CVE-2010-4281
Pandora FMS < 3.1 - Remote Code Execution via UNC Share Pathname Bypass
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2010-4281. PoCs published by Juan Galiana Lara.
AI-analyzed exploit summary The document describes multiple vulnerabilities in Pandora FMS, including path traversal, local file inclusion (LFI), and remote file inclusion (RFI) issues. It provides proof-of-concept examples for exploiting these vulnerabilities, particularly focusing on CVE-2010-4283, which involves arbitrary PHP code injection via the `argv[1]` parameter in `pandora_diag.php`.
Description
Incomplete blacklist vulnerability in the safe_url_extraclean function in ajax.php in Pandora FMS before 3.1.1 allows remote attackers to execute arbitrary PHP code by using a page parameter containing a UNC share pathname, which bypasses the check for the : (colon) character.
Exploits (1)
The document describes multiple vulnerabilities in Pandora FMS, including path traversal, local file inclusion (LFI), and remote file inclusion (RFI) issues. It provides proof-of-concept examples for exploiting these vulnerabilities, particularly focusing on CVE-2010-4283, which involves arbitrary PHP code injection via the `argv[1]` parameter in `pandora_diag.php`.