all InfoSec news
Metasploit Wrap-Up 03/15/2024
March 15, 2024, 6:20 p.m. | Zachary Goldman
Rapid7 Blog blog.rapid7.com
New module content (3)
GitLab Password Reset Account Takeover
Authors: asterion04 and h00die
Type: Auxiliary
Pull request: #18716 contributed by h00die
Path: admin/http/gitlab_password_reset_account_takeover
AttackerKB reference: CVE-2023-7028
Description: This adds an exploit module that leverages an account-take-over vulnerability to take control of a GitLab account
account account takeover admin authors contributed control cve exploit gitlab http metasploit metasploit weekly wrapup password password reset path reference request reset takeover vulnerability wrap-up
More from blog.rapid7.com / Rapid7 Blog
Jobs in InfoSec / Cybersecurity
Information Security Engineers
@ D. E. Shaw Research | New York City
Technology Security Analyst
@ Halton Region | Oakville, Ontario, Canada
Senior Cyber Security Analyst
@ Valley Water | San Jose, CA
Associate Engineer (Security Operations Centre)
@ People Profilers | Singapore, Singapore, Singapore
DevSecOps Engineer
@ Australian Payments Plus | Sydney, New South Wales, Australia
Senior Cybersecurity Specialist
@ SmartRecruiters Inc | Poland, Poland