CVE-2009-1771

Flyspeck CMS 6.8 - Unauthenticated Admin Account Creation via updateExistingContent Action

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-1771. PoCs published by ahmadbady.

AI-analyzed exploit summary The exploit demonstrates a Local File Inclusion (LFI) vulnerability in Flyspeck CMS 6.8, allowing arbitrary file inclusion via the 'lang' parameter. It also includes a form to change the admin password and add a new admin user by exploiting an insecure direct object reference.

Description

index.php in Flyspeck CMS 6.8 does not require administrative authentication for the updateExistingContent action, which allows remote attackers to create or modify admin accounts via the (1) users[fullname], (2) users[email], (3) users[role_id], (4) users[username], and (5) users[password] parameters.

Exploits (1)

exploitdb WORKING POC VERIFIED
by ahmadbady · textwebappsphp
https://www.exploit-db.com/exploits/8714

The exploit demonstrates a Local File Inclusion (LFI) vulnerability in Flyspeck CMS 6.8, allowing arbitrary file inclusion via the 'lang' parameter. It also includes a form to change the admin password and add a new admin user by exploiting an insecure direct object reference.

Classification
Working Poc 90%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: Flyspeck CMS 6.8
No auth needed
Prerequisites: Access to the vulnerable web application
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/8714
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/35011
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2009/1367

Scores

EPSS 0.0246
EPSS Percentile 82.4%

Details

CWE
CWE-264
Status published
Products (1)
flyspeck/flyspeck_cms 6.8
Published May 22, 2009
Tracked Since Feb 18, 2026