cve/2008/CVE-2008-1059.md

CVE-2008-1059

Description

PHP remote file inclusion vulnerability in modules/syntax_highlight.php in the Sniplets 1.1.2 and 1.2.2 plugin for WordPress allows remote attackers to execute arbitrary PHP code via a URL in the libpath parameter.

POC

Reference

• http://securityreason.com/securityalert/3706
• https://www.exploit-db.com/exploits/5194

Github

• https://github.com/ARPSyndicate/cvemon
• https://github.com/ARPSyndicate/kenzer-templates