Lucene search

PRIOn knowledge basePRION:CVE-2008-1059

HistoryFeb 28, 2008 - 7:44 p.m.

Remote file inclusion

2008-02-2819:44:00

PRIOn knowledge base

www.prio-n.com

8.1 High

AI Score

Confidence

Low

0.015 Low

EPSS

Percentile

86.9%

JSON

PHP remote file inclusion vulnerability in modules/syntax_highlight.php in the Sniplets 1.1.2 and 1.2.2 plugin for WordPress allows remote attackers to execute arbitrary PHP code via a URL in the libpath parameter.

CPENameOperatorVersion
sniplets_plugineq1.2.2
sniplets_plugineq1.1.2

CPE	Name	Operator	Version
	sniplets_plugin	eq	1.2.2
	sniplets_plugin	eq	1.1.2

References

secunia.com/advisories/29099

securityreason.com/securityalert/3706

www.securityfocus.com/archive/1/488734/100/0/threaded

www.securityfocus.com/bid/27985

exchange.xforce.ibmcloud.com/vulnerabilities/40829

www.exploit-db.com/exploits/5194