header-logo
Suggest Exploit
vendor:
phpBook
by:
Unknown
7.5
CVSS
HIGH
Arbitrary PHP Code Injection
Unknown
CWE
Product Name: phpBook
Affected Version From: Unknown
Affected Version To: Unknown
Patch Exists: NO
Related CWE: Unknown
CPE: Unknown
Metasploit:
Other Scripts:
Platforms Tested: Unknown
Unknown

Arbitrary PHP Code Injection in phpBook

phpBook is prone to a vulnerability that may let remote attackers inject arbitrary PHP code into the application. This code may then be executed by visiting pages that include the injected code.

Mitigation:

Unknown
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/16106/info

phpBook is prone to a vulnerability that may let remote attackers inject arbitrary PHP code into the application. This code may then be executed by visiting pages that include the injected code. 

E-mail field: qwe@<? anyphpcode(); ?>.com