CVE-2008-1505
SSTREAMTV custompages < 1.1 - Remote Code Execution via cpage Parameter
Title source: manualExploitation Summary
EIP tracks 1 public exploit for CVE-2008-1505. PoCs published by Sniper456.
AI-analyzed exploit summary This exploit demonstrates a Remote File Inclusion (RFI) vulnerability in the Joomla custompages component (version <= 1.0). The vulnerability allows an attacker to include arbitrary remote files via the 'cpage' parameter, potentially leading to remote code execution.
Description
PHP remote file inclusion vulnerability in the SSTREAMTV custompages (com_custompages) 1.1 and earlier component for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the cpage parameter to index.php.
Exploits (1)
This exploit demonstrates a Remote File Inclusion (RFI) vulnerability in the Joomla custompages component (version <= 1.0). The vulnerability allows an attacker to include arbitrary remote files via the 'cpage' parameter, potentially leading to remote code execution.