Show filters
18 Total Results
Displaying 11-18 of 18
Sort by:
Attacker Value
Unknown

CVE-2017-16847

Disclosure Date: November 16, 2017 (last updated November 26, 2024)
Zoho ManageEngine Applications Manager 13 before build 13530 allows SQL injection via the /showresource.do resourceid parameter in a showPlasmaView action.
0
0
Attacker Value
Unknown

CVE-2017-16848

Disclosure Date: November 16, 2017 (last updated November 26, 2024)
Zoho ManageEngine Applications Manager 13 allows SQL injection via the /manageConfMons.do groupname parameter.
0
0
Attacker Value
Unknown

CVE-2017-16850

Disclosure Date: November 16, 2017 (last updated November 26, 2024)
Zoho ManageEngine Applications Manager 13 before build 13530 allows SQL injection via the /showresource.do resourceid parameter in a getResourceProfiles action.
0
0
Attacker Value
Unknown

CVE-2017-16846

Disclosure Date: November 16, 2017 (last updated November 26, 2024)
Zoho ManageEngine Applications Manager 13 before build 13530 allows SQL injection via the /manageApplications.do?method=AddSubGroup haid parameter.
0
0
Attacker Value
Unknown

CVE-2017-16849

Disclosure Date: November 16, 2017 (last updated November 26, 2024)
Zoho ManageEngine Applications Manager 13 before build 13530 allows SQL injection via the /MyPage.do?method=viewDashBoard forpage parameter.
0
0
Attacker Value
Unknown

CVE-2017-16851

Disclosure Date: November 16, 2017 (last updated November 26, 2024)
Zoho ManageEngine Applications Manager 13 before build 13530 allows SQL injection via the /MyPage.do widgetid parameter.
0
0
Attacker Value
Unknown

CVE-2017-16543

Disclosure Date: November 05, 2017 (last updated November 26, 2024)
Zoho ManageEngine Applications Manager 13 before build 13500 allows SQL injection via GraphicalView.do, as demonstrated by a crafted viewProps yCanvas field or viewid parameter.
0
0
Attacker Value
Unknown

CVE-2017-16542

Disclosure Date: November 05, 2017 (last updated November 26, 2024)
Zoho ManageEngine Applications Manager 13 before build 13500 allows Post-authentication SQL injection via the name parameter in a manageApplications.do?method=insert request.
0
0
View More Topics  < Previous