CVE-2009-1780

Frax.dk Php Recommend <= 1.3 - Unauthenticated Privilege Escalation via Password Change

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-1780. PoCs published by scriptjunkie.

AI-analyzed exploit summary The exploit demonstrates an authentication bypass, remote file inclusion (RFI), and code injection in Php Recommend <=1.3 due to insufficient input validation and improper file handling in admin.php. The vulnerable code allows arbitrary file writes and remote code execution via crafted HTTP requests.

Description

admin.php in Frax.dk Php Recommend 1.3 and earlier does not require authentication when the user password is changed, which allows remote attackers to gain administrative privileges via modified form_admin_user and form_admin_pass parameters.

Exploits (1)

exploitdb WORKING POC VERIFIED

by scriptjunkie · textwebappsphp

https://www.exploit-db.com/exploits/8658

View Code ZIP pw:eip

The exploit demonstrates an authentication bypass, remote file inclusion (RFI), and code injection in Php Recommend <=1.3 due to insufficient input validation and improper file handling in admin.php. The vulnerable code allows arbitrary file writes and remote code execution via crafted HTTP requests.

Classification

Working Poc 95%

Attack Type

Rce | Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Php Recommend <=1.3

No auth needed

Prerequisites: allow_url_fopen = On (for RFI) · magic_quotes_gpc = Off (for code injection)

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1210 - Exploitation of Remote Services

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (3)

Core 3

Core References

Permissions Required vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2009/1287

Exploit, Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/34909

Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/8658

Scores

EPSS 0.0376

EPSS Percentile 88.5%

Details

CWE

CWE-306

Status published

Products (1)

frax/php_recommend < 1.3

Published May 22, 2009

Tracked Since Feb 18, 2026