CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-19018

An issue was discovered in TitanHQ WebTitan before 5.18. It exposes a database configuration file under /include/dbconfig.ini in the web administration interface, revealing what database the web application is using.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 57.2%

CVSS Severity

CVSS v3 Score 2.7

CVSS v2 Score 4.0

References

https://write-up.github.io/webtitan/
https://www.webtitan.com/resources/product-updates/
https://write-up.github.io/webtitan/
https://www.webtitan.com/resources/product-updates/

Products affected by CVE-2019-19018

Titanhq » Webtitan » Version: 5.12

cpe:2.3:a:titanhq:webtitan:5.12
Titanhq » Webtitan » Version: 5.13

cpe:2.3:a:titanhq:webtitan:5.13
Titanhq » Webtitan » Version: 5.14

cpe:2.3:a:titanhq:webtitan:5.14
Titanhq » Webtitan » Version: 5.15

cpe:2.3:a:titanhq:webtitan:5.15
Titanhq » Webtitan » Version: 5.16

cpe:2.3:a:titanhq:webtitan:5.16
Titanhq » Webtitan » Version: 5.17

cpe:2.3:a:titanhq:webtitan:5.17

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-19018

Products

Pricing

Contact Us