CVE-2008-4072

phsBlog 0.2 - SQL Injection via sid or sql_cid Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-4072. PoCs published by Khashayar Fereidani.

AI-analyzed exploit summary This exploit targets a SQL injection vulnerability in PhsBlog v0.2, allowing an attacker to bypass authentication and extract user credentials or read arbitrary files from the server. It uses a union-based SQL injection technique to retrieve data from the database.

Description

Multiple SQL injection vulnerabilities in index.php in phsBlog 0.2 allow remote attackers to execute arbitrary SQL commands via (1) the sid parameter in a pickup action or (2) the sql_cid parameter, different vectors than CVE-2008-3588.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Khashayar Fereidani · perlwebappsphp

https://www.exploit-db.com/exploits/6431

View Code ZIP pw:eip

This exploit targets a SQL injection vulnerability in PhsBlog v0.2, allowing an attacker to bypass authentication and extract user credentials or read arbitrary files from the server. It uses a union-based SQL injection technique to retrieve data from the database.

Classification

Working Poc 95%

Attack Type

Sqli

Complexity

Trivial

Reliability

Reliable

Target: PhsBlog v0.2

No auth needed

Prerequisites: Target URL with vulnerable PhsBlog installation

MITRE ATT&CK