CVE-2008-0351

evilsentinel < 1.0.9 - Unauthenticated CAPTCHA Bypass via Omitted es_security_captcha Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-0351. PoCs published by BlackHawk.

AI-analyzed exploit summary This exploit bypasses authentication and CAPTCHA in Evilsentinel <= 1.0.9 by directly sending a crafted POST request to disable security filters and change the admin email. It leverages improper session validation and missing CAPTCHA enforcement.

Description

admin/config.php in Evilsentinel 1.0.9 and earlier allows remote attackers to bypass the CAPTCHA test by omitting the es_security_captcha parameter and not invoking captcha.php.

Exploits (1)

exploitdb WORKING POC VERIFIED

by BlackHawk · phpwebappsphp

https://www.exploit-db.com/exploits/4884

View Code ZIP pw:eip

This exploit bypasses authentication and CAPTCHA in Evilsentinel <= 1.0.9 by directly sending a crafted POST request to disable security filters and change the admin email. It leverages improper session validation and missing CAPTCHA enforcement.

Classification

Working Poc 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Evilsentinel <= 1.0.9

No auth needed

Prerequisites: Network access to the target · Evilsentinel installation with default or known path

MITRE ATT&CK

T1110 - Brute Force T1133 - External Remote Services

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/27227

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/4884

Scores

EPSS 0.0233

EPSS Percentile 81.3%

Details

CWE

CWE-287

Status published

Products (1)

evilsentinel/evilsentinel < 1.0.9

Published Jan 18, 2008

Tracked Since Feb 18, 2026