CVE-2008-2338

Interspire ActiveKB < 1.5 - Unauthenticated Privilege Escalation via Auth Cookie Manipulation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-2338. PoCs published by t0pP8uZz.

AI-analyzed exploit summary This exploit leverages insecure cookie handling in ActiveKB <= 1.5 by setting a crafted 'auth=true' cookie via JavaScript, allowing arbitrary admin access without authentication.

Description

Interspire ActiveKB 1.5 and earlier allows remote attackers to gain privileges by setting the auth cookie to true when accessing unspecified scripts in /admin.

Exploits (1)

exploitdb WORKING POC VERIFIED
by t0pP8uZz · textwebappsphp
https://www.exploit-db.com/exploits/5616

This exploit leverages insecure cookie handling in ActiveKB <= 1.5 by setting a crafted 'auth=true' cookie via JavaScript, allowing arbitrary admin access without authentication.

Classification
Working Poc 100%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: ActiveKB <= 1.5
No auth needed
Prerequisites: Victim must execute the provided JavaScript code in their browser
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/30265
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1020035
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/5616
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/42427
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/29226

Scores

EPSS 0.0636
EPSS Percentile 92.8%

Details

CWE
CWE-264
Status published
Products (1)
interspire/activekb < 1.5
Published May 19, 2008
Tracked Since Feb 18, 2026