cbcvebase.
CVE-2018-8770
published 2018-03-18

CVE-2018-8770: Physical path Leakage exists in Western Bridge Cobub Razor 0.8.0 via generate.php, controllers/getConfigTest.php, controllers/getUpdateTest.php…

PriorityP353medium5.3CVSS 3.1
AVNACLPRNUINSUCLINAN
EXPLOIT
EPSS
60.59%
99.0th percentile
Physical path Leakage exists in Western Bridge Cobub Razor 0.8.0 via generate.php, controllers/getConfigTest.php, controllers/getUpdateTest.php, controllers/postclientdataTest.php, controllers/posterrorTest.php, controllers/posteventTest.php, controllers/posttagTest.php, controllers/postusinglogTest.php, fixtures/Controller_fixt.php, fixtures/Controller_fixt2.php, fixtures/view_fixt2.php, libs/ipTest.php, or models/commonDbfix.php in tests/.

Affected

1 ranges
VendorProductVersion rangeFixed in
cobubrazor

Detection & IOCsextracted from sources · hover to see the quote

path/tests/generate.php
path/tests/controllers/getConfigTest.php
path/tests/controllers/getUpdateTest.php
path/tests/controllers/postclientdataTest.php
path/tests/controllers/posterrorTest.php
path/tests/controllers/posteventTest.php
path/tests/controllers/posttagTest.php
path/tests/controllers/postusinglogTest.php
path/tests/fixtures/Controller_fixt.php
path/tests/fixtures/Controller_fixt2.php
path/tests/fixtures/view_fixt2.php
path/tests/libs/ipTest.php
path/tests/models/commonDbfix.php
  • HTTP GET request to /tests/generate.php returning HTTP 200 with a PHP Fatal error message disclosing the physical path is a confirmed indicator of exploitation.
  • Response header or body containing the string '/application/third_party/CIUnit/libraries/CIUnitTestCase.php on line' confirms physical path leakage.
  • Match both the Fatal error class-not-found string AND the CIUnitTestCase.php path string together in the response (condition: AND) to reduce false positives.
  • ·The vulnerability is specific to Cobub Razor version 0.8.0; other versions are not confirmed affected.
  • ·The path leakage is triggered by unauthenticated HTTP GET requests; no authentication or special headers are required, making it trivially exploitable from the internet.

CVSS provenance

nvdv3.15.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.