EXPLOITDB-EDB-20643

EXPLOITDB text VERIFIED WRITEUP

Exploit for EIP-2026-119398 - ManageEngine OpUtils 6.0 - Persistent Cross-Site Scripting

AI Analysis

This is a technical writeup describing a stored XSS vulnerability in ManageEngine OpUtils version 6. The vulnerability is triggered by configuring a snmpd.conf file to include malicious JavaScript or HTML, which is then executed when the software performs an SNMP scan.

Attack Type

XSS

Complexity

moderate

Reliability

reliable

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

Loading exploit code...

Download ZIP Password: eip

Source

Platform Exploitdb

Type webapps

Platform windows

Language text

Files 1

https://www.exploit-db.com/exploits/20643

Authors

loneferret

Vulnerability

EIP-2026-119398

ManageEngine OpUtils 6.0 - Persistent Cross-Site Scripting