CVE-2015-5079

HIGH

BlackCat CMS < 1.1.2 - Path Traversal via widgets/logs.php dl Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2015-5079. PoCs published by d4rkr0id.

AI-analyzed exploit summary This exploit demonstrates an arbitrary file download vulnerability in BlackCat CMS v1.1.1 due to insufficient path sanitization in logs.php. The PoC uses a curl command to download sensitive files like config.php by manipulating the 'dl' parameter with directory traversal sequences.

Description

Directory traversal vulnerability in widgets/logs.php in BlackCat CMS before 1.1.2 allows remote attackers to read arbitrary files via a .. (dot dot) in the dl parameter.

Exploits (1)

exploitdb WORKING POC
by d4rkr0id · textwebappsphp
https://www.exploit-db.com/exploits/37304

This exploit demonstrates an arbitrary file download vulnerability in BlackCat CMS v1.1.1 due to insufficient path sanitization in logs.php. The PoC uses a curl command to download sensitive files like config.php by manipulating the 'dl' parameter with directory traversal sequences.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: BlackCat CMS v1.1.1
No auth needed
Prerequisites: Network access to the target web application
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
http://packetstormsecurity.com/files/132541/BlackCat-CMS-1.1.1-Path-Traversal.html
Exploit, Third Party Advisory x_refsource_misc
https://www.htbridge.com/advisory/HTB23263
Exploit, Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/535900/100/0/threaded

Scores

CVSS v3 7.5
EPSS 0.1765
EPSS Percentile 96.8%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-22
Status published
Products (1)
blackcat-cms/blackcat_cms < 1.1.2
Published Feb 28, 2018
Tracked Since Feb 18, 2026