CVE-2006-6962

RS Gallery2 1.11.2 - Remote Code Execution via mosConfig_absolute_path Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-6962. PoCs published by marriottvn.

AI-analyzed exploit summary This exploit leverages a file inclusion vulnerability in RsGallery2 for Joomla by manipulating the `mosConfig_absolute_path` parameter to include arbitrary remote files. The vulnerability allows remote code execution (RCE) if the attacker controls the included file.

Description

PHP remote file inclusion vulnerability in rsgallery2.html.php in the RS Gallery2 component (com_rsgallery2) 1.11.2 for Joomla! allows attackers to execute arbitrary PHP code via the mosConfig_absolute_path parameter. NOTE: this issue may overlap CVE-2006-5047.

Exploits (1)

exploitdb WORKING POC VERIFIED
by marriottvn · textwebappsphp
https://www.exploit-db.com/exploits/1959

This exploit leverages a file inclusion vulnerability in RsGallery2 for Joomla by manipulating the `mosConfig_absolute_path` parameter to include arbitrary remote files. The vulnerability allows remote code execution (RCE) if the attacker controls the included file.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: RsGallery2 for Joomla version 1.11.2
No auth needed
Prerequisites: Target must have RsGallery2 component installed · Remote file inclusion must be enabled on the server
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/1959
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2006/2581
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/27418
Exploit, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/18705

Scores

EPSS 0.0419
EPSS Percentile 89.7%

Details

CWE
CWE-94
Status published
Products (1)
joomla/rs_gallery2 1.11.2
Published Jan 29, 2007
Tracked Since Feb 18, 2026