CVE-2019-11445

HIGH

OpenKM 6.3.2-6.3.7 - Unauthenticated Remote Code Execution via JSP File Upload

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-11445. PoCs published by AkkuS.

AI-analyzed exploit summary This Metasploit module exploits an authenticated RCE vulnerability in OpenKM Document Management < 6.3.7 by uploading a malicious JSP file and moving it to the web root directory. It leverages improper path validation in the admin's 'Export' functionality.

Description

OpenKM 6.3.2 through 6.3.7 allows an attacker to upload a malicious JSP file into the /okm:root directories and move that file to the home directory of the site, via frontend/FileUpload and admin/repository_export.jsp. This is achieved by interfering with the Filesystem path control in the admin's Export field. As a result, attackers can gain remote code execution through the application server with root privileges.

Exploits (1)

exploitdb WORKING POC
by AkkuS · rubywebappsjsp
https://www.exploit-db.com/exploits/46526

This Metasploit module exploits an authenticated RCE vulnerability in OpenKM Document Management < 6.3.7 by uploading a malicious JSP file and moving it to the web root directory. It leverages improper path validation in the admin's 'Export' functionality.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: OpenKM Document Management < 6.3.7
Auth required
Prerequisites: Valid credentials for OpenKM admin panel · Network access to OpenKM server
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
https://www.exploit-db.com/exploits/46526

Scores

CVSS v3 7.2
EPSS 0.2091
EPSS Percentile 95.8%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-434
Status published
Products (1)
openkm/openkm < 6.3.7
Published Apr 22, 2019
Tracked Since Feb 18, 2026