CVE-2006-1224

GuppY 4.5.11 - Directory Traversal and Arbitrary File Write via dwnld.php pg Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-1224. PoCs published by trueend5.

AI-analyzed exploit summary This exploit targets a directory traversal vulnerability in Guppy CMS <= 4.5.11, allowing remote attackers to delete critical files and cause a denial of service (DoS). It checks for magic_quotes_gpc and attempts to exploit the vulnerability by sending crafted HTTP requests to delete specific files.

Description

Directory traversal vulnerability in dwnld.php in GuppY 4.5.11 allows remote attackers to overwrite arbitrary files via a "%2E." (mixed encoding) in the pg parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by trueend5 · phpdosphp

https://www.exploit-db.com/exploits/1573

View Code ZIP pw:eip

This exploit targets a directory traversal vulnerability in Guppy CMS <= 4.5.11, allowing remote attackers to delete critical files and cause a denial of service (DoS). It checks for magic_quotes_gpc and attempts to exploit the vulnerability by sending crafted HTTP requests to delete specific files.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Guppy CMS <= 4.5.11

No auth needed

Prerequisites: Target must be running Guppy CMS <= 4.5.11 · magic_quotes_gpc must be disabled for full exploitation

MITRE ATT&CK