Zoho ManageEngine ServiceDesk Plus CVE-2019-8394 Arbitrary File Upload Vulnerability

Bugtraq ID: 107129
Class: Input Validation Error
CVE: CVE-2019-8394
Remote: Yes
Local: No
Published: Feb 18 2019 12:00AM
Updated: Feb 18 2019 12:00AM
Credit: Dao Duy Hung
Vulnerable: Zohocorp ManageEngine ServiceDesk Plus 10.0 build 10011
Zohocorp ManageEngine ServiceDesk Plus 10.0 build 10010
Zohocorp ManageEngine ServiceDesk Plus 10.0 build 10009
Zohocorp ManageEngine ServiceDesk Plus 10.0 build 10008
Zohocorp ManageEngine ServiceDesk Plus 10.0 build 10007
Zohocorp ManageEngine ServiceDesk Plus 10.0 build 10006
Zohocorp ManageEngine ServiceDesk Plus 10.0 build 10005
Zohocorp ManageEngine ServiceDesk Plus 10.0 build 10004
Zohocorp ManageEngine ServiceDesk Plus 10.0 build 10003
Zohocorp ManageEngine ServiceDesk Plus 10.0 build 10002
Zohocorp ManageEngine ServiceDesk Plus 10.0 build 10001
Zohocorp ManageEngine ServiceDesk Plus 10.0 build 10000
Not Vulnerable: Zohocorp ManageEngine ServiceDesk Plus 10.0 build 10013
Zohocorp ManageEngine ServiceDesk Plus 10.0 build 10012


 

Privacy Statement
Copyright 2010, SecurityFocus