CVE-2011-2757

Manageengine Servicedesk Plus < 8.0.0.12 - Path Traversal

Title source: rule

Description

Directory traversal vulnerability in FileDownload.jsp in ManageEngine ServiceDesk Plus 8.0.0.12 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the FILENAME parameter. NOTE: this might overlap the US-CERT VU#543310 issue.

Exploits (4)

exploitdb WORKING POC VERIFIED

by xistence · textwebappsjsp

https://www.exploit-db.com/exploits/17442

View Code ZIP pw:eip

exploitdb WRITEUP VERIFIED

by Keith Lee · textwebappsjsp

https://www.exploit-db.com/exploits/17437

View Code ZIP pw:eip

exploitdb WORKING POC

by @ygoltsev · perlwebappsjsp

https://www.exploit-db.com/exploits/17503

View Code ZIP pw:eip

metasploit WORKING POC

rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/servicedesk_plus_traversal.rb

View Code ZIP pw:eip

References (1)

[Exploit] http://www.exploit-db.com/exploits/17503/

Scores

EPSS 0.6649

EPSS Percentile 98.5%

Details

CWE

CWE-22

Status published

Products (4)

manageengine/servicedesk_plus 7.0.0

manageengine/servicedesk_plus 7.6

manageengine/servicedesk_plus 8.0

manageengine/servicedesk_plus < 8.0.0.12

Published Jul 17, 2011

Tracked Since Feb 18, 2026