CVE-2014-1683

SkyBlueCanvas CMS <1.1 r248-04 - RCE

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2014-1683. PoCs published by Metasploit, Scott Parish, including Metasploit module exploits/unix/webapp/skybluecanvas_exec.

AI-analyzed exploit summary This Metasploit module exploits a command injection vulnerability in SkyBlueCanvas CMS by injecting a payload into the 'name' parameter of a POST request. The exploit targets versions 1.1 r248-03 and below, achieving remote code execution.

Description

The bashMail function in cms/data/skins/techjunkie/fragments/contacts/functions.php in SkyBlueCanvas CMS before 1.1 r248-04, when the pid parameter is 4, allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) name, (2) email, (3) subject, or (4) message parameter to index.php.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotelinux
https://www.exploit-db.com/exploits/31432

This Metasploit module exploits a command injection vulnerability in SkyBlueCanvas CMS by injecting a payload into the 'name' parameter of a POST request. The exploit targets versions 1.1 r248-03 and below, achieving remote code execution.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: SkyBlueCanvas CMS 1.1 r248-03 and below
No auth needed
Prerequisites: Network access to the target · SkyBlueCanvas CMS installation with vulnerable version
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Scott Parish · textwebappsphp
https://www.exploit-db.com/exploits/31183

This exploit demonstrates a remote command injection vulnerability in SkyBlueCanvas CMS 1.1 r248-03. The PoC uses a crafted HTML form to inject a reverse shell payload via the 'name' parameter, exploiting unsanitized POST parameters in the contact form.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: SkyBlueCanvas CMS 1.1 r248-03
No auth needed
Prerequisites: Network access to the target web server · Contact form enabled on the target
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC EXCELLENT
by Scott Parish · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/skybluecanvas_exec.rb

This Metasploit module exploits a command injection vulnerability in SkyBlueCanvas CMS by injecting a payload into the 'name' parameter of a POST request. The exploit targets versions 1.1 r248-03 and below, achieving remote code execution.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: SkyBlueCanvas CMS 1.1 r248-03 and below
No auth needed
Prerequisites: Network access to the target · SkyBlueCanvas CMS installation with vulnerable version
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (7)

Core 7
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/65129
Mailing List mailing-list x_refsource_fulldisc
http://seclists.org/fulldisclosure/2014/Jan/159
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/90670
Exploit, Third Party Advisory exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/31183
Exploit, Third Party Advisory exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/31432
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/56646

Scores

EPSS 0.3141
EPSS Percentile 98.0%

Details

CWE
CWE-134
Status published
Products (1)
skybluecanvas/skybluecanvas < 1.1_r248-03
Published Jan 29, 2014
Tracked Since Feb 18, 2026