Manageengine Oputils vulnerabilities
3 known vulnerabilities affecting manageengine/oputils.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2010-1044P3HIGHCVSS 7.5PoCv5.02010-03-23
CVE-2010-1044 [HIGH] CWE-89 CVE-2010-1044: SQL injection vulnerability in Login.do in ManageEngine OpUtils 5.0 allows remote attackers to execu
SQL injection vulnerability in Login.do in ManageEngine OpUtils 5.0 allows remote attackers to execute arbitrary SQL commands via the isHttpPort parameter.
nvd
CVE-2014-8678P3HIGHCVSS 7.8≤ 7.02014-11-25
CVE-2014-8678 [HIGH] CWE-200 CVE-2014-8678: The ConfigSaveServlet servlet in ManageEngine OpUtils before build 71024 allows remote attackers to
The ConfigSaveServlet servlet in ManageEngine OpUtils before build 71024 allows remote attackers to "disclose" files via a crafted filename, related to "saveFile."
nvd
CVE-2008-2797P4MEDIUMCVSS 4.3v5.02008-06-20
CVE-2008-2797 [MEDIUM] CWE-79 CVE-2008-2797: Cross-site scripting (XSS) vulnerability in MainLayout.do in ManageEngine OpUtils 5.0 allows remote
Cross-site scripting (XSS) vulnerability in MainLayout.do in ManageEngine OpUtils 5.0 allows remote attackers to inject arbitrary web script or HTML via the hostName parameter, when viewing an SNMP graph. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
nvd