Lucene search
Https://gitlab.com/gitlab-org/security-products/gemnasium-dbGITLAB-0349EA281163AA96BFB0D4ED84504B6DHistoryNov 13, 2018 - 12:00 a.m.
Information Exposure
2018-11-1300:00:00
https://gitlab.com/gitlab-org/security-products/gemnasium-db
gitlab.com
11
0.867 High
EPSS
Percentile
98.6%
PHP-Proxy allows remote attackers to read local files if the default pre-installed version (intended for users who lack shell access to their web server) is used. This occurs because the app_key value from the default config.php is in place, and this value can be easily used to calculate the authorization data needed for local file inclusion.
| CPE | Name | Operator | Version |
|---|---|---|---|
| packagist/athlon1600/php-proxy-app | eq | 5.1.0 |
Related
packetstorm
packetstorm
PHP-Proxy 5.1.0 Local File Inclusion
2018-11-15 00:00:00
nvd
nvd
CVE-2018-19246
2018-11-13 09:29:00
CVE-2018-19458
2018-11-22 20:29:00
veracode
veracode
Local File Inclusion
2018-11-14 08:42:40
prion
prion
Authorization
2018-11-13 09:29:00
Authentication flaw
2018-11-22 20:29:00
cvelist
cvelist
CVE-2018-19246
2018-11-13 07:00:00
CVE-2018-19458
2022-10-03 16:21:57
osv
osv
LFI in PHP-Proxy 5.1.0
2022-05-14 01:48:51
Unauthenticated File Read in PHP Proxy
2022-05-14 01:48:04
zdt
zdt
PHP-Proxy 5.1.0 - Local File Inclusion Vulnerability
2018-11-16 00:00:00
github
github
LFI in PHP-Proxy 5.1.0
2022-05-14 01:48:51
Unauthenticated File Read in PHP Proxy
2022-05-14 01:48:04
cve
cve
CVE-2018-19246
2018-11-13 09:29:00
CVE-2018-19458
2022-10-03 16:21:57
checkpoint_advisories
checkpoint_advisories
PHP-Proxy Information Disclosure (CVE-2018-19246)
2020-06-25 00:00:00
exploitpack
exploitpack
PHP-Proxy 5.1.0 - Local File Inclusion
2018-11-15 00:00:00
nuclei
nuclei
PHP Proxy 3.0.3 - Local File Inclusion
2021-08-02 23:20:58
exploitdb
exploitdb
PHP-Proxy 5.1.0 - Local File Inclusion
2018-11-15 00:00:00