CVE-2008-7026

efront < 3.5.1 - Unauthenticated Arbitrary File Upload and Remote Code Execution via Avatar Upload

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-7026. PoCs published by Pepelux.

AI-analyzed exploit summary This is a writeup describing a remote file inclusion vulnerability in eFront <= 3.5.1. It explains how authenticated users (students or teachers) can upload malicious PHP files disguised as avatars, leading to remote code execution.

Description

Unrestricted file upload vulnerability in filesystem3.class.php in eFront 3.5.1 build 2710 and earlier allows remote attackers to execute arbitrary code by uploading a file with an executable extension as an avatar, then accessing it via a direct request to the file in (1) student/avatars/ or (2) professor/avatars/.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Pepelux · textwebappsphp

https://www.exploit-db.com/exploits/6633

View Code ZIP pw:eip

This is a writeup describing a remote file inclusion vulnerability in eFront <= 3.5.1. It explains how authenticated users (students or teachers) can upload malicious PHP files disguised as avatars, leading to remote code execution.

Classification

Writeup 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: eFront <= 3.5.1 / build 2710

Auth required

Prerequisites: Authenticated access as a student or teacher · Ability to upload files

MITRE ATT&CK