CVE-2007-6218

Ossigeno CMS 2.2 pre1 - Remote File Inclusion via Multiple Module Parameters

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 6 public exploits for CVE-2007-6218. PoCs published by ShAy6oOoN.

AI-analyzed exploit summary This exploit demonstrates a remote file inclusion vulnerability in Ossigeno CMS by manipulating the 'level' parameter in uninstall_module.php to include arbitrary remote files. The vulnerability arises due to insufficient sanitization of user-supplied input.

Description

Multiple PHP remote file inclusion vulnerabilities in Ossigeno CMS 2.2 pre1 allow remote attackers to execute arbitrary PHP code via a URL in the (1) level parameter to (a) install_module.php and (b) uninstall_module.php in upload/xax/admin/modules/, (c) upload/xax/admin/patch/index.php, and (d) install_module.php and (e) uninstall_module.php in upload/xax/ossigeno/admin/; and the (2) ossigeno parameter to (f) ossigeno_modules/ossigeno-catalogo/xax/ossigeno/catalogo/common.php, different vectors than CVE-2007-5234.

Exploits (6)

exploitdb WORKING POC VERIFIED
by ShAy6oOoN · textwebappsphp
https://www.exploit-db.com/exploits/30830

This exploit demonstrates a remote file inclusion vulnerability in Ossigeno CMS by manipulating the 'level' parameter in uninstall_module.php to include arbitrary remote files. The vulnerability arises due to insufficient sanitization of user-supplied input.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Ossigeno CMS 2.2_pre1
No auth needed
Prerequisites: Network access to the target application · Ability to host a malicious file on a remote server
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by ShAy6oOoN · textwebappsphp
https://www.exploit-db.com/exploits/30829

This exploit demonstrates a remote file inclusion vulnerability in Ossigeno CMS 2.2_pre1 by manipulating the 'level' parameter in 'install_module.php' to include arbitrary remote files. The attack leverages insufficient input sanitization to execute remote code.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Ossigeno CMS 2.2_pre1
No auth needed
Prerequisites: Access to the target web application · Remote file hosting location
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by ShAy6oOoN · textwebappsphp
https://www.exploit-db.com/exploits/30828

The provided text describes a remote file inclusion vulnerability in Ossigeno CMS 2.2_pre1, where unsanitized user input in the 'level' parameter allows arbitrary file inclusion. No actual exploit code is present, only a description and example URL.

Classification
Writeup 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: Ossigeno CMS 2.2_pre1
No auth needed
Prerequisites: Network access to the target application
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by ShAy6oOoN · textwebappsphp
https://www.exploit-db.com/exploits/30827

This exploit demonstrates a remote file inclusion vulnerability in Ossigeno CMS by manipulating the 'level' parameter in uninstall_module.php to include arbitrary remote files. The vulnerability arises due to insufficient sanitization of user-supplied input.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Ossigeno CMS 2.2_pre1
No auth needed
Prerequisites: Network access to the target application · Remote file hosting capability
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by ShAy6oOoN · textwebappsphp
https://www.exploit-db.com/exploits/30826

This exploit demonstrates a remote file inclusion vulnerability in Ossigeno CMS by manipulating the 'level' parameter to include arbitrary remote files. The vulnerability arises due to insufficient sanitization of user-supplied input.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Ossigeno CMS 2.2_pre1
No auth needed
Prerequisites: Access to the target URL · Ability to host a malicious file on a remote server
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by ShAy6oOoN · textwebappsphp
https://www.exploit-db.com/exploits/30831

The provided text describes a remote file inclusion vulnerability in Ossigeno CMS 2.2_pre1, where unsanitized user input in the 'ossigeno' parameter allows arbitrary file inclusion. No actual exploit code is present, only a description and example URL.

Classification
Writeup 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: Ossigeno CMS 2.2_pre1
No auth needed
Prerequisites: Network access to the target application · Target application must have allow_url_include enabled
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (8)

Core 8
Core References
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/26654
Exploit, Third Party Advisory x_refsource_misc
http://www.packetstormsecurity.org/0711-exploits/ossigeno22-rfi.txt
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/44315
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/44316
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/44314
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/44317
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/44313
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/44312

Scores

EPSS 0.0413
EPSS Percentile 89.5%

Details

CWE
CWE-20
Status published
Products (1)
ossigeno/cms 2.2_pre1
Published Dec 04, 2007
Tracked Since Feb 18, 2026