Page 4 of 31 results (0.001 seconds)
CVSS: 8.8EPSS: 35%CPEs: 14EXPL: 5
CVSS: 8.8EPSS: 35%CPEs: 14EXPL: 5CVE-2014-7864 – ManageEngine OpManager / Applications Manager / IT360 - 'FailOverServlet' Multiple Vulnerabilities
https://notcve.org/view.php?id=CVE-2014-7864
04 Feb 2015 — Multiple SQL injection vulnerabilities in the FailOverHelperServlet (aka FailServlet) servlet in ZOHO ManageEngine OpManager 8 through 11.5 build 11400 and IT360 10.5 and earlier allow remote attackers and remote authenticated users to execute arbitrary SQL commands via the (1) customerName or (2) serverRole parameter in a standbyUpdateInCentral operation to servlet/com.adventnet.me.opmanager.servlet.FailOverHelperServlet. Múltiples vulnerabilidades de inyección SQL en el servlet FailOverHelperServlet (tamb... • https://www.exploit-db.com/exploits/43894 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •