SQL Injection Vulnerability in Zoho ManageEngine Applications Manager

CVE-2020-28679

What is CVE-2020-28679?

A security vulnerability in the showReports module of Zoho ManageEngine Applications Manager prior to build 14550 permits authenticated attackers to execute SQL injection attacks. This vulnerability arises when inefficient input validation allows attackers to manipulate SQL queries through specially crafted requests, potentially compromising database integrity and confidentiality.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch →

References