2 matches found
CVE-2017-16850
Zoho ManageEngine Applications Manager 13 before build 13530 is affected by a SQL injection in the getResourceProfiles action via the /showresource.do resourceid parameter. This vulnerability is confirmed across multiple sources (NVD CVE-2017-16850 and related advisories), with CVSS v3.0 base sco...
CVE-2017-16850
Zoho ManageEngine Applications Manager 13 before build 13530 allows SQL injection via the /showresource.do resourceid parameter in a getResourceProfiles action...