Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
570
VMScore

CVE-2019-13462

Published: 12/08/2019 Updated: 15/08/2019
CVSS v2 Base Score: 6.4 | Impact Score: 4.9 | Exploitability Score: 10
CVSS v3 Base Score: 9.1 | Impact Score: 5.2 | Exploitability Score: 3.9
VMScore: 570
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:N
Subscribe to Lansweeper

Vulnerability Summary

Lansweeper prior to 7.1.117.4 allows unauthenticated SQL injection.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

lansweeper lansweeper

Github Repositories

https://github.com/securitytest3r/nuclei_templates_work

Custom Project Discovery Nuclei Templates

My Project Discovery Nuclei Templates Some of the Nuclei Templates I have created: Template Name Template Description CVE-2019-13462yaml Lansweeper through 711154 unauthenticated SQL injection hpe-system-management-anonymousyaml Detect HPE System Management anonymous access hpe-system-management-loginyaml Detect HPE System Management login page lansweeper-log

References

CWE-89https://www.nccgroup.trust/uk/our-research/technical-advisory-unauthenticated-sql-injection-in-lansweeper/https://www.lansweeper.com/forum/yaf_topics33_Announcements.aspxhttps://nvd.nist.govhttps://github.com/securitytest3r/nuclei_templates_work
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4651CVE-2024-34255elevation of privilegeCVE-2024-25529CVE-2024-4671NULL pointer dereferenceCVE-2024-25527template injectionCVE-2008-0166
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook