CVE-2008-2986

Name of the Vulnerable Software and Affected Versions phpDMCA version 1.0.0

Description The issue allows remote attackers to execute arbitrary PHP code via a URL in the ourlinux root path parameter to specific PHP files, including (1) adodb-errorpear.inc.php and (2) adodb-pear.inc.php in the adodb/ directory.

Recommendations For phpDMCA version 1.0.0, consider restricting access to the ourlinux root path parameter to prevent remote file inclusion attacks. As a temporary workaround, restrict access to the adodb/ directory to minimize the risk of exploitation. Avoid using the ourlinux root path parameter in the affected API endpoints until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.