CVE-2018-6409
MachForm < 4.2.3 - SQL Injection / Path Traversal / Upload Bypass
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
3Exploited in Wild
-Decision
Descriptions
An issue was discovered in Appnitro MachForm before 4.2.3. The module in charge of serving stored files gets the path from the database. Modifying the name of the file to serve on the corresponding ap_form table leads to a path traversal vulnerability via the download.php q parameter.
Se ha descubierto un problema en Appnitro MachForm, en versiones anteriores a la 4.2.3. El módulo encargado de servir archivos almacenados obtiene la ruta de la base de datos. La modificación del nombre del archivo que se debe servir en la tabla ap_form correspondiente conduce a una vulnerabilidad de salto de directorio mediante el parámetro q en download.php.
Appnitro MachForm suffers from remote file upload, remote SQL injection, and path traversal vulnerabilities.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2018-01-30 CVE Reserved
- 2018-05-26 CVE Published
- 2018-05-28 First Exploit
- 2024-08-05 CVE Updated
- 2024-12-17 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CAPEC
References (4)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|---|---|
| https://packetstorm.news/files/id/147948 | 2018-05-28 | |
| https://www.exploit-db.com/exploits/44804 | 2024-08-05 | |
| https://metalamin.github.io/MachForm-not-0-day-EN | 2024-08-05 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.machform.com/blog-machform-423-security-release | 2021-07-01 |