CVE-2012-1063
Multiple SQL injection vulnerabilities in ManageEngine Applications Manager 9.x and 10.x allow remote attackers to execute arbitrary SQL commands via the (1) viewId parameter to fault/AlarmView.do or (2) period parameter to showHistoryData.do.
SQL Injection
Vendor | Product | Version |
---|---|---|
manageengine | applications_manager | 10.0 |
manageengine | applications_manager | 10.1 |
manageengine | applications_manager | 10.2 |
manageengine | applications_manager | 10.3 |
manageengine | applications_manager | 9.1 |
manageengine | applications_manager | 9.2 |
manageengine | applications_manager | 9.3 |
manageengine | applications_manager | 9.4 |
manageengine | applications_manager | 9.5 |
Common Weakness Enumeration