CVE-2008-6669

nweb2fax <= 0.2.7 - Remote Code Execution via viewrq.php var_filename Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-6669. PoCs published by dun.

AI-analyzed exploit summary This exploit demonstrates multiple vulnerabilities in nweb2fax <= 0.2.7, including Local File Inclusion (LFI), Arbitrary File Download, and Remote Command Execution (RCE) via improper input validation in PHP scripts. The RCE is achieved through command injection in the `viewrq.php` script when handling the `format` and `var_filename` parameters.

Description

viewrq.php in nweb2fax 0.2.7 and earlier allows remote attackers to execute arbitrary code via shell metacharacters in the var_filename parameter in a (1) tif or (2) pdf format action.

Exploits (1)

exploitdb WORKING POC VERIFIED

by dun · textwebappsphp

https://www.exploit-db.com/exploits/5856

View Code ZIP pw:eip

This exploit demonstrates multiple vulnerabilities in nweb2fax <= 0.2.7, including Local File Inclusion (LFI), Arbitrary File Download, and Remote Command Execution (RCE) via improper input validation in PHP scripts. The RCE is achieved through command injection in the `viewrq.php` script when handling the `format` and `var_filename` parameters.

Classification

Working Poc 95%

Attack Type

Rce | Info Leak

Complexity

Trivial

Reliability

Reliable

Target: nweb2fax <= 0.2.7

No auth needed

Prerequisites: Network access to the target application · nweb2fax application running with vulnerable version

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter T1005 - Data from Local System

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/5856

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/29804

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/43174

Scores

EPSS 0.0423

EPSS Percentile 89.7%

Details

CWE

CWE-78

Status published

Products (7)

dirk_bartley/nweb2fax 0.1

dirk_bartley/nweb2fax 0.2

dirk_bartley/nweb2fax 0.2.1

dirk_bartley/nweb2fax 0.2.4

dirk_bartley/nweb2fax 0.2.5

dirk_bartley/nweb2fax 0.2.6

dirk_bartley/nweb2fax < 0.2.7

Published Apr 08, 2009

Tracked Since Feb 18, 2026