CVE-2017-11469

HIGH

IDERA Uptime Monitor 7.8 - Path Traversal

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-11469.

AI-analyzed exploit summary This document provides a detailed technical analysis of three vulnerabilities in IDERA Uptime Monitor 7.8, including two SQL injection flaws and a directory traversal issue. It includes proof-of-concept URLs and code snippets demonstrating the vulnerabilities.

Description

get2post.php in IDERA Uptime Monitor 7.8 has directory traversal in the file_name parameter.

Exploits (1)

exploitdb WRITEUP

webappswindows

https://www.exploit-db.com/exploits/44071

View Code ZIP pw:eip

This document provides a detailed technical analysis of three vulnerabilities in IDERA Uptime Monitor 7.8, including two SQL injection flaws and a directory traversal issue. It includes proof-of-concept URLs and code snippets demonstrating the vulnerabilities.

Classification

Writeup 100%

Attack Type

Sqli | Info Leak

Complexity

Trivial

Reliability

Reliable

Target: IDERA Uptime Monitor 7.8

No auth needed

Prerequisites: Network access to the vulnerable application

MITRE ATT&CK

T1189 - Drive-by Compromise T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (1)

Core 1

Core References

Exploit, Technical Description, Third Party Advisory x_refsource_misc

https://blogs.securiteam.com/index.php/archives/3223#more-3223

Scores

CVSS v3 7.5

EPSS 0.0493

EPSS Percentile 91.0%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE

CWE-22

Status published

Products (1)

idera/uptime_infrastructure_monitor 7.8

Published Jul 20, 2017

Tracked Since Feb 18, 2026