Vulnerability CVE-2019-15104

Vulnerability CVE-2019-15104

Published: 2019-08-15 Modified: 2019-08-16

Description:

Type:

(Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
9/10	10/10	8/10

Affected software
Zohocorp -> Manageengine applications manager

http://pentest.com.tr/exploits/DEFCON-ManageEngine-OpManager-v12-4-Privilege-Escalation-Remote-Command-Execution.html

https://www.exploit-db.com/exploits/47227

https://www.manageengine.com/products/applications_manager/security-updates/security-updates-cve-2019-15104.html