CVE-2019-1003000

This Metasploit module exploits CVE-2019-1003002 in Jenkins by bypassing ACLs via dynamic routing and leveraging Groovy metaprogramming to execute arbitrary code. It downloads and executes a malicious JAR file, achieving remote code execution.

This exploit chains CVE-2019-1003000 and CVE-2018-1999002 to achieve pre-authentication remote code execution in Jenkins by leveraging vulnerable plugins (Pipeline: Declarative, Pipeline: Groovy, Script Security). It generates a malicious Java payload, hosts it on a local web server, and triggers its execution via a crafted HTTP request to the Jenkins server.

This repository contains a functional exploit PoC for CVE-2019-1003000, which bypasses Jenkins sandbox protection via AST transforming annotations like @Grab to execute arbitrary system commands. The exploit leverages Groovy's dynamic compilation to import external Java packages and achieve RCE.

This repository contains functional exploit code for CVE-2016-10709, targeting the HackSys Extreme Vulnerable Driver (HEVD) with a stack overflow vulnerability. The exploit includes shellcode for token stealing and privilege escalation on Windows 10 x64 systems.

This repository contains a .NET Core-based exploit detection tool for chaining CVE-2018-1000861 (ACL bypass) with CVE-2019-1003000 (RCE) in Jenkins CI. It demonstrates unauthenticated remote code execution by sending a crafted GET request to download and execute a malicious JAR file.

This repository contains a functional exploit for CVE-2019-1003000, a remote code execution vulnerability in Jenkins Pipeline plugins. The PoC leverages the Script Security Plugin's sandbox bypass to execute arbitrary commands via a crafted Jenkins job configuration.

This repository contains the vulnerable source code of the Jenkins Script Security Plugin affected by CVE-2019-1003000. It includes the plugin's sandbox and whitelist mechanisms, which were exploited to bypass security restrictions in Jenkins pipelines.

This repository contains the vulnerable source code of the Jenkins Script Security Plugin (CVE-2019-1003000), which allows sandbox bypass due to improper whitelist handling. The code includes the plugin's sandbox implementation, whitelist mechanisms, and Groovy-related security checks, but does not include an exploit PoC.

This repository contains a functional exploit that chains CVE-2019-1003000 and CVE-2018-1999002 to achieve pre-authentication remote code execution (RCE) in Jenkins. The exploit generates a malicious Java payload, hosts it on a local server, and triggers its execution via a crafted HTTP request to a vulnerable Jenkins instance.

This exploit chains CVE-2019-1003000 and CVE-2018-1999002 to achieve pre-authentication remote code execution in Jenkins by leveraging vulnerable plugins (Pipeline: Declarative, Pipeline: Groovy, Script Security). It generates a malicious Java payload, hosts it via a simple HTTP server, and triggers execution via a crafted HTTP request.

This Metasploit module exploits CVE-2019-1003000 in Jenkins by bypassing ACLs via dynamic routing and leveraging Groovy metaprogramming to achieve RCE. It supports two targets: Unix in-memory execution and Java dropper via JAR download.

This exploit leverages a vulnerability in Jenkins Groovy scripts where a malicious JAR file is fetched via Grape and executed through the Runner service mechanism, achieving remote code execution (RCE). The PoC demonstrates how to craft a JAR with a malicious class that runs arbitrary commands upon instantiation.