CVE-2006-1645

ReloadCMS <= 1.2.5 - Cross-Site Scripting via User-Agent HTTP Header

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-1645. PoCs published by rgod.

AI-analyzed exploit summary This exploit leverages an XSS vulnerability in ReloadCMS <= 1.2.5stable via the User-Agent header to steal admin cookies and upload a PHP shell. The PoC includes a cookie grabber and a shell upload mechanism.

Description

Cross-site scripting (XSS) vulnerability in Anton Vlasov and Rostislav Gaitkuloff ReloadCMS 1.2.5 and earlier allows remote attackers to inject arbitrary web script or HTML and gain leverage to execute arbitrary PHP code via the User-Agent HTTP header, which is displayed by admin/modules/general/statistic.php in the administration panel.

Exploits (1)

exploitdb WORKING POC VERIFIED

by rgod · phpwebappsphp

https://www.exploit-db.com/exploits/1631

View Code ZIP pw:eip

This exploit leverages an XSS vulnerability in ReloadCMS <= 1.2.5stable via the User-Agent header to steal admin cookies and upload a PHP shell. The PoC includes a cookie grabber and a shell upload mechanism.

Classification

Working Poc 95%

Attack Type

Xss

Complexity

Moderate

Reliability

Reliable

Target: ReloadCMS <= 1.2.5stable

No auth needed

Prerequisites: Admin must view the stats page · Target must have ReloadCMS <= 1.2.5stable

MITRE ATT&CK