Digital Interruption

2 exploits Active since Feb 2019
CVE-2018-15657 EXPLOITDB HIGH text WORKING POC
42gears SureMDM < 2018-11-27 - Server-Side Request Forgery via DownloadUrlResponse.ashx URL Parameter
An SSRF issue was discovered in 42Gears SureMDM before 2018-11-27 via the /api/DownloadUrlResponse.ashx "url" parameter.
CVSS 7.3
CVE-2018-19374 EXPLOITDB HIGH text WRITEUP
Zoho ManageEngine ADManager Plus 6.6 Build 6657 - Privilege Escalation via Trojan Horse File in Bin Directory
Zoho ManageEngine ADManager Plus 6.6 Build 6657 allows local users to gain privileges (after a reboot) by placing a Trojan horse file into the permissive bin directory.
CVSS 7.0