CVE-2015-6567

HIGH

Wolf CMS < 0.8.3.1 - Authenticated Arbitrary File Upload and PHP Code Execution via File Manager

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2015-6567. PoCs published by s0nk3y, Narendra Bhati.

AI-analyzed exploit summary This Metasploit module exploits an arbitrary PHP file upload vulnerability in WolfCMS 0.8.2 by authenticating as an admin, bypassing CSRF protection, and uploading a malicious PHP payload to achieve remote code execution.

Description

Wolf CMS before 0.8.3.1 allows unrestricted file upload and PHP Code Execution because admin/plugin/file_manager/browse/ (aka the filemanager) does not validate the parameter "filename" properly. Exploitation requires a registered user who has access to upload functionality.

Exploits (2)

exploitdb WORKING POC

by s0nk3y · rubyremotephp

https://www.exploit-db.com/exploits/40004

View Code ZIP pw:eip

This Metasploit module exploits an arbitrary PHP file upload vulnerability in WolfCMS 0.8.2 by authenticating as an admin, bypassing CSRF protection, and uploading a malicious PHP payload to achieve remote code execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: WolfCMS <= 0.8.2

Auth required

Prerequisites: Valid admin credentials · Access to the admin login panel

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1505.003 - Web Shell

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WRITEUP

by Narendra Bhati · textwebappsphp

https://www.exploit-db.com/exploits/38000

View Code ZIP pw:eip

This is a writeup describing an arbitrary file upload vulnerability in Wolf CMS 0.8.2, leading to remote command execution. It outlines the steps to exploit the vulnerability but does not include actual exploit code.

Classification

Writeup 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Wolf CMS 0.8.2

Auth required

Prerequisites: Access to a registered user account with upload permissions

MITRE ATT&CK