CVE-2006-4159

Chaussette < 080706 - Remote Code Execution via _BASE Parameter File Inclusion

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-4159. PoCs published by Drago84.

AI-analyzed exploit summary This exploit demonstrates a remote file inclusion vulnerability in Chaussette due to the $_BASE variable not being properly declared. An attacker can include arbitrary remote PHP files by manipulating the _BASE parameter in multiple affected scripts.

Description

Multiple PHP remote file inclusion vulnerabilities in Chaussette 080706 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the _BASE parameter to scripts in Classes/ including (1) Evenement.php, (2) Event.php, (3) Event_for_month.php, (4) Event_for_week.php, (5) My_Log.php, (6) My_Smarty.php, and possibly (7) Event_for_month_per_day.php.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Drago84 · textwebappsphp

https://www.exploit-db.com/exploits/2169

View Code ZIP pw:eip

This exploit demonstrates a remote file inclusion vulnerability in Chaussette due to the $_BASE variable not being properly declared. An attacker can include arbitrary remote PHP files by manipulating the _BASE parameter in multiple affected scripts.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Chaussette (version not specified)

No auth needed

Prerequisites: Remote PHP file hosting · Network access to the target

MITRE ATT&CK