CVE-2008-7123

zkup CMS 2.0-2.3 - Remote Code Execution via Null Byte Injection in Login Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-7123. PoCs published by Charles Fol.

AI-analyzed exploit summary This exploit leverages a NULL byte injection vulnerability in zKup CMS v2.0 to v2.3 to bypass input validation and inject malicious PHP code into the configuration file, resulting in arbitrary file upload functionality. The exploit requires magic_quotes_gpc to be off and targets the admin configuration modifier script.

Description

Static code injection vulnerability in admin/configuration/modifier.php in zKup CMS 2.0 through 2.3 allows remote attackers to inject arbitrary PHP code into fichiers/config.php via a null byte (%00) in the login parameter in an ajout action, which bypasses the regular expression check.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Charles Fol · phpwebappsphp
https://www.exploit-db.com/exploits/5220

This exploit leverages a NULL byte injection vulnerability in zKup CMS v2.0 to v2.3 to bypass input validation and inject malicious PHP code into the configuration file, resulting in arbitrary file upload functionality. The exploit requires magic_quotes_gpc to be off and targets the admin configuration modifier script.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: zKup CMS v2.0 <= v2.3
No auth needed
Prerequisites: PHP with magic_quotes_gpc=Off · Access to the admin configuration modifier script
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (5)

Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/43082
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/5220
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/29276
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/28149

Scores

EPSS 0.0406
EPSS Percentile 89.3%

Details

CWE
CWE-94
Status published
Products (4)
zkup/zkup 2.0
zkup/zkup 2.01
zkup/zkup 2.02
zkup/zkup 2.03
Published Aug 31, 2009
Tracked Since Feb 18, 2026