3 matches found
CVE-2023-48646
Zoho ManageEngine RecoveryManager Plus before 6070 allows admin users to execute arbitrary commands via proxy settings...
CVE-2023-48646
Zoho ManageEngine RecoveryManager Plus before 6070 allows admin users to execute arbitrary commands via proxy settings...
CVE-2023-48646
Zoho ManageEngine RecoveryManager Plus before 6070 is affected by a command-injection vulnerability that allows admin users to execute arbitrary commands via proxy settings. The root cause is improper handling/neutralization of input in the affected component (getEscapedValue) and related proxy c...