4 matches found
Zoho ManageEngine SQL Injection (CVE-2021-40493)
A SQL injection vulnerability exists in ManageEngine OpManager. This vulnerability is due to insufficient validation of the parameters in the HTTP requests processed by the getDataCollectionFailureReason method...
CVE-2021-40493
creationtimestamp| type| source ---|---|--- 2021-10-14 02:26:56+00:00| seen| https://t.me/cibsecurity/30546...
CVE-2021-40493
Zoho ManageEngine OpManager before 125437 is vulnerable to SQL Injection in the support diagnostics module. This occurs via the pollingObject parameter of the getDataCollectionFailureReason API...
CVE-2021-40493
Zoho ManageEngine OpManager before 125437 is vulnerable to SQL Injection in the Support Diagnostics module via the pollingObject parameter of the getDataCollectionFailureReason API. The issue arises from insufficient validation of HTTP request parameters processed by that method, as described in ...