CVE-2013-7375

PHP-Fusion <7.02.05 - SQL Injection

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2013-7375. PoCs published by waraxe.

AI-analyzed exploit summary This advisory details multiple vulnerabilities in PHP-Fusion 7.02.05, including Local File Inclusion (LFI) via insufficient sanitization of user-supplied data in 'maincore.php' and 'administration/user_fields.php', and SQL Injection (SQLi) in 'Authenticate.class.php' and 'downloads.php'. The analysis includes code snippets, attack vectors, and preconditions for exploitation.

Description

SQL injection vulnerability in includes/classes/Authenticate.class.php in PHP-Fusion 7.02.01 through 7.02.05 allows remote attackers to execute arbitrary SQL commands via the user ID in a user cookie, a different vulnerability than CVE-2013-1803.

Exploits (1)

exploitdb WRITEUP

by waraxe · textwebappsphp

https://www.exploit-db.com/exploits/24562

View Code ZIP pw:eip

This advisory details multiple vulnerabilities in PHP-Fusion 7.02.05, including Local File Inclusion (LFI) via insufficient sanitization of user-supplied data in 'maincore.php' and 'administration/user_fields.php', and SQL Injection (SQLi) in 'Authenticate.class.php' and 'downloads.php'. The analysis includes code snippets, attack vectors, and preconditions for exploitation.

Classification

Writeup 100%

Attack Type

Lfi | Sqli

Complexity

Moderate

Reliability

Reliable

Target: PHP-Fusion 7.02.05

Auth required

Prerequisites: Logged in as valid user or admin · PHP < 5.3.4 for null-byte attacks · magic_quotes_gpc=off for SQLi

MITRE ATT&CK