CVE-2007-1620

php_db_designer < 1.02 - Remote File Inclusion via _SESSION Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-1620. PoCs published by GoLd_M.

AI-analyzed exploit summary This exploit demonstrates a Remote File Include (RFI) vulnerability in PHP DB Designer <= 1.02. It allows an attacker to include arbitrary remote files by manipulating the `_SESSION[DRIVER]` or `_SESSION[SITE_PATH]` parameters in specific PHP scripts.

Description

Multiple PHP remote file inclusion vulnerabilities in PHP DB Designer 1.02 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the (1) _SESSION[SITE_PATH] parameter to (a) wind/help.php or (b) wind/about.php, or the (2) _SESSION[DRIVER] parameter to (c) db/session.php.

Exploits (1)

exploitdb WORKING POC VERIFIED

by GoLd_M · textwebappsphp

https://www.exploit-db.com/exploits/3501

View Code ZIP pw:eip

This exploit demonstrates a Remote File Include (RFI) vulnerability in PHP DB Designer <= 1.02. It allows an attacker to include arbitrary remote files by manipulating the `_SESSION[DRIVER]` or `_SESSION[SITE_PATH]` parameters in specific PHP scripts.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: PHP DB Designer <= 1.02

No auth needed

Prerequisites: Remote file inclusion must be enabled on the target server · Attacker must be able to reach the vulnerable endpoints

MITRE ATT&CK