High severity7.5OSV Advisory· Published Jun 27, 2018· Updated Jun 17, 2026
CVE-2018-12909
CVE-2018-12909
Description
Webgrind 1.5 relies on user input to display a file, which lets anyone view files from the local filesystem (that the webserver user has access to) via an index.php?op=fileviewer&file= URI. NOTE: the vendor indicates that the product is not intended for a "publicly accessible environment.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
1- github.com/jokkedk/webgrind/issues/112nvdIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.