Show filters
13 Total Results
Displaying 11-13 of 13
Sort by:
Attacker Value
Unknown

CVE-2017-16851

Disclosure Date: November 16, 2017 (last updated November 26, 2024)
Zoho ManageEngine Applications Manager 13 before build 13530 allows SQL injection via the /MyPage.do widgetid parameter.
0
0
Attacker Value
Unknown

CVE-2017-16543

Disclosure Date: November 05, 2017 (last updated November 26, 2024)
Zoho ManageEngine Applications Manager 13 before build 13500 allows SQL injection via GraphicalView.do, as demonstrated by a crafted viewProps yCanvas field or viewid parameter.
0
0
Attacker Value
Unknown

CVE-2017-16542

Disclosure Date: November 05, 2017 (last updated November 26, 2024)
Zoho ManageEngine Applications Manager 13 before build 13500 allows Post-authentication SQL injection via the name parameter in a manageApplications.do?method=insert request.
0
0
View More Topics  < Previous