CVE-2019-11448

CVE-2019-11448

An issue was discovered in Zoho ManageEngine Applications Manager 11.0 through 14.0. An unauthenticated user can gain the authority of SYSTEM on the server due to a Popup_SLA.jsp sid SQL injection vulnerability. For example, the attacker can subsequently write arbitrary text to a .vbs file.

Source: CVE-2019-11448

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다