CVE-2005-1752

Gforge - Remote Code Execution via scm viewFile.php file_name Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-1752. PoCs published by Filippo Spike Morelli.

AI-analyzed exploit summary The exploit demonstrates a command injection vulnerability in GForge by passing arbitrary shell commands via the 'file_name' URI parameter. The payload executes 'uname -a', 'id', and 'w' commands to confirm remote code execution.

Description

viewFile.php in the scm component of Gforge before 4.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the file_name parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Filippo Spike Morelli · textwebappsphp
https://www.exploit-db.com/exploits/25693

The exploit demonstrates a command injection vulnerability in GForge by passing arbitrary shell commands via the 'file_name' URI parameter. The payload executes 'uname -a', 'id', and 'w' commands to confirm remote code execution.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: GForge versions prior to 4.0
No auth needed
Prerequisites: Network access to the target GForge instance
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Patch vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/13716
Patch, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/13845
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=111695779919830&w=2

Scores

EPSS 0.0396
EPSS Percentile 89.2%

Details

Status published
Products (4)
gforge/gforge 3.1
gforge/gforge 3.2
gforge/gforge 3.3
gforge/gforge 3.21
Published Dec 31, 2005
Tracked Since Feb 18, 2026