Hoang of VietSunshine Cyber Security Services

4 exploits Active since Oct 2023
CVE-2023-44008 WRITEUP CRITICAL WRITEUP
mojoPortal <2.7.0.0 - RCE
File Upload vulnerability in mojoPortal v.2.7.0.0 allows a remote attacker to execute arbitrary code via the File Manager function.
CVSS 9.8
CVE-2023-44009 WRITEUP CRITICAL WRITEUP
mojoPortal <2.7.0.0 - RCE
File Upload vulnerability in mojoPortal v.2.7.0.0 allows a remote attacker to execute arbitrary code via the Skin Management function.
CVSS 9.8
CVE-2023-44011 WRITEUP CRITICAL WRITEUP
mojoPortal <2.7.0.0 - RCE
An issue in mojoPortal v.2.7.0.0 allows a remote attacker to execute arbitrary code via a crafted script to the layout.master skin file at the Skin management component.
CVSS 9.8
CVE-2023-44012 WRITEUP MEDIUM WRITEUP
mojoPortal <2.7.0.0 - XSS
Cross Site Scripting vulnerability in mojoPortal v.2.7.0.0 allows a remote attacker to execute arbitrary code via the helpkey parameter in the Help.aspx component.
CVSS 6.1