CVE-2007-0182

magic_photo_storage_website - Remote File Inclusion via _config[site_path] Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 28 public exploits for CVE-2007-0182. PoCs published by IbnuSina.

AI-analyzed exploit summary The provided text describes a remote file inclusion vulnerability in Magic Photo Storage Website due to insufficient sanitization of user-supplied data. The example URL demonstrates how an attacker could exploit this by injecting a malicious site path.

Description

Multiple PHP remote file inclusion vulnerabilities in magic photo storage website allow remote attackers to execute arbitrary PHP code via a URL in the _config[site_path] parameter to (1) admin_password.php, (2) add_welcome_text.php, (3) admin_email.php, (4) add_templates.php, (5) admin_paypal_email.php, (6) approve_member.php, (7) delete_member.php, (8) index.php, (9) list_members.php, (10) membership_pricing.php, or (11) send_email.php in admin/; (12) config.php or (13) db_config.php in include/; or (14) add_category.php, (15) add_news.php, (16) change_catalog_template.php, (17) couple_milestone.php, (18) couple_profile.php, (19) delete_category.php, (20) index.php, (21) login.php, (22) logout.php, (23) register.php, (24) upload_photo.php, (25) user_catelog_password.php, (26) user_email.php, (27) user_extend.php, or (28) user_membership_password.php in user/. NOTE: the include/common_function.php vector is already covered by another candidate from the same date.

Exploits (28)

exploitdb WRITEUP VERIFIED
by IbnuSina · textwebappsphp
https://www.exploit-db.com/exploits/29434

The provided text describes a remote file inclusion vulnerability in Magic Photo Storage Website due to insufficient sanitization of user-supplied data. The example URL demonstrates how an attacker could exploit this by injecting a malicious site path.

Classification
Writeup 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: Magic Photo Storage Website
No auth needed
Prerequisites: Access to the vulnerable endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by IbnuSina · textwebappsphp
https://www.exploit-db.com/exploits/29433

The code describes a remote file inclusion vulnerability in Magic Photo Storage Website due to insufficient sanitization of user-supplied data in the `_config[site_path]` parameter. Exploitation could lead to remote code execution or other attacks.

Classification
Writeup 80%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: Magic Photo Storage Website
No auth needed
Prerequisites: Access to the vulnerable endpoint · Ability to host malicious files on a remote server
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by IbnuSina · textwebappsphp
https://www.exploit-db.com/exploits/29432

The provided text describes a remote file inclusion vulnerability in Magic Photo Storage Website due to insufficient sanitization of user-supplied data. The example URL demonstrates how an attacker could exploit this by injecting a malicious site path.

Classification
Writeup 80%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: Magic Photo Storage Website
No auth needed
Prerequisites: Access to the vulnerable endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by IbnuSina · textwebappsphp
https://www.exploit-db.com/exploits/29431

The provided text describes a remote file inclusion vulnerability in Magic Photo Storage Website due to insufficient sanitization of user-supplied data. It includes a sample exploit URL but lacks executable code.

Classification
Writeup 80%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: Magic Photo Storage Website
No auth needed
Prerequisites: Network access to the target application
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by IbnuSina · textwebappsphp
https://www.exploit-db.com/exploits/29430

This exploit demonstrates a remote file inclusion vulnerability in Magic Photo Storage Website due to insufficient sanitization of user-supplied data in the `_config[site_path]` parameter. An attacker can exploit this to include remote files, potentially leading to remote code execution.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Magic Photo Storage Website
No auth needed
Prerequisites: Access to the vulnerable endpoint · Remote file hosting location
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by IbnuSina · textwebappsphp
https://www.exploit-db.com/exploits/29429

The provided text describes a remote file inclusion vulnerability in Magic Photo Storage Website, where unsanitized user input in the `_config[site_path]` parameter allows remote file inclusion. The example URL demonstrates the attack vector but lacks executable exploit code.

Classification
Writeup 80%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: Magic Photo Storage Website (version unspecified)
No auth needed
Prerequisites: Network access to the target application · Target application with vulnerable parameter exposed
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by IbnuSina · textwebappsphp
https://www.exploit-db.com/exploits/29428

The code describes a remote file inclusion vulnerability in Magic Photo Storage Website due to insufficient sanitization of user-supplied data. The example URL demonstrates how an attacker could exploit this by injecting a malicious site path.

Classification
Writeup 80%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: Magic Photo Storage Website
No auth needed
Prerequisites: Access to the vulnerable endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by IbnuSina · textwebappsphp
https://www.exploit-db.com/exploits/29427

The provided text describes a remote file inclusion vulnerability in Magic Photo Storage Website due to insufficient sanitization of user-supplied data. The example URL demonstrates how an attacker could exploit this by injecting a malicious site path.

Classification
Writeup 80%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: Magic Photo Storage Website
No auth needed
Prerequisites: Access to the vulnerable endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by IbnuSina · textwebappsphp
https://www.exploit-db.com/exploits/29426

The code describes a remote file inclusion vulnerability in Magic Photo Storage Website due to insufficient sanitization of user-supplied data in the '_config[site_path]' parameter. Exploitation could lead to remote code execution or other attacks.

Classification
Writeup 80%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: Magic Photo Storage Website
No auth needed
Prerequisites: Access to the vulnerable endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by IbnuSina · textwebappsphp
https://www.exploit-db.com/exploits/29425

The code describes a remote file inclusion vulnerability in Magic Photo Storage Website due to insufficient sanitization of user-supplied data. The example URL demonstrates how an attacker could exploit this by injecting a malicious site path.

Classification
Writeup 80%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: Magic Photo Storage Website
No auth needed
Prerequisites: Network access to the target application
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by IbnuSina · textwebappsphp
https://www.exploit-db.com/exploits/29424

The provided text describes a remote file inclusion vulnerability in Magic Photo Storage Website due to insufficient sanitization of user-supplied data. It includes a sample exploit URL but lacks executable code.

Classification
Writeup 80%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: Magic Photo Storage Website (version not specified)
No auth needed
Prerequisites: Network access to the target application · Ability to craft malicious URLs
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by IbnuSina · textwebappsphp
https://www.exploit-db.com/exploits/29423

The provided text describes a remote file inclusion vulnerability in Magic Photo Storage Website due to insufficient sanitization of user-supplied data. The example URL demonstrates how an attacker could exploit this by injecting a malicious site path.

Classification
Writeup 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: Magic Photo Storage Website
No auth needed
Prerequisites: Network access to the target application
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by IbnuSina · textwebappsphp
https://www.exploit-db.com/exploits/29422

The provided text describes a remote file inclusion vulnerability in Magic Photo Storage Website due to insufficient sanitization of user-supplied data. The example URL demonstrates how an attacker could exploit this by injecting a remote path into the `_config[site_path]` parameter.

Classification
Writeup 80%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: Magic Photo Storage Website
No auth needed
Prerequisites: Network access to the target application
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by IbnuSina · textwebappsphp
https://www.exploit-db.com/exploits/29421

The provided text describes a remote file inclusion vulnerability in Magic Photo Storage Website due to insufficient sanitization of user-supplied data. The example URL demonstrates how an attacker could exploit this by injecting a malicious path into the `_config[site_path]` parameter.

Classification
Writeup 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: Magic Photo Storage Website
No auth needed
Prerequisites: Network access to the target application · Ability to craft malicious URLs
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by IbnuSina · textwebappsphp
https://www.exploit-db.com/exploits/29420

This exploit demonstrates a remote file inclusion vulnerability in Magic Photo Storage Website by manipulating the `_config[site_path]` parameter to include arbitrary remote files. The vulnerability arises due to insufficient sanitization of user-supplied input.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Magic Photo Storage Website
No auth needed
Prerequisites: Network access to the target application · Ability to host a malicious file on a remote server
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by IbnuSina · textwebappsphp
https://www.exploit-db.com/exploits/29419

The provided text describes a remote file inclusion vulnerability in Magic Photo Storage Website due to insufficient sanitization of user-supplied data. The example URL demonstrates how an attacker could exploit this by injecting a malicious path into the `_config[site_path]` parameter.

Classification
Writeup 80%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: Magic Photo Storage Website
No auth needed
Prerequisites: Network access to the target application · The vulnerable parameter must be accessible and modifiable by the attacker
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by IbnuSina · textwebappsphp
https://www.exploit-db.com/exploits/29418

The code describes a remote file inclusion vulnerability in Magic Photo Storage Website due to insufficient sanitization of user-supplied data. The example URL demonstrates how an attacker could exploit this by injecting a malicious path into the `_config[site_path]` parameter.

Classification
Writeup 80%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: Magic Photo Storage Website (version not specified)
No auth needed
Prerequisites: Access to the vulnerable endpoint · Ability to craft a malicious URL
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by IbnuSina · textwebappsphp
https://www.exploit-db.com/exploits/29417

This exploit demonstrates a remote file inclusion vulnerability in Magic Photo Storage Website by manipulating the `_config[site_path]` parameter to include arbitrary remote files. The vulnerability arises due to insufficient sanitization of user-supplied input.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Magic Photo Storage Website
No auth needed
Prerequisites: Access to the target URL · Ability to host a malicious file on a remote server
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by IbnuSina · textwebappsphp
https://www.exploit-db.com/exploits/29416

The provided text describes a remote file inclusion vulnerability in Magic Photo Storage Website due to insufficient sanitization of user-supplied data. It includes a sample exploit URL but lacks executable code.

Classification
Writeup 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: Magic Photo Storage Website
No auth needed
Prerequisites: Access to the target URL · Ability to host malicious files on an external server
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by IbnuSina · textwebappsphp
https://www.exploit-db.com/exploits/29415

The code describes a remote file inclusion vulnerability in Magic Photo Storage Website due to insufficient sanitization of user-supplied data in the `_config[site_path]` parameter. Exploitation could lead to remote code execution or other attacks.

Classification
Writeup 80%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: Magic Photo Storage Website
No auth needed
Prerequisites: Network access to the target application
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by IbnuSina · textwebappsphp
https://www.exploit-db.com/exploits/29414

This exploit demonstrates a remote file inclusion vulnerability in Magic Photo Storage Website due to insufficient sanitization of user-supplied data in the '_config[site_path]' parameter. An attacker can exploit this to include remote files, potentially leading to remote code execution.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Magic Photo Storage Website
No auth needed
Prerequisites: Network access to the target application · Ability to host a malicious file on a remote server
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by IbnuSina · textwebappsphp
https://www.exploit-db.com/exploits/29413

The provided text describes a remote file inclusion vulnerability in Magic Photo Storage Website, where unsanitized user input in the `_config[site_path]` parameter allows remote file inclusion. No actual exploit code is present, only a description and example URL.

Classification
Writeup 80%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: Magic Photo Storage Website (version unspecified)
No auth needed
Prerequisites: Network access to the target application · Target application must have allow_url_include enabled in PHP configuration
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by IbnuSina · textwebappsphp
https://www.exploit-db.com/exploits/29412

The provided text describes a remote file inclusion vulnerability in Magic Photo Storage Website due to insufficient sanitization of user-supplied data. The example URL demonstrates how an attacker could exploit this by injecting a malicious path into the `_config[site_path]` parameter.

Classification
Writeup 80%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: Magic Photo Storage Website
No auth needed
Prerequisites: Network access to the target application · Application must be running a vulnerable version of Magic Photo Storage Website
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by IbnuSina · textwebappsphp
https://www.exploit-db.com/exploits/29411

The code describes a remote file inclusion vulnerability in Magic Photo Storage Website due to insufficient sanitization of user-supplied data. It provides an example URL demonstrating how an attacker could exploit this issue to include remote files.

Classification
Writeup 80%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: Magic Photo Storage Website
No auth needed
Prerequisites: Access to the target application
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by IbnuSina · textwebappsphp
https://www.exploit-db.com/exploits/29407

The code describes a remote file inclusion vulnerability in Magic Photo Storage Website due to insufficient sanitization of user-supplied data in the '_config[site_path]' parameter. Exploitation could lead to remote code execution or other attacks.

Classification
Writeup 80%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: Magic Photo Storage Website
No auth needed
Prerequisites: Access to the vulnerable endpoint · Ability to host malicious files on a remote server
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by IbnuSina · textwebappsphp
https://www.exploit-db.com/exploits/29409

This exploit demonstrates a remote file inclusion vulnerability in Magic Photo Storage Website by manipulating the `_config[site_path]` parameter to include arbitrary remote files. The vulnerability arises due to insufficient sanitization of user-supplied input.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Magic Photo Storage Website
No auth needed
Prerequisites: Access to the target URL · Ability to host a malicious file on a remote server
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by IbnuSina · textwebappsphp
https://www.exploit-db.com/exploits/29408

The provided text describes a remote file inclusion vulnerability in Magic Photo Storage Website due to insufficient sanitization of user-supplied data. It includes a sample exploit URL but lacks executable code.

Classification
Writeup 80%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: Magic Photo Storage Website
No auth needed
Prerequisites: Network access to the target application
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by IbnuSina · textwebappsphp
https://www.exploit-db.com/exploits/29410

This exploit demonstrates a remote file inclusion vulnerability in Magic Photo Storage Website due to insufficient sanitization of user-supplied data in the '_config[site_path]' parameter. An attacker can include remote files, potentially leading to arbitrary code execution.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Magic Photo Storage Website
No auth needed
Prerequisites: Network access to the target application · A remote server hosting malicious files
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (32)

Core 32
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/33419
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/33433
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/33436
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/33432
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/33430
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/33439
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/33426
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/32668
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/33413
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/33411
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/33415
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/33420
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/33438
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/33425
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/33418
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/33427
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/2136
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/33434
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/456389/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/33423
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/33417
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/33412
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/33421
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/33428
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/33422
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/21965
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/33437
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/33414
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/33429
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/33435
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/33431
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/33416

Scores

EPSS 0.0455
EPSS Percentile 90.4%

Details

Status published
Products (1)
scriptaty/magic_photo_storage_website
Published Jan 12, 2007
Tracked Since Feb 18, 2026