CVE-2009-4884

phpCommunity 2 2.1.8 - SQL Injection via forum_id or topic_id Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-4884. PoCs published by Salvatore Fresta.

AI-analyzed exploit summary The exploit demonstrates multiple vulnerabilities in phpCommunity 2.1.8, including SQL injection (with payloads to extract user credentials), directory traversal (to read arbitrary files), and reflected XSS. The provided URLs are functional examples of exploiting these flaws.

Description

Multiple SQL injection vulnerabilities in phpCommunity 2 2.1.8, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via (1) the forum_id parameter in a forum action to index.php, (2) the topic_id parameter in a forum action to index.php, (3) the wert parameter in an id search action to index.php, (4) the wert parameter in a nick search action to index.php, or (5) the wert parameter in a forum search action to index.php, related to class_forum.php and class_search.php.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Salvatore Fresta · textwebappsphp

https://www.exploit-db.com/exploits/8185

View Code ZIP pw:eip

The exploit demonstrates multiple vulnerabilities in phpCommunity 2.1.8, including SQL injection (with payloads to extract user credentials), directory traversal (to read arbitrary files), and reflected XSS. The provided URLs are functional examples of exploiting these flaws.

Classification

Working Poc 95%

Attack Type

Sqli | Info Leak | Xss

Complexity

Trivial

Reliability

Reliable

Target: phpCommunity 2.1.8

No auth needed

Prerequisites: magic_quotes_gpc = off for SQLi

MITRE ATT&CK

T1189 - Drive-by Compromise T1059 - Command and Scripting Interpreter T1005 - Data from Local System

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (3)

Core 3

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/49151

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/501588/100/0/threaded

Exploit, Third Party Advisory exploit x_refsource_exploit-db

http://www.exploit-db.com/exploits/8185

Scores

EPSS 0.0110

EPSS Percentile 61.3%

Details

CWE

CWE-89

Status published

Products (1)

bernhard_frohlich/phpcom 2.1.8

Published Jun 11, 2010

Tracked Since Feb 18, 2026