CVE-2012-2939

Travelon Express 6.2.2 - Authenticated Arbitrary File Upload via airline-edit.php hotel-image-add.php or hotel-add.php

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2012-2939. PoCs published by Vulnerability-Lab.

AI-analyzed exploit summary The exploit demonstrates multiple vulnerabilities in Travelon Express CMS v6.2.2, including SQL injection, persistent XSS, and arbitrary file upload. It provides detailed PoC examples for each vulnerability, including specific endpoints and payloads.

Description

Multiple unrestricted file upload vulnerabilities in Travelon Express 6.2.2 allow remote authenticated users to execute arbitrary code by uploading a file with an executable extension using (1) airline-edit.php, (2) hotel-image-add.php, or (3) hotel-add.php.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Vulnerability-Lab · textwebappsphp

https://www.exploit-db.com/exploits/18871

View Code ZIP pw:eip

The exploit demonstrates multiple vulnerabilities in Travelon Express CMS v6.2.2, including SQL injection, persistent XSS, and arbitrary file upload. It provides detailed PoC examples for each vulnerability, including specific endpoints and payloads.

Classification

Working Poc 95%

Attack Type

Sqli | Xss | Other

Complexity

Trivial

Reliability

Reliable

Target: Travelon Express CMS v6.2.2

Auth required

Prerequisites: Access to vulnerable endpoints · Privileged user account for some exploits

MITRE ATT&CK