CVE-2007-3228

Sitellite CMS <= 4.2.12 - Remote File Inclusion via FORUM[LIB] Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-3228. PoCs published by o0xxdark0o.

AI-analyzed exploit summary This exploit leverages a remote file inclusion vulnerability in Sitellite CMS 4.2.12 by manipulating the `FORUM[LIB]` parameter to include arbitrary PHP files. The vulnerable file is located in the PhpDocumentor tests directory, allowing remote code execution if the attacker controls the included file.

Description

PHP remote file inclusion vulnerability in saf/lib/PEAR/PhpDocumentor/Documentation/tests/bug-559668.php in Sitellite CMS 4.2.12 and earlier might allow remote attackers to execute arbitrary PHP code via a URL in the FORUM[LIB] parameter. NOTE: by default, access to the PhpDocumentor directory tree is blocked by .htaccess.

Exploits (1)

exploitdb WORKING POC VERIFIED

by o0xxdark0o · textwebappsphp

https://www.exploit-db.com/exploits/4071

View Code ZIP pw:eip

This exploit leverages a remote file inclusion vulnerability in Sitellite CMS 4.2.12 by manipulating the `FORUM[LIB]` parameter to include arbitrary PHP files. The vulnerable file is located in the PhpDocumentor tests directory, allowing remote code execution if the attacker controls the included file.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Sitellite CMS 4.2.12

No auth needed

Prerequisites: Access to the vulnerable endpoint · Ability to host or control a malicious PHP file

MITRE ATT&CK