CVE-2006-3772

PHP-Post 0.21 and 1.0 - Unauthenticated Privilege Escalation via Login Cookie Manipulation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-3772. PoCs published by FarhadKey.

AI-analyzed exploit summary This exploit demonstrates a privilege escalation vulnerability in PHP-Post 1.0 by modifying cookie values to escalate from a regular user to an administrator without requiring a password.

Description

PHP-Post 0.21 and 1.0, and possibly earlier versions, when auto-login is enabled, allows remote attackers to bypass security restrictions and obtain administrative privileges by modifying the logincookie[user] setting in the login cookie.

Exploits (1)

exploitdb WORKING POC VERIFIED

by FarhadKey · textwebappsphp

https://www.exploit-db.com/exploits/2036

View Code ZIP pw:eip

This exploit demonstrates a privilege escalation vulnerability in PHP-Post 1.0 by modifying cookie values to escalate from a regular user to an administrator without requiring a password.

Classification

Working Poc 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: PHP-Post 0.21 and 1.0

No auth needed

Prerequisites: Auto login feature enabled · Valid user session cookie

MITRE ATT&CK