CVE-2010-4282

NUCLEI

Pandora FMS < 3.1 - Remote File Inclusion and Arbitrary File Manipulation via Page Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-4282. PoCs published by Juan Galiana Lara. A Nuclei detection template is also available.

AI-analyzed exploit summary The document describes multiple vulnerabilities in Pandora FMS, including path traversal, local file inclusion (LFI), and remote file inclusion (RFI) issues. It provides proof-of-concept examples for exploiting these vulnerabilities, particularly focusing on CVE-2010-4283, which involves arbitrary PHP code injection via the `argv[1]` parameter in `pandora_diag.php`.

Description

Multiple directory traversal vulnerabilities in Pandora FMS before 3.1.1 allow remote attackers to include and execute arbitrary local files via (1) the page parameter to ajax.php or (2) the id parameter to general/pandora_help.php, and allow remote attackers to include and execute, create, modify, or delete arbitrary local files via (3) the layout parameter to operation/agentes/networkmap.php.

Exploits (1)

exploitdb WRITEUP

by Juan Galiana Lara · textwebappsphp

https://www.exploit-db.com/exploits/15643

View Code ZIP pw:eip

The document describes multiple vulnerabilities in Pandora FMS, including path traversal, local file inclusion (LFI), and remote file inclusion (RFI) issues. It provides proof-of-concept examples for exploiting these vulnerabilities, particularly focusing on CVE-2010-4283, which involves arbitrary PHP code injection via the `argv[1]` parameter in `pandora_diag.php`.

Classification

Writeup 100%

Attack Type

Rce | Info Leak

Complexity

Moderate

Reliability

Reliable

Target: Pandora FMS versions prior to and including 3.1

No auth needed

Prerequisites: register_globals set to On for CVE-2010-4283 · Windows environment for certain path traversal exploits

MITRE ATT&CK