CVE-2008-3150

Neutrino Atomic Edition 0.8.4 - Path Traversal

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-3150. PoCs published by Ams.

AI-analyzed exploit summary This exploit targets Neutrino 0.8.4 Atomic Edition by manipulating the '/data/sess.php' file to bypass authorization, then uploads a PHP shell to '/data/pages/'. It uses HTTP POST requests to achieve remote code execution.

Description

Directory traversal vulnerability in index.php in Neutrino Atomic Edition 0.8.4 allows remote attackers to read and modify files, as demonstrated by manipulating data/sess.php in (1) usb and (2) del_pag actions. NOTE: this can be leveraged for code execution by performing an upload that bypasses the intended access restrictions that were implemented in sess.php.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Ams · perlwebappsphp

https://www.exploit-db.com/exploits/6018

View Code ZIP pw:eip

This exploit targets Neutrino 0.8.4 Atomic Edition by manipulating the '/data/sess.php' file to bypass authorization, then uploads a PHP shell to '/data/pages/'. It uses HTTP POST requests to achieve remote code execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Neutrino 0.8.4 Atomic Edition

No auth needed

Prerequisites: Target must be running Neutrino 0.8.4 Atomic Edition · Network access to the target

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1505 - Server Software Component

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/43616

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/30950

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/30123

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/6018

Scores

EPSS 0.0627

EPSS Percentile 92.7%

Details

CWE

CWE-22

Status published

Products (1)

neutrino-cms/atomic_edition 0.8.4

Published Jul 11, 2008

Tracked Since Feb 18, 2026