CVE-2006-5249

TagIt! Tagboard 2.1.B Build 2 - Remote Code Execution via configpath Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-5249. PoCs published by k1tk4t.

AI-analyzed exploit summary The exploit demonstrates a remote file inclusion vulnerability in Tagit2b due to insufficient input sanitization. An attacker can inject a malicious URL via the 'configpath' parameter to execute arbitrary PHP code in the context of the webserver process.

Description

PHP remote file inclusion vulnerability in tagmin/delTagUser.php in TagIt! Tagboard 2.1.B Build 2 (tagit2b) allows remote attackers to execute arbitrary PHP code via a URL in the configpath parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by k1tk4t · textwebappsphp

https://www.exploit-db.com/exploits/28782

View Code ZIP pw:eip

The exploit demonstrates a remote file inclusion vulnerability in Tagit2b due to insufficient input sanitization. An attacker can inject a malicious URL via the 'configpath' parameter to execute arbitrary PHP code in the context of the webserver process.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Tagit2b 2.1.B Build 2

No auth needed

Prerequisites: Access to the vulnerable endpoint · Ability to host malicious PHP code on an external server

MITRE ATT&CK