CVE-2007-5186

Segue CMS < 1.8.4 - Remote Code Execution via themesdir Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-5186. PoCs published by kezzap66345.

AI-analyzed exploit summary This is a writeup describing a Remote File Inclusion (RFI) vulnerability in Segue 1.8.4 by Middlebury College. It includes details about the vulnerable code and an example exploit URL but does not contain functional exploit code.

Description

PHP remote file inclusion vulnerability in index.php in Segue CMS 1.8.4 and earlier, when register_globals is disabled, allows remote attackers to execute arbitrary PHP code via a URL in the themesdir parameter, a different vector than CVE-2006-5497. NOTE: this issue was disputed, but the dispute was retracted after additional analysis.

Exploits (1)

exploitdb WRITEUP VERIFIED

by kezzap66345 · textwebappsphp

https://www.exploit-db.com/exploits/4476

View Code ZIP pw:eip

This is a writeup describing a Remote File Inclusion (RFI) vulnerability in Segue 1.8.4 by Middlebury College. It includes details about the vulnerable code and an example exploit URL but does not contain functional exploit code.

Classification

Writeup 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Theoretical

Target: Segue 1.8.4 by Middlebury College

No auth needed

Prerequisites: A vulnerable instance of Segue 1.8.4 · Ability to craft a malicious URL with a remote file inclusion payload

MITRE ATT&CK