CVE-2006-0668

PwsPHP 1.2.3 - SQL Injection via id Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-0668.

AI-analyzed exploit summary This Perl script exploits a SQL injection vulnerability in PwsPHP <= 1.2.4 by injecting a UNION-based query to extract usernames and password hashes from the 'users' table. The exploit constructs a malicious URL and parses the response to display credentials.

Description

SQL injection vulnerability in index.php in PwsPHP 1.2.3 allows remote attackers to execute arbitrary SQL commands via the id parameter, possibly in message.php in the espace_membre module. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Exploits (1)

exploitdb WORKING POC

perlwebappsphp

https://www.exploit-db.com/exploits/1532

View Code ZIP pw:eip

This Perl script exploits a SQL injection vulnerability in PwsPHP <= 1.2.4 by injecting a UNION-based query to extract usernames and password hashes from the 'users' table. The exploit constructs a malicious URL and parses the response to display credentials.

Classification

Working Poc 95%

Attack Type

Sqli

Complexity

Trivial

Reliability

Reliable

Target: PwsPHP <= 1.2.4

No auth needed

Prerequisites: Target URL and path to index.php

MITRE ATT&CK

T1189 - Drive-by Compromise T1505 - Server Software Component

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit x_refsource_misc

http://www.securityfocus.com/bid/16567/exploit

Patch, Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/19023

Exploit vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/16567

Scores

EPSS 0.0033

EPSS Percentile 56.3%

Details

Status published

Products (1)

pwsphp/pwsphp 1.2.3

Published Feb 13, 2006

Tracked Since Feb 18, 2026