Carbon Forum version 5.9.0 suffers from a persistent cross site scripting vulnerability.
0275740466e4849423d62587753fa66335d2a4cb87f615eb7dc13dda378872d2
XMB version 1.9.12.06 suffers from a persistent cross site scripting vulnerability.
b18b7ade8c93d26089ad547c0a84b59c6125527787f375a74692835723a66dd1
The FoF Pretty Mail extension version 1.1.2 for Flarum suffers from a local file inclusion vulnerability.
1dbbfbdf1a7bf4060fdff75fb8aff1ab0bc5375217ca00dc2d7c0cf611ab7316
The FoF Pretty Mail extension version 1.1.2 for Flarum suffers from a server-side template injection vulnerability.
256571d01cca1bc252f84933681faf1ff9f922f6835db1ae3b7bc099a7571ea6
The FoF Pretty Mail extension version 1.1.2 for Flarum suffers from a command injection vulnerability.
7685501581e9f699e06c56b0eddcfccbd5e014e303d78ffd724d6a188077faa5
thrsrossi Millhouse-Project version 1.414 suffers from a remote shell upload vulnerability.
1ececf1ddc0c31852824c0b7dceddfc7d144d83e63121e5572869a090104debc
Millhouse-Project version 1.414 suffers from a cross site scripting vulnerability.
3dd8235f8a0c3acbc9e4a7e9ac47a36e246d612a3c9833bee23a8ed229773a0f
Millhouse-Project version 1.414 suffers from a remote shell upload vulnerability.
d9440e9d98656c902addd3830bcc58b2884d9efe16d39dc3fda9254a4ed475ff
Mobile Mouse version 3.6.0.4 suffers from a remote code execution vulnerability. This exploit is a second version from the original author of the original exploit released in September of 2022.
e7a6810d6a70959199eb39d58ef19ffc0f717838c3bcbb82681904466d5ca0d6
GuppY CMS version 6.00.10 suffers from an authenticated remote shell upload vulnerability.
7379f5703f8c8447e89b8393459ce54d04deb30eed715a6df6b281a1b380609b
This Metasploit module utilizes the Mobile Mouse Server by RPA Technologies, Inc protocol to deploy a payload and run it from the server. This module will only deploy a payload if the server is set without a password (default). Tested against 3.6.0.4, the current version at the time of module writing.
35ce38a49d631a1847c797e9146b16df6ce4723bdc80f1fe1d1a02f833e0ab88
WorkOrder CMS version 0.1.0 suffers from a cross site scripting vulnerability.
8cb65551c6ae83267598a7e09fa1ae7d1fe89f8b73a899df384b74eda241039d
WorkOrder CMS version 0.1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
1be273ff725163819b2cfa9a453104d943c26788eac55ddd53d75e0f3feec9d8
PhotoSync version 4.7 suffers from a local file inclusion vulnerability.
f5e6b3cd183e91afacf647b3547160e0d93026087e059f1843c8761cd5e32985
Owlfiles File Manager version 12.0.1 suffers from local file inclusion and path traversal vulnerabilities.
5e1df728b64bebf1797218fca034b9eeed532e773c31131307d679d65b406b40
mbDrive Lite WiFi Flash Disk version 1.4.0 suffers from a cross site scripting vulnerability.
51023eaa6d3fa8c871e79d6e732f795bbd9070c25b2bde0918b7f7b75307aee1
AirDisk version 7.5.5 suffers from a persistent cross site scripting vulnerability.
5c2171b386d4185c2d365152bd1f99a0e03692cfe0babd1487055e726dd594e8
@Drive version 2.8 suffers from a local file inclusion vulnerability.
1c242342304c59d9a82db2eb45e80f971e783004a6b81e805655fb5adc09c690
FE File Explorer version 11.0.4 suffers from a local file inclusion vulnerability.
9596719bde6a381ce9f18435b2517e8ecf2d1838ab031974d2c37d361f760254
FTPManager version 8.2 suffers from local file inclusion and directory traversal vulnerabilities.
3e761447e17269780279f6f239a28cde76f4d7d642e4fd2bf87303f7df3f583c
Wifi HD Wireless Disk Drive version 11 suffers from a local file inclusion vulnerability.
b20518edc15d62d991e82375c15b066d88b50865b9271eeedc4ac3a8e580a204
Mobile Mouse version 3.6.0.4 suffers from a remote code execution vulnerability.
2509530b624f14ddbe319dfa5afe878c807b92ada8714c91def25fbb67763a6e