CVE-2002-2084

Portix-PHP 0.4.02 - Directory Traversal via l or topic Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2002-2084. PoCs published by frog.

AI-analyzed exploit summary The exploit describes a directory traversal vulnerability in Portix-PHP's view.php script, allowing attackers to read arbitrary files by injecting '../' sequences. The provided URL demonstrates accessing '/etc/passwd' via the 'topic' parameter.

Description

Directory traversal vulnerability in index.php of Portix 0.4.02 allows remote attackers to read arbitrary files via a .. (dot dot) in the (1) l and (2) topic parameters.

Exploits (2)

exploitdb WRITEUP VERIFIED
by frog · textwebappsphp
https://www.exploit-db.com/exploits/21278

The exploit describes a directory traversal vulnerability in Portix-PHP's view.php script, allowing attackers to read arbitrary files by injecting '../' sequences. The provided URL demonstrates accessing '/etc/passwd' via the 'topic' parameter.

Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Portix-PHP (version unspecified)
No auth needed
Prerequisites: Access to the vulnerable web application
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by frog · textwebappsphp
https://www.exploit-db.com/exploits/21277

The exploit describes a directory traversal vulnerability in Portix-PHP's index.php script, allowing attackers to read arbitrary files by injecting '../' sequences. No actual exploit code is provided, only a description and example URL.

Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Theoretical
Target: Portix-PHP (version not specified)
No auth needed
Prerequisites: Access to the vulnerable web application
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit mailing-list x_refsource_vuln-dev
http://archives.neohapsis.com/archives/vuln-dev/2002-q1/0279.html
Exploit vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1003430
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/4038

Scores

EPSS 0.0833
EPSS Percentile 94.2%

Details

Status published
Products (1)
portix-php/portix-php 0.4.2
Published Dec 31, 2002
Tracked Since Feb 18, 2026