CVE-2011-4908

CRITICAL

TinyBrowser < 1.5.13 - Unauthenticated Arbitrary File Upload via upload.php

Title source: llm

Exploitation Summary

EIP tracks 3 public exploits for CVE-2011-4908. PoCs published by Aung Khant, spinbad, including Metasploit module exploits/unix/webapp/joomla_tinybrowser.

AI-analyzed exploit summary This is a detailed vulnerability writeup for TinyBrowser 1.41.6, describing multiple issues including insecure default configurations, arbitrary folder creation, file hosting, XSS, and CSRF. No exploit code is provided, only explanations and attack vectors.

Description

TinyBrowser plugin for Joomla! before 1.5.13 allows arbitrary file upload via upload.php.

Exploits (3)

exploitdb WRITEUP VERIFIED

by Aung Khant · textwebappsphp

https://www.exploit-db.com/exploits/9296

View Code ZIP pw:eip

This is a detailed vulnerability writeup for TinyBrowser 1.41.6, describing multiple issues including insecure default configurations, arbitrary folder creation, file hosting, XSS, and CSRF. No exploit code is provided, only explanations and attack vectors.

Classification

Writeup 90%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: TinyBrowser (TinyMCE Editor File browser) 1.41.6

No auth needed

Prerequisites: Access to the TinyBrowser plugin directory

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by spinbad · rubywebappsphp

https://www.exploit-db.com/exploits/9926

View Code ZIP pw:eip

This exploit targets a file upload vulnerability in Joomla 1.5.12's TinyMCE/tinybrowser plugin, allowing arbitrary PHP code execution by uploading a malicious file and renaming it to bypass restrictions.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Joomla 1.5.12

No auth needed

Prerequisites: TinyMCE/tinybrowser plugin enabled · Access to the upload endpoint

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1204 - User Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

metasploit WORKING POC EXCELLENT

rubypocphp

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/joomla_tinybrowser.rb

View Code ZIP pw:eip

This Metasploit module exploits a file upload vulnerability in Joomla 1.5.12's TinyBrowser plugin, allowing arbitrary PHP code execution by uploading a malicious file and renaming it to bypass restrictions.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Joomla 1.5.12 with TinyBrowser plugin

No auth needed

Prerequisites: Target running Joomla 1.5.12 with TinyBrowser plugin · Network access to the target

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1505.003 - Web Shell

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Mailing List, Third Party Advisory mailing-list x_refsource_mlist

https://www.openwall.com/lists/oss-security/2011/12/25/7

Third Party Advisory x_refsource_misc

https://vulmon.com/vulnerabilitydetails?qid=CVE-2011-4908

Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/9926

Scores

CVSS v3 9.8

EPSS 0.6185

EPSS Percentile 98.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-434

Status published

Products (1)

tiny/tinybrowser < 1.5.13

Published Feb 12, 2020

Tracked Since Feb 18, 2026