Invia #447290: github.com/welliamcao/OpsManage OpsManage v3.0.5\v3.0.4\v3.0.3\v3.0.2\v3.0.1 Remote Code Executioninformazioni

Titlegithub.com/welliamcao/OpsManage OpsManage v3.0.5\v3.0.4\v3.0.3\v3.0.2\v3.0.1 Remote Code Execution
DescriptionThe OpsManage Automated Management Platform contains a remote code execution vulnerability. Attackers can bypass parameter validation and the framework's CSRF protection by specifying specific parameter combinations and setting special request headers, allowing OpsManage to remotely execute arbitrary Python code.
Source⚠️ https://github.com/Sp1d3rL1/OpsManage_RCE
User
 sp1d3r (UID 77907)
Submission19/11/2024 07:59 (6 mesi fa)
Moderation24/11/2024 16:23 (5 days later)
StatusAccettato
VulDB Entry285983 [welliamcao OpsManage 3.0.1/3.0.2/3.0.3/3.0.4/3.0.5 API Endpoint deploy_api.py deploy_host_vars escalazione di privilegi]
Points18

PrecedenteVisione D'insiemeIl prossimo

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!