CVE-2008-2650

NUCLEI

Cmsimple - Path Traversal

Title source: rule

Description

Directory traversal vulnerability in cmsimple/cms.php in CMSimple 3.1, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the sl parameter to index.php. NOTE: this can be leveraged for remote file execution by including adm.php and then invoking the upload action. NOTE: on 20080601, the vendor patched 3.1 without changing the version number.

Exploits (1)

exploitdb WORKING POC VERIFIED

by irk4z · htmlwebappsphp

https://www.exploit-db.com/exploits/5700

View Code ZIP pw:eip

Nuclei Templates (1)

CMSimple 3.1 - Local File Inclusion

MEDIUMby pussycat0x

Shodan: cpe:"cpe:2.3:a:cmsimple:cmsimple"

References (7)

[Third Party Advisory, VDB Entry] http://osvdb.org/45881

[Vendor Advisory] http://secunia.com/advisories/30463

[Various Sources] http://www.cmsimple.com/forum/viewtopic.php?f=2&t=17

[Exploit] http://www.securityfocus.com/bid/29450

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/42792

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/42793

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/5700

Scores

EPSS 0.0200

EPSS Percentile 83.7%

Details

CWE

CWE-22

Status published

Products (1)

cmsimple/cmsimple 3.1

Published Jun 10, 2008

Tracked Since Feb 18, 2026