Vulnerabilities
Vulnerable Software
Solarwinds:  >> Storage Manager  Security Vulnerabilities
SQL injection vulnerability in the LoginServlet page in SolarWinds Storage Manager before 5.1.2, SolarWinds Storage Profiler before 5.1.2, and SolarWinds Backup Profiler before 5.1.2 allows remote attackers to execute arbitrary SQL commands via the loginName field.
CVSS Score
9.8
EPSS Score
0.429
Published
2017-12-20
ProcessFileUpload.jsp in SolarWinds Storage Manager before 6.2 allows remote attackers to upload and execute arbitrary files via unspecified vectors.
CVSS Score
10.0
EPSS Score
0.164
Published
2015-10-15
The AuthenticationFilter class in SolarWinds Storage Manager allows remote attackers to upload and execute arbitrary scripts via unspecified vectors.
CVSS Score
10.0
EPSS Score
0.83
Published
2015-07-06


Contact Us

Shodan ® - All rights reserved