RSS   Vulnerabilities for 'Servicenow'   RSS

2018-08-03
 
CVE-2018-7748

CWE-94
 

 
report_viewer.do in ServiceNow Release Jakarta Patch 8 and earlier allows remote attackers to execute arbitrary code via '${xyz}' Glide Scripting Injection in the sysparm_media parameter.

 

 >>> Vendor: Servicenow 2 Products
It service management
Servicenow


Copyright 2024, cxsecurity.com

 

Back to Top