3 matches found
Zoho ManageEngine OpManager Image Arbitrary File Upload (CVE-2018-18475)
An arbitrary file upload vulnerability exists in Zoho ManageEngine OpManager. The vulnerability is due to insufficient validation of uploaded images. Successful exploitation could result in unrestricted file upload and possible further attacks...
CVE-2018-18475
Zoho ManageEngine OpManager before 12.3 build 123214 allows Unrestricted Arbitrary File Upload...
CVE-2018-18475
Zoho ManageEngine OpManager is affected by CVE-2018-18475: prior to 12.3 build 123214, the product allows unrestricted arbitrary file upload due to insufficient validation of uploaded images. The vulnerability stems from an inadequate check during file upload, enabling an attacker to upload arbit...