CVE-2008-5677

Kwalbum < 2.0.2 - Authenticated Arbitrary File Upload and Remote Code Execution via Executable File Extension

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-5677. PoCs published by CWH Underground.

AI-analyzed exploit summary This is a writeup describing an arbitrary file upload vulnerability in Kwalbum <= 2.0.2. It explains how an attacker with upload permissions can upload a PHP shell and execute it via a predictable path.

Description

Unrestricted file upload vulnerability in Kwalbum 2.0.4, 2.0.2, and earlier, when PICS_PATH is located in the web root, allows remote authenticated users with upload capability to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file under items/, related to the ReplaceBadFilenameChars function in include/ItemAdder.php. NOTE: some of these details are obtained from third party information.

Exploits (1)

exploitdb WRITEUP VERIFIED

by CWH Underground · textwebappsphp

https://www.exploit-db.com/exploits/6664

View Code ZIP pw:eip

This is a writeup describing an arbitrary file upload vulnerability in Kwalbum <= 2.0.2. It explains how an attacker with upload permissions can upload a PHP shell and execute it via a predictable path.

Classification

Writeup 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Kwalbum <= 2.0.2

Auth required

Prerequisites: User registration with upload permissions

MITRE ATT&CK

T1105 - Ingress Tool Transfer T1505 - Server Software Component

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5

Core References

Third Party Advisory third-party-advisory x_refsource_sreason

http://securityreason.com/securityalert/4789

Exploit vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/31568

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/32145

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/6664

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/45655

Scores

EPSS 0.0413

EPSS Percentile 89.5%

Details

CWE

CWE-20

Status published

Products (39)

kwalbum/kwalbum 0.5.1

kwalbum/kwalbum 0.5.2

kwalbum/kwalbum 0.5.3

kwalbum/kwalbum 0.5.4

kwalbum/kwalbum 0.5.6

kwalbum/kwalbum 0.5.7

kwalbum/kwalbum 0.5.8

kwalbum/kwalbum 0.5.9

kwalbum/kwalbum 0.5.10

kwalbum/kwalbum 0.5.11

... and 29 more

Published Dec 19, 2008

Tracked Since Feb 18, 2026