PT-2018-14216 · Jtbc · Jtbc

Published

2018-10-01

Updated

2018-11-28

CVE-2018-17838

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions JTBC(PHP) version 3.0.1.6

Description An issue allows arbitrary file read operations. This can be achieved via the "/console/#/console/file/manage.php?type=list&path=c:/" endpoint, specifically by manipulating the path variable.

Recommendations For JTBC(PHP) version 3.0.1.6, as a temporary workaround, consider restricting access to the "/console/#/console/file/manage.php" endpoint until a patch is available. Avoid using the path variable in this endpoint to minimize the risk of exploitation.

Exploit

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

CVE-2018-17838

Affected Products

Jtbc

PT-2018-14216 · Jtbc · Jtbc

CVE-2018-17838

Weakness Enumeration

Related Identifiers

Affected Products

References · 3