orbit-fox-by-themeisle Orbit Fox by ThemeIsle <= 2.6.3 -Does not properly Authenticate REST API Calls
Orbit Fox by Themeisle (aka Themeisle Companion) version <= 2.6.3 does not properly authenticate REST API calls allowing unauthenticated users to execute several API calls. 

In some cases one of these calls can be used to upload arbitrary files which can lead to remote code execution.

SEO News and More

SEO News and More

Share This