CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-19784

The str_rot_pass function in vendor/atholn1600/php-proxy/src/helpers.php in PHP-Proxy 5.1.0 uses weak cryptography, which makes it easier for attackers to calculate the authorization data needed for local file inclusion.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 37.6%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

https://github.com/Athlon1600/php-proxy-app/issues/139
https://github.com/eddietcc/CVE-Bins/blob/master/PHP-Proxy/readme.md
https://github.com/Athlon1600/php-proxy-app/issues/139
https://github.com/eddietcc/CVE-Bins/blob/master/PHP-Proxy/readme.md

Products affected by CVE-2018-19784

Php-Proxy » Php-Proxy » Version: 5.1.0

cpe:2.3:a:php-proxy:php-proxy:5.1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-19784

Products

Pricing

Contact Us