Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple SQL injection vulnerabilities in the FailOverHelperServlet (aka FailServlet) servlet in ZOHO ManageEngine OpManager 8 through 11.5 build 11400 and IT360 10.5 and earlier allow remote attackers and remote authenticated users to execute arbitrary SQL commands via the (1) customerName or (2) serverRole parameter in a standbyUpdateInCentral operation to servlet/com.adventnet.me.opmanager.servlet.FailOverHelperServlet.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ZOHO ManageEngine OpManager和IT360 SQL注入漏洞
Vulnerability Description
ZOHO ManageEngine OpManager和IT360都是美国卓豪(ZOHO)公司的产品。ManageEngine OpManager是一套网络、服务器及虚拟化监控软件;ManageEngine IT360是一套IT运维综合治理平台。 ZOHO ManageEngine OpManager 8版本至11.5 build 11400版本和IT360 10.5及之前版本的FailOverHelperServlet servlet中存在SQL注入漏洞,该漏洞源于servlet/com.adventn
CVSS Information
N/A
Vulnerability Type
N/A