EXPLOITDB-EDB-44071

EXPLOITDB WRITEUP
Exploit for CVE-2017-11470 - IDERA Uptime Monitor 7.8 - SQL Injection
AI Analysis

This document provides a detailed technical analysis of three vulnerabilities in IDERA Uptime Monitor 7.8, including two SQL injection flaws and a directory traversal issue. It includes proof-of-concept URLs and code snippets demonstrating the vulnerabilities.

Attack Type
SQLi | info_leak
Complexity
trivial
Reliability
reliable
MITRE ATT&CK
T1189 - Drive-by Compromise T1005 - Data from Local System
Loading exploit code...
Download ZIP Password: eip
Source
Platform Exploitdb
Type webapps
Platform windows
Authors
Beyond Security’s SecuriTeam Secure Disclosure program
Vulnerability
CVE-2017-11470
IDERA Uptime Monitor 7.8 - SQL Injection
CRITICAL
CVSS 9.8