CVE-2018-15684

2018-09-0521:00:00

mitre

www.cve.org

5.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

47.6%

JSON

An issue was discovered in BTITeam XBTIT. PHP error logs are stored in an open directory (/include/logs) using predictable file names, which can lead to full path disclosure and leakage of sensitive data.

References

rastating.github.io/xbtit-multiple-vulnerabilities/