CVE-2006-6277

ContentServ 4.x - Directory Traversal via admin/FileServer.php src Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-6277. PoCs published by qobaiashi.

AI-analyzed exploit summary This exploit demonstrates a directory traversal vulnerability in ContentServ's FileServer.php, allowing unauthorized reading of arbitrary files on the server. The PoC provides a URL example to read /etc/passwd without authentication.

Description

Directory traversal vulnerability in admin/FileServer.php in ContentServ 4.x allows remote attackers to read arbitrary files via a .. (dot dot) in the src parameter, a different vector than CVE-2005-3086.

Exploits (1)

exploitdb WORKING POC VERIFIED

by qobaiashi · textwebappsphp

https://www.exploit-db.com/exploits/2878

View Code ZIP pw:eip

This exploit demonstrates a directory traversal vulnerability in ContentServ's FileServer.php, allowing unauthorized reading of arbitrary files on the server. The PoC provides a URL example to read /etc/passwd without authentication.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: ContentServ 4.2

No auth needed

Prerequisites: Network access to the target server · ContentServ admin interface exposed

MITRE ATT&CK