CVE-2008-7055

ezContents 2.0.3 - Remote File Inclusion via Doubled Dot Dot Slash in Link Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-7055. PoCs published by DSecRG.

AI-analyzed exploit summary This advisory details multiple Local File Include (LFI) vulnerabilities in ezContents CMS version 2.0.3. The vulnerabilities stem from insufficient input validation in parameters like 'link', 'rootdp', and 'gsLanguage', allowing attackers to include arbitrary local files.

Description

module.php in ezContents 2.0.3 allows remote attackers to bypass the directory traversal protection mechanism to include and execute arbitrary local files via "....//" (doubled dot dot slash) sequences in the link parameter, which is not properly filtered using the str_replace function.

Exploits (1)

exploitdb WRITEUP VERIFIED

by DSecRG · textwebappsphp

https://www.exploit-db.com/exploits/6301

View Code ZIP pw:eip

This advisory details multiple Local File Include (LFI) vulnerabilities in ezContents CMS version 2.0.3. The vulnerabilities stem from insufficient input validation in parameters like 'link', 'rootdp', and 'gsLanguage', allowing attackers to include arbitrary local files.

Classification

Writeup 100%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: ezContents CMS 2.0.3

No auth needed

Prerequisites: register_globals enabled for some vulnerabilities

MITRE ATT&CK