CVE-2010-0712
CVE-2010-0712 : Zenoss Server components expose multiple SQL injection flaws in zport/dmd/Events/getJSONEventsInfo for Zenoss 2.3.3 and earlier versions before 2.5. Remote authenticated users can inject SQL via the parameters (severity, state, filter, offset, count). Public references indicate a ...