EXPLOITDB-EDB-6846

EXPLOITDB text VERIFIED WORKING POC

Exploit for CVE-2008-4780 - Easy-script Myforum - Path Traversal

AI Analysis

This exploit demonstrates a Local File Inclusion (LFI) vulnerability in MyForum 1.3 via the 'padmin' parameter in 'admin/centre.php'. The vulnerability arises due to improper input validation, allowing an attacker to include arbitrary local files by appending a null byte (%00).

Attack Type

LFI

Complexity

trivial

Reliability

reliable

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

Loading exploit code...

Download ZIP Password: eip

Source

Platform Exploitdb

Type webapps

Platform php

Language text

Files 1

https://www.exploit-db.com/exploits/6846

Authors

Vrs-hCk

Vulnerability

CVE-2008-4780

Easy-script Myforum - Path Traversal