CVE-2023-27842
eXtplorer 2.1.15 – Insecure Permissions following Remote Code Execution (Authenticated)
Vendor Homepage: http://extplorer.net/
Software Link: http://extplorer.net/attachments/download/99/eXtplorer_2.1.15.zip
Version: 2.1.15
Installation
git clone https://github.com/0xFTW/CVE-2023-27842
cd CVE-2023-27842
pip3 install -r requirements.txt
Usage
chmod +x CVE-2023-27842
./CVE-2023-27842.py URL USERNAME PASSWORD
Note: This exploit is currently only functional for joomla based websites with extplorer extension.