CVE-2006-4012

circeOS SaveWeb Portal 3.4 - RCE

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-4012. PoCs published by Mehmet Ince.

AI-analyzed exploit summary This exploit demonstrates a Remote File Inclusion (RFI) vulnerability in SaveWeb Portal 3.4 by manipulating the `SITE_Path` parameter to include remote PHP files. The PoC provides URLs to exploit the vulnerability, allowing arbitrary code execution if the attacker controls the remote script.

Description

Multiple PHP remote file inclusion vulnerabilities in circeOS SaveWeb Portal 3.4 allow remote attackers to execute arbitrary PHP code via a URL in the SITE_Path parameter to (1) poll/poll.php or (2) poll/view_polls.php. NOTE: the menu_dx.php vector is already covered by CVE-2005-2687.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Mehmet Ince · textwebappsphp

https://www.exploit-db.com/exploits/2113

View Code ZIP pw:eip

This exploit demonstrates a Remote File Inclusion (RFI) vulnerability in SaveWeb Portal 3.4 by manipulating the `SITE_Path` parameter to include remote PHP files. The PoC provides URLs to exploit the vulnerability, allowing arbitrary code execution if the attacker controls the remote script.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: SaveWeb Portal 3.4

No auth needed

Prerequisites: Remote file inclusion must be enabled on the target server · Attacker must have control over a remote server hosting malicious PHP code

MITRE ATT&CK

T1189 - Drive-by Compromise T1210 - Exploitation of Remote Services

devstral-2 · analyzed Feb 16, 2026 Full analysis →