This Metasploit module exploits a vulnerability in the TinyMCE/tinybrowser plugin. By renaming the uploaded file this vulnerability can be used to upload/execute code on the affected system.
f8db17b294efb81fd18b606bdb54bbae4c0ec34e8fe95b0d4a1492781eed0504