CVE-2008-1059

Currently unrated

Key Information:

Vendor: Wordpress
Status: Sniplets Plugin
Vendor: CVE Published:; 28 February 2008

Summary

PHP remote file inclusion vulnerability in modules/syntax_highlight.php in the Sniplets 1.1.2 and 1.2.2 plugin for WordPress allows remote attackers to execute arbitrary PHP code via a URL in the libpath parameter.

References

http://secunia.com/advisories/29099

third-party-advisoryx_refsource_SECUNIA

https://www.exploit-db.com/exploits/5194

exploitx_refsource_EXPLOIT-DB

https://exchange.xforce.ibmcloud.com/vulnerabilities/40829

vdb-entryx_refsource_XF

EPSS Score

9% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Feb 28, 2008
Vulnerability Reserved
Feb 28, 2008