CVE-2014-2996

EIP tracks 1 public exploit for CVE-2014-2996. PoCs published by High-Tech Bridge SA.

AI-analyzed exploit summary The advisory details a CSRF vulnerability in XCloner Standalone 3.5, allowing attackers to change administrator passwords or execute arbitrary system commands via crafted HTTP requests. Exploitation requires tricking an authenticated admin into visiting a malicious page.

XCloner Standalone 3.5 and earlier, when enable_db_backup and sql_mem are enabled, allows remote authenticated administrators to execute arbitrary commands via shell metacharacters in the dbbackup_comp parameter in a generate action to index2.php. NOTE: it is not clear whether this issue crosses privilege boundaries, since administrators might already have the privileges to execute code. NOTE: this can be leveraged by remote attackers using CVE-2014-2579.