CVE-2006-0852

devscripts admbook < 1.2.2 - Remote Code Execution via X-Forwarded-For Header Injection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-0852. PoCs published by rgod.

AI-analyzed exploit summary This exploit targets a command injection vulnerability in Admbook <=1.2.2 via the X-Forwarded-For header. It injects a PHP payload into the header, which is then executed by accessing a specific URL with a command parameter.

Description

Direct static code injection vulnerability in write.php in Admbook 1.2.2 and earlier allows remote attackers to execute arbitrary PHP code via the X-Forwarded-For HTTP header field, which is inserted into content-data.php.

Exploits (1)

exploitdb WORKING POC VERIFIED
by rgod · perlwebappsphp
https://www.exploit-db.com/exploits/1512

This exploit targets a command injection vulnerability in Admbook <=1.2.2 via the X-Forwarded-For header. It injects a PHP payload into the header, which is then executed by accessing a specific URL with a command parameter.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Admbook <=1.2.2
No auth needed
Prerequisites: Target server running Admbook <=1.2.2 · Network access to the target server
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/24771
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/16753
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/18930
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2006/0663
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/1512

Scores

EPSS 0.0273
EPSS Percentile 84.1%

Details

Status published
Products (1)
devscripts/admbook < 1.2.2
Published Feb 23, 2006
Tracked Since Feb 18, 2026