.. / CVE-2018-20608

Exploit for Imcat 4.4 - Phpinfo Configuration (CVE-2018-20608)

Description:

Imcat 4.4 allows remote attackers to read phpinfo output via the root/tools/adbug/binfo.php?phpinfo1 URI.

Nuclei Template

View the template here CVE-2018-20608.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2018/CVE-2018-20608.yaml
Copy

References:

https://github.com/SexyBeast233/SecBooks
https://nvd.nist.gov/vuln/detail/CVE-2018-20608