daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Enhancement: cves/2018/CVE-2018-16668.yaml by md

patch-1
MostInterestingBotInTheWorld 2023-01-30 16:00:51 -05:00
parent 1eb2bfc458
commit 62ce1f4459
1 changed files with 5 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
cves/2018/CVE-2018-16668.yaml
View File

@ -1,14 +1,15 @@
id: CVE-2018-16668
info:
name: CirCarLife SCADA Installation Paths
name: CirCarLife <4.3 - Improper Authentication
author: geeknik
severity: medium
description: System software installation path disclosure due to lack of authentication
description: CirCarLife before 4.3 is susceptible to improper authentication. An internal installation path disclosure exists due to the lack of authentication for /html/repository.System.
reference:
- https://www.exploit-db.com/exploits/45384
- https://github.com/SadFud/Exploits/tree/master/Real%20World/Suites/cir-pwn-life
- https://www.exploit-db.com/exploits/45384/
- https://nvd.nist.gov/vuln/detail/CVE-2018-16668
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
cvss-score: 5.3
@ -33,3 +34,5 @@ requests:
- "** Platform sources **"
- "** Application sources **"
condition: and
# Enhanced by md on 2023/01/30