CVE-2008-6316

phpmygallery 1.0 beta2 - Remote File Inclusion via Lang Parameter Path Traversal

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2008-6316. PoCs published by ZoRLu.

AI-analyzed exploit summary This exploit demonstrates a Remote File Inclusion (RFi) and Local File Inclusion (LFi) vulnerability in PHPmyGallery v1.0beta2. The vulnerability arises from insecure file inclusion in the `_conf/core/common-tpl-vars.php` file, allowing attackers to include arbitrary remote or local files.

Description

Directory traversal vulnerability in _conf/core/common-tpl-vars.php in PHPmyGallery 1.0 beta2 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang parameter, a different issue than CVE-2008-6316 and a different vector than CVE-2008-6318.

Exploits (2)

exploitdb WORKING POC VERIFIED
by ZoRLu · textwebappsphp
https://www.exploit-db.com/exploits/7392

This exploit demonstrates a Remote File Inclusion (RFi) and Local File Inclusion (LFi) vulnerability in PHPmyGallery v1.0beta2. The vulnerability arises from insecure file inclusion in the `_conf/core/common-tpl-vars.php` file, allowing attackers to include arbitrary remote or local files.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: PHPmyGallery v1.0beta2
No auth needed
Prerequisites: Network access to the target application · PHPmyGallery v1.0beta2 installed and running
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC
webappsphp
https://www.exploit-db.com/exploits/7399

This exploit demonstrates a Local File Inclusion (LFI) and Remote File Inclusion (RFI) vulnerability in Phpmygallery 1.5beta. The vulnerability arises from improper input validation in the 'common-tpl-vars.php' script, allowing attackers to include arbitrary local or remote files via the 'conf[lang]' and 'admindir' parameters.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Phpmygallery 1.5beta
No auth needed
Prerequisites: Access to the target web application · PHP configuration allowing file inclusion
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/7392
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/32705
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/47171

Scores

EPSS 0.0197
EPSS Percentile 77.8%

Details

CWE
CWE-22
Status published
Products (1)
phpmygallery/phpmygallery 1.0 beta2
Published Feb 27, 2009
Tracked Since Feb 18, 2026