CVE-2009-0325

Ninja Blog 4.8 - Path Traversal via Cat Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-0325. PoCs published by Danny Moules.

AI-analyzed exploit summary This exploit demonstrates a directory traversal vulnerability in Ninja Blog 4.8, allowing an attacker to read arbitrary files outside the intended directory by manipulating the 'cat' parameter in the URL.

Description

Directory traversal vulnerability in entries/index.php in Ninja Blog 4.8, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary files via a .. (dot dot) in the cat parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Danny Moules · textwebappsphp

https://www.exploit-db.com/exploits/7831

View Code ZIP pw:eip

This exploit demonstrates a directory traversal vulnerability in Ninja Blog 4.8, allowing an attacker to read arbitrary files outside the intended directory by manipulating the 'cat' parameter in the URL.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Ninja Blog 4.8

No auth needed

Prerequisites: Access to the target web application

MITRE ATT&CK

T1006 - Direct Volume Access

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5

Core References

Exploit, URL Repurposed x_refsource_misc

https://www.push55.co.uk/poclibrary/ninjadesignscouk-1.txt

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/7831

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/33573

Exploit vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/33351

URL Repurposed x_refsource_misc

http://www.push55.co.uk/index.php?s=ad&id=6

Scores

EPSS 0.0256

EPSS Percentile 83.1%

Details

CWE

CWE-22

Status published

Products (1)

ninjadesigns/ninja_blog 4.8

Published Jan 29, 2009

Tracked Since Feb 18, 2026