Exploitation Summary
EIP tracks 1 public exploit for CVE-2010-1044. PoCs published by Asheesh Anaconda.
AI-analyzed exploit summary This exploit demonstrates an SQL injection vulnerability in ManageEngine OpUtils 5 via the 'Login.do' endpoint. The PoC shows how an attacker can inject malicious SQL queries through the 'password' parameter to manipulate the application's database queries.
Description
SQL injection vulnerability in Login.do in ManageEngine OpUtils 5.0 allows remote attackers to execute arbitrary SQL commands via the isHttpPort parameter.
Exploits (1)
This exploit demonstrates an SQL injection vulnerability in ManageEngine OpUtils 5 via the 'Login.do' endpoint. The PoC shows how an attacker can inject malicious SQL queries through the 'password' parameter to manipulate the application's database queries.