CVE-2007-1372

PostGuestbook 0.6.1 - Remote File Inclusion via tpl_pgb_moddir Parameter

Title source: manual

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-1372. PoCs published by GoLd_M.

AI-analyzed exploit summary This exploit leverages a remote file inclusion vulnerability in PostGuestbook 0.6.1 by manipulating the `tpl_pgb_moddir` parameter to include a remote shell. The vulnerability arises from improper input validation in the `header.php` file.

Description

PHP remote file inclusion vulnerability in styles/internal/header.php in the PostGuestbook 0.6.1 module for PHP-Nuke allows remote attackers to execute arbitrary PHP code via a URL in the tpl_pgb_moddir parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by GoLd_M · textwebappsphp

https://www.exploit-db.com/exploits/3423

View Code ZIP pw:eip

This exploit leverages a remote file inclusion vulnerability in PostGuestbook 0.6.1 by manipulating the `tpl_pgb_moddir` parameter to include a remote shell. The vulnerability arises from improper input validation in the `header.php` file.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: PostGuestbook 0.6.1

No auth needed

Prerequisites: Remote shell accessible via URL · Target running PostGuestbook 0.6.1 with vulnerable configuration

MITRE ATT&CK