← back
CVE-2015-8261

CVE-2015-8261

EPSS 3.5%
The DroneDeleteOldMeasurements implementation in Ipswitch WhatsUp Gold before 16.4 does not properly validate serialized XML objects, which allows remote attackers to conduct SQL injection attacks via a crafted SOAP request.
Affected products
n/a · n/a
public PoCs found2
cve_referencewww.exploit-db.com/exploits/39231/unverifiedexploitdbwww.exploit-db.com/exploits/39231unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.exploit-db.com/exploits/39231/https://www.kb.cert.org/vuls/id/753264http://www.securitytracker.com/id/1034613