mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-06 02:31:38 +00:00
825 B
825 B
CVE-2008-4141
Description
Multiple PHP remote file inclusion vulnerabilities in x10Media x10 Automatic MP3 Script 1.5.5 allow remote attackers to execute arbitrary PHP code via a URL in the web_root parameter to (1) includes/function_core.php and (2) templates/layout_lyrics.php.
POC
Reference
- http://packetstormsecurity.org/0809-exploits/x10media-rfi.txt
- http://securityreason.com/securityalert/4294
- https://www.exploit-db.com/exploits/6480
Github
No PoCs found on GitHub currently.