Lucene search
GoogleOSV:GHSA-3X3M-P2WX-G7CWHistoryMay 14, 2022 - 1:48 a.m.
Unauthenticated File Read in PHP Proxy
2022-05-1401:48:04
Google
osv.dev
3
0.867 High
EPSS
Percentile
98.6%
In PHP Proxy 3.0.3, any user can read files from the server without authentication due to an index.php?q=file:/// LFI URI, a different vulnerability than CVE-2018-19246.
| CPE | Name | Operator | Version |
|---|---|---|---|
| athlon1600/php-proxy-app | eq | 1.0.0 | |
| athlon1600/php-proxy-app | eq | 2.0.0 |
Related
prion
prion
Authentication flaw
2018-11-22 20:29:00
Authorization
2018-11-13 09:29:00
nuclei
nuclei
PHP Proxy 3.0.3 - Local File Inclusion
2021-08-02 23:20:58
nvd
nvd
CVE-2018-19458
2018-11-22 20:29:00
CVE-2018-19246
2018-11-13 09:29:00
github
github
Unauthenticated File Read in PHP Proxy
2022-05-14 01:48:04
LFI in PHP-Proxy 5.1.0
2022-05-14 01:48:51
cvelist
cvelist
CVE-2018-19458
2022-10-03 16:21:57
CVE-2018-19246
2018-11-13 07:00:00
cve
cve
CVE-2018-19458
2022-10-03 16:21:57
CVE-2018-19246
2018-11-13 09:29:00
gitlab
gitlab
Improper Authentication
2018-11-22 00:00:00
Information Exposure
2018-11-13 00:00:00
checkpoint_advisories
checkpoint_advisories
PHP Proxy Arbitrary File Read (CVE-2018-19458)
2021-04-21 00:00:00
PHP-Proxy Information Disclosure (CVE-2018-19246)
2020-06-25 00:00:00
veracode
veracode
Local File Inclusion (LFI)
2018-11-23 02:24:44
Local File Inclusion
2018-11-14 08:42:40
packetstorm
packetstorm
PHP-Proxy 5.1.0 Local File Inclusion
2018-11-15 00:00:00
osv
osv
LFI in PHP-Proxy 5.1.0
2022-05-14 01:48:51
zdt
zdt
PHP-Proxy 5.1.0 - Local File Inclusion Vulnerability
2018-11-16 00:00:00
exploitpack
exploitpack
PHP-Proxy 5.1.0 - Local File Inclusion
2018-11-15 00:00:00
exploitdb
exploitdb
PHP-Proxy 5.1.0 - Local File Inclusion
2018-11-15 00:00:00