PHP Code Execution in phpBook

Summary

Vulnerability: PHP Code Execution in phpBook
Discovered: 2005.12.29
Last Update: 0 n/a
ID: EV0006
CVE: CVE-2006-0075
Risk Level: high
Type: PHP Code Execution
Status: Unpatched
Vendor: n/a
Vulnerable Software: phpBook (http://sourceforge.net/projects/phpbook/)
Version: 1.3.2 and earlier
PoC/Exploit: Available
Solution: Not available
Discovered by: Aliaksandr Hartsuyeu (eVuln.com)

Description

PHP Code Execution found in phpBook (http://sourceforge.net/projects/phpbook/) script.

Vulnerable scripts: index.php

All posted data stores in PHP-file.

Variable $mail isn't properly sanitized and may contain any PHP Code.

PoC/Exploit

Posting new message.

E-mail field: qwe@<? anyphpcode(); ?>.com

Solution.

Solution for "PHP Code Execution in phpBook" is not available. Check vendor's website for updates.