CVE-2006-4559

YACS CMS 6.6.1 - Remote Code Execution

Title source: manual

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-4559. PoCs published by MATASANOS.

AI-analyzed exploit summary This is a writeup describing a file inclusion vulnerability in YACS CMS. It provides a URL example for exploiting the vulnerability but lacks actual exploit code.

Description

Multiple PHP remote file inclusion vulnerabilities in Yet Another Community System (YACS) CMS 6.6.1 allow remote attackers to execute arbitrary PHP code via a URL in the context[path_to_root] parameter in (1) articles/populate.php, (2) categories/category.php, (3) categories/populate.php, (4) comments/populate.php, (5) files/file.php, (6) sections/section.php, (7) sections/populate.php, (8) tables/populate.php, (9) users/user.php, and (10) users/populate.php. The articles/article.php vector is covered by CVE-2006-4532.

Exploits (1)

exploitdb WRITEUP VERIFIED

by MATASANOS · textwebappsphp

https://www.exploit-db.com/exploits/2282

View Code ZIP pw:eip

This is a writeup describing a file inclusion vulnerability in YACS CMS. It provides a URL example for exploiting the vulnerability but lacks actual exploit code.

Classification

Writeup 90%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: YACS (Yet Another Community System)

No auth needed

Prerequisites: Access to the target YACS CMS instance

MITRE ATT&CK