AI Score
Confidence
High
EPSS
Percentile
91.9%
Zoho ManageEngine Applications Manager before 13620 allows a remote unauthenticated SQL injection via the SyncEventServlet eventid parameter to the SyncEventServlet.java doGet function.
gitlab.com/eLeN3Re/CVE-2019-19649
www.manageengine.com/products/applications_manager/release-notes.html