eLeN3Re/CVE-2019-19650

Releases0

Zoho ManageEngine Applications Manager before 13640 allows a remote authenticated blind SQL injection via the Agent servlet agentid parameter to the Agent.java process function.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2019-19650 ↗	Dec 11, 2019Wednesday, 11 December 2019, 18:16	8.8 HIGH	6.5 MEDIUM
Zoho ManageEngine Applications Manager before 13640 allows a remote authenticated SQL injection via the Agent servlet agentid parameter to the Agent.java process function.