CVE-2018-18387

HIGH

playSMS < 1.4.2 - Privilege Escalation via Daemon Abuse

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-18387. PoCs published by TheeBlind.

AI-analyzed exploit summary This exploit abuses a privilege escalation vulnerability in playSMS <= 1.4.2 by injecting a reverse shell into the init.php file, which is included by a root-run daemon. The attacker must have write access to the playSMS directory and the daemon must be running as root.

Description

playSMS through 1.4.2 allows Privilege Escalation through Daemon abuse.

Exploits (1)

nomisec WORKING POC 5 stars

by TheeBlind · poc

https://github.com/TheeBlind/CVE-2018-18387

View Code ZIP pw:eip

This exploit abuses a privilege escalation vulnerability in playSMS <= 1.4.2 by injecting a reverse shell into the init.php file, which is included by a root-run daemon. The attacker must have write access to the playSMS directory and the daemon must be running as root.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: playSMS <= 1.4.2

Auth required

Prerequisites: Write access to playSMS directory · Daemon running as root

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1505.003 - Web Shell

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Mitigation, Third Party Advisory x_refsource_misc

https://github.com/TheeBlind/CVE-2018-18387

Scores

CVSS v3 8.8

EPSS 0.0180

EPSS Percentile 75.5%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-829

Status published

Products (1)

playsms_project/playsms < 1.4.2

Published Oct 29, 2018

Tracked Since Feb 18, 2026