High severity8.8NVD Advisory· Published May 19, 2017· Updated Jun 17, 2026
CVE-2017-9080
CVE-2017-9080
Description
PlaySMS 1.4 allows remote code execution because PHP code in the name of an uploaded .php file is executed. sendfromfile.php has a combination of Unrestricted File Upload and Code Injection.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
3- www.exploit-db.com/exploits/42003/nvdExploitThird Party AdvisoryVDB Entry
- www.exploit-db.com/exploits/44599/nvdExploitThird Party AdvisoryVDB Entry
- touhidshaikh.com/blog/poc/playsms-v1-4-rce/nvdBroken LinkThird Party Advisory
News mentions
0No linked articles in our index yet.