Lucene search
ManhNhoEXPLOITPACK:0324BA2D7C211C95A34541820E936DD5HistoryJun 20, 2018 - 12:00 a.m.
MaDDash 2.0.2 - Directory Listing
2018-06-2000:00:00
ManhNho
10
0.001 Low
EPSS
Percentile
50.8%
MaDDash 2.0.2 - Directory Listing
# Exploit Title: MaDDash 2.0.2 - Directory Listing
# Date: 2018-06-18
# Vendor: perfSONAR
# Download Link: https://github.com/esnet/maddash/archive/master.zip
# Version: 2.0.2
# Exploit Author: ManhNho
# CVE: CVE-2018-12522,CVE-2018-12523,CVE-2018-12524,CVE-2018-12525
# Category: Webapps
# Tested on: Windows 7
--- Description ---
A directory listing is inappropriately exposed, yielding potentially
sensitive information to attackers.
A directory listing provides an attacker with the complete index of all the
resources located inside of the directory.
The specific risks and consequences vary depending on which files are
listed and accessible.
---Affected items---
http://127.0.0.1/maddash-webui/etc/
http://127.0.0.1/maddash-webui/lib/
http://127.0.0.1/maddash-webui/images/
http://127.0.0.1/maddash-webui/style/
---References---
https://pastebin.com/eA5tGKf0Related
zdt
zdt
MaDDash 2.0.2 - Directory Listing Vulnerability
2018-06-20 00:00:00
packetstorm
packetstorm
MaDDash 2.0.2 Directory Listing
2018-06-21 00:00:00
exploitdb
exploitdb
MaDDash 2.0.2 - Directory Listing
2018-06-20 00:00:00
cvelist
cvelist
nvd
nvd
osv
osv
prion
prion
Design/Logic Flaw
2018-06-18 11:29:00
Design/Logic Flaw
2018-06-18 11:29:00
Design/Logic Flaw
2018-06-18 11:29:00
cve
cve