CVE-2015-7765
CVE-2015-7765
ZOHO ManageEngine OpManager 11.5 build 11600 and earlier uses a hardcoded password of "plugin" for the IntegrationUser account, which allows remote authenticated users to obtain administrator access by leveraging knowledge of this password.
Affected products
n/a · n/apublic PoCs found — 3
cve_referencepacketstormsecurity.com/files/133596/ManageEngine-OpManager-Remote-Code-Execution.htmlunverifiedcve_referencewww.exploit-db.com/exploits/38221/unverifiedexploitdbwww.exploit-db.com/exploits/38221unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://packetstormsecurity.com/files/133596/ManageEngine-OpManager-Remote-Code-Execution.htmlhttp://seclists.org/fulldisclosure/2015/Sep/66https://support.zoho.com/portal/manageengine/helpcenter/articles/pgsql-submitquery-do-vulnerabilityhttps://www.exploit-db.com/exploits/38221/http://www.rapid7.com/db/modules/exploit/windows/http/manage_engine_opmanager_rce