CVE-2006-3735

mail2forum < 1.2 - Remote File Inclusion via m2f_root_path Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-3735. PoCs published by OLiBekaS.

AI-analyzed exploit summary This exploit demonstrates multiple remote file inclusion vulnerabilities in mail2forum <= 1.2. The attacker can include a remote file containing malicious code by manipulating the `m2f_root_path` parameter in various PHP scripts.

Description

Multiple PHP remote file inclusion vulnerabilities in Mail2Forum (module for phpBB) 1.2 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the m2f_root_path parameter to (1) m2f/m2f_phpbb204.php, (2) m2f/m2f_forum.php, (3) m2f/m2f_mailinglist.php or (4) m2f/m2f_cron.php.

Exploits (1)

exploitdb WORKING POC VERIFIED

by OLiBekaS · textwebappsphp

https://www.exploit-db.com/exploits/2019

View Code ZIP pw:eip

This exploit demonstrates multiple remote file inclusion vulnerabilities in mail2forum <= 1.2. The attacker can include a remote file containing malicious code by manipulating the `m2f_root_path` parameter in various PHP scripts.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: mail2forum <= 1.2

No auth needed

Prerequisites: Remote file hosting with malicious code · Target server with vulnerable mail2forum installation

MITRE ATT&CK