cve/CVE-2018-7890.md at 9cc2023bd8dbe0ab8c5f051fa9a43f1e04594987

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

A remote code execution issue was discovered in Zoho ManageEngine Applications Manager before 13.6 (build 13640). The publicly accessible testCredential.do endpoint takes multiple user inputs and validates supplied credentials by accessing a specified system. This endpoint calls several internal classes, and then executes a PowerShell script. If the specified system is OfficeSharePointServer, then the username and password parameters to this script are not validated, leading to Command Injection.

POC

Reference

https://pentest.blog/advisory-manageengine-applications-manager-remote-code-execution-sqli-and/
https://www.exploit-db.com/exploits/44274/

Github

https://github.com/ARPSyndicate/cvemon

1.0 KiB Raw Blame History

CVE-2018-7890

Description

POC

Reference

Github

1.0 KiB

Raw Blame History