Vulnerability CVE-2019-11448

Vulnerability CVE-2019-11448

Published: 2019-04-22

Description:

Type:

(Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
10/10	10/10	10/10

Affected software
Zohocorp -> Manageengine applications manager

https://pentest.com.tr/exploits/ManageEngine-App-Manager-14-SQLi-Remote-Code-Execution.html

https://www.exploit-db.com/exploits/46725

https://www.exploit-db.com/exploits/46725/

https://www.manageengine.com/products/applications_manager/security-updates/security-updates-cve-2019-11448.html