CVE-2006-3993

TSEP < 0.942 - Remote File Inclusion via tsep_config[absPath] Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-3993. PoCs published by Philipp Niedziela.

AI-analyzed exploit summary This exploit demonstrates a Remote File Inclusion (RFI) vulnerability in TSEP 0.9.4.2 due to improper sanitization of the `tsep_config[absPath]` parameter in `copyright.php`. An attacker can include a remote PHP shell by manipulating the parameter to point to a malicious file.

Description

PHP remote file inclusion vulnerability in copyright.php in Olaf Noehring The Search Engine Project (TSEP) 0.942 allows remote attackers to execute arbitrary PHP code via a URL in the tsep_config[absPath] parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Philipp Niedziela · textwebappsphp

https://www.exploit-db.com/exploits/2098

View Code ZIP pw:eip

This exploit demonstrates a Remote File Inclusion (RFI) vulnerability in TSEP 0.9.4.2 due to improper sanitization of the `tsep_config[absPath]` parameter in `copyright.php`. An attacker can include a remote PHP shell by manipulating the parameter to point to a malicious file.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: TSEP 0.9.4.2

No auth needed

Prerequisites: Remote PHP shell hosted on an attacker-controlled server · Network access to the target TSEP installation

MITRE ATT&CK