CVE-2006-2668

Docebo LMS <2.05 - Remote Code Execution

Title source: manual

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-2668. PoCs published by beford.

AI-analyzed exploit summary This exploit demonstrates a Local File Inclusion (LFI) vulnerability in Docebo LMS 2.05, where user-controlled input via the 'lang' parameter is directly included without sanitization. The PoC shows how an attacker can include remote or local files by manipulating the 'lang' parameter.

Description

Multiple PHP remote file inclusion vulnerabilities in Docebo LMS 2.05 allow remote attackers to execute arbitrary PHP code via a URL in the lang parameter to (1) modules/credits/business.php, (2) modules/credits/credits.php, or (3) modules/credits/help.php.

Exploits (1)

exploitdb WORKING POC VERIFIED

by beford · textwebappsphp

https://www.exploit-db.com/exploits/1828

View Code ZIP pw:eip

This exploit demonstrates a Local File Inclusion (LFI) vulnerability in Docebo LMS 2.05, where user-controlled input via the 'lang' parameter is directly included without sanitization. The PoC shows how an attacker can include remote or local files by manipulating the 'lang' parameter.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Docebo LMS 2.05

No auth needed

Prerequisites: Access to the vulnerable Docebo LMS instance

MITRE ATT&CK