Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2019-15104
HistoryAug 16, 2019 - 2:44 a.m.

CVE-2019-15104

2019-08-1602:44:45
mitre
www.cve.org
3

AI Score

9.2

Confidence

High

EPSS

0.005

Percentile

77.6%

JSON

An issue was discovered in Zoho ManageEngine OpManager through 12.4x. There is a SQL Injection vulnerability in jsp/NewThresholdConfiguration.jsp via the resourceid parameter. Therefore, a low-authority user can gain the authority of SYSTEM on the server. One can consequently upload a malicious file using the “Execute Program Action(s)” feature.

Related

cve 1
exploitdb 1
symantec 1
prion 1
nvd 1
cve
cve
CVE-2019-15104
2019-08-16 03:15:11
exploitdb
exploitdb
ManageEngine OpManager 12.4x - Privilege Escalation / Remote Command Execution (Metasploit)
2019-08-12 00:00:00
symantec
symantec
Zoho Applications Manager Plugin CVE-2019-15104 SQL Injection Vulnerability
2019-08-13 00:00:00
prion
prion
Sql injection
2019-08-16 03:15:00
nvd
nvd
CVE-2019-15104
2019-08-16 03:15:11

AI Score

9.2

Confidence

High

EPSS

0.005

Percentile

77.6%

JSON
Related for CVELIST:CVE-2019-15104
cve1exploitdb1symantec1prion1nvd1