Solarwinds » Storage Manager : Security Vulnerabilities, CVEs,
ProcessFileUpload.jsp in SolarWinds Storage Manager before 6.2 allows remote attackers to upload and execute arbitrary files via unspecified vectors.
Max CVSS
10.0
EPSS Score
1.16%
Published
2015-10-15
Updated
2015-10-16
CVE-2015-5371
Public exploit
The AuthenticationFilter class in SolarWinds Storage Manager allows remote attackers to upload and execute arbitrary scripts via unspecified vectors.
Max CVSS
10.0
EPSS Score
97.35%
Published
2015-07-06
Updated
2016-11-28
SQL injection vulnerability in the LoginServlet page in SolarWinds Storage Manager before 5.1.2, SolarWinds Storage Profiler before 5.1.2, and SolarWinds Backup Profiler before 5.1.2 allows remote attackers to execute arbitrary SQL commands via the loginName field.
Max CVSS
10.0
EPSS Score
20.62%
Published
2017-12-20
Updated
2018-01-11
3 vulnerabilities found