CVE-2008-3239

phpizabi 0.848b C1 HFP1 - Unauthenticated Arbitrary File Upload and Remote Code Execution via writeLogEntry Function

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-3239. PoCs published by Inphex.

AI-analyzed exploit summary This Perl script exploits a remote code execution vulnerability in PHPizabi v0.848b C1 HFP1 by manipulating the `CONF[CRON_LOGFILE]` and `CONF[LOCALE_LONG_DATE_TIME]` parameters to write a malicious PHP file and execute arbitrary commands.

Description

Unrestricted file upload vulnerability in the writeLogEntry function in system/v_cron_proc.php in PHPizabi 0.848b C1 HFP1, when register_globals is enabled, allows remote attackers to upload and execute arbitrary code via a filename in the CONF[CRON_LOGFILE] parameter and file contents in the CONF[LOCALE_LONG_DATE_TIME] parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Inphex · perlwebappsphp

https://www.exploit-db.com/exploits/6085

View Code ZIP pw:eip

This Perl script exploits a remote code execution vulnerability in PHPizabi v0.848b C1 HFP1 by manipulating the `CONF[CRON_LOGFILE]` and `CONF[LOCALE_LONG_DATE_TIME]` parameters to write a malicious PHP file and execute arbitrary commands.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: PHPizabi v0.848b C1 HFP1

No auth needed

Prerequisites: Target must be running PHPizabi v0.848b C1 HFP1 · Access to the target's web server

MITRE ATT&CK