Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SQL Injection
Vulnerability Description
Zohocorp ManageEngine Analytics Plus versions 6171 and prior are vulnerable to authenticated SQL Injection via the key update api.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
ZOHO ManageEngine Analytics Plus 安全漏洞
Vulnerability Description
ZOHO ManageEngine Analytics Plus是美国卓豪(ZOHO)公司的一种自助式 IT 分析解决方案。可使用丰富的可视化和仪表板更好地查看您的 IT 数据。 ZOHO ManageEngine Analytics Plus 6171及之前版本存在安全漏洞,该漏洞源于key update api存在SQL注入漏洞。
CVSS Information
N/A
Vulnerability Type
N/A