Enhancement: cves/2018/CVE-2018-8770.yaml by md

cves/2018/CVE-2018-8770.yaml

@@ -1,14 +1,15 @@
 id: CVE-2018-8770
 
 info:
-  name: Cobub Razor 0.8.0 Physical path Leakage Vulnerability
+  name: Cobub Razor 0.8.0 - Information Disclosure
   author: princechaddha
   severity: medium
-  description: Physical path Leakage exists in Western Bridge Cobub Razor 0.8.0 via generate.php, controllers/getConfigTest.php, controllers/getUpdateTest.php, controllers/postclientdataTest.php, controllers/posterrorTest.php, controllers/posteventTest.php, controllers/posttagTest.php, controllers/postusinglogTest.php, fixtures/Controller_fixt.php, fixtures/Controller_fixt2.php, fixtures/view_fixt2.php, libs/ipTest.php, or models/commonDbfix.php in tests/.
+  description: Cobub Razor 0.8.0 is susceptible to information disclosure via generate.php, controllers/getConfigTest.php, controllers/getUpdateTest.php, controllers/postclientdataTest.php, controllers/posterrorTest.php, controllers/posteventTest.php, controllers/posttagTest.php, controllers/postusinglogTest.php, fixtures/Controller_fixt.php, fixtures/Controller_fixt2.php, fixtures/view_fixt2.php, libs/ipTest.php, or models/commonDbfix.php. An attacker can obtain sensitive information, modify data, and/or execute unauthorized operations.
   reference:
     - http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8770
     - https://www.exploit-db.com/exploits/44495/
     - https://github.com/Kyhvedn/CVE_Description/blob/master/Cobub_Razor_0.8.0_more_physical_path_leakage.md
+    - https://nvd.nist.gov/vuln/detail/CVE-2018-8770
   classification:
     cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
     cvss-score: 5.3
@@ -32,3 +33,5 @@ requests:
       - type: status
         status:
           - 200
+
+# Enhanced by md on 2023/01/30