CVE-2009-4089

telepark.wiki <2.4.23 - Auth Bypass

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2009-4089. PoCs published by Abysssec, corelanc0d3r.

AI-analyzed exploit summary This advisory details multiple vulnerabilities in Telepark Wiki <= v2.4.23, including remote command execution via file upload, local file inclusion leading to admin password disclosure, cross-site scripting, and unauthorized page/comment deletion. It provides technical analysis, vulnerable code snippets, and patch details.

Description

telepark.wiki 2.4.23 and earlier allows remote attackers to bypass authorization and (1) delete arbitrary pages via a modified pageID parameter to ajax/deletePage.php or (2) delete arbitrary comments via a modified pageID parameter to ajax/deleteComment.php.

Exploits (2)

exploitdb WRITEUP VERIFIED
by Abysssec · textwebappsphp
https://www.exploit-db.com/exploits/10101

This advisory details multiple vulnerabilities in Telepark Wiki <= v2.4.23, including remote command execution via file upload, local file inclusion leading to admin password disclosure, cross-site scripting, and unauthorized page/comment deletion. It provides technical analysis, vulnerable code snippets, and patch details.

Classification
Writeup 100%
Attack Type
Rce | Info Leak | Xss | Auth Bypass
Complexity
Moderate
Reliability
Reliable
Target: Telepark Wiki <= v2.4.23
No auth needed
Prerequisites: Access to vulnerable Telepark Wiki instance · Network connectivity to target
devstral-2 · analyzed Feb 18, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by corelanc0d3r · perllocalwindows
https://www.exploit-db.com/exploits/9483

This exploit targets a buffer overflow vulnerability in ProShow Gold 4.0 via a maliciously crafted .psh file. It leverages SEH overwrites and includes a Metasploit-generated shellcode payload to execute arbitrary code (e.g., calc.exe).

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Photodex ProShow Gold 4.0
No auth needed
Prerequisites: Victim must open the malicious .psh file in ProShow Gold 4.0
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (7)

Core 7
Core References
Exploit, Third Party Advisory exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/9483
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/60215
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/37391
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/54329
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/60214

Scores

EPSS 0.0659
EPSS Percentile 93.0%

Details

CWE
CWE-287
Status published
Products (1)
telepark/telepark.wiki 2.4.23
Published Nov 29, 2009
Tracked Since Feb 18, 2026