CVE-2007-5822

Ben Ng Scribe <0.2 - Code Injection

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-5822. PoCs published by KiNgOfThEwOrLd.

AI-analyzed exploit summary This exploit leverages a file inclusion vulnerability in Scribe <= 0.2, allowing remote PHP code execution by injecting malicious PHP code into the username field during user registration. The resulting file is saved in the /regged/ directory and executed when accessed.

Description

Direct static code injection vulnerability in forum.php in Ben Ng Scribe 0.2 and earlier allows remote attackers to inject arbitrary PHP code into a certain file in regged/ via the username parameter in a Register action, possibly related to the register function in forumfunctions.php.

Exploits (1)

exploitdb WORKING POC VERIFIED

by KiNgOfThEwOrLd · textwebappsphp

https://www.exploit-db.com/exploits/4596

View Code ZIP pw:eip

This exploit leverages a file inclusion vulnerability in Scribe <= 0.2, allowing remote PHP code execution by injecting malicious PHP code into the username field during user registration. The resulting file is saved in the /regged/ directory and executed when accessed.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Scribe <= 0.2

No auth needed

Prerequisites: Access to the registration form · Target running Scribe <= 0.2

MITRE ATT&CK