automatic module_metadata_base.json update

jenkins-metasploit · jenkins-metasploit · commit 35479840920a · 2025-11-28T06:51:42.000Z
diff --git a/db/modules_metadata_base.json b/db/modules_metadata_base.json
@@ -27943,6 +27943,59 @@
     "needs_cleanup": false,
     "actions": []
   },
+  "auxiliary_gather/twonky_authbypass_logleak": {
+    "name": "Twonky Server Log Leak Authentication Bypass",
+    "fullname": "auxiliary/gather/twonky_authbypass_logleak",
+    "aliases": [],
+    "rank": 300,
+    "disclosure_date": null,
+    "type": "auxiliary",
+    "author": [
+      "remmons-r7"
+    ],
+    "description": "This module leverages an authentication bypass in Twonky Server 8.5.2. By exploiting\n          an authorization flaw to access a privileged web API endpoint and leak application logs,\n          encrypted administrator credentials are leaked (CVE-2025-13315). The exploit will then decrypt\n          these credentials using hardcoded keys (CVE-2025-13316) and login as the administrator.\n          Expected module output is a username and plain text password for the administrator account.",
+    "references": [
+      "CVE-2025-13315",
+      "CVE-2025-13316",
+      "URL-https://www.rapid7.com/blog/post/cve-2025-13315-cve-2025-13316-critical-twonky-server-authentication-bypass-not-fixed/"
+    ],
+    "platform": "",
+    "arch": "",
+    "rport": 9000,
+    "autofilter_ports": [
+      80,
+      8080,
+      443,
+      8000,
+      8888,
+      8880,
+      8008,
+      3000,
+      8443
+    ],
+    "autofilter_services": [
+      "http",
+      "https"
+    ],
+    "targets": null,
+    "mod_time": "2025-11-27 14:33:57 +0000",
+    "path": "/modules/auxiliary/gather/twonky_authbypass_logleak.rb",
+    "is_install_path": true,
+    "ref_name": "gather/twonky_authbypass_logleak",
+    "check": false,
+    "post_auth": false,
+    "default_credential": false,
+    "notes": {
+      "Stability": [
+        "crash-safe"
+      ],
+      "SideEffects": [],
+      "Reliability": []
+    },
+    "session_types": false,
+    "needs_cleanup": false,
+    "actions": []
+  },
   "auxiliary_gather/upsmon_traversal": {
     "name": "POWERCOM UPSMON PRO Path Traversal (CVE-2022-38120) and Credential Harvester (CVE-2022-38121)",
     "fullname": "auxiliary/gather/upsmon_traversal",
