CVE-2021-20081 - Zohocorp Manageengine Servicedesk Plus
Critical 7.2
Incomplete List of Disallowed Inputs in ManageEngine ServiceDesk Plus before version 11205 allows a remote, authenticated attacker to execute arbitrary commands with SYSTEM privileges.
Affected software
Zohocorp Manageengine Servicedesk Plus