CVE-2006-1243

Simple PHP Blog <0.4.7.1 - Path Traversal

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-1243. PoCs published by rgod.

AI-analyzed exploit summary This exploit leverages a local file inclusion vulnerability in Simple PHP Blog <= 0.4.7.1 by injecting PHP code into Apache log files and then including them via the 'blog_language' parameter. It requires magic_quotes_gpc to be off and targets the 'install05.php' script.

Description

Directory traversal vulnerability in install05.php in Simple PHP Blog (SPB) 0.4.7.1 and earlier allows remote attackers to include and execute arbitrary local files via directory traversal sequences and a NUL (%00) character in the blog_language parameter, as demonstrated by injecting PHP sequences into an Apache access_log file, which is then included using install05.php.

Exploits (1)

exploitdb WORKING POC VERIFIED
by rgod · perlwebappsphp
https://www.exploit-db.com/exploits/1581

This exploit leverages a local file inclusion vulnerability in Simple PHP Blog <= 0.4.7.1 by injecting PHP code into Apache log files and then including them via the 'blog_language' parameter. It requires magic_quotes_gpc to be off and targets the 'install05.php' script.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Simple PHP Blog <= 0.4.7.1
No auth needed
Prerequisites: magic_quotes_gpc = Off · Apache log write permissions · Access to 'install05.php'
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (7)

Core 7
Core References
Third Party Advisory mailing-list x_refsource_vim
http://www.attrition.org/pipermail/vim/2006-November/001138.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/25322
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/19270
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/1581
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/17102
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2006/1007

Scores

EPSS 0.0953
EPSS Percentile 94.8%

Details

Status published
Products (5)
alexander_palmo/simple_php_blog 0.4.0
alexander_palmo/simple_php_blog 0.4.5
alexander_palmo/simple_php_blog 0.4.6
alexander_palmo/simple_php_blog 0.4.7
alexander_palmo/simple_php_blog < 0.4.7.1
Published Mar 15, 2006
Tracked Since Feb 18, 2026