CVE-2008-6317

PHPmyGallery 1.5 beta - Remote File Inclusion via conf[lang] Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2008-6317. PoCs published by CoBRa_21, ZoRLu.

AI-analyzed exploit summary The exploit demonstrates a Local File Inclusion (LFI) and Remote File Inclusion (RFI) vulnerability in Phpmygallery 1.5beta via the 'conf[lang]' and 'admindir' parameters in common-tpl-vars.php. It allows arbitrary file inclusion on Windows systems and potential remote code execution if RFI is enabled.

Description

Directory traversal vulnerability in _conf/_php-core/common-tpl-vars.php in PHPmyGallery 1.5 beta allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the conf[lang] parameter, a different issue than CVE-2008-6318. NOTE: this might be the same issue as CVE-2008-6316.

Exploits (2)

exploitdb WORKING POC VERIFIED
by CoBRa_21 · textwebappsphp
https://www.exploit-db.com/exploits/7399

The exploit demonstrates a Local File Inclusion (LFI) and Remote File Inclusion (RFI) vulnerability in Phpmygallery 1.5beta via the 'conf[lang]' and 'admindir' parameters in common-tpl-vars.php. It allows arbitrary file inclusion on Windows systems and potential remote code execution if RFI is enabled.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Phpmygallery 1.5beta
No auth needed
Prerequisites: PHP installation with allow_url_include enabled for RFI · Access to the target web application
devstral-2 · analyzed Feb 18, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by ZoRLu · textwebappsphp
https://www.exploit-db.com/exploits/7392

This exploit demonstrates a Remote File Inclusion (RFi) and Local File Inclusion (LFi) vulnerability in PHPmyGallery v1.0beta2. The vulnerability arises from insecure file inclusion in the `_conf/core/common-tpl-vars.php` file, allowing attackers to include arbitrary remote or local files.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: PHPmyGallery v1.0beta2
No auth needed
Prerequisites: Network access to the target application · PHPmyGallery v1.0beta2 installed and running
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/47171
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/32723
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/7399

Scores

EPSS 0.0197
EPSS Percentile 77.8%

Details

CWE
CWE-22
Status published
Products (1)
phpmygallery/phpmygallery 1.5 beta
Published Feb 27, 2009
Tracked Since Feb 18, 2026