.. / CVE-2018-14912

Exploit for cgit < 1.2.1 - Directory Traversal (CVE-2018-14912)

Description:

cGit < 1.2.1 via cgit_clone_objects has a directory traversal vulnerability when enable-http-clone=1 is not turned off, as demonstrated by a cgit/cgit.cgi/git/objects/?path=../ request.

Nuclei Template

View the template here CVE-2018-14912.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2018/CVE-2018-14912.yaml

References:

https://lists.debian.org/debian-lts-announce/2018/08/msg00005.html
https://lists.zx2c4.com/pipermail/cgit/2018-August/004176.html
https://bugs.chromium.org/p/project-zero/issues/detail?id=1627
https://nvd.nist.gov/vuln/detail/CVE-2018-14912
https://cxsecurity.com/issue/WLB-2018080034

.. / CVE-2018-14912 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for cgit < 1.2.1 - Directory Traversal (CVE-2018-14912)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2018-14912