CVE-2019-19649

Zoho ManageEngine Applications Manager before 13620 allows a remote unauthenticated SQL injection via the SyncEventServlet eventid parameter to the SyncEventServlet.java doGet function.
References
Configurations

Configuration 1

cpe:2.3:a:zohocorp:manageengine_applications_manager:*:*:*:*:*:*:*:*

Information

Published : 2019-12-11 06:16

Updated : 2023-02-02 02:25


NVD link : CVE-2019-19649

Mitre link : CVE-2019-19649

CWE