CVE-2003-1313

EternalMart Mailing List Manager <1.32 - RCE

Title source: llm

Description

Multiple PHP remote file inclusion vulnerabilities in EternalMart Mailing List Manager (EMLM) 1.32 allow remote attackers to execute arbitrary PHP code via a URL in (1) the emml_admin_path parameter to admin/auth.php or (2) the emml_path parameter to emml_email_func.php.

Exploits (1)

exploitdb WORKING POC VERIFIED

by frog · textwebappsphp

https://www.exploit-db.com/exploits/23218

View Code ZIP pw:eip

References (3)

[Exploit] http://securitytracker.com/id?1007884

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/340244

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/8767

Scores

EPSS 0.0194

EPSS Percentile 83.2%

Classification

Status draft

Affected Products (1)

eternalmart/mailing_list_manager

Timeline

Published Dec 31, 2003

Tracked Since Feb 18, 2026