{"vulnerability": "cve-2018-1638", "sightings": [{"uuid": "d5f72691-9850-458d-a65c-ab2465dbe0ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-16386", "type": "seen", "source": "https://t.me/cveNotify/263", "content": "\ud83d\udea8 #CVE-2018-16386\nAn issue was discovered in SWIFT Alliance Web Platform 7.1.23. A log injection (and an arbitrary log filename) can be achieved via the PATH_INFO to swp/login/EJBRemoteService/, related to com.swift.ejbgwt.j2ee.client.EjBlnvo... https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16386\n\n\ud83c\udf96@cveNotify", "creation_timestamp": "2019-07-05T22:59:58.000000Z"}, {"uuid": "29f0138e-38c0-4ce5-a729-a867c36ef473", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-16385", "type": "seen", "source": "https://t.me/GithubRedTeam/93255", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #\u6f0f\u6d1e #RCE #\u590d\u73b0 #CVE\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a SQL-ThinkPHP-5.0.24-RCE-\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a buzhimingdeaikun\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Unknown\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-07-13 15:25:09\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nSQL\u6ce8\u5165\u6f0f\u6d1e\u590d\u73b0\u62a5\u544a\u2014\u2014OWASP\u9776\u573a\u5b9e\u6218\uff0c\u901a\u8fc7UNION\u6ce8\u5165\u63d0\u53d6\u6570\u636e\u5e9329\u6761\u7528\u6237\u51ed\u8bc1  ThinkPHP 5.0.24 RCE\u6f0f\u6d1e\u590d\u73b0\u62a5\u544a\u2014\u2014CVE-2018-16385\uff0c\u9a8c\u8bc1\u4ee3\u7801\u6267\u884c\u80fd\u529b\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-07-16T12:00:07.395881Z"}, {"uuid": "9017b04c-95d2-498c-a57f-87c300a120bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-16385", "type": "seen", "source": "Telegram/vOHofO2qPvPXIyPNButd37pf6Fhua5DFTWTRaJatxt7pU5Q", "content": "", "creation_timestamp": "2026-07-16T19:00:08.670154Z"}, {"uuid": "a0e885c1-65a1-4265-8370-3dfa40a0409b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-16385", "type": "published-proof-of-concept", "source": "Telegram/vOHofO2qPvPXIyPNButd37pf6Fhua5DFTWTRaJatxt7pU5Q", "content": "", "creation_timestamp": "2026-07-17T00:00:09.052328Z"}, {"uuid": "3f3267d0-42ec-4473-b5e7-769015398824", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-16385", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/93255", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #\u6f0f\u6d1e #RCE #\u590d\u73b0 #CVE\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a SQL-ThinkPHP-5.0.24-RCE-\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a buzhimingdeaikun\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Unknown\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-07-13 15:25:09\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nSQL\u6ce8\u5165\u6f0f\u6d1e\u590d\u73b0\u62a5\u544a\u2014\u2014OWASP\u9776\u573a\u5b9e\u6218\uff0c\u901a\u8fc7UNION\u6ce8\u5165\u63d0\u53d6\u6570\u636e\u5e9329\u6761\u7528\u6237\u51ed\u8bc1  ThinkPHP 5.0.24 RCE\u6f0f\u6d1e\u590d\u73b0\u62a5\u544a\u2014\u2014CVE-2018-16385\uff0c\u9a8c\u8bc1\u4ee3\u7801\u6267\u884c\u80fd\u529b\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-07-17T00:00:49.363409Z"}]}