cve/2019/CVE-2019-5916.md

### [CVE-2019-5916](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5916)
![](https://img.shields.io/static/v1?label=Product&message=POWER%20EGG&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=(Ver%202.0.1%2C%20Ver%202.02%20Patch%203%20and%20earlier%2C%20Ver%202.1%20Patch%204%20and%20earlier%2C%20Ver%202.2%20Patch%207%20and%20earlier%2C%20Ver%202.3%20Patch%209%20and%20earlier%2C%20Ver%202.4%20Patch%2013%20and%20earlier%2C%20Ver%202.5%20Patch%2012%20and%20earlier%2C%20Ver%202.6%20Patch%208%20and%20earlier%2C%20Ver%202.7%20Patch%206%20and%20earlier%2C%20Ver%202.7%20Government%20Edition%20Patch%207%20and%20earlier%2C%20Ver%202.8%20Patch%206%20and%20earlier%2C%20Ver%202.8c%20Patch%205%20and%20earlier%2C%20Ver%202.9%20Patch%204%20and%20earlier)%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Improper%20Input%20Validation&color=brightgreen)

### Description

Input validation issue in POWER EGG(Ver 2.0.1, Ver 2.02 Patch 3 and earlier, Ver 2.1 Patch 4 and earlier, Ver 2.2 Patch 7 and earlier, Ver 2.3 Patch 9 and earlier, Ver 2.4 Patch 13 and earlier, Ver 2.5 Patch 12 and earlier, Ver 2.6 Patch 8 and earlier, Ver 2.7 Patch 6 and earlier, Ver 2.7 Government Edition Patch 7 and earlier, Ver 2.8 Patch 6 and earlier, Ver 2.8c Patch 5 and earlier, Ver 2.9 Patch 4 and earlier) allows remote attackers to execute EL expression on the server via unspecified vectors.

### POC

#### Reference
- https://poweregg.d-circle.com/support/package/important/20190204_000780/

#### Github
No PoCs found on GitHub currently.
Update Sun May 26 14:27:04 CEST 2024 2024-05-26 14:27:05 +02:00			`### [CVE-2019-5916](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5916)`
			`![](https://img.shields.io/static/v1?label=Product&message=POWER%20EGG&color=blue)`
Update CVE list 2025-09-29 21:09 2025-09-29 21:09:30 +02:00			![](https://img.shields.io/static/v1?label=Version&message=(Ver%202.0.1%2C%20Ver%202.02%20Patch%203%20and%20earlier%2C%20Ver%202.1%20Patch%204%20and%20earlier%2C%20Ver%202.2%20Patch%207%20and%20earlier%2C%20Ver%202.3%20Patch%209%20and%20earlier%2C%20Ver%202.4%20Patch%2013%20and%20earlier%2C%20Ver%202.5%20Patch%2012%20and%20earlier%2C%20Ver%202.6%20Patch%208%20and%20earlier%2C%20Ver%202.7%20Patch%206%20and%20earlier%2C%20Ver%202.7%20Government%20Edition%20Patch%207%20and%20earlier%2C%20Ver%202.8%20Patch%206%20and%20earlier%2C%20Ver%202.8c%20Patch%205%20and%20earlier%2C%20Ver%202.9%20Patch%204%20and%20earlier)%20&color=brightgreen)
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=Improper%20Input%20Validation&color=brightgreen)`
Update Sun May 26 14:27:04 CEST 2024 2024-05-26 14:27:05 +02:00
			`### Description`

			Input validation issue in POWER EGG(Ver 2.0.1, Ver 2.02 Patch 3 and earlier, Ver 2.1 Patch 4 and earlier, Ver 2.2 Patch 7 and earlier, Ver 2.3 Patch 9 and earlier, Ver 2.4 Patch 13 and earlier, Ver 2.5 Patch 12 and earlier, Ver 2.6 Patch 8 and earlier, Ver 2.7 Patch 6 and earlier, Ver 2.7 Government Edition Patch 7 and earlier, Ver 2.8 Patch 6 and earlier, Ver 2.8c Patch 5 and earlier, Ver 2.9 Patch 4 and earlier) allows remote attackers to execute EL expression on the server via unspecified vectors.

			`### POC`

			`#### Reference`
			`- https://poweregg.d-circle.com/support/package/important/20190204_000780/`

			`#### Github`
			`No PoCs found on GitHub currently.`