gosh

3 exploits Active since Jan 2026
CVE-2021-47851 EXPLOITDB CRITICAL python WORKING POC
Yodinfo Mini Mouse - OS Command Injection
Mini Mouse 9.2.0 contains a remote code execution vulnerability that allows attackers to execute arbitrary commands through an unauthenticated HTTP endpoint. Attackers can leverage the /op=command endpoint to download and execute payloads by sending crafted JSON requests with malicious script commands.
CVSS 9.8
CVE-2021-47850 EXPLOITDB HIGH text WORKING POC
Yodinfo Mini Mouse - Path Traversal
Mini Mouse 9.2.0 contains a path traversal vulnerability that allows remote attackers to access arbitrary system files and directories through crafted HTTP requests. Attackers can retrieve sensitive files like win.ini and list contents of system directories such as C:\Users\Public by manipulating file and path parameters.
CVSS 7.5
CVE-2021-47849 EXPLOITDB MEDIUM text WORKING POC
Yodinfo Mini Mouse - Path Traversal
Mini Mouse 9.3.0 contains a path traversal vulnerability that allows attackers to access sensitive system directories through the device information endpoint. Attackers can retrieve file lists from system directories like /usr, /etc, and /var by manipulating file path parameters in API requests.
CVSS 6.2