CVE-2007-3523
XCMS 1.1 - Directory Traversal and Arbitrary File Execution via Ent or Lang Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2007-3523. PoCs published by BlackNDoor.
AI-analyzed exploit summary This exploit demonstrates a Local File Include (LFI) and Directory Listing vulnerability in XCMS 1.1. The vulnerability arises from unsanitized user input in the 'Lang' and 'Ent' parameters, allowing arbitrary file inclusion and directory traversal.
Description
Multiple directory traversal vulnerabilities in Module/Galerie.php in XCMS 1.1 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the (1) Ent or (2) Lang parameter.
Exploits (1)
This exploit demonstrates a Local File Include (LFI) and Directory Listing vulnerability in XCMS 1.1. The vulnerability arises from unsanitized user input in the 'Lang' and 'Ent' parameters, allowing arbitrary file inclusion and directory traversal.