automatic module_metadata_base.json update

Author: jenkins-metasploit

db/modules_metadata_base.json

@@ -26365,6 +26365,49 @@
     "needs_cleanup": false,
     "actions": []
   },
+  "auxiliary_gather/thinmanager_traversal_download": {
+    "name": "ThinManager Path Traversal (CVE-2023-27856) Arbitrary File Download",
+    "fullname": "auxiliary/gather/thinmanager_traversal_download",
+    "aliases": [],
+    "rank": 300,
+    "disclosure_date": "2023-04-05",
+    "type": "auxiliary",
+    "author": [
+      "Michael Heinzl",
+      "Tenable"
+    ],
+    "description": "This module exploits a path traversal vulnerability (CVE-2023-27856) in ThinManager <= v13.0.1 to retrieve arbitrary files from the system.\n\n          The affected service listens by default on TCP port 2031 and runs in the context of NT AUTHORITY\\SYSTEM.",
+    "references": [
+      "CVE-2023-27856",
+      "URL-https://www.tenable.com/security/research/tra-2023-13",
+      "URL-https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1138640"
+    ],
+    "platform": "",
+    "arch": "",
+    "rport": 2031,
+    "autofilter_ports": [],
+    "autofilter_services": [],
+    "targets": null,
+    "mod_time": "2025-06-04 19:18:43 +0000",
+    "path": "/modules/auxiliary/gather/thinmanager_traversal_download.rb",
+    "is_install_path": true,
+    "ref_name": "gather/thinmanager_traversal_download",
+    "check": true,
+    "post_auth": false,
+    "default_credential": false,
+    "notes": {
+      "Stability": [
+        "crash-safe"
+      ],
+      "Reliability": [],
+      "SideEffects": [
+        "ioc-in-logs"
+      ]
+    },
+    "session_types": false,
+    "needs_cleanup": false,
+    "actions": []
+  },
   "auxiliary_gather/tplink_archer_c7_traversal": {
     "name": "Archer C7 Directory Traversal Vulnerability",
     "fullname": "auxiliary/gather/tplink_archer_c7_traversal",