CVE-2003-1256

E-theni - RCE

Title source: llm

Description

aff_liste_langue.php in E-theni allows remote attackers to execute arbitrary PHP code by modifying the rep_include parameter to reference a URL on a remote web server that contains para_langue.php.

Exploits (1)

exploitdb WRITEUP VERIFIED

by frog · textwebappsphp

https://www.exploit-db.com/exploits/22293

View Code ZIP pw:eip

References (4)

[Exploit, Patch] http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0009.html

[Third Party Advisory] http://www.iss.net/security_center/static/11013.php

[Exploit, Patch] http://www.securityfocus.com/archive/1/305381

[Exploit] http://www.securityfocus.com/bid/6970

Scores

EPSS 0.0577

EPSS Percentile 90.3%

Classification

Status draft

Affected Products (1)

e-theni/e-theni

Timeline

Published Dec 31, 2003

Tracked Since Feb 18, 2026