Search Results | AttackerKB

Show filters

Clear All

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

2 Total Results

Displaying 1-2 of 2

Attacker Value

Unknown

CVE-2020-8591

Disclosure Date: February 03, 2020 (last updated February 21, 2025)

eG Manager 7.1.2 allows authentication bypass via a com.egurkha.EgLoginServlet?uname=admin&upass=&accessKey=eGm0n1t0r request.

Attacker Value

Unknown

CVE-2020-8592

Disclosure Date: February 03, 2020 (last updated February 21, 2025)

eG Manager 7.1.2 allows SQL Injection via the user parameter to com.eg.LoginHelperServlet (aka the Forgot Password feature).

Attack Vector: Network Privileges: None User Interaction: None

2 Total Results

Displaying 1-2 of 2

Unknown

CVE-2020-8591

Unknown

CVE-2020-8592

Quick Cookie Notification