CVE-2006-2395

PopSoft Digital PopPhoto Studio <= 3.5.4 - Remote Code Execution via include_path Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-2395. PoCs published by VietMafia.

AI-analyzed exploit summary This exploit demonstrates a remote file inclusion vulnerability in Pixaria PopPhoto 3.5.4. The vulnerability allows an attacker to include and execute arbitrary remote PHP code by manipulating the 'include_path' parameter in the 'popp.config.loader.inc.php' file.

Description

PHP remote file inclusion vulnerability in resources/includes/popp.config.loader.inc.php in PopSoft Digital PopPhoto Studio 3.5.4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the include_path parameter (cfg['popphoto_base_path'] variable). NOTE: Pixaria has notified CVE that "PopPhoto is NOT a product of Pixaria. It was a product of PopSoft Digital and is only hosted by Pixaria as a courtesy... The vulnerability listed was patched by the previous vendor and all previous users have received this update."

Exploits (1)

exploitdb WORKING POC VERIFIED

by VietMafia · textwebappsphp

https://www.exploit-db.com/exploits/27868

View Code ZIP pw:eip

This exploit demonstrates a remote file inclusion vulnerability in Pixaria PopPhoto 3.5.4. The vulnerability allows an attacker to include and execute arbitrary remote PHP code by manipulating the 'include_path' parameter in the 'popp.config.loader.inc.php' file.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Pixaria PopPhoto 3.5.4

No auth needed

Prerequisites: Remote file hosting with malicious PHP code · Network access to the target application

MITRE ATT&CK