2 matches found
CVE-2017-16846
Zoho ManageEngine Applications Manager 13 before build 13530 allows SQL injection via the /manageApplications.do?method=AddSubGroup haid parameter...
CVE-2017-16846
CVE-2017-16846 affects Zoho ManageEngine Applications Manager 13 prior to build 13530, where SQL injection is possible through the /manageApplications.do?method=AddSubGroup haid parameter. The vulnerability is cited in NVD and other feeds with CVSS v3.0 score 9.8 (CRITICAL) and CVSS v2 score 7.5 ...