CVE-2005-3948

phpalbum < 0.2.3 - Directory Traversal via cmd or var1 Parameters

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2005-3948. PoCs published by r0t3d3Vil.

AI-analyzed exploit summary The provided text describes a local file inclusion (LFI) vulnerability in phpAlbum 0.2.3 and prior versions. It includes example URLs demonstrating how an attacker could exploit the vulnerability to read arbitrary files or execute server-side script code.

Description

Directory traversal vulnerability in main.php in PHPAlbum 0.2.3 and earlier allows remote attackers to read arbitrary files via the (1) cmd and (2) var1 parameters.

Exploits (2)

exploitdb WRITEUP VERIFIED

by r0t3d3Vil · textwebappsphp

https://www.exploit-db.com/exploits/26668

View Code ZIP pw:eip

The provided text describes a local file inclusion (LFI) vulnerability in phpAlbum 0.2.3 and prior versions. It includes example URLs demonstrating how an attacker could exploit the vulnerability to read arbitrary files or execute server-side script code.

Classification

Writeup 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Theoretical

Target: phpAlbum <= 0.2.3

No auth needed

Prerequisites: Access to the target web application

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WRITEUP

webappsphp

https://www.exploit-db.com/exploits/18045

View Code ZIP pw:eip

This is a technical writeup detailing multiple vulnerabilities in PHP Photo Album <= 0.4.1.16, including XSS, local file disclosure, and PHP code injection. It provides proof-of-concept URLs and describes the vulnerable parameters.

Classification

Writeup 90%

Attack Type

Xss | Info Leak | Other

Complexity

Trivial

Reliability

Reliable

Target: PHP Photo Album <= 0.4.1.16

No auth needed

Prerequisites: Access to the vulnerable application

MITRE ATT&CK

T1059.007 - JavaScript T1005 - Data from Local System

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (4)

Core 4

Core References

Exploit vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/15651

Patch x_refsource_confirm

http://www.phpalbum.net/dw

Third Party Advisory x_refsource_misc

http://pridels0.blogspot.com/2005/11/phpalbum-local-file-include-vuln.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://www.osvdb.org/21410

Scores

EPSS 0.0353

EPSS Percentile 87.7%

Details

Status published

Products (1)

phpalbum.net/phpalbum < 0.2.3

Published Dec 01, 2005

Tracked Since Feb 18, 2026