CVE-2009-4426

Ignition 1.2 - Remote File Inclusion via Blog Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-4426. PoCs published by cOndemned.

AI-analyzed exploit summary This exploit demonstrates multiple local file inclusion vulnerabilities in Ignition 1.2 due to improper input validation in the 'blog' parameter. The PoC shows how an attacker can traverse directories and include arbitrary local files by manipulating the parameter with path traversal sequences.

Description

Multiple directory traversal vulnerabilities in Ignition 1.2, when magic_quotes_gpc is disabled, allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the blog parameter to (1) comment.php and (2) view.php.

Exploits (1)

exploitdb WORKING POC VERIFIED

by cOndemned · textwebappsphp

https://www.exploit-db.com/exploits/10569

View Code ZIP pw:eip

This exploit demonstrates multiple local file inclusion vulnerabilities in Ignition 1.2 due to improper input validation in the 'blog' parameter. The PoC shows how an attacker can traverse directories and include arbitrary local files by manipulating the parameter with path traversal sequences.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Ignition 1.2

No auth needed

Prerequisites: magic_quotes_gpc must be turned off · target must be running Ignition 1.2

MITRE ATT&CK