CVE-2004-0132

ezContents <= 2.0.2 - Remote File Inclusion via GLOBALS Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2004-0132. PoCs published by Cedric Cochin.

AI-analyzed exploit summary The exploit describes a file inclusion vulnerability in ezContents due to improper handling of the 'GLOBALS[rootdp]' and 'GLOBALS[language_home]' variables in 'db.php' and 'archivednews.php'. It allows remote attackers to include arbitrary files by manipulating these variables.

Description

Multiple PHP remote file inclusion vulnerabilities in ezContents 2.0.2 and earlier allow remote attackers to execute arbitrary PHP code from a remote web server, as demonstrated using (1) the GLOBALS[rootdp] parameter to db.php, or (2) the GLOBALS[language_home] parameter to archivednews.php, and a malicious version of lang_admin.php.

Exploits (2)

exploitdb WRITEUP VERIFIED
by Cedric Cochin · textwebappsphp
https://www.exploit-db.com/exploits/23683

The exploit describes a file inclusion vulnerability in ezContents due to improper handling of the 'GLOBALS[rootdp]' and 'GLOBALS[language_home]' variables in 'db.php' and 'archivednews.php'. It allows remote attackers to include arbitrary files by manipulating these variables.

Classification
Writeup 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: ezContents 2.0.2 and prior
No auth needed
Prerequisites: PHP 4.3.0 or above · ezContents installation with vulnerable modules
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by Cedric Cochin · textwebappsphp
https://www.exploit-db.com/exploits/23684

The exploit describes a file inclusion vulnerability in ezContents due to improper handling of the 'GLOBALS[rootdp]' and 'GLOBALS[language_home]' variables in 'db.php' and 'archivednews.php'. An attacker can manipulate these variables to include remote files, potentially leading to arbitrary code execution.

Classification
Writeup 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: ezContents 2.0.2 and prior
No auth needed
Prerequisites: PHP 4.3.0 or above · ezContents installation with vulnerable modules
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=107651585921958&w=2
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/15135

Scores

EPSS 0.0238
EPSS Percentile 81.7%

Details

Status published
Products (12)
visualshapers/ezcontents 1.40
visualshapers/ezcontents 1.41
visualshapers/ezcontents 1.42
visualshapers/ezcontents 1.43
visualshapers/ezcontents 1.44
visualshapers/ezcontents 1.45
visualshapers/ezcontents 1.45b
visualshapers/ezcontents 2.0.1
visualshapers/ezcontents 2.0.2
visualshapers/ezcontents 2.0_rc1
... and 2 more
Published Mar 03, 2004
Tracked Since Feb 18, 2026