ChatGPT

3 exploits Active since Mar 2019
CVE-2026-24423 NOMISEC CRITICAL WORKING POC
SmarterTools SmarterMail <9511 - RCE
SmarterTools SmarterMail versions prior to build 9511 contain an unauthenticated remote code execution vulnerability in the ConnectToHub API method. The attacker could point the SmarterMail to the malicious HTTP server, which serves the malicious OS command. This command will be executed by the vulnerable application.
7 stars
CVSS 9.8
CVE-2026-24423 NOMISEC CRITICAL WORKING POC
SmarterTools SmarterMail <9511 - RCE
SmarterTools SmarterMail versions prior to build 9511 contain an unauthenticated remote code execution vulnerability in the ConnectToHub API method. The attacker could point the SmarterMail to the malicious HTTP server, which serves the malicious OS command. This command will be executed by the vulnerable application.
6 stars
CVSS 9.8
CVE-2019-9053 NOMISEC HIGH WORKING POC
CMS Made Simple 2.2.8 - Unauthenticated Blind SQL Injection via News Module m1_idlist Parameter
An issue was discovered in CMS Made Simple 2.2.8. It is possible with the News module, through a crafted URL, to achieve unauthenticated blind time-based SQL injection via the m1_idlist parameter.
CVSS 8.1