CVE-2007-2205

LAN Management System 1.5.3 - Remote File Inclusion via _LIB_DIR Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-2205. PoCs published by InyeXion.

AI-analyzed exploit summary This exploit demonstrates a remote file inclusion vulnerability in LMS 1.5.3 and 1.5.4 due to insufficient input sanitization in the _LIB_DIR parameter. An attacker can include arbitrary remote files, potentially leading to remote code execution.

Description

PHP remote file inclusion vulnerability in modules/rtmessageadd.php in LAN Management System (LMS) 1.5.3, and possibly 1.5.4, allows remote attackers to execute arbitrary PHP code via a URL in the _LIB_DIR parameter, a different vector than CVE-2007-1643.

Exploits (1)

exploitdb WORKING POC VERIFIED

by InyeXion · textwebappsphp

https://www.exploit-db.com/exploits/29886

View Code ZIP pw:eip

This exploit demonstrates a remote file inclusion vulnerability in LMS 1.5.3 and 1.5.4 due to insufficient input sanitization in the _LIB_DIR parameter. An attacker can include arbitrary remote files, potentially leading to remote code execution.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: LMS 1.5.3, 1.5.4

No auth needed

Prerequisites: Network access to the target application · Ability to host a malicious file on a remote server

MITRE ATT&CK