CVE-2005-4724

PhpTagCool 1.0.3 - SQL Injection via X-Forwarded-For HTTP Header

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-4724. PoCs published by Megabyte.

AI-analyzed exploit summary This exploit targets PhpTagCool Zatueritor 1.0, leveraging X-Forwarded-For header manipulation to perform either a flood attack or SQL injection. The flood attack bypasses IP-based restrictions by spoofing source IPs, while the SQL injection attack allows arbitrary SQL command execution.

Description

SQL injection vulnerability in post.php in PhpTagCool 1.0.3 allows remote attackers to execute arbitrary SQL commands via the X-Forwarded-For field in an HTTP header.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Megabyte · perlwebappsphp
https://www.exploit-db.com/exploits/1211

This exploit targets PhpTagCool Zatueritor 1.0, leveraging X-Forwarded-For header manipulation to perform either a flood attack or SQL injection. The flood attack bypasses IP-based restrictions by spoofing source IPs, while the SQL injection attack allows arbitrary SQL command execution.

Classification
Working Poc 90%
Attack Type
Sqli | Dos
Complexity
Trivial
Reliability
Reliable
Target: PhpTagCool Zatueritor 1.0
No auth needed
Prerequisites: Network access to the target web application · Target application must be vulnerable to X-Forwarded-For header manipulation
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/22228
Exploit vdb-entry x_refsource_sectrack
http://securitytracker.com/alerts/2005/Sep/1014878.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/19437

Scores

EPSS 0.0112
EPSS Percentile 62.1%

Details

Status published
Published Dec 31, 2005
Tracked Since Feb 18, 2026