Hoang of VietSunshine Cyber Security Services

4 exploits Active since Oct 2023
CVE-2023-44008 WRITEUP CRITICAL WRITEUP
mojoportal 2.7.0.0 - Remote Code Execution via File Manager Upload
File Upload vulnerability in mojoPortal v.2.7.0.0 allows a remote attacker to execute arbitrary code via the File Manager function.
CVSS 9.8
CVE-2023-44009 WRITEUP CRITICAL WRITEUP
mojoportal 2.7.0.0 - Remote Code Execution via Skin Management File Upload
File Upload vulnerability in mojoPortal v.2.7.0.0 allows a remote attacker to execute arbitrary code via the Skin Management function.
CVSS 9.8
CVE-2023-44011 WRITEUP CRITICAL WRITEUP
mojoportal 2.7.0.0 - Remote Code Execution via Skin Management Layout.master File
An issue in mojoPortal v.2.7.0.0 allows a remote attacker to execute arbitrary code via a crafted script to the layout.master skin file at the Skin management component.
CVSS 9.8
CVE-2023-44012 WRITEUP MEDIUM WRITEUP
mojoportal 2.7.0.0 - Cross-Site Scripting via Help.aspx helpkey Parameter
Cross Site Scripting vulnerability in mojoPortal v.2.7.0.0 allows a remote attacker to execute arbitrary code via the helpkey parameter in the Help.aspx component.
CVSS 6.1