CVE-2010-1598
published 2010-04-29CVE-2010-1598: phpThumb.php in phpThumb() 1.7.9 and possibly other versions, when ImageMagick is installed, allows remote attackers to execute arbitrary commands via the…
PriorityP433medium6.8CVSS 2.0
AVNACMAuNCPIPAP
ITW
Exploited in the wild
EPSS
1.75%
75.0th percentile
phpThumb.php in phpThumb() 1.7.9 and possibly other versions, when ImageMagick is installed, allows remote attackers to execute arbitrary commands via the fltr[] parameter, as discovered in the wild in April 2010. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| silisoftware | phpthumb | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://modx.com/blog/2014/01/21/revolution-2.2.11%E2%80%94security-fixes-and-prevent-change-losshttp://osvdb.org/63939http://secunia.com/advisories/39556http://secunia.com/advisories/57038http://www.securityfocus.com/bid/39605https://exchange.xforce.ibmcloud.com/vulnerabilities/58040http://modx.com/blog/2014/01/21/revolution-2.2.11%E2%80%94security-fixes-and-prevent-change-losshttp://osvdb.org/63939http://secunia.com/advisories/39556http://secunia.com/advisories/57038http://www.securityfocus.com/bid/39605https://exchange.xforce.ibmcloud.com/vulnerabilities/58040
2010-04-29
Published
Exploited in the wild