CVE-2007-2050

RicarGBooK 1.2.1 - Directory Traversal and Arbitrary File Execution via Lang Cookie or Language Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-2050. PoCs published by Dj7xpl.

AI-analyzed exploit summary This is a writeup describing a Local File Inclusion (LFI) vulnerability in RicarGBooK 1.2.1 via cookie manipulation. The vulnerability arises from insecure handling of the 'lang' cookie parameter in 'Header.php', allowing path traversal attacks.

Description

Multiple directory traversal vulnerabilities in header.php in RicarGBooK 1.2.1 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in (1) a lang cookie or (2) the language parameter.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Dj7xpl · textwebappsphp

https://www.exploit-db.com/exploits/3718

View Code ZIP pw:eip

This is a writeup describing a Local File Inclusion (LFI) vulnerability in RicarGBooK 1.2.1 via cookie manipulation. The vulnerability arises from insecure handling of the 'lang' cookie parameter in 'Header.php', allowing path traversal attacks.

Classification

Writeup 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: RicarGBooK 1.2.1

No auth needed

Prerequisites: Access to the target application · Ability to modify cookies

MITRE ATT&CK