Lucene search
K

CVE-2018-16386

🗓️ 05 Jul 2019 19:58:09Reported by mitreType 
cve
 cve
🔗 web.nvd.nist.gov👁 344 Views🌐 WEB

An issue in SWIFT Alliance Web Platform 7.1.23 allows log injection and arbitrary log filename via PATH_INFO to swp/login/EJBRemoteService/, related to error log information

Related
Detection
Refs
Paths
ReporterTitlePublishedViews
Family
Circl
CVE-2018-16386
5 Jul 201922:59
circl
CNVD
SWIFT Alliance Web Platform Unauthorized File Modification Vulnerability
9 Jul 201900:00
cnvd
Cvelist
CVE-2018-16386
5 Jul 201919:58
cvelist
EUVD
EUVD-2018-8231
7 Oct 202500:30
euvd
NVD
CVE-2018-16386
5 Jul 201920:15
nvd
OSV
CVE-2018-16386
5 Jul 201920:15
osv
Prion
Design/Logic Flaw
5 Jul 201920:15
prion
RedhatCVE
CVE-2018-16386
22 May 202503:19
redhatcve
NVD
ParameterPositionPathDescriptionCWE
PATH_INFOpathswp/login/EJBRemoteService/Log injection via PATH_INFO leading to arbitrary log filenameCWE-116

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 01:44Current
7.5High risk
Vulners AI Score7.5
CVSS 25
CVSS 37.5
EPSS0.01138
344