CVE-2007-1932

ScarNews 1.2.1 - Unauthenticated Directory Traversal via sn_admin_dir Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-1932. PoCs published by BeyazKurt.

AI-analyzed exploit summary This Perl script exploits a Local File Inclusion (LFI) vulnerability in ScarNews v1.2.1 by injecting malicious code into Apache log files and then including them via the vulnerable parameter. It provides a pseudo-shell for command execution.

Description

Directory traversal vulnerability in scarnews.inc.php in ScarNews 1.2.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the sn_admin_dir parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by BeyazKurt · textwebappsphp

https://www.exploit-db.com/exploits/3687

View Code ZIP pw:eip

This Perl script exploits a Local File Inclusion (LFI) vulnerability in ScarNews v1.2.1 by injecting malicious code into Apache log files and then including them via the vulnerable parameter. It provides a pseudo-shell for command execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: ScarNews v1.2.1

No auth needed

Prerequisites: Target must be running ScarNews v1.2.1 · Apache log files must be writable · Attacker must be able to reach the target's web server

MITRE ATT&CK