CVE-2008-4318

Observer <= 0.3.2.1 - Remote Command Execution via Query Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-4318. PoCs published by dun.

AI-analyzed exploit summary This exploit demonstrates remote command execution in Observer <= 0.3.2.1 via command injection in the 'query' parameter of whois.php and netcmd.php. The vulnerability arises from unsanitized user input being passed to system commands.

Description

Observer 0.3.2.1 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the query parameter to (1) whois.php or (2) netcmd.php.

Exploits (1)

exploitdb WORKING POC VERIFIED
by dun · textwebappsphp
https://www.exploit-db.com/exploits/6559

This exploit demonstrates remote command execution in Observer <= 0.3.2.1 via command injection in the 'query' parameter of whois.php and netcmd.php. The vulnerability arises from unsanitized user input being passed to system commands.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Observer <= 0.3.2.1
No auth needed
Prerequisites: Network access to the target application
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/6559
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/4322
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/45398

Scores

EPSS 0.1404
EPSS Percentile 96.1%

Details

CWE
CWE-20
Status published
Products (13)
project-observer/observer 0.1.0
project-observer/observer 0.1.1
project-observer/observer 0.1.2
project-observer/observer 0.2.0
project-observer/observer 0.2.1
project-observer/observer 0.2.2
project-observer/observer 0.2.3
project-observer/observer 0.2.4
project-observer/observer 0.2.5
project-observer/observer 0.3.1
... and 3 more
Published Sep 29, 2008
Tracked Since Feb 18, 2026