2019-05-23 15:29:28
mitre
PUBLISHED
In Zoho ManageEngine Application Manager prior to 14.6 Build 14660, the haid parameter of the /auditLogAction.do module is vulnerable to a Time-based Blind SQL Injection attack.