CVE-2006-2404

RadScripts RadLance Gold 7.0 - Directory Traversal via popup.php read Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-2404. PoCs published by Mr.CrackerZ.

AI-analyzed exploit summary This Perl script exploits a local file inclusion vulnerability in RadLance Gold 7.0 by sending an HTTP GET request to the vulnerable endpoint with a crafted path traversal payload. It reads and displays the contents of arbitrary files on the target system.

Description

Directory traversal vulnerability in popup.php in RadScripts RadLance Gold 7.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the read parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Mr.CrackerZ · perlwebappsphp

https://www.exploit-db.com/exploits/27880

View Code ZIP pw:eip

This Perl script exploits a local file inclusion vulnerability in RadLance Gold 7.0 by sending an HTTP GET request to the vulnerable endpoint with a crafted path traversal payload. It reads and displays the contents of arbitrary files on the target system.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: RadLance Gold v7.0

No auth needed

Prerequisites: Network access to the target web server · Vulnerable RadLance Gold v7.0 installation

MITRE ATT&CK