4 matches found
CVE-2020-35765
doFilter in com.adventnet.appmanager.filter.UriCollector in Zoho ManageEngine Applications Manager through 14930 allows an authenticated SQL Injection via the resourceid parameter to showresource.do...
CVE-2020-35765
doFilter in com.adventnet.appmanager.filter.UriCollector in Zoho ManageEngine Applications Manager through 14930 allows an authenticated SQL Injection via the resourceid parameter to showresource.do...
CVE-2020-35765
doFilter in com.adventnet.appmanager.filter.UriCollector in Zoho ManageEngine Applications Manager through 14930 allows an authenticated SQL Injection via the resourceid parameter to showresource.do...
CVE-2020-35765
CVE-2020-35765 affects Zoho ManageEngine Applications Manager up to version 14930, where doFilter in com.adventnet.appmanager.filter.UriCollector enables an authenticated SQL injection via the resourceid parameter to showresource.do. The issue is caused by improper handling in UriCollector used d...