CVE-2008-6684

Apartment Search Script - Unauthenticated Arbitrary File Upload via editimage.php GIF Header Bypass

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-6684. PoCs published by ZoRLu.

AI-analyzed exploit summary This exploit demonstrates a file upload vulnerability in Apartment Search Script, allowing attackers to upload a malicious PHP shell disguised as a GIF image. It also includes an XSS vulnerability via the 'r' parameter in listtest.php.

Description

Unrestricted file upload vulnerability in editimage.php in Apartment Search Script allows remote attackers to execute arbitrary code by uploading a file with an executable extension and a GIF header, then accessing this file via a direct request to a renamed file in Member_Admin/logo/.

Exploits (1)

exploitdb WORKING POC VERIFIED
by ZoRLu · textwebappsphp
https://www.exploit-db.com/exploits/6956

This exploit demonstrates a file upload vulnerability in Apartment Search Script, allowing attackers to upload a malicious PHP shell disguised as a GIF image. It also includes an XSS vulnerability via the 'r' parameter in listtest.php.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Apartment Search Script
Auth required
Prerequisites: Valid user account on the target system · Ability to upload files via the 'editimage.php' endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/46283
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/6956
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/32065

Scores

EPSS 0.0263
EPSS Percentile 83.5%

Details

CWE
CWE-20
Status published
Products (1)
yourfreeworld/apartment_search_script
Published Apr 10, 2009
Tracked Since Feb 18, 2026