exploiting-vulnerabilities-with-metasploit-framework

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt includes commands that set passwords (e.g., "set PASSWORD") and handle/export captured credentials (e.g., "creds -o /tmp/captured_creds.csv"), which require embedding or relaying secret values verbatim in commands or outputs, creating exfiltration risk.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The skill explicitly instructs running sudo systemctl start postgresql and sudo msfdb init and other system-level Metasploit setup commands that require elevated privileges and modify the host system state.