PHP Code Execution in phpBook

Summary

Vulnerability
PHP Code Execution in phpBook
Discovered
2005.12.29
Last Update
0 n/a
ID
EV0006
CVE
CVE-2006-0075
Risk Level
high
Type
PHP Code Execution
Status
Unpatched
Vendor
n/a
Vulnerable Software
phpBook (http://sourceforge.net/projects/phpbook/)
Version
1.3.2 and earlier
PoC/Exploit
Available
Solution
Not available
Discovered by
Aliaksandr Hartsuyeu (eVuln.com)

Description

PHP Code Execution found in phpBook (http://sourceforge.net/projects/phpbook/) script.

Vulnerable scripts: index.php

All posted data stores in PHP-file.

Variable $mail isn't properly sanitized and may contain any PHP Code.

PoC/Exploit

Posting new message.

E-mail field: qwe@<? anyphpcode(); ?>.com

Solution.

Solution for "PHP Code Execution in phpBook" is not available. Check vendor's website for updates.