CVE-2007-2556

Nuked-klaN 1.7.6 - SQL Injection via X-Forwarded-For Header

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2007-2556. PoCs published by Charles Fol, DarkFig.

AI-analyzed exploit summary This exploit targets Nuked-klaN <= 1.7.7 and <= SP4.4, leveraging SQL injection via HTTP_REFERER and X-Forwarded-For headers to extract admin credentials or spawn a shell. It uses blind SQL injection techniques and requires stats to be enabled.

Description

SQL injection vulnerability in Nuked-klaN 1.7.6 allows remote attackers to execute arbitrary SQL commands via the X-Forwarded-For (X_FORWARDED_FOR) HTTP header, as demonstrated by a request to the /nk/ URI.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Charles Fol · phpwebappsphp
https://www.exploit-db.com/exploits/6749

This exploit targets Nuked-klaN <= 1.7.7 and <= SP4.4, leveraging SQL injection via HTTP_REFERER and X-Forwarded-For headers to extract admin credentials or spawn a shell. It uses blind SQL injection techniques and requires stats to be enabled.

Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Moderate
Reliability
Reliable
Target: Nuked-klaN <= 1.7.7 and <= SP4.4
No auth needed
Prerequisites: Stats must be enabled · PHP safe_mode must be disabled for shell spawn
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by DarkFig · phpwebappsphp
https://www.exploit-db.com/exploits/3858

This exploit targets CVE-2007-2556, a SQL injection vulnerability in Nuked-klaN 1.7.6, allowing remote code execution via crafted HTTP headers and file upload manipulation. It leverages the PhpSploit class to automate the attack, extract credentials, and establish a shell.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Nuked-klaN 1.7.6
No auth needed
Prerequisites: Target must be running Nuked-klaN 1.7.6 · PHP environment to execute the exploit
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (8)

Core 8
Core References
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/2665
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/467750/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/36931
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/34116
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/23835
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/3858
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/1662
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25165

Scores

EPSS 0.0345
EPSS Percentile 87.5%

Details

Status published
Products (1)
nuked-klan/nuked-klan 1.7.6
Published May 09, 2007
Tracked Since Feb 18, 2026