Exploitation Summary
EIP tracks 1 public exploit for CVE-2009-0392. PoCs published by Usman Saeed.
AI-analyzed exploit summary The exploit demonstrates a directory traversal and XSS vulnerability in Motorola Wimax modem CPEi300. It provides functional URLs to exploit these vulnerabilities, requiring prior authentication.
Description
Directory traversal vulnerability in sysconf.cgi in Motorola Wimax modem CPEi300 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the page parameter.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Usman Saeed · textremotehardware
https://www.exploit-db.com/exploits/7915
The exploit demonstrates a directory traversal and XSS vulnerability in Motorola Wimax modem CPEi300. It provides functional URLs to exploit these vulnerabilities, requiring prior authentication.
Classification
Working Poc 90%
Attack Type
Info Leak | Xss
Complexity
Trivial
Reliability
Reliable
Target:
Motorola Wimax modem CPEi300
Auth required
Prerequisites:
Authenticated session
MITRE ATT&CK
devstral-2 · analyzed Feb 18, 2026
Full analysis →
References (3)
Core 3
Core References
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/33519
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/7915
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/500545/100/0/threaded
Scores
EPSS
0.0234
EPSS Percentile
81.4%
Details
CWE
CWE-22
Status
published
Products (1)
motorola/cpei300
Published
Feb 03, 2009
Tracked Since
Feb 18, 2026