CVE-2011-3487

Carel PlantVisor <2.4.4 - Path Traversal

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2011-3487. PoCs published by James Fitts, Luigi Auriemma.

AI-analyzed exploit summary This exploit leverages a directory traversal vulnerability in Carel Pl@ntVisor by sending a crafted GET request with traversal sequences to retrieve arbitrary files from the server. It uses Metasploit's auxiliary module framework to automate the attack and store retrieved files as loot.

Description

Directory traversal vulnerability in CarelDataServer.exe in Carel PlantVisor 2.4.4 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in an HTTP GET request.

Exploits (2)

exploitdb WORKING POC
by James Fitts · rubywebappswindows
https://www.exploit-db.com/exploits/42706

This exploit leverages a directory traversal vulnerability in Carel Pl@ntVisor by sending a crafted GET request with traversal sequences to retrieve arbitrary files from the server. It uses Metasploit's auxiliary module framework to automate the attack and store retrieved files as loot.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Carel Pl@ntVisor <= 2.4.4
No auth needed
Prerequisites: Network access to the target server · Target server running vulnerable Carel Pl@ntVisor version
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP
by Luigi Auriemma · textwebappswindows
https://www.exploit-db.com/exploits/42707

This is a writeup describing a directory traversal vulnerability in Carel PlantVisor's web server (CarelDataServer.exe) that allows remote attackers to read arbitrary files on the system. The vulnerability is demonstrated through example URLs but no executable exploit code is provided.

Classification
Writeup 100%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Carel PlantVisor <= 2.4.4
No auth needed
Prerequisites: Network access to the target server
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/42706/
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/8384
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/69762

Scores

EPSS 0.0743
EPSS Percentile 93.6%

Details

CWE
CWE-22
Status published
Products (1)
carel/plantvisor < 2.4.4
Published Sep 16, 2011
Tracked Since Feb 18, 2026