Limited Black Friday Offer:

CouchCMS <= 2.0 - Path Disclosure Vulnerability CVE-2018-7662 Scanner

There is a path disclosure vulnerability in CouchCMS <= 2.0.

Short Info

Level

Medium

Type

Single Scan

Can be used by

Asset Owner

Estimated Time

10 sec

Scan only one

Url

Parent Category

CouchCMS <= 2.0 - Path Disclosure Vulnerability CVE-2018-7662 Scanner Detail

Couch through 2.0 allows remote attackers to discover the full path via a direct request to includes/mysql2i/mysql2i.func.php or addons/phpmailer/phpmailer.php.

https://github.com/CouchCMS/CouchCMS/issues/46