CVE-2018-12604
28Vexday Risk Score
No sign of exploitation. It has a public proof of concept.
ssvc Attendepss 13%
from disclosure to weapon2 days
Published on NVDJun 20
1st PoC+2d
exploitation probability
13%top 4% of all CVEs
observed exploitation
nono source reports it
2 public exploit(s)
GreenCMS 2.3.0603 allows remote attackers to obtain sensitive information via a direct request for Data/Log/year_month_day.log.
Affected products
n/a · n/apublic PoCs found — 2
cve_referencewww.exploit-db.com/exploits/44922/unverifiedexploitdbwww.exploit-db.com/exploits/44922unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.