CVE-2006-0786

PHPKIT 1.6.1 Release 2 - Code Injection

Title source: llm

Description

Incomplete blacklist vulnerability in include.php in PHPKIT 1.6.1 Release 2 and earlier, with allow_url_fopen enabled, allows remote attackers to conduct PHP remote file include attacks via a path parameter that specifies a (1) UNC share or (2) ftps URL, which bypasses the check for "http://", "ftp://", and "https://" URLs.

Exploits (1)

exploitdb WORKING POC VERIFIED

by rgod · phpwebappsphp

https://www.exploit-db.com/exploits/1501

View Code ZIP pw:eip

References (4)

[Third Party Advisory, VDB Entry] http://securitytracker.com/id?1015640

[Exploit] http://retrogod.altervista.org/phpkit_161r2_incl_xpl.html

[Third Party Advisory] http://securityreason.com/securityalert/445

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/425196/100/0/threaded

Scores

EPSS 0.0338

EPSS Percentile 87.4%

Details

Status published

Products (1)

phpkit/phpkit < 1.6.1

Published Feb 19, 2006

Tracked Since Feb 18, 2026