CVE-2018-13038

EPSS 0.41% · P62 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2018-13038

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

OpenSID 18.06-pasca has an Unrestricted File Upload vulnerability via an Attachment Document in the article feature. This vulnerability leads to uploading arbitrary PHP code via a .php filename with the application/pdf Content-Type.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

OpenSID 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

OpenSID是由SID社区开发的一套村镇信息管理系统。 OpenSID 18.06-pasca版本中存在任意文件上传漏洞。攻击者可借助文章功能中的附件文档利用该漏洞上传任意PHP代码。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2018-13038

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2018-13038

请登录查看更多情报信息。

https://github.com/OpenSID/OpenSID/issues/1177x_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2018-13038

Same Patch Batch · n/a · 2018-07-01 · 8 CVEs total

CVE-2018-13043		Debian devscripts 安全漏洞
CVE-2018-13037		jpeg-compressor 缓冲区错误漏洞
CVE-2018-13039		OpenSID 跨站脚本漏洞
CVE-2018-13040		OpenSID 跨站请求伪造漏洞
CVE-2018-13041		Link Platform 数字错误漏洞
CVE-2018-13032		ECESSA ShieldLink SL175EHQ 跨站请求伪造漏洞
CVE-2018-13033		GNU Binutils BFD库安全漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2018-13038

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2018-13038

I. Basic Information for CVE-2018-13038

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2018-13038

III. Intelligence Information for CVE-2018-13038

Same Patch Batch · n/a · 2018-07-01 · 8 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2018-13038

Leave a comment