cve/CVE-2009-0103.md at 71b0cee710ed54e668d68c977dc8a01eece35241

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-07 03:02:30 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

Multiple PHP remote file inclusion vulnerabilities in playSMS 0.9.3 allow remote attackers to execute arbitrary PHP code via a URL in the (1) apps_path[plug] parameter to plugin/gateway/gnokii/init.php, the (2) apps_path[themes] parameter to plugin/themes/default/init.php, and the (3) apps_path[libs] parameter to lib/function.php.

POC

Reference

http://securityreason.com/securityalert/4888
https://www.exploit-db.com/exploits/7687

Github

No PoCs found on GitHub currently.

840 B Raw Blame History

CVE-2009-0103

Description

POC

Reference

Github

840 B

Raw Blame History