Lucene search
Veracode Vulnerability DatabaseVERACODE:7791HistoryNov 14, 2018 - 8:42 a.m.
Local File Inclusion
2018-11-1408:42:40
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
0.867 High
EPSS
Percentile
98.6%
php-proxy-app is vulnerable to local file inclusion. The vulnerability exists because it uses a default app_key, allowing the attacker to generate encrypted string and get unauthorized access to arbitrary local files in the server.
| CPE | Name | Operator | Version |
|---|---|---|---|
| athlon1600/php-proxy-app | le | 3.0.0 |
Related
packetstorm
packetstorm
PHP-Proxy 5.1.0 Local File Inclusion
2018-11-15 00:00:00
nvd
nvd
CVE-2018-19246
2018-11-13 09:29:00
CVE-2018-19458
2018-11-22 20:29:00
prion
prion
Authorization
2018-11-13 09:29:00
Authentication flaw
2018-11-22 20:29:00
cvelist
cvelist
CVE-2018-19246
2018-11-13 07:00:00
CVE-2018-19458
2022-10-03 16:21:57
osv
osv
LFI in PHP-Proxy 5.1.0
2022-05-14 01:48:51
Unauthenticated File Read in PHP Proxy
2022-05-14 01:48:04
gitlab
gitlab
Information Exposure
2018-11-13 00:00:00
zdt
zdt
PHP-Proxy 5.1.0 - Local File Inclusion Vulnerability
2018-11-16 00:00:00
github
github
LFI in PHP-Proxy 5.1.0
2022-05-14 01:48:51
Unauthenticated File Read in PHP Proxy
2022-05-14 01:48:04
cve
cve
CVE-2018-19246
2018-11-13 09:29:00
CVE-2018-19458
2022-10-03 16:21:57
checkpoint_advisories
checkpoint_advisories
PHP-Proxy Information Disclosure (CVE-2018-19246)
2020-06-25 00:00:00
exploitpack
exploitpack
PHP-Proxy 5.1.0 - Local File Inclusion
2018-11-15 00:00:00
exploitdb
exploitdb
PHP-Proxy 5.1.0 - Local File Inclusion
2018-11-15 00:00:00
nuclei
nuclei
PHP Proxy 3.0.3 - Local File Inclusion
2021-08-02 23:20:58