Local File Inclusion Vulnerability in ManageEngine ServiceDesk Plus

Local File Inclusion Vulnerability in ManageEngine ServiceDesk Plus

CVE-2017-9376 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

ManageEngine ServiceDesk Plus before 9314 contains a local file inclusion vulnerability in the defModule parameter in DefaultConfigDef.do and AssetDefaultConfigDef.do.

Learn more about our Web Application Penetration Testing UK.