module
cgit Directory Traversal
| Disclosed | Created |
|---|---|
| 08/03/2018 | 03/19/2019 |
Disclosed
08/03/2018
Created
03/19/2019
Description
This module exploits a directory traversal vulnerability which
exists in cgit configuration flag enable-http-clone is set to 1 (default).
exists in cgit configuration flag enable-http-clone is set to 1 (default).
Authors
Google Project ZeroDhiraj Mishra
References
Module Options
To display the available options, load the module within the Metasploit console and run the commands ‘show options’ or ‘show advanced’:
msf > use auxiliary/scanner/http/cgit_traversal
msf /(l) > show actions
...actions...
msf /(l) > set ACTION < action-name >
msf /(l) > show options
...show and set options...
msf /(l) > run
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.