4.3
CVSSv2

CVE-2018-1271

Published: 06/04/2018 Updated: 15/07/2020
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 5.9 | Impact Score: 3.6 | Exploitability Score: 2.2
VMScore: 386
Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N

Vulnerability Summary

Spring Framework, versions 5.0 before 5.0.5 and versions 4.3 before 4.3.15 and older unsupported versions, allow applications to configure Spring MVC to serve static resources (e.g. CSS, JS, images). When static resources are served from a file system on Windows (as opposed to the classpath, or the ServletContext), a malicious user can send a request using a specially crafted URL that can lead a directory traversal attack.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

pivotal software spring framework

oracle retail integration bus 16.0

oracle retail integration bus 16.0.1

oracle retail integration bus 16.0.2

oracle retail integration bus 15.0.1

oracle retail integration bus 14.1.3

oracle retail returns management 14.0

oracle retail returns management 14.1

oracle retail point-of-sale 14.0

oracle retail order broker 15.0

oracle retail order broker 16.0

oracle retail open commerce platform 5.3.0

oracle retail open commerce platform 6.0.0

oracle primavera gateway 16.2

oracle communications diameter signaling router

oracle insurance rules palette 10.0

oracle insurance rules palette 10.2

oracle communications services gatekeeper

oracle health sciences information manager 3.0

oracle healthcare master person index 4.0

oracle retail customer insights 15.0

oracle retail predictive application server 15.0

oracle retail order broker 5.1

oracle insurance calculation engine 10.2.1

oracle insurance calculation engine 10.1.1

oracle insurance rules palette 10.1

oracle insurance rules palette 11.0

oracle big data discovery 1.6.0

oracle goldengate for big data 12.2.0.1

oracle goldengate for big data 12.3.1.1

oracle goldengate for big data 12.3.2.1

oracle retail integration bus 14.0.1

oracle retail integration bus 14.0.3

oracle retail integration bus 15.0.2

oracle retail integration bus 14.1.2

oracle retail point-of-sale 14.1

oracle retail central office 14.1

oracle enterprise manager ops center 12.2.2

oracle primavera gateway 15.2

oracle application testing suite 12.5.0.3

oracle retail back office 14.1

oracle retail back office 14.0

oracle enterprise manager ops center 12.3.3

oracle retail open commerce platform 6.0.1

oracle application testing suite 13.1.0.1

oracle application testing suite 13.2.0.1

oracle application testing suite 13.3.0.1

oracle communications performance intelligence center

oracle healthcare master person index 3.0

oracle insurance calculation engine 10.2

oracle retail customer insights 16.0

oracle tape library acsls 8.4

oracle communications converged application server

oracle service architecture leveraging tuxedo 12.1.3.0.0

oracle service architecture leveraging tuxedo 12.2.2.0.0

oracle retail predictive application server 14.0

oracle retail predictive application server 14.1

oracle retail predictive application server 16.0

oracle retail order broker 5.2

oracle insurance rules palette 11.1

oracle primavera gateway 17.12

oracle retail integration bus 14.0.2

oracle retail integration bus 14.0.4

oracle retail integration bus 15.0.0.1

oracle retail integration bus 14.1.1

oracle retail central office 14.0

Vendor Advisories

Synopsis Critical: Red Hat FIS 20 on Fuse 630 R8 security and bug fix update Type/Severity Security Advisory: Critical Topic An update is now available for Red Hat Fuse Integration ServicesRed Hat Product Security has rated this update as having a security impact of Critical A Common Vulnerability Scor ...
Synopsis Important: Fuse 71 security update Type/Severity Security Advisory: Important Topic An update is now available for Red Hat FuseRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed s ...
Oracle Critical Patch Update Advisory - July 2018 Description A Critical Patch Update is a collection of patches for multiple security vulnerabilities Critical Patch Update patches are usually cumulative, but each advisory describes only the security fixes added since the previous C ...
Oracle Critical Patch Update Advisory - January 2019 Description A Critical Patch Update is a collection of patches for multiple security vulnerabilities Critical Patch Update patches are usually cumulative, but each advisory describes only the security fixes added since the previou ...
Oracle Critical Patch Update Advisory - October 2018 Description A Critical Patch Update is a collection of patches for multiple security vulnerabilities Critical Patch Update patches are usually cumulative, but each advisory describes only the security fixes added since the previou ...
There are multiple vulnerabilities identified in IBM Guardium Data Encryption (GDE) These vulnerabilities have been fixed in GDE 4004 Please apply the latest version for the fixes ...
IBM has announced a release for IBM Security Identity Governance and Intelligence (IGI) in response to multiple security vulnerabilities There are multiple vulnerabilities fixes to open source libraries distributed with IGI, other less secure algorithms for crypto, xss attacks and click jacking attacks ...

Github Repositories

Vulnerability Environment For Webapp

Vulnerability_Environment Vulnerability Environment For Webapp Jboss CVE-2017-12149 Spring Boot Whitelabel Error Page SpEL注入 Spring MVC 目录穿越漏洞(CVE-2018-1271) Apache Log4j 反序列化远程代码执行(CVE-2019-17571) Spring Boot Actuator Jolokia Exploit

记录在漏洞复现/研究过程中编写的 Poc/Exp

Poc-Exp 记录在漏洞复现/研究过程中编写的 PoC/Exp # Poc框架 pocsuite3 Apache Flink cve-2020-17518(Apache Flink 目录遍历/文件写入漏洞-Upload) 2021-01-06 cve-2020-17519(Apache Flink 目录遍历/文件读取漏洞-jobmanager/logs) 2021-01-06 Citrix cve-2020-8209(Citrix XenMobile 目录遍历/任意文件读取漏洞) Confluence cve-2019-3396(Atla

checking alerts of X-CERT

gocarts(go-CERT-alerts-summarizer) gocarts checks alerts of X-CERT (eg JPCERT, US-CERT) This project refers to knqyf263/gost Abstract gocarts is written in Go, and therefore you can just grab the binary releases and drop it in your $PATH gocarts summarizes alerts by CVE ID You can search alert's detail by CVE ID Main features gocarts has the following features S

Community curated list of template files for the nuclei engine to find security vulnerability and fingerprinting the targets.

Templates are the core of nuclei scanner which power the actual scanning engine This repository stores and houses various templates for the scanner provided by our team as well as contributed by the community We hope that you also contribute by sending templates via pull requests and grow the list Template Directory ├── LICENSE ├── READMEmd ├── basic-dete

Cyber Securiy MOOC Unsecure project

LINK: githubcom/ilmari666/cybsec Based on the Springboot-template as per course material that can be installed and run with suitably configured Netbeans and Maven Five flaws as per wwwowasporg/images/7/72/OWASP_Top_10-2017_%28en%29pdfpdf This document can be read at githubcom/ilmari666/cybsec/blob/master/READMEmd FLAW 1: A2:2017 Broken Authentica

信息收集 主机信息收集 敏感目录文件收集 目录爆破 字典 BurpSuite 搜索引擎语法 Google Hack DuckDuckgo 可搜索微博、人人网等屏蔽了主流搜索引擎的网站 Bing js文件泄漏后台或接口信息 快捷搜索第三方资源 findjs robotstxt 目录可访问( autoindex ) iis短文件名 IIS-ShortName-Scanner

Customized templates originally pulled from `projectdiscovery/nuclei-templates`

Nuclei Templates Templates are the core of nuclei scanner which power the actual scanning engine This repository stores and houses various templates for the scanner provided by our team as well as contributed by the community We hope that you also contribute by sending templates via pull requests or Github issue and grow the list Resources Templates Documentation Contr

Kenzer Templates [1289] TEMPLATE TOOL FILE favinizer favinizer favinizeryaml CVE-2017-5638 jaeles jaeles\cvescan\critical\CVE-2017-5638yaml CVE-2017-6360 jaeles jaeles\cvescan\critical\CVE-2017-6360yaml CVE-2017-6361 jaeles jaeles\cvescan\critical\CVE-2017-6361yaml CVE-2017-9841 jaeles jaeles\cvescan\critical\CVE-2017-9841yaml CVE-2018-16763 jaeles jaeles\

TEMPLATE TOOL FILE favinizer favinizer favinizeryaml CVE-2017-5638 jaeles jaeles\cvescan\critical\CVE-2017-5638yaml CVE-2017-6360 jaeles jaeles\cvescan\critical\CVE-2017-6360yaml CVE-2017-6361 jaeles jaeles\cvescan\critical\CVE-2017-6361yaml CVE-2017-9841 jaeles jaeles\cvescan\critical\CVE-2017-9841yaml CVE-2018-16763 jaeles jaeles\cvescan\critical\CVE-2018-1