| Title | github.com/welliamcao/OpsManage OpsManage v3.0.5\v3.0.4\v3.0.3\v3.0.2\v3.0.1 Remote Code Execution |
|---|
| Description | The OpsManage Automated Management Platform contains a remote code execution vulnerability. Attackers can bypass parameter validation and the framework's CSRF protection by specifying specific parameter combinations and setting special request headers, allowing OpsManage to remotely execute arbitrary Python code. |
|---|
| Source | ⚠️ https://github.com/Sp1d3rL1/OpsManage_RCE |
|---|
| User | sp1d3r (UID 77907) |
|---|
| Submission | 19/11/2024 07:59 (6 أشهر منذ) |
|---|
| Moderation | 24/11/2024 16:23 (5 days later) |
|---|
| Status | تمت الموافقة |
|---|
| VulDB Entry | 285983 [welliamcao OpsManage 3.0.1/3.0.2/3.0.3/3.0.4/3.0.5 API Endpoint deploy_api.py deploy_host_vars تجاوز الصلاحيات] |
|---|
| Points | 18 |
|---|