Vulnerabilities

CVE-2022-29596

by Fred · 11/05/2022

MicroStrategy Enterprise Manager 2022 allows authentication bypass by triggering a login failure and then entering the Uid=/../../../../../../../../../../../windows/win.ini%00.jpg&Pwd=_any_password_&ConnMode=1&3054=Login substring for directory traversal.

Date published : 2022-05-11

https://github.com/haxpunk1337/Microstrategy-Poc/blob/main/poc

Similar

Tags: Cybersecurity Alert