CVE-2006-0791

DreamCost HostAdmin - Remote File Inclusion via Uninitialized $path Variable

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-0791. PoCs published by ReZEN.

AI-analyzed exploit summary This exploit leverages a remote file inclusion vulnerability in HostAdmin by allowing an attacker to include a malicious PHP file via unsanitized input. It executes arbitrary commands on the target system by writing a PHP file with embedded system calls and parsing the output.

Description

PHP remote file inclusion vulnerability in index.php in DreamCost HostAdmin allows remote attackers to include arbitrary files via the $path variable, which is not initialized before use.

Exploits (1)

exploitdb WORKING POC VERIFIED

by ReZEN · phpwebappsphp

https://www.exploit-db.com/exploits/27238

View Code ZIP pw:eip

This exploit leverages a remote file inclusion vulnerability in HostAdmin by allowing an attacker to include a malicious PHP file via unsanitized input. It executes arbitrary commands on the target system by writing a PHP file with embedded system calls and parsing the output.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: HostAdmin (version not specified)

No auth needed

Prerequisites: PHP environment with write permissions · Remote file inclusion vulnerability in HostAdmin · Network access to the target

MITRE ATT&CK