CVE-2008-7027

Libra File Manager <= 1.18 - Unauthenticated Authentication Bypass via Cookie Manipulation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-7027. PoCs published by Stack.

AI-analyzed exploit summary This exploit leverages insecure cookie handling in Libra PHP File Manager by setting arbitrary cookie values via JavaScript, allowing authentication bypass. The PoC demonstrates how an attacker can set 'user' and 'pass' cookies to bypass login mechanisms.

Description

Libra File Manager 1.18 and earlier allows remote attackers to bypass authentication and gain privileges by setting the user and pass cookies to 1.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Stack · textwebappsphp
https://www.exploit-db.com/exploits/6579

This exploit leverages insecure cookie handling in Libra PHP File Manager by setting arbitrary cookie values via JavaScript, allowing authentication bypass. The PoC demonstrates how an attacker can set 'user' and 'pass' cookies to bypass login mechanisms.

Classification
Working Poc 90%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: Libra PHP File Manager (version unspecified)
No auth needed
Prerequisites: Victim must execute the provided JavaScript (e.g., via XSS or direct browser console input)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/6579
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/31422

Scores

EPSS 0.0229
EPSS Percentile 80.9%

Details

CWE
CWE-287
Status published
Products (6)
libra_file_manager/php_filemanager 1.0
libra_file_manager/php_filemanager 1.03
libra_file_manager/php_filemanager 1.05
libra_file_manager/php_filemanager 1.08
libra_file_manager/php_filemanager 1.17
libra_file_manager/php_filemanager < 1.18
Published Aug 21, 2009
Tracked Since Feb 18, 2026