CVE-2010-1537

phpCDB < 1.0 - Remote File Inclusion via Lang Global Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-1537. PoCs published by cr4wl3r.

AI-analyzed exploit summary This exploit demonstrates a Local File Include (LFI) vulnerability in phpCDB <= 1.0 by manipulating the 'lang_global' parameter in multiple scripts. The null byte (%00) is used to terminate the file path, allowing arbitrary file inclusion.

Description

Multiple directory traversal vulnerabilities in phpCDB 1.0 and earlier allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang_global parameter to (1) firstvisit.php, (2) newfolder.php, (3) showfolders.php, (4) newlang.php, (5) showinnerfolder.php, (6) writecode.php, and (7) showcode.php.

Exploits (1)

exploitdb WORKING POC VERIFIED
by cr4wl3r · textwebappsphp
https://www.exploit-db.com/exploits/11585

This exploit demonstrates a Local File Include (LFI) vulnerability in phpCDB <= 1.0 by manipulating the 'lang_global' parameter in multiple scripts. The null byte (%00) is used to terminate the file path, allowing arbitrary file inclusion.

Classification
Working Poc 90%
Attack Type
Lfi
Complexity
Trivial
Reliability
Reliable
Target: phpCDB <= 1.0
No auth needed
Prerequisites: Access to the target application's web interface
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/56579
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/38507
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/11585

Scores

EPSS 0.0229
EPSS Percentile 80.9%

Details

CWE
CWE-22
Status published
Products (1)
francois_bissonnette/phpcdb < 1.0
Published Apr 26, 2010
Tracked Since Feb 18, 2026