VYPR
Critical severity9.8NVD Advisory· Published May 14, 2018· Updated Jun 17, 2026

CVE-2018-11031

CVE-2018-11031

Description

application/home/controller/debug.php in PHPRAP 1.0.4 through 1.0.8 has SSRF via the /debug URI, as demonstrated by an api[url]=file:////etc/passwd&api[method]=get POST request.

Affected products

2
  • Gouguoyin/Phprapinferred2 versions
    >=1.0.4,<=1.0.8+ 1 more
    • (no CPE)range: >=1.0.4,<=1.0.8
    • (no CPE)range: >=1.0.4 <=1.0.8

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.