CVE-2006-1747

EPSS 3.9%

PHP remote file inclusion vulnerability in Virtual War (VWar) 1.5.0 allows remote attackers to execute arbitrary PHP code via a URL in the vwar_root parameter to (1) admin/admin.php, (2) war.php, (3) stats.php, (4) news.php, (5) joinus.php, (6) challenge.php, (7) calendar.php, (8) member.php, (9) popup.php, and other unspecified scripts in the admin folder. NOTE: these are different attack vectors than CVE-2006-1636 and CVE-2006-1503.

Affected products

n/a · n/a

public PoCs found — 8

cve_referencewww.exploit-db.com/exploits/1658unverified exploitdbwww.exploit-db.com/exploits/28352unverified exploitdbwww.exploit-db.com/exploits/28353unverified exploitdbwww.exploit-db.com/exploits/28354unverified exploitdbwww.exploit-db.com/exploits/28351unverified exploitdbwww.exploit-db.com/exploits/28355unverified exploitdbwww.exploit-db.com/exploits/28356unverified exploitdbwww.exploit-db.com/exploits/28350unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://liz0zim.no-ip.org/vwar.txt http://marc.info/?l=bugtraq&m=115497619330609&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/28265 https://www.exploit-db.com/exploits/1658 http://www.blogcu.com/Liz0ziM/431925/http://www.securityfocus.com/archive/1/430389/100/0/threaded http://www.securityfocus.com/bid/17443 http://www.securityfocus.com/bid/19387