CVE-2006-6878

PHP-Update <2.7 - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-6878. PoCs published by undefined1_.

AI-analyzed exploit summary This exploit targets a file upload vulnerability in PHP-Update 2.7, allowing remote code execution by uploading a malicious PHP shell. The script interacts with the uploaded shell to execute arbitrary commands on the target system.

Description

admin/uploads.php in PHP-Update 2.7 and earlier allows remote attackers to gain privileges by setting the rights[7] parameter to 1 during a login action.

Exploits (1)

exploitdb WORKING POC VERIFIED

by undefined1_ · perlwebappsphp

https://www.exploit-db.com/exploits/3020

View Code ZIP pw:eip

This exploit targets a file upload vulnerability in PHP-Update 2.7, allowing remote code execution by uploading a malicious PHP shell. The script interacts with the uploaded shell to execute arbitrary commands on the target system.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: PHP-Update 2.7

No auth needed

Prerequisites: Target must be running PHP-Update 2.7 · Target must have the upload functionality accessible

MITRE ATT&CK

T1105 - Ingress Tool Transfer T1203 - Exploitation for Client Execution T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Exploit vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/21789

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/3020

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/23486

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/31126

Scores

EPSS 0.0230

EPSS Percentile 81.1%

Details

Status published

Products (1)

php-update/php-update < 2.7

Published Dec 31, 2006

Tracked Since Feb 18, 2026