Lucene search
+L

4 matches found

NVD
NVD
added 2020/04/21 7:15 p.m.62 views

CVE-2020-10569

SysAid On-Premise 20.1.11, by default, allows the AJP protocol port, which is vulnerable to a GhostCat attack. Additionally, it allows unauthenticated access to upload files, which can be used to execute commands on the system by chaining it with a GhostCat attack. NOTE: This may be a duplicate o...

10CVSS9.9AI score0.03176EPSS
Exploits3References2
CVE
CVE
added 2020/04/21 7:1 p.m.257 views

CVE-2020-10569

SysAid On-Premise 20.1.11 is reported to expose the AJP port by default, enabling a GhostCat-related file-read/remote-command exposure and unauthenticated file uploads that can be chained to execute commands. The description explicitly links these issues to AJP access and file upload weaknesses, ...

10CVSS9.9AI score0.03176EPSS
In wildExploits3References2Affected Software1
Cvelist
Cvelist
added 2020/04/21 7:1 p.m.65 views

CVE-2020-10569

SysAid On-Premise 20.1.11, by default, allows the AJP protocol port, which is vulnerable to a GhostCat attack. Additionally, it allows unauthenticated access to upload files, which can be used to execute commands on the system by chaining it with a GhostCat attack. NOTE: This may be a duplicate o...

10AI score0.03176EPSS
Exploits3References2
Packet Storm
Packet Storm
added 2020/04/21 12:0 a.m.333 views

Sysaid 20.1.11 b26 Remote Command Execution

Exploit Title: Sysaid 20.1.11 b26 - Remote Command Execution Google Dork: intext:"Help Desk Software by SysAid " Date: 2020-03-09 Exploit Author: Ahmed Sherif Vendor Homepage: https://www.sysaid.com/free-help-desk-software Software Link: https://www.sysaid.com/free-help-desk-software Version:...

9.7AI score0.03176EPSS
Exploits3
Rows per page
Query Builder