CoCalc -- module.rb

GitHub Repository: beefproject/beef
Path: blob/master/modules/exploits/coldfusion_dir_traversal_exploit/module.rb
¹¹⁵⁴ views

1
#
2
# Copyright (c) 2006-2025 Wade Alcorn - [email protected]
3
# Browser Exploitation Framework (BeEF) - https://beefproject.com
4
# See the file 'doc/COPYING' for copying permission
5
#
6
class Coldfusion_dir_traversal_exploit < BeEF::Core::Command
7
  def self.options
8
    [
9
      { 'name' => 'fileToRetrieve', 'ui_label' => 'Retrieve file  (in CF /lib dir)', 'value' => 'password.properties' },
10
      { 'name' => 'os_combobox', 'type' => 'combobox', 'ui_label' => 'CF server OS', 'store_type' => 'arraystore',
11
        'store_fields' => ['os'], 'store_data' => [['Windows'], ['Linux/MacOSX/*BSD']],
12
        'valueField' => 'os', 'displayField' => 'os', 'mode' => 'local', 'autoWidth' => true },
13
      { 'name' => 'cf_version', 'type' => 'combobox', 'ui_label' => 'ColdFusion version', 'store_type' => 'arraystore',
14
        'store_fields' => ['cf_version'], 'store_data' => [['8'], ['9']],
15
        'valueField' => 'cf_version', 'displayField' => 'cf_version', 'mode' => 'local', 'autoWidth' => true }
16
    ]
17
  end
18

19
  def post_execute
20
    save({ 'result' => @datastore['result'] })
21
  end
22
end
23

24

Product

Resources

Company