23 Avr 2019
Vulnérabilité CVE-2019-11469 CVE Vulnerability
Zoho ManageEngine Applications Manager 12 through 14 allows FaultTemplateOptions.jsp resourceid SQL injection. Subsequently, an unauthenticated user can gain the authority of SYSTEM on the server by uploading a malicious file via the "Execute Program Action(s)" feature. (CVSS:10.0) (Last Update:2019-04-23)
Vulnerability Details : Zoho ManageEngine Applications Manager 12 through 14 allows FaultTemplateOptions.jsp resourceid SQL injection. Subsequently, an unauthenticated user can gain the authority of SYSTEM on the server by uploading a malicious file via the "Execute Program Action(s)" feature. Publish Date : 2019-04-23 Last Update Date : 2019-04-23 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2019-11469- Number Of Affected Versions By Product
- References For CVE-2019-11469 | ||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2019-11469There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |