Merge branch 'e-m-b-a:master' into restart_emulation

config/msf_cve-db.txt

@@ -238,6 +238,7 @@
 /modules/auxiliary/gather/exchange_proxylogon_collector.rb:CVE-2021-26855
 /modules/auxiliary/gather/firefox_pdfjs_file_theft.rb:CVE-2015-4495
 /modules/auxiliary/gather/flash_rosetta_jsonp_url_disclosure.rb:CVE-2014-4671
+/modules/auxiliary/gather/gitlab_authenticated_subgroups_file_read.rb:CVE-2023-2825
 /modules/auxiliary/gather/grandstream_ucm62xx_sql_account_guess.rb:CVE-2020-5723
 /modules/auxiliary/gather/grandstream_ucm62xx_sql_account_guess.rb:CVE-2020-5724
 /modules/auxiliary/gather/hikvision_info_disclosure_cve_2017_7921.rb:CVE-2017-7921
@@ -274,6 +275,7 @@
 /modules/auxiliary/gather/saltstack_salt_root_key.rb:CVE-2020-11652
 /modules/auxiliary/gather/samsung_browser_sop_bypass.rb:CVE-2017-17692
 /modules/auxiliary/gather/solarwinds_orion_sqli.rb:CVE-2014-9566
+/modules/auxiliary/gather/tplink_archer_c7_traversal.rb:CVE-2015-3035
 /modules/auxiliary/gather/trackit_sql_domain_creds.rb:CVE-2014-4872
 /modules/auxiliary/gather/vbulletin_getindexablecontent_sqli.rb:CVE-2020-12720
 /modules/auxiliary/gather/vbulletin_vote_sqli.rb:CVE-2013-3522
@@ -307,7 +309,6 @@
 /modules/auxiliary/scanner/http/apache_normalize_path.rb:CVE-2021-42013
 /modules/auxiliary/scanner/http/apache_optionsbleed.rb:CVE-2017-9798
 /modules/auxiliary/scanner/http/apache_userdir_enum.rb:CVE-2001-1013
-/modules/auxiliary/scanner/http/archer_c7_traversal.rb:CVE-2015-3035
 /modules/auxiliary/scanner/http/atlassian_crowd_fileaccess.rb:CVE-2012-2926
 /modules/auxiliary/scanner/http/axis_login.rb:CVE-2010-0219
 /modules/auxiliary/scanner/http/binom3_login_config_pass_dump.rb:CVE-2017-5162
@@ -835,8 +836,16 @@
 /modules/exploits/linux/http/symantec_web_gateway_lfi.rb:CVE-2012-0297
 /modules/exploits/linux/http/symantec_web_gateway_pbcontrol.rb:CVE-2012-2953
 /modules/exploits/linux/http/symantec_web_gateway_restore.rb:CVE-2014-7285
+/modules/exploits/linux/http/symmetricom_syncserver_rce.rb:CVE-2022-40022
 /modules/exploits/linux/http/synology_dsm_sliceupload_exec_noauth.rb:CVE-2013-6955
 /modules/exploits/linux/http/synology_dsm_smart_exec_auth.rb:CVE-2017-15889
+/modules/exploits/linux/http/terramaster_unauth_rce_cve_2020_35665.rb:CVE-2020-28188
+/modules/exploits/linux/http/terramaster_unauth_rce_cve_2020_35665.rb:CVE-2020-35665
+/modules/exploits/linux/http/terramaster_unauth_rce_cve_2021_45837.rb:CVE-2021-45837
+/modules/exploits/linux/http/terramaster_unauth_rce_cve_2021_45837.rb:CVE-2021-45839
+/modules/exploits/linux/http/terramaster_unauth_rce_cve_2021_45837.rb:CVE-2021-45841
+/modules/exploits/linux/http/terramaster_unauth_rce_cve_2022_24990.rb:CVE-2022-24989
+/modules/exploits/linux/http/terramaster_unauth_rce_cve_2022_24990.rb:CVE-2022-24990
 /modules/exploits/linux/http/tp_link_ncxxx_bonjour_command_injection.rb:CVE-2020-12109
 /modules/exploits/linux/http/tp_link_sc2020n_authenticated_telnet_injection.rb:CVE-2013-2578
 /modules/exploits/linux/http/tr064_ntpserver_cmdinject.rb:CVE-2016-10372
@@ -989,6 +998,7 @@
 /modules/exploits/linux/misc/unidata_udadmin_auth_bypass.rb:CVE-2023-28503
 /modules/exploits/linux/misc/unidata_udadmin_password_stack_overflow.rb:CVE-2023-28502
 /modules/exploits/linux/misc/zabbix_server_exec.rb:CVE-2009-4498
+/modules/exploits/linux/misc/zyxel_ike_decoder_rce_cve_2023_28771.rb:CVE-2023-28771
 /modules/exploits/linux/misc/zyxel_multiple_devices_zhttp_lan_rce.rb:CVE-2023-28769
 /modules/exploits/linux/mysql/mysql_yassl_getname.rb:CVE-2009-4484
 /modules/exploits/linux/mysql/mysql_yassl_hello.rb:CVE-2008-0226
@@ -1087,6 +1097,7 @@
 /modules/exploits/multi/http/apache_apisix_api_default_token_rce.rb:CVE-2020-13945
 /modules/exploits/multi/http/apache_apisix_api_default_token_rce.rb:CVE-2022-24112
 /modules/exploits/multi/http/apache_couchdb_erlang_rce.rb:CVE-2022-24706
+/modules/exploits/multi/http/apache_druid_cve_2023_25194.rb:CVE-2023-25194
 /modules/exploits/multi/http/apache_jetspeed_file_upload.rb:CVE-2016-0709
 /modules/exploits/multi/http/apache_jetspeed_file_upload.rb:CVE-2016-0710
 /modules/exploits/multi/http/apache_mod_cgi_bash_env_exec.rb:CVE-2014-6271
@@ -1214,6 +1225,7 @@
 /modules/exploits/multi/http/oracle_weblogic_wsat_deserialization_rce.rb:CVE-2017-10271
 /modules/exploits/multi/http/orientdb_exec.rb:CVE-2017-11467
 /modules/exploits/multi/http/pandora_upload_exec.rb:CVE-2010-4279
+/modules/exploits/multi/http/papercut_ng_auth_bypass.rb:CVE-2023-27350
 /modules/exploits/multi/http/pentaho_business_server_authbypass_and_ssti.rb:CVE-2022-43769
 /modules/exploits/multi/http/pentaho_business_server_authbypass_and_ssti.rb:CVE-2022-43939
 /modules/exploits/multi/http/php_cgi_arg_injection.rb:CVE-2012-1823
@@ -2142,6 +2154,7 @@
 /modules/exploits/windows/http/mcafee_epolicy_source.rb:CVE-2006-5156
 /modules/exploits/windows/http/mdaemon_worldclient_form2raw.rb:CVE-2003-1200
 /modules/exploits/windows/http/minishare_get_overflow.rb:CVE-2004-2271
+/modules/exploits/windows/http/moveit_cve_2023_34362.rb:CVE-2023-34362
 /modules/exploits/windows/http/navicopa_get_overflow.rb:CVE-2006-5112
 /modules/exploits/windows/http/netdecision_http_bof.rb:CVE-2012-1465
 /modules/exploits/windows/http/netgear_nms_rce.rb:CVE-2016-1525
@@ -2337,6 +2350,7 @@
 /modules/exploits/windows/misc/commvault_cmd_exec.rb:CVE-2017-18044
 /modules/exploits/windows/misc/crosschex_device_bof.rb:CVE-2019-12518
 /modules/exploits/windows/misc/cve_2022_28381_allmediaserver_bof.rb:CVE-2022-28381
+/modules/exploits/windows/misc/delta_electronics_infrasuite_deserialization.rb:CVE-2023-1133
 /modules/exploits/windows/misc/disk_savvy_adm.rb:CVE-2018-6481
 /modules/exploits/windows/misc/doubletake.rb:CVE-2008-1661
 /modules/exploits/windows/misc/eiqnetworks_esa.rb:CVE-2006-3838