CVE-2010-5281

CMScout IBrowser TinyMCE Plugin <1.4.1 - Path Traversal

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-5281. PoCs published by LiquidWorm.

AI-analyzed exploit summary This exploit demonstrates a Local File Inclusion (LFI) vulnerability in iBrowser Plugin v1.4.1 and earlier. The vulnerability arises from improper input validation of the 'lang' parameter in multiple PHP scripts, allowing directory traversal attacks and file disclosure via URL-encoded NULL bytes.

Description

Directory traversal vulnerability in ibrowser.php in the CMScout 2.09 IBrowser TinyMCE Plugin 1.4.1, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary files via a .. (dot dot) in the lang parameter. NOTE: some of these details are obtained from third party information.

Exploits (1)

exploitdb WORKING POC

by LiquidWorm · textwebappsphp

https://www.exploit-db.com/exploits/17850

View Code ZIP pw:eip

This exploit demonstrates a Local File Inclusion (LFI) vulnerability in iBrowser Plugin v1.4.1 and earlier. The vulnerability arises from improper input validation of the 'lang' parameter in multiple PHP scripts, allowing directory traversal attacks and file disclosure via URL-encoded NULL bytes.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: iBrowser Plugin <= 1.4.1 Build 10182009

No auth needed

Prerequisites: Access to the vulnerable web application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5

Core References

Various Sources x_refsource_misc

http://www.johnleitch.net/Vulnerabilities/CMScout.2.09.IBrowser.TinyMCE.Plugin.Local.File.Inclusion/33

Exploit, Third Party Advisory x_refsource_misc

http://packetstormsecurity.org/1009-exploits/cmscout209-lfi.txt

Exploit vdb-entry x_refsource_osvdb

http://www.osvdb.org/68247

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/62066

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/41634

Scores

EPSS 0.0229

EPSS Percentile 80.9%

Details

CWE

CWE-22

Status published

Products (1)

net4visions/ibrowser 1.4.1

Published Nov 26, 2012

Tracked Since Feb 18, 2026