CVE-2007-1934

eBoard 1.0.7 module for PHP-Nuke - Directory Traversal via GLOBALS[name] Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-1934. PoCs published by bd0rk.

AI-analyzed exploit summary This exploit targets a Local File Inclusion (LFI) vulnerability in PHP-Nuke Module eBoard 1.0.7 by injecting malicious PHP code into Apache log files and then including them via the vulnerable parameter. It provides a shell-like interface for command execution.

Description

Directory traversal vulnerability in member.php in the eBoard 1.0.7 module for PHP-Nuke allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the GLOBALS[name] parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by bd0rk · perlwebappsphp

https://www.exploit-db.com/exploits/3683

View Code ZIP pw:eip

This exploit targets a Local File Inclusion (LFI) vulnerability in PHP-Nuke Module eBoard 1.0.7 by injecting malicious PHP code into Apache log files and then including them via the vulnerable parameter. It provides a shell-like interface for command execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: PHP-Nuke Module eBoard 1.0.7

No auth needed

Prerequisites: Apache log file write access · PHP-Nuke eBoard module installed · Knowledge of log file paths

MITRE ATT&CK