CVE-2008-6748

Megacubo 5.0.7 - Remote Code Execution via mega:// URI Play Action

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2008-6748. PoCs published by JJunior, Nine:Situations:Group.

AI-analyzed exploit summary This exploit leverages a URI handler vulnerability in Megacubo 5.0.7 to execute arbitrary commands via a crafted `mega://` URI. The PoC disables the firewall and downloads/executes a remote executable.

Description

Eval injection vulnerability in Megacubo 5.0.7 allows remote attackers to inject and execute arbitrary PHP code via the play action in a mega:// URI.

Exploits (2)

exploitdb WORKING POC VERIFIED
by JJunior · htmlremotewindows
https://www.exploit-db.com/exploits/7630

This exploit leverages a URI handler vulnerability in Megacubo 5.0.7 to execute arbitrary commands via a crafted `mega://` URI. The PoC disables the firewall and downloads/executes a remote executable.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Megacubo 5.0.7
No auth needed
Prerequisites: Victim must open the malicious HTML file in a browser · Megacubo must be installed with the `mega://` URI handler registered
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Nine:Situations:Group · htmlremotewindows
https://www.exploit-db.com/exploits/7623

This exploit leverages a remote eval() injection vulnerability in Megacubo 5.0.7 via the 'mega://' URI handler. Arbitrary PHP code is passed to the 'play' command, written to a temporary file, and executed, bypassing a file_exists() check using the 'con' device name.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Megacubo 5.0.7
No auth needed
Prerequisites: Victim must have Megacubo 5.0.7 installed · Victim must click on a malicious link
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (7)

Core 7
Core References
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/33062
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/33326
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/499654/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/47697
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/7623
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/51106

Scores

EPSS 0.0374
EPSS Percentile 88.4%

Details

CWE
CWE-94
Status published
Products (1)
megacubo/megacubo 5.0.7
Published Apr 24, 2009
Tracked Since Feb 18, 2026