CVE-2006-5432

phpPowerCards 2.10 - Code Injection

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-5432. PoCs published by nuffsaid.

AI-analyzed exploit summary This exploit leverages uninitialized variables in phpPowerCards 2.10's txt.inc.php to achieve remote code execution by writing arbitrary content to a file via query string parameters. It requires register_globals to be enabled and demonstrates file write and inclusion techniques.

Description

Multiple direct static code injection vulnerabilities in db/txt.inc.php in phpPowerCards 2.10, when register_globals is enabled, allow remote attackers to create or overwrite arbitrary files via the (1) email[to], (2) email[from], (3) name[to], (4) name[from], (5) picture, (6) comment, or (7) sessionID parameter, as demonstrated by creating a new .php file that permits remote file inclusion, and then requesting this file.

Exploits (1)

exploitdb WORKING POC VERIFIED

by nuffsaid · textwebappsphp

https://www.exploit-db.com/exploits/2590

View Code ZIP pw:eip

This exploit leverages uninitialized variables in phpPowerCards 2.10's txt.inc.php to achieve remote code execution by writing arbitrary content to a file via query string parameters. It requires register_globals to be enabled and demonstrates file write and inclusion techniques.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: phpPowerCards 2.10

No auth needed

Prerequisites: register_globals enabled · target software installed

MITRE ATT&CK