CVE-2020-19363
published 2021-01-20CVE-2020-19363: Vtiger CRM v7.2.0 allows an attacker to display hidden files, list directories by using /libraries and /layout directories.
PriorityP277medium6.5CVSS 3.1
AVNACLPRNUIRSUCHINAN
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
3.64%
88.2th percentile
Vtiger CRM v7.2.0 allows an attacker to display hidden files, list directories by using /libraries and /layout directories.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| vtiger | vtiger_crm | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Detect unauthenticated HTTP GET requests to /vtigercrm/libraries/ or /vtigercrm/layouts/ returning a directory listing response (HTTP 200 with 'Index of', 'vtigercrm', and 'Parent Directory' in the body).
- →Use Shodan or FOFA to identify exposed Vtiger CRM instances as potential targets: Shodan query 'http.html:"vtiger CRM"', FOFA query 'body="vtiger CRM"'.
- →Exploitation requires no authentication; any unauthenticated GET to the vulnerable paths is sufficient to trigger directory listing.
- ·The vulnerability affects specifically Vtiger CRM v7.2.0; the /libraries and /layout directories are the affected paths per the CVE description. ↗
- ·The nuclei template uses stop-at-first-match with max-request: 2, meaning detection probes both /vtigercrm/libraries/ and /vtigercrm/layouts/ but stops on the first positive match.
CVSS provenance
nvdv3.16.5MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:P/I:N/A:N
vulncheck6.5MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-pqwj-3wvm-qp88: Vtiger CRM v7
ghsa_unreviewed·2022-05-24
CVE-2020-19363 [MEDIUM] CWE-200 GHSA-pqwj-3wvm-qp88: Vtiger CRM v7
Vtiger CRM v7.2.0 allows an attacker to display hidden files, list directories by using /libraries and /layout directories.
VulnCheck
vtiger vtiger_crm Exposure of Sensitive Information to an Unauthorized Actor
vulncheck·2020·CVSS 6.5
CVE-2020-19363 [MEDIUM] vtiger vtiger_crm Exposure of Sensitive Information to an Unauthorized Actor
vtiger vtiger_crm Exposure of Sensitive Information to an Unauthorized Actor
Vtiger CRM v7.2.0 allows an attacker to display hidden files, list directories by using /libraries and /layout directories.
Affected: vtiger vtiger_crm
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://tracker.crowdsec.net/cves/CVE-2020-19363
No detection rules found.
Nuclei
Vtiger CRM v7.2.0 - Directory Listing
nuclei·CVSS 6.5
CVE-2020-19363 [MEDIUM] Vtiger CRM v7.2.0 - Directory Listing
Vtiger CRM v7.2.0 - Directory Listing
Vtiger CRM v7.2.0 contains a directory traversal vulnerability caused by improper access controls in /libraries and /layout directories, letting attackers display hidden files and list directories, exploit requires no authentication.
Template:
id: CVE-2020-19363
info:
name: Vtiger CRM v7.2.0 - Directory Listing
author: 0x_Akoko
severity: medium
description: |
Vtiger CRM v7.2.0 contains a directory traversal vulnerability caused by improper access controls in /libraries and /layout directories, letting attackers display hidden files and list directories, exploit requires no authentication.
impact: |
Attackers can access sensitive files and directory structures, potentially leading to information disclosure or further exploitation.
remediation: |
Upd
No writeups or analysis indexed.
https://emreovunc.com/blog/en/vtiger_crm_directorylisting_01.pnghttps://emreovunc.com/blog/en/vtiger_crm_directorylisting_02.pnghttps://github.com/EmreOvunc/Vtiger-CRM-Vulnerabilities/https://emreovunc.com/blog/en/vtiger_crm_directorylisting_01.pnghttps://emreovunc.com/blog/en/vtiger_crm_directorylisting_02.pnghttps://github.com/EmreOvunc/Vtiger-CRM-Vulnerabilities/
2021-01-20
Published
Exploited in the wild