4 matches found
ManageEngine OpManager Multiple Directory Traversal Vulnerabilities
The version of ManageEngine OpManager installed on the remote host is affected by multiple directory traversal vulnerabilities : - The FileCollector servlet fails to properly sanitize user-supplied input to the 'regionID' and 'FILENAME' parameters when uploading files. This allows a remote attack...
Directory traversal
Directory traversal vulnerability in the FileCollector servlet in ZOHO ManageEngine OpManager 11.4, 11.3, and earlier allows remote attackers to write and execute arbitrary files via a .. dot dot in the FILENAME parameter...
ManageEngine OpManager FileCollector Servlet File Upload
File upload vulnerability in ManageEngine OpManager FileCollector servlet regionID parameter Vulnerability Type: File Upload For the exploit source code contact DSquare Security sales team...
ManageEngine OpManager / Social IT - Arbitrary File Upload (Metasploit)
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'ManageEngine OpManager / Social IT Arbitrary File Upload', 'Description' = %q This module exploits a file upload vulnerability in...