CVE-2008-5997

Omnicom Content Platform (OCP) 2.0 - Path Traversal

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-5997. PoCs published by AlbaniaN-[H].

AI-analyzed exploit summary The exploit describes a directory traversal vulnerability in Omnicom Content Platform 2.0, where insufficient input sanitization allows attackers to access sensitive files. Administrative privileges are required to exploit this issue.

Description

Absolute path traversal vulnerability in admin/fileKontrola/browser.asp in Omnicom Content Platform (OCP) 2.0 allows remote attackers to list arbitrary directories via a full pathname in the root parameter.

Exploits (1)

exploitdb WRITEUP VERIFIED
by AlbaniaN-[H] · textwebappsasp
https://www.exploit-db.com/exploits/32412

The exploit describes a directory traversal vulnerability in Omnicom Content Platform 2.0, where insufficient input sanitization allows attackers to access sensitive files. Administrative privileges are required to exploit this issue.

Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Theoretical
Target: Omnicom Content Platform 2.0
Auth required
Prerequisites: Administrative access to the application
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/45394
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/31338

Scores

EPSS 0.0258
EPSS Percentile 83.3%

Details

CWE
CWE-22
Status published
Products (1)
ocp2/omnicom_content_platform 2.0
Published Jan 28, 2009
Tracked Since Feb 18, 2026