CVE-2006-7127

JAF CMS 4.0 and 4.0 RC2 - Remote Code Execution via main_dir Parameter

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2006-7127. PoCs published by CraCkEr, ThE TiGeR.

AI-analyzed exploit summary This exploit demonstrates a Remote File Include (RFI) vulnerability in JAF-CMS 4.0 RC2. It provides URLs that can be used to include arbitrary remote files by manipulating the 'website' or 'main_dir' parameters.

Description

Multiple PHP remote file inclusion vulnerabilities in JAF CMS 4.0 and 4.0 RC2 allow remote attackers to execute arbitrary PHP code via a URL in the main_dir parameter to (1) forum/main.php and (2) forum/headlines.php.

Exploits (2)

exploitdb WORKING POC VERIFIED

by CraCkEr · textwebappsphp

https://www.exploit-db.com/exploits/5317

View Code ZIP pw:eip

This exploit demonstrates a Remote File Include (RFI) vulnerability in JAF-CMS 4.0 RC2. It provides URLs that can be used to include arbitrary remote files by manipulating the 'website' or 'main_dir' parameters.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: JAF-CMS 4.0 RC2

No auth needed

Prerequisites: Register Globals must be enabled on the target server

MITRE ATT&CK

T1189 - Drive-by Compromise T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by ThE TiGeR · textwebappsphp

https://www.exploit-db.com/exploits/2474