CVE-2007-1149

LoveCMS 1.4 - Path Traversal via Step or Load Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2007-1149. PoCs published by laurent gaffie.

AI-analyzed exploit summary The provided text describes multiple vulnerabilities in LoveCMS, including arbitrary file upload, remote/local file inclusion, and XSS. It includes a PoC URL for a local file inclusion exploit targeting '/etc/passwd'.

Description

Multiple directory traversal vulnerabilities in LoveCMS 1.4 allow remote attackers to read arbitrary files via a .. (dot dot) in (1) the step parameter to install/index.php or (2) the load parameter to the top-level URI.

Exploits (2)

exploitdb WRITEUP VERIFIED
by laurent gaffie · textwebappsphp
https://www.exploit-db.com/exploits/29637

The provided text describes multiple vulnerabilities in LoveCMS, including arbitrary file upload, remote/local file inclusion, and XSS. It includes a PoC URL for a local file inclusion exploit targeting '/etc/passwd'.

Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Theoretical
Target: LoveCMS (version not specified)
No auth needed
Prerequisites: Access to the vulnerable LoveCMS installation
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by laurent gaffie · textwebappsphp
https://www.exploit-db.com/exploits/29638

The provided text describes multiple vulnerabilities in LoveCMS, including arbitrary file upload, remote/local file inclusion, and XSS. It includes a PoC URL for a local file inclusion attack to retrieve '/etc/passwd'.

Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: LoveCMS (version not specified)
No auth needed
Prerequisites: Access to the vulnerable LoveCMS instance
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6
Core References
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/2338
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/33517
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/33518
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/22675
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/0716
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/460917/100/0/threaded

Scores

EPSS 0.0359
EPSS Percentile 87.9%

Details

CWE
CWE-22
Status published
Products (1)
lovecms/lovecms 1.4
Published Mar 02, 2007
Tracked Since Feb 18, 2026