4 matches found
PHP Proxy 3.0.3 - Local File Inclusion
PHP Proxy 3.0.3 is susceptible to local file inclusion vulnerabilities that allow unauthenticated users to read files from the server via index.php?q=file:/// a different vulnerability than CVE-2018-19246. id: CVE-2018-19458 info: name: PHP Proxy 3.0.3 - Local File Inclusion author: daffainfo...
CVE-2018-19458
In PHP Proxy 3.0.3, any user can read files from the server without authentication due to an index.php?q=file:/// LFI URI, a different vulnerability than CVE-2018-19246...
PHP Proxy Arbitrary File Read (CVE-2018-19458)
An arbitrary file read vulnerability exists in PHP Proxy. Successful exploitation of this vulnerability could allow an unauthenticated remote attacker to access and read arbitrary file...
CVE-2018-19458
PHP Proxy 3.0.3 is vulnerable to Local File Inclusion via index.php?q=file:///, allowing unauthenticated reading of server files (CVE-2018-19458). The Nuclei template confirms LFI in PHP Proxy 3.0.3 and cites unauthenticated access. Impact as described: read arbitrary files on the server; exploit...