2 matches found
CVE-2017-11557
An issue was discovered in ZOHO ManageEngine Applications Manager 12.3. It is possible for an unauthenticated user to view the list of domain names and usernames used in a company's network environment via a userconfiguration.do?method=editUser request...
CVE-2017-11557
CVE-2017-11557 affects ZOHO ManageEngine Applications Manager 12.3. An unauthenticated user can access the endpoint userconfiguration.do?method=editUser to view the list of domain names and usernames used in the target’s network. This is an information disclosure vulnerability (no further details...