>> CATEGORY: exploit

SweetRice version 1.5.1 suffers from a local file inclusion vulnerability.

SweetRice version 1.5.1 suffers from a cross site request forgery vulnerability.

My Little Forum version 2.3.7 suffers from backup disclosure, cross site request forgery, and multiple cross site scripting vulnerabilities.

PCMAN FTP server version 2.0.7 DELETE command buffer overflow exploit.

My Little Forum version 2.3.7 suffers from a file disclosure vulnerability.

Freefloat FTP server version 1.0 RMD command buffer overflow exploit.

Freefloat FTP server version 1.0 HOST command buffer overflow exploit.

dotCMS versions before 3.5, 3.3.1, and 3.3.2 suffer from multiple remote SQL injection vulnerabilities.

Freefloat FTP server version 1.0 ABOR command buffer overflow exploit.

This Metasploit module attempts to exploit two different CVEs (CVE-2015-1328 and CVE-2015-8660) related to overlayfs.