mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-06 02:31:38 +00:00
726 B
726 B
CVE-2018-15537
Description
Unrestricted file upload (with remote code execution) in OCS Inventory NG ocsreports allows a privileged user to gain access to the server via crafted HTTP requests.
POC
Reference
- http://packetstormsecurity.com/files/150330/OCS-Inventory-NG-ocsreports-Shell-Upload.html
- http://seclists.org/fulldisclosure/2018/Nov/40
Github
No PoCs found on GitHub currently.