CVE-2007-2901

Dokeos < 1.8.0 - Cross-Site Scripting via ImageManager img Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-2901. PoCs published by Silentz.

AI-analyzed exploit summary This exploit targets a SQL injection vulnerability in Dokeos <= 1.8.0 via the 'course' parameter in my_progress.php. It retrieves admin credentials (username and password hash) by injecting a UNION-based SQL query.

Description

Multiple cross-site scripting (XSS) vulnerabilities in Dokeos 1.8.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the img parameter to main/inc/lib/fckeditor/editor/plugins/ImageManager/editor.php and other unspecified vectors.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Silentz · perlwebappsphp

https://www.exploit-db.com/exploits/3974

View Code ZIP pw:eip

This exploit targets a SQL injection vulnerability in Dokeos <= 1.8.0 via the 'course' parameter in my_progress.php. It retrieves admin credentials (username and password hash) by injecting a UNION-based SQL query.

Classification

Working Poc 95%

Attack Type

Sqli

Complexity

Trivial

Reliability

Reliable

Target: Dokeos <= 1.8.0

Auth required

Prerequisites: magic_quotes_gpc must be off · valid session ID of a logged-in user

MITRE ATT&CK