CVE-2006-2881

DreamAccount < 3.1 - Remote File Inclusion via da_path Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-2881. PoCs published by Aesthetico.

AI-analyzed exploit summary This exploit demonstrates a Remote File Include (RFI) vulnerability in DreamAccount <= 3.1. The vulnerability allows an attacker to include arbitrary remote PHP files via the 'da_path' parameter in multiple scripts, potentially leading to remote code execution.

Description

Multiple PHP remote file inclusion vulnerabilities in DreamAccount 3.1 and earlier, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the da_path parameter in the (1) auth.cookie.inc.php, (2) auth.header.inc.php, or (3) auth.sessions.inc.php scripts.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Aesthetico · textwebappsphp

https://www.exploit-db.com/exploits/1881

View Code ZIP pw:eip

This exploit demonstrates a Remote File Include (RFI) vulnerability in DreamAccount <= 3.1. The vulnerability allows an attacker to include arbitrary remote PHP files via the 'da_path' parameter in multiple scripts, potentially leading to remote code execution.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: DreamAccount <= 3.1

No auth needed

Prerequisites: Remote PHP file with malicious code · Network access to the target server

MITRE ATT&CK