CVE-2008-6318

PHPmyGallery 1.5 beta - Remote Code Execution via admindir Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-6318. PoCs published by CoBRa_21.

AI-analyzed exploit summary The exploit demonstrates a Local File Inclusion (LFI) and Remote File Inclusion (RFI) vulnerability in Phpmygallery 1.5beta via the 'conf[lang]' and 'admindir' parameters in common-tpl-vars.php. It allows arbitrary file inclusion on Windows systems and potential remote code execution if RFI is enabled.

Description

PHP remote file inclusion vulnerability in _conf/_php-core/common-tpl-vars.php in PHPmyGallery 1.5 beta allows remote attackers to execute arbitrary PHP code via a URL in the admindir parameter, a different vector than CVE-2008-6317.

Exploits (1)

exploitdb WORKING POC VERIFIED
by CoBRa_21 · textwebappsphp
https://www.exploit-db.com/exploits/7399

The exploit demonstrates a Local File Inclusion (LFI) and Remote File Inclusion (RFI) vulnerability in Phpmygallery 1.5beta via the 'conf[lang]' and 'admindir' parameters in common-tpl-vars.php. It allows arbitrary file inclusion on Windows systems and potential remote code execution if RFI is enabled.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Phpmygallery 1.5beta
No auth needed
Prerequisites: PHP installation with allow_url_include enabled for RFI · Access to the target web application
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/32723
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/7399

Scores

EPSS 0.0205
EPSS Percentile 78.8%

Details

CWE
CWE-94
Status published
Products (1)
phpmygallery/phpmygallery 1.5 beta
Published Feb 27, 2009
Tracked Since Feb 18, 2026