CVE-2006-4978

Walter Beschmout PhpQuiz <1.2 - SQL Injection

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-4978. PoCs published by simo64.

AI-analyzed exploit summary This Perl script exploits CVE-2006-4865 in PHPQuiz <= v1.2, demonstrating SQL injection to extract admin credentials and arbitrary file upload for remote code execution. It automates the attack by injecting SQL queries and uploading a PHP shell.

Description

Multiple SQL injection vulnerabilities in Walter Beschmout PhpQuiz 1.2 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the univers parameter in score.php and (2) the quiz_id parameter in home.php, accessed through the front/ URI.

Exploits (1)

exploitdb WORKING POC VERIFIED

by simo64 · perlwebappsphp

https://www.exploit-db.com/exploits/2376

View Code ZIP pw:eip

This Perl script exploits CVE-2006-4865 in PHPQuiz <= v1.2, demonstrating SQL injection to extract admin credentials and arbitrary file upload for remote code execution. It automates the attack by injecting SQL queries and uploading a PHP shell.

Classification

Working Poc 100%

Attack Type

Rce | Sqli

Complexity

Moderate

Reliability

Reliable

Target: PHPQuiz <= v1.2

No auth needed

Prerequisites: Network access to the target · PHPQuiz installation with default configuration

MITRE ATT&CK