A CRLF injection vulnerability has... CVE-2023-4767

- AV AC AU C I A
发布: 2023-11-03
修订: 2023-11-13

A CRLF injection vulnerability has been found in ManageEngine Desktop Central affecting version 9.1.0. This vulnerability could allow a remote attacker to inject arbitrary HTTP headers and perform HTTP response splitting attacks via the fileName parameter in /STATE_ID/1613157927228/InvSWMetering.csv.

0%
暂无可用Exp或PoC
当前有1条受影响产品信息