4 matches found
Zoho ManageEngine SQL Injection (CVE-2021-41288)
A SQL injection vulnerability exists in ManageEngine OpManager. This vulnerability is due to insufficient validation of the parameters in the HTTP requests processed by the getReportData method...
CVE-2021-41288
creationtimestamp| type| source ---|---|--- 2021-09-30 22:13:48+00:00| seen| https://t.me/cibsecurity/29757...
CVE-2021-41288
Zoho ManageEngine OpManager version 125466 and below is vulnerable to SQL Injection in the getReportData API...
CVE-2021-41288
CVE-2021-41288 affects Zoho ManageEngine OpManager (version 125466 and earlier). A SQL injection vulnerability exists in the getReportData API due to insufficient validation of HTTP request parameters, enabling an attacker to manipulate/compromise the application database. NVD lists CVSS vectors:...