This Metasploit module exploits a file upload vulnerability on Maarch LetterBox 2.8 due to a lack of session and file validation in the file_to_index.php script. It allows unauthenticated users to upload files of any type and subsequently execute PHP scripts in the context of the web server.
cd2b7f42e25ec82d510aeb7d6752ea48283d55ef832886d99f9df019f40f307e