vulnerability is only exposed if, when setting up the printer...

View Article

GoAnywhere MFT Authentication Bypass

January 24, 2024, 6:45 am

GoAnywhere MFT authentication bypass proof of concept exploit.

View Article

Fortra GoAnywhere MFT Unauthenticated Remote Code Execution

February 2, 2024, 8:05 am

This Metasploit module exploits a vulnerability in Fortra GoAnywhere MFT that allows an unauthenticated attacker to create a new administrator account. This can be leveraged to upload a JSP payload and...

View Article