CVE-2006-2583

Nucleus CMS < 3.22 - Remote File Inclusion via GLOBALS[DIR_LIBS] Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-2583. PoCs published by rgod.

AI-analyzed exploit summary This exploit leverages a remote file inclusion vulnerability in Nucleus CMS <= 3.22 due to improper handling of the `DIR_LIBS` variable when `register_globals` and `allow_url_fopen` are enabled. It allows arbitrary command execution by including a malicious remote PHP script.

Description

PHP remote file inclusion vulnerability in nucleus/libs/PLUGINADMIN.php in Nucleus 3.22 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[DIR_LIBS] parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by rgod · phpwebappsphp

https://www.exploit-db.com/exploits/1816

View Code ZIP pw:eip

This exploit leverages a remote file inclusion vulnerability in Nucleus CMS <= 3.22 due to improper handling of the `DIR_LIBS` variable when `register_globals` and `allow_url_fopen` are enabled. It allows arbitrary command execution by including a malicious remote PHP script.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Nucleus CMS <= 3.22

No auth needed

Prerequisites: register_globals=On · allow_url_fopen=On · access to a remote server hosting malicious PHP code

MITRE ATT&CK