CVE-2001-0527

DCScripts DCForum <=2000 - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2001-0527. PoCs published by Franklin DeMatto.

AI-analyzed exploit summary This exploit targets a vulnerability in DCForum where improper input validation allows an attacker to inject malicious data into the user registration process, enabling privilege escalation to admin and potential remote command execution. The PoC demonstrates this by crafting a malicious 'Lastname' field with URL-encoded pipes and newlines to corrupt user records.

Description

DCScripts DCForum versions 2000 and earlier allow a remote attacker to gain additional privileges by inserting pipe symbols (|) and newlines into the last name in the registration form, which will create an extra entry in the registration database.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Franklin DeMatto · perlremotecgi

https://www.exploit-db.com/exploits/20849

View Code ZIP pw:eip

This exploit targets a vulnerability in DCForum where improper input validation allows an attacker to inject malicious data into the user registration process, enabling privilege escalation to admin and potential remote command execution. The PoC demonstrates this by crafting a malicious 'Lastname' field with URL-encoded pipes and newlines to corrupt user records.

Classification

Working Poc 95%

Attack Type

Auth Bypass

Complexity

Moderate

Reliability

Reliable

Target: DCForum (versions prior to the fix for CVE-2001-0527)

No auth needed

Prerequisites: Target must have DCForum installed with vulnerable version · Registration functionality must be accessible

MITRE ATT&CK