CVE-2008-1059

PHP remote file inclusion vulnerability in modules/syntax_highlight.php in the Sniplets 1.1.2 and 1.2.2 plugin for WordPress allows remote attackers to execute arbitrary PHP code via a URL in the libpath parameter.

Link	Resource
http://www.securityfocus.com/bid/27985	Exploit
http://secunia.com/advisories/29099	Vendor Advisory
http://securityreason.com/securityalert/3706
https://exchange.xforce.ibmcloud.com/vulnerabilities/40829
https://www.exploit-db.com/exploits/5194
http://www.securityfocus.com/archive/1/488734/100/0/threaded

Configuration 1

cpe:2.3:a:wordpress:sniplets_plugin:1.2.2:*:*:*:*:*:*:* cpe:2.3:a:wordpress:sniplets_plugin:1.1.2:*:*:*:*:*:*:*

---

Published : 2008-02-28 07:44

Updated : 2018-10-11 08:29

---

NVD link : CVE-2008-1059

Mitre link : CVE-2008-1059

No products.

CWE-94