CVE-2004-0285

CRITICAL

AllMyGuests AllMyLinks AllMyVisitors - Remote File Inclusion via _AMVconfig[cfg_serverpath] Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2004-0285. PoCs published by Pablo Santana.

AI-analyzed exploit summary This exploit demonstrates a remote file inclusion vulnerability in AllMyPHP applications (AllMyGuests, AllMyLinks, AllMyVisitors) due to insufficient filtering of URI variables used in a 'require_once()' call. It allows remote command execution by injecting a malicious PHP script via the '_AMGconfig[cfg_serverpath]' parameter.

Description

PHP remote file inclusion vulnerabilities in include/footer.inc.php in (1) AllMyVisitors, (2) AllMyLinks, and (3) AllMyGuests allow remote attackers to execute arbitrary PHP code via a URL in the _AMVconfig[cfg_serverpath] parameter.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Pablo Santana · textwebappsphp
https://www.exploit-db.com/exploits/23698

This exploit demonstrates a remote file inclusion vulnerability in AllMyPHP applications (AllMyGuests, AllMyLinks, AllMyVisitors) due to insufficient filtering of URI variables used in a 'require_once()' call. It allows remote command execution by injecting a malicious PHP script via the '_AMGconfig[cfg_serverpath]' parameter.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: AllMyPHP (AllMyGuests, AllMyLinks, AllMyVisitors)
No auth needed
Prerequisites: Target application must be running a vulnerable version of AllMyPHP · Remote attacker must be able to reach the target web server · PHP 'allow_url_fopen' must be enabled on the target server
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Pablo Santana · textwebappsphp
https://www.exploit-db.com/exploits/23699

This exploit demonstrates a remote file inclusion vulnerability in AllMyPHP applications (AllMyGuests, AllMyLinks, AllMyVisitors) due to insufficient filtering of URI variables used in a 'require_once()' call. It allows remote command execution by injecting a malicious URL into the '_AMLconfig[cfg_serverpath]' parameter.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: AllMyPHP AllMyGuests, AllMyLinks, AllMyVisitors
No auth needed
Prerequisites: Target application must be running a vulnerable version of AllMyPHP software · Remote attacker must be able to reach the target web server
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Pablo Santana · textwebappsphp
https://www.exploit-db.com/exploits/23697

This exploit demonstrates a remote file inclusion vulnerability in AllMyGuests due to insufficient filtering of URI variables used in a 'require_once()' call. It allows remote command execution by injecting a malicious URL containing a PHP script that executes system commands.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: AllMyPHP AllMyGuests
No auth needed
Prerequisites: A vulnerable version of AllMyGuests · Ability to host a malicious PHP script on an external server
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (8)

Core 8
Core References
Broken Link vdb-entry x_refsource_osvdb
http://www.osvdb.org/6721
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/15228
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/15227
Mailing List, Third Party Advisory mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=107696209514155&w=2
Mailing List, Third Party Advisory mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=107696291728750&w=2
Broken Link, Exploit, Patch, Third Party Advisory, VDB Entry, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/9664
Mailing List, Third Party Advisory mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=107696235424865&w=2
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/15226

Scores

CVSS v3 9.8
EPSS 0.3000
EPSS Percentile 96.8%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-829
Status published
Products (13)
allmyguests_project/allmyguests 0.1.2
allmyguests_project/allmyguests 0.3
allmyguests_project/allmyguests 0.4
allmyguests_project/allmyguests 0.4.1
allmylinks_project/allmylinks 0.3
allmylinks_project/allmylinks 0.4
allmylinks_project/allmylinks 0.4.1
allmylinks_project/allmylinks 0.4.3
allmylinks_project/allmylinks 0.4.4
allmylinks_project/allmylinks 0.4.9
... and 3 more
Published Nov 23, 2004
Tracked Since Feb 18, 2026