CVE-2006-0074

PHPenpals < 1.1 - SQL Injection via profile.php personalID Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2006-0074. PoCs published by Br0ly, Aliaksandr Hartsuyeu.

AI-analyzed exploit summary This Perl script exploits a SQL injection vulnerability in Phpenpals <= 1.1, allowing an attacker to retrieve the admin password or read arbitrary files from the server. It uses union-based SQL injection to extract data via the 'mail.php' endpoint.

Description

SQL injection vulnerability in profile.php in PHPenpals allows remote attackers to execute arbitrary SQL commands via the personalID parameter. NOTE: it was later reported that 1.1 and earlier are affected.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Br0ly · perlwebappsphp
https://www.exploit-db.com/exploits/8706

This Perl script exploits a SQL injection vulnerability in Phpenpals <= 1.1, allowing an attacker to retrieve the admin password or read arbitrary files from the server. It uses union-based SQL injection to extract data via the 'mail.php' endpoint.

Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: Phpenpals <= 1.1
No auth needed
Prerequisites: Target must be running Phpenpals <= 1.1 · SQL injection endpoint must be accessible
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Aliaksandr Hartsuyeu · textwebappsphp
https://www.exploit-db.com/exploits/27002

This exploit demonstrates an SQL injection vulnerability in Jevontech PHPenpals by injecting a UNION-based query to retrieve the admin password from the database. The attack leverages unsanitized input in the 'personalID' parameter.

Classification
Working Poc 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: Jevontech PHPenpals
No auth needed
Prerequisites: Access to the vulnerable profile.php endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (7)

Core 7
Core References
Various Sources x_refsource_misc
http://evuln.com/vulns/5/summary.html
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/420690/100/0/threaded
Exploit vdb-entry x_refsource_osvdb
http://www.osvdb.org/22150
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/8706
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/18269
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/16109
Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2006/0005

Scores

EPSS 0.0249
EPSS Percentile 82.5%

Details

CWE
CWE-89
Status published
Products (1)
jevontech/phpenpals < 1.1
Published Jan 04, 2006
Tracked Since Feb 18, 2026