automatic module_metadata_base.json update

Author: msjenkins-r7

db/modules_metadata_base.json

@@ -22786,6 +22786,129 @@
 
     ]
   },
+  "auxiliary_gather/jasmin_ransomware_dir_traversal": {
+    "name": "Jasmin Ransomware Web Server Unauthenticated Directory Traversal",
+    "fullname": "auxiliary/gather/jasmin_ransomware_dir_traversal",
+    "aliases": [
+
+    ],
+    "rank": 300,
+    "disclosure_date": "2023-04-08",
+    "type": "auxiliary",
+    "author": [
+      "chebuya",
+      "h00die"
+    ],
+    "description": "The Jasmin Ransomware web server contains an unauthenticated directory traversal vulnerability\n          within the download functionality. As of April 15, 2024 this was still unpatched, so all\n          versions are vulnerable. The last patch was in 2021, so it will likely not ever be patched.",
+    "references": [
+      "CVE-2024-30851",
+      "URL-https://github.com/chebuya/CVE-2024-30851-jasmin-ransomware-path-traversal-poc",
+      "URL-https://github.com/codesiddhant/Jasmin-Ransomware"
+    ],
+    "platform": "",
+    "arch": "",
+    "rport": 80,
+    "autofilter_ports": [
+      80,
+      8080,
+      443,
+      8000,
+      8888,
+      8880,
+      8008,
+      3000,
+      8443
+    ],
+    "autofilter_services": [
+      "http",
+      "https"
+    ],
+    "targets": null,
+    "mod_time": "2024-05-04 16:06:48 +0000",
+    "path": "/modules/auxiliary/gather/jasmin_ransomware_dir_traversal.rb",
+    "is_install_path": true,
+    "ref_name": "gather/jasmin_ransomware_dir_traversal",
+    "check": true,
+    "post_auth": false,
+    "default_credential": false,
+    "notes": {
+      "Stability": [
+        "crash-safe"
+      ],
+      "Reliability": [
+
+      ],
+      "SideEffects": [
+
+      ]
+    },
+    "session_types": false,
+    "needs_cleanup": false,
+    "actions": [
+
+    ]
+  },
+  "auxiliary_gather/jasmin_ransomware_sqli": {
+    "name": "Jasmin Ransomware Web Server Unauthenticated SQL Injection",
+    "fullname": "auxiliary/gather/jasmin_ransomware_sqli",
+    "aliases": [
+
+    ],
+    "rank": 300,
+    "disclosure_date": "2023-04-08",
+    "type": "auxiliary",
+    "author": [
+      "chebuya",
+      "h00die"
+    ],
+    "description": "The Jasmin Ransomware web server contains an unauthenticated SQL injection vulnerability\n          within the login functionality. As of April 15, 2024 this was still unpatched, so all\n          versions are vulnerable. The last patch was in 2021, so it will likely not ever be patched.\n\n          Retrieving the victim's data may take a long amount of time. It is much quicker to\n          get the logins, then just login to the site.",
+    "references": [
+      "URL-https://github.com/chebuya/CVE-2024-30851-jasmin-ransomware-path-traversal-poc",
+      "URL-https://github.com/codesiddhant/Jasmin-Ransomware"
+    ],
+    "platform": "",
+    "arch": "",
+    "rport": 80,
+    "autofilter_ports": [
+      80,
+      8080,
+      443,
+      8000,
+      8888,
+      8880,
+      8008,
+      3000,
+      8443
+    ],
+    "autofilter_services": [
+      "http",
+      "https"
+    ],
+    "targets": null,
+    "mod_time": "2024-05-04 16:06:48 +0000",
+    "path": "/modules/auxiliary/gather/jasmin_ransomware_sqli.rb",
+    "is_install_path": true,
+    "ref_name": "gather/jasmin_ransomware_sqli",
+    "check": true,
+    "post_auth": false,
+    "default_credential": false,
+    "notes": {
+      "Stability": [
+        "crash-safe"
+      ],
+      "Reliability": [
+
+      ],
+      "SideEffects": [
+
+      ]
+    },
+    "session_types": false,
+    "needs_cleanup": false,
+    "actions": [
+
+    ]
+  },
   "auxiliary_gather/java_rmi_registry": {
     "name": "Java RMI Registry Interfaces Enumeration",
     "fullname": "auxiliary/gather/java_rmi_registry",