CVE-2008-2699

Galatolo WebManager 1.0 - Path Traversal via Plugin or Com Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-2699. PoCs published by StAkeR.

AI-analyzed exploit summary This exploit targets a remote command execution vulnerability in Galatolo Web Manager 1.0 by injecting malicious PHP code into log files via the User-Agent header and then executing arbitrary commands through the vulnerable application. It automates the discovery of log file paths and provides an interactive shell.

Description

Multiple directory traversal vulnerabilities in Galatolo WebManager (GWM) 1.0 allow remote attackers to include and execute arbitrary local files via directory traversal sequences in (1) the plugin parameter to admin/plugins.php or (2) the com parameter to index.php.

Exploits (1)

exploitdb WORKING POC VERIFIED

by StAkeR · pythonwebappsphp

https://www.exploit-db.com/exploits/5758

View Code ZIP pw:eip

This exploit targets a remote command execution vulnerability in Galatolo Web Manager 1.0 by injecting malicious PHP code into log files via the User-Agent header and then executing arbitrary commands through the vulnerable application. It automates the discovery of log file paths and provides an interactive shell.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Galatolo Web Manager 1.0

No auth needed

Prerequisites: Target must be running Galatolo Web Manager 1.0 · Log file must be writable by the web server · Target must allow HTTP requests with arbitrary User-Agent headers

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →