CVE-2005-4095

DoceboLMS 2.0.4 - Directory Traversal via FCKeditor2rc2 Connector Type Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-4095. PoCs published by rgod.

AI-analyzed exploit summary This exploit targets a file upload vulnerability in DoceboLMS (SpaghettiLearning) <= 2.0.4 via the connector.php script. It allows an attacker to upload a malicious shell (GIF-based) and execute arbitrary commands on the server.

Description

Directory traversal vulnerability in connector.php in the fckeditor2rc2 addon in DoceboLMS 2.0.4 allows remote attackers to list arbitrary files and directories via ".." sequences in the Type parameter in a GetFoldersAndFiles command.

Exploits (1)

exploitdb WORKING POC VERIFIED
by rgod · phpwebappsphp
https://www.exploit-db.com/exploits/1356

This exploit targets a file upload vulnerability in DoceboLMS (SpaghettiLearning) <= 2.0.4 via the connector.php script. It allows an attacker to upload a malicious shell (GIF-based) and execute arbitrary commands on the server.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: DoceboLMS (SpaghettiLearning) <= 2.0.4
No auth needed
Prerequisites: Target must have DoceboLMS <= 2.0.4 installed · connector.php must be accessible
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (8)

Core 8
Core References
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2005/2771
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/15742
Exploit, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/17896
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/23518
Exploit, Vendor Advisory x_refsource_misc
http://rgod.altervista.org/docebo204_xpl.html
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/1015308
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/21464
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1015308

Scores

EPSS 0.0847
EPSS Percentile 94.3%

Details

Status published
Products (1)
docebolms/docebolms 2.0.4
Published Dec 08, 2005
Tracked Since Feb 18, 2026