Yueslly Lisboa (0xC4CTU$)

3 exploits Active since May 2026
CVE-2023-27753 WRITEUP HIGH WRITEUP
MK-Auth 23.01K4.9 - Arbitrary File Upload
An arbitrary file upload vulnerability in MK-Auth 23.01K4.9 allows attackers to execute arbitrary code via uploading a crafted PHP file.
CVSS 8.0
CVE-2023-27753 WRITEUP HIGH WRITEUP
MK-Auth 23.01K4.9 - Arbitrary File Upload
An arbitrary file upload vulnerability in MK-Auth 23.01K4.9 allows attackers to execute arbitrary code via uploading a crafted PHP file.
CVSS 8.0
CVE-2023-30059 WRITEUP MEDIUM WRITEUP
MK-Auth 23.01K4.9 - Insecure Direct Object Reference
An insecure direct object reference in MK-Auth 23.01K4.9 allows attackers to access and send support calls for other users via manipulation of the chamado parameter through a crafted GET request.
CVSS 5.4