CVE-2018-7251

CRITICAL NUCLEI

Anchor CMS < 0.12.7 - Sensitive Information Exposure via Error Log

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-7251. PoCs published by Tijme Gommers. A Nuclei detection template is also available.

AI-analyzed exploit summary This exploit fetches the publicly accessible error log file from AnchorCMS installations, which may contain sensitive information such as MySQL credentials due to improper error logging. It parses the log for password entries and displays them.

Description

An issue was discovered in config/error.php in Anchor 0.12.3. The error log is exposed at an errors.log URI, and contains MySQL credentials if a MySQL error (such as "Too many connections") has occurred.

Exploits (1)

exploitdb WORKING POC
by Tijme Gommers · pythonwebappsmultiple
https://www.exploit-db.com/exploits/47459

This exploit fetches the publicly accessible error log file from AnchorCMS installations, which may contain sensitive information such as MySQL credentials due to improper error logging. It parses the log for password entries and displays them.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: AnchorCMS 0.12.3a
No auth needed
Prerequisites: Target must have exposed /anchor/errors.log file · Error log must contain sensitive data
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Nuclei Templates (1)

Anchor CMS 0.12.3 - Error Log Exposure
CRITICALby pdteam

References (5)

Core 5
Core References
Issue Tracking, Third Party Advisory x_refsource_misc
https://github.com/anchorcms/anchor-cms/issues/1247

Scores

CVSS v3 9.8
EPSS 0.9060
EPSS Percentile 99.6%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-200
Status published
Products (2)
anchorcms/anchor 0.12.3
anchorcms/anchor-cms 0 - 0.12.7Packagist
Published Feb 19, 2018
Tracked Since Feb 18, 2026