automatic module_metadata_base.json update

Author: msjenkins-r7

db/modules_metadata_base.json

@@ -26747,6 +26747,69 @@
 
     ]
   },
+  "auxiliary_gather/solarwinds_webhelpdesk_backdoor": {
+    "name": "SolarWinds Web Help Desk Backdoor (CVE-2024-28987)",
+    "fullname": "auxiliary/gather/solarwinds_webhelpdesk_backdoor",
+    "aliases": [
+
+    ],
+    "rank": 300,
+    "disclosure_date": "2024-08-22",
+    "type": "auxiliary",
+    "author": [
+      "Michael Heinzl",
+      "Zach Hanley"
+    ],
+    "description": "This module exploits a backdoor in SolarWinds Web Help Desk <= v12.8.3 to retrieve all tickets from the system.",
+    "references": [
+      "CVE-2024-28987",
+      "URL-https://www.solarwinds.com/trust-center/security-advisories/cve-2024-28987",
+      "URL-https://support.solarwinds.com/SuccessCenter/s/article/SolarWinds-Web-Help-Desk-12-8-3-Hotfix-2",
+      "URL-https://www.horizon3.ai/attack-research/cve-2024-28987-solarwinds-web-help-desk-hardcoded-credential-vulnerability-deep-dive/"
+    ],
+    "platform": "",
+    "arch": "",
+    "rport": 8443,
+    "autofilter_ports": [
+      80,
+      8080,
+      443,
+      8000,
+      8888,
+      8880,
+      8008,
+      3000,
+      8443
+    ],
+    "autofilter_services": [
+      "http",
+      "https"
+    ],
+    "targets": null,
+    "mod_time": "2024-10-31 10:56:56 +0000",
+    "path": "/modules/auxiliary/gather/solarwinds_webhelpdesk_backdoor.rb",
+    "is_install_path": true,
+    "ref_name": "gather/solarwinds_webhelpdesk_backdoor",
+    "check": true,
+    "post_auth": false,
+    "default_credential": false,
+    "notes": {
+      "Stability": [
+        "crash-safe"
+      ],
+      "Reliability": [
+
+      ],
+      "SideEffects": [
+        "ioc-in-logs"
+      ]
+    },
+    "session_types": false,
+    "needs_cleanup": false,
+    "actions": [
+
+    ]
+  },
   "auxiliary_gather/splunk_raw_server_info": {
     "name": "Splunk __raw Server Info Disclosure ",
     "fullname": "auxiliary/gather/splunk_raw_server_info",
@@ -45737,6 +45800,71 @@
 
     ]
   },
+  "auxiliary_scanner/http/wp_ti_woocommerce_wishlist_sqli": {
+    "name": "WordPress TI WooCommerce Wishlist SQL Injection (CVE-2024-43917)",
+    "fullname": "auxiliary/scanner/http/wp_ti_woocommerce_wishlist_sqli",
+    "aliases": [
+
+    ],
+    "rank": 300,
+    "disclosure_date": "2024-09-25",
+    "type": "auxiliary",
+    "author": [
+      "Rafie Muhammad",
+      "Valentin Lobstein"
+    ],
+    "description": "The TI WooCommerce Wishlist plugin <= 2.8.2 is vulnerable to an unauthenticated SQL injection, allowing attackers to retrieve sensitive information.",
+    "references": [
+      "CVE-2024-43917",
+      "WPVDB-e994753e-ce18-48cf-8087-897ec8db2eef",
+      "URL-https://patchstack.com/articles/unpatched-sql-injection-vulnerability-in-ti-woocommerce-wishlist-plugin/"
+    ],
+    "platform": "",
+    "arch": "",
+    "rport": 80,
+    "autofilter_ports": [
+      80,
+      8080,
+      443,
+      8000,
+      8888,
+      8880,
+      8008,
+      3000,
+      8443
+    ],
+    "autofilter_services": [
+      "http",
+      "https"
+    ],
+    "targets": null,
+    "mod_time": "2024-10-31 11:56:55 +0000",
+    "path": "/modules/auxiliary/scanner/http/wp_ti_woocommerce_wishlist_sqli.rb",
+    "is_install_path": true,
+    "ref_name": "scanner/http/wp_ti_woocommerce_wishlist_sqli",
+    "check": false,
+    "post_auth": false,
+    "default_credential": false,
+    "notes": {
+      "Stability": [
+        "crash-safe"
+      ],
+      "SideEffects": [
+        "ioc-in-logs"
+      ],
+      "Reliability": [
+
+      ]
+    },
+    "session_types": false,
+    "needs_cleanup": false,
+    "actions": [
+      {
+        "name": "Retrieve Share Key and Perform SQLi",
+        "description": "Retrieve share key and perform SQL Injection"
+      }
+    ]
+  },
   "auxiliary_scanner/http/wp_total_upkeep_downloader": {
     "name": "WordPress Total Upkeep Unauthenticated Backup Downloader",
     "fullname": "auxiliary/scanner/http/wp_total_upkeep_downloader",