3 matches found
CVE-2019-19650
Zoho ManageEngine Applications Manager before 13640 allows a remote authenticated SQL injection via the Agent servlet agentid parameter to the Agent.java process function...
CVE-2019-19650
Zoho ManageEngine Applications Manager before 13640 allows a remote authenticated SQL injection via the Agent servlet agentid parameter to the Agent.java process function...
CVE-2019-19650
Zoho ManageEngine Applications Manager (pre-13640) is affected by a remote authenticated SQL injection via the Agent servlet’s agentid parameter to the Agent.java process function. Root cause: lack of input validation in SQL statements issued by the Agent servlet. Impact: potential arbitrary SQL ...