Exploitation Summary
CVE-2009-2265 has been observed exploited in the wild (reported by VulnCheck KEV, InTheWild.io).
EIP tracks 10 public exploits from researchers including Metasploit, Pergyz, zaphoxx, including a Metasploit module exploits/windows/http/coldfusion_fckeditor.
AI-analyzed exploit summary This Metasploit module exploits CVE-2009-2265 in Adobe ColdFusion 8.0.1 by uploading a malicious JSP file via the FCKeditor's file upload functionality, leveraging a directory traversal vulnerability in the 'CurrentFolder' parameter.
Description
Multiple directory traversal vulnerabilities in FCKeditor before 2.6.4.1 allow remote attackers to create executable files in arbitrary directories via directory traversal sequences in the input to unspecified connector modules, as exploited in the wild for remote code execution in July 2009, related to the file browser and the editor/filemanager/connectors/ directory.
Exploits (10)
This Metasploit module exploits CVE-2009-2265 in Adobe ColdFusion 8.0.1 by uploading a malicious JSP file via the FCKeditor's file upload functionality, leveraging a directory traversal vulnerability in the 'CurrentFolder' parameter.
This exploit leverages a file upload vulnerability in Adobe ColdFusion 8 to achieve remote command execution by uploading a malicious JSP file. The payload is generated using msfvenom and executed via a reverse shell.
This repository contains a functional Python exploit for CVE-2009-2265, an arbitrary file upload vulnerability in Adobe ColdFusion 8.0.1. The exploit uploads a malicious JSP file to the target server via a vulnerable FCKeditor endpoint, allowing remote code execution.
This repository contains a functional Python script that exploits CVE-2009-2265, an arbitrary file upload vulnerability in ColdFusion 8.0.1. The exploit uploads a malicious JSP file to the target server via a vulnerable FCKeditor endpoint, enabling remote code execution.
This repository contains a functional exploit for CVE-2009-2265, targeting Adobe ColdFusion 8. The exploit generates a JSP payload using msfvenom, uploads it via a multipart POST request, and triggers it to establish a reverse shell.
The repository contains a functional Python3 exploit script for CVE-2009-2265, which targets an LFI vulnerability in Adobe ColdFusion 8.0.1 via FCKeditor < 2.6.4.1. The script allows arbitrary file upload and execution, with features like accessibility options and post-upload request triggering.
This script exploits CVE-2009-2265, an unauthenticated remote code execution vulnerability in Adobe ColdFusion 8. It uploads a malicious JSP file via a directory traversal flaw in the FCKeditor upload component and triggers execution.
This repository contains a functional Rust-based exploit for CVE-2009-2265, targeting Adobe ColdFusion 8's FCKeditor file upload vulnerability via null byte injection to achieve RCE. The PoC generates a JSP reverse shell payload, uploads it using the vulnerability, and triggers execution.
This repository contains a functional Python exploit for CVE-2009-2265, targeting Adobe ColdFusion 8. The exploit leverages a file upload vulnerability to deploy a JSP reverse shell, achieving remote code execution (RCE).
This Metasploit module exploits a file upload vulnerability in Adobe ColdFusion 8.0.1 via FCKeditor's 'CurrentFolder' parameter, allowing arbitrary JSP file upload and execution. It leverages a multipart form data POST request to upload a payload and then triggers it via a GET request.