This exploit demonstrates a Remote File Inclusion (RFI) vulnerability in Community Translate by manipulating the 'rd' parameter in the 'include/functions.php' file to include arbitrary remote code. The vulnerability arises from insecure file inclusion practices in the PHP code.
Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target:Community Translate (version not specified)
No auth needed
Prerequisites:Network access to the target application · Ability to host malicious code on a remote server