CVE-2011-4715

Koha < 3.4.7 and 3.6 < 3.6.1 and LibLime Koha < 4.2 - Path Traversal via KohaOpacLanguage Cookie

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2011-4715. PoCs published by Akin Tosunlar.

AI-analyzed exploit summary This exploit demonstrates a Local File Inclusion (LFI) vulnerability in Koha Opac versions prior to 4.2. The attack manipulates the 'KohaOpacLanguage' cookie to include arbitrary files (e.g., /etc/passwd) via directory traversal sequences.

Description

Directory traversal vulnerability in cgi-bin/koha/mainpage.pl in Koha 3.4 before 3.4.7 and 3.6 before 3.6.1, and LibLime Koha 4.2 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the KohaOpacLanguage cookie to cgi-bin/opac/opac-main.pl, related to Output.pm.

Exploits (1)

exploitdb WORKING POC

by Akin Tosunlar · textwebappscgi

https://www.exploit-db.com/exploits/18153

View Code ZIP pw:eip

This exploit demonstrates a Local File Inclusion (LFI) vulnerability in Koha Opac versions prior to 4.2. The attack manipulates the 'KohaOpacLanguage' cookie to include arbitrary files (e.g., /etc/passwd) via directory traversal sequences.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Koha Opac <4.2

No auth needed

Prerequisites: Target running Koha Opac <4.2 · Access to the application's web interface

MITRE ATT&CK