CVE-2023-24078

HIGH

FuguHub < 8.1 - Remote Code Execution via CMS Docs Component

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 4 public exploits for CVE-2023-24078. PoCs published by redfire359, overgrowncarrot1, rio128128.

AI-analyzed exploit summary This exploit demonstrates a remote code execution vulnerability in FuguHub 8.1 by leveraging an unauthenticated user creation flaw and file upload functionality to deploy a Lua-based reverse shell. The script automates account creation, login, and payload delivery via a crafted LSP file.

Description

Real Time Logic FuguHub v8.1 and earlier was discovered to contain a remote code execution (RCE) vulnerability via the component /FuguHub/cmsdocs/.

Exploits (4)

exploitdb WORKING POC
by redfire359 · pythonwebappsmultiple
https://www.exploit-db.com/exploits/51550

This exploit demonstrates a remote code execution vulnerability in FuguHub 8.1 by leveraging an unauthenticated user creation flaw and file upload functionality to deploy a Lua-based reverse shell. The script automates account creation, login, and payload delivery via a crafted LSP file.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: FuguHub 8.1
No auth needed
Prerequisites: Network access to target · Listener setup for reverse shell
devstral-2 · analyzed Feb 18, 2026 Full analysis →
nomisec WORKING POC 7 stars
by overgrowncarrot1 · poc
https://github.com/overgrowncarrot1/CVE-2023-24078

This repository contains a functional exploit for CVE-2023-24078, targeting FuguHub/BarracudaDrive. The exploit automates the creation of an admin user, logs in, and deploys a Lua-based reverse shell via a crafted LSP script.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: FuguHub/BarracudaDrive
No auth needed
Prerequisites: Target IP and port · Listener setup for reverse shell · Selenium and Firefox for automation
devstral-2 · analyzed Feb 18, 2026 Full analysis →
nomisec WORKING POC 1 stars
by rio128128 · poc
https://github.com/rio128128/CVE-2023-24078

This PoC exploits CVE-2023-24078 in BarracudaDrive/FuguHub by creating an admin user, logging in, and uploading a malicious Lua script to achieve remote code execution via a reverse shell. It uses Selenium for browser automation and requires manual interaction for the final payload execution.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: BarracudaDrive/FuguHub
No auth needed
Prerequisites: Target server running BarracudaDrive/FuguHub · Network access to the target · Selenium and Firefox installed
devstral-2 · analyzed Feb 18, 2026 Full analysis →
nomisec WORKING POC
by ag-rodriguez · poc
https://github.com/ag-rodriguez/CVE-2023-24078

This repository contains a functional exploit PoC for CVE-2023-24078, which targets Barracuda Drive. The exploit registers an admin account, logs in, uploads a malicious LSP file, and executes it to achieve remote code execution via a reverse shell.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Barracuda Drive
No auth needed
Prerequisites: Network access to the target Barracuda Drive instance · Python environment with requests library
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (2)

Core 2

Scores

CVSS v3 8.8
EPSS 0.5324
EPSS Percentile 98.8%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact total

Details

CWE
CWE-94
Status published
Products (1)
realtimelogic/fuguhub < 8.1
Published Feb 17, 2023
Tracked Since Feb 18, 2026