purpl3

CVE-2021-32172 WRITEUP CRITICAL WORKING POC

Maian Cart 3.8 - Unauthenticated Remote Code Execution via Elfinder Plugin

Maian Cart v3.8 contains a preauthorization remote code execution (RCE) exploit via a broken access control issue in the Elfinder plugin.

CVSS 9.8

View Code

CVE-2021-32172 EXPLOITDB CRITICAL python WORKING POC

Maian Cart 3.8 - Unauthenticated Remote Code Execution via Elfinder Plugin

Maian Cart v3.8 contains a preauthorization remote code execution (RCE) exploit via a broken access control issue in the Elfinder plugin.

CVSS 9.8

View Code