A vulnerability was found in Zoho ManageEngine Applications Manager up to 14550 (Log Management Software). It has been declared as critical. Affected by this vulnerability is an unknown code of the file /showReports.do. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.
Zoho ManageEngine Applications Manager up to 14550 /showReports.do resourceid access control
- Virtual Patching
- November 4, 2021
- 1:05 am
Contact us to get started
CVE-2022-32405 : SOURCECODESTER PRISON MANAGEMENT SYSTEM 1.0 VIEW_PRISON.PHP ID SQL INJECTION
Description Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the ‘id’ parameter at /pms/admin/prisons/view_prison.php:4 References
CVE-2022-20651 : CISCO ADAPTIVE SECURITY DEVICE MANAGER LOG FILE
Description A vulnerability in the logging component of Cisco Adaptive Security Device Manager (ASDM) could allow an authenticated, local attacker
CVE-2022-32549 : APACHE SLING COMMONS LOG/SLING API NEUTRALIZATION FOR LOGS
Description Apache Sling Commons Log