CVE-2018-8947
published 2018-03-25CVE-2018-8947: rap2hpoutre Laravel Log Viewer before v0.13.0 relies on Base64 encoding for l, dl, and del requests, which makes it easier for remote attackers to bypass…
PriorityP262high7.5CVSS 3.0
AVNACLPRNUINSUCHINAN
EXPLOIT
EPSS
11.63%
95.5th percentile
rap2hpoutre Laravel Log Viewer before v0.13.0 relies on Base64 encoding for l, dl, and del requests, which makes it easier for remote attackers to bypass intended access restrictions, as demonstrated by reading arbitrary files via a dl request.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| laravel_log_viewer_project | laravel_log_viewer | < 0.13.0 | 0.13.0 |
| rap2hpoutre | laravel-log-viewer | >= 0 < 0.13.0 | 0.13.0 |
Detection & IOCsextracted from sources · hover to see the quote
- →The exploit also abuses 'l' and 'del' query parameters with Base64-encoded payloads on the /logs/ endpoint; monitor for these as well. ↗
- →Path traversal strings (e.g., '../') Base64-encoded and passed to the dl/l/del parameters are a strong indicator of exploitation; decode and inspect query parameter values for directory traversal sequences. ↗
- ·The vulnerability affects Laravel Log Viewer versions v0.12.0 and below (before v0.13.0); detections should be scoped to installations running these versions. ↗
- ·Exploitation requires no authentication — any remote user can abuse the dl/l/del endpoints without credentials. ↗
CVSS provenance
nvdv3.07.5HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Plaintext Storage of Sensitive Information in Laravel Log Viewer before v0.13.0
osv·2022-05-13
CVE-2018-8947 [HIGH] Plaintext Storage of Sensitive Information in Laravel Log Viewer before v0.13.0
Plaintext Storage of Sensitive Information in Laravel Log Viewer before v0.13.0
rap2hpoutre Laravel Log Viewer before v0.13.0 relies on Base64 encoding for l, dl, and del requests, which makes it easier for remote attackers to bypass intended access restrictions, as demonstrated by reading arbitrary files via a dl request.
GHSA
Plaintext Storage of Sensitive Information in Laravel Log Viewer before v0.13.0
ghsa·2022-05-13
CVE-2018-8947 [HIGH] CWE-312 Plaintext Storage of Sensitive Information in Laravel Log Viewer before v0.13.0
Plaintext Storage of Sensitive Information in Laravel Log Viewer before v0.13.0
rap2hpoutre Laravel Log Viewer before v0.13.0 relies on Base64 encoding for l, dl, and del requests, which makes it easier for remote attackers to bypass intended access restrictions, as demonstrated by reading arbitrary files via a dl request.
No detection rules found.
No writeups or analysis indexed.
https://github.com/rap2hpoutre/laravel-log-viewer/commit/cda89c06dc5331d06fab863d7cb1c4047ad68357https://github.com/rap2hpoutre/laravel-log-viewer/releases/tag/v0.13.0https://www.exploit-db.com/exploits/44343/https://github.com/rap2hpoutre/laravel-log-viewer/commit/cda89c06dc5331d06fab863d7cb1c4047ad68357https://github.com/rap2hpoutre/laravel-log-viewer/releases/tag/v0.13.0https://www.exploit-db.com/exploits/44343/
2018-03-25
Published