This exploit demonstrates a Remote File Inclusion (RFI) vulnerability in ActiveKB 2005 1.0.0, allowing an attacker to include and execute arbitrary remote files via the 'panelPHPFile' parameter in 'class.template.php'.
Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target:ActiveKB 2005 1.0.0
No auth needed
Prerequisites:Access to the target server's web interface · Ability to host a malicious file on a remote server