Skip to content
Nuclei Templates

CouchCMS <= 2.0 - Path Disclosure

ID: CVE-2018-7662

Severity: medium

Author: ritikchaddha

Tags: cve2018,cve,couchcms,fpd

Description

Section titled “Description”

CouchCMS <= 2.0 allows remote attackers to discover the full path via a direct request to includes/mysql2i/mysql2i.func.php or addons/phpmailer/phpmailer.php.

YAML Source

Section titled “YAML Source”
id: CVE-2018-7662


info:
  name: CouchCMS <= 2.0 - Path Disclosure
  author: ritikchaddha
  severity: medium
  description: CouchCMS <= 2.0 allows remote attackers to discover the full path via a direct request to includes/mysql2i/mysql2i.func.php or addons/phpmailer/phpmailer.php.
  impact: |
    An attacker can exploit this vulnerability to gain knowledge of the server's directory structure, potentially aiding in further attacks.
  remediation: |
    Upgrade to the latest version of CouchCMS (2.1 or higher) to mitigate this vulnerability.
  reference:
    - https://github.com/CouchCMS/CouchCMS/issues/46
    - https://nvd.nist.gov/vuln/detail/CVE-2018-7662
    - https://github.com/20142995/Goby
    - https://github.com/5ecurity/CVE-List
    - https://github.com/ARPSyndicate/cvemon
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
    cvss-score: 5.3
    cve-id: CVE-2018-7662
    cwe-id: CWE-200
    epss-score: 0.00225
    epss-percentile: 0.60692
    cpe: cpe:2.3:a:couchcms:couch:*:*:*:*:*:*:*:*
  metadata:
    max-request: 2
    vendor: couchcms
    product: couch
  tags: cve2018,cve,couchcms,fpd


http:
  - method: GET
    path:
      - "{{BaseURL}}/includes/mysql2i/mysql2i.func.php"
      - "{{BaseURL}}/addons/phpmailer/phpmailer.php"


    stop-at-first-match: true


    matchers-condition: or
    matchers:
      - type: word
        part: body
        words:
          - "mysql2i.func.php on line 10"
          - "Fatal error: Cannot redeclare mysql_affected_rows() in"
        condition: and


      - type: word
        part: body
        words:
          - "phpmailer.php on line 10"
          - "Fatal error: Call to a menber function add_event_listener() on a non-object in"
        condition: and
# digest: 490a0046304402203de63677b0d30f49713d3cfadfcb9202e9f5ad646383720e8e2a45c6d4b43aa4022006ac4f7cc191352aa3f5416c28a8f28bd41381e37b67abeb8d6ba3a109ca0070:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

Section titled “Guide to check the vulnerabilities”

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

Terminal window
$ nuclei -u "URL" -t "http/cves/2018/CVE-2018-7662.yaml"

View on Github