CVE-2008-6201

KwsPHP 1.3.456 - Path Traversal via Help.php Action Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-6201. PoCs published by Ajax.

AI-analyzed exploit summary This PHP script exploits CVE-2008-6201, a remote code execution vulnerability in KwsPHP. It authenticates with provided credentials, uploads a malicious PHP file disguised as an image, and executes it via a path traversal vulnerability.

Description

Directory traversal vulnerability in help.php in the eskuel module in KwsPHP 1.3.456, as available before 20080416, allows remote attackers to execute arbitrary commands via the action parameter. NOTE: some of these details are obtained from third party information.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Ajax · phpwebappsphp

https://www.exploit-db.com/exploits/5449

View Code ZIP pw:eip

This PHP script exploits CVE-2008-6201, a remote code execution vulnerability in KwsPHP. It authenticates with provided credentials, uploads a malicious PHP file disguised as an image, and executes it via a path traversal vulnerability.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: KwsPHP (All Versions)

Auth required

Prerequisites: Valid KwsPHP user credentials · Ability to upload files · Target server with KwsPHP installed

MITRE ATT&CK