CVE-2015-1479
04.02.2015, 16:59
SQL injection vulnerability in reports/CreateReportTable.jsp in ZOHO ManageEngine ServiceDesk Plus (SDP) before 9.0 build 9031 allows remote authenticated users to execute arbitrary SQL commands via the site parameter.
Vendor | Product | Version |
---|---|---|
zohocorp | servicedesk_plus | 𝑥 ≤ 9.0 |
𝑥
= Vulnerable software versions
References