CVE-2008-1712

mxBB mx_blogs <2.0.0 - RCE

Title source: llm

Description

PHP remote file inclusion vulnerability in includes/functions_weblog.php in mxBB mx_blogs 2.0.0 beta allows remote attackers to execute arbitrary PHP code via a URL in the mx_root_path parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by bd0rk · perlwebappsphp
https://www.exploit-db.com/exploits/5323

References (3)

Scores

EPSS 0.0356
EPSS Percentile 87.7%

Details

CWE
CWE-94
Status published
Products (1)
mx-system/mxbb 2.0.0_beta
Published Apr 09, 2008
Tracked Since Feb 18, 2026