CVE-2020-28679

A vulnerability in the showReports module of Zoho ManageEngine Applications Manager before build 14550 allows authenticated attackers to execute a SQL injection via a crafted request.

Published: Jan 10, 2022
Updated: Apr 14, 2023
CVE: CVE-2020-28679
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8.8
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: Medium
Score: 6.5
AV:N/AC:L/Au:S/C:P/I:P/A:P

CWEs:

CWE-89

OWASP TOP 10:

A1 - Injection

Affected Software
References

Software	From	Fixed in
zohocorp / manageengine_applications_manager	14.0-build14090	14.0-build14090.x
zohocorp / manageengine_applications_manager	14.0-build14080	14.0-build14080.x
zohocorp / manageengine_applications_manager	14.0-build14073	14.0-build14073.x
zohocorp / manageengine_applications_manager	14.0-build14072	14.0-build14072.x
zohocorp / manageengine_applications_manager	14.0-build14071	14.0-build14071.x
zohocorp / manageengine_applications_manager	14.0-build14070	14.0-build14070.x
zohocorp / manageengine_applications_manager	14.0-build14060	14.0-build14060.x
zohocorp / manageengine_applications_manager	14.0-build14050	14.0-build14050.x
zohocorp / manageengine_applications_manager	14.0-build14040	14.0-build14040.x
zohocorp / manageengine_applications_manager	14.0-build14030	14.0-build14030.x
zohocorp / manageengine_applications_manager	14.0-build14020	14.0-build14020.x
zohocorp / manageengine_applications_manager	14.0-build14010	14.0-build14010.x
zohocorp / manageengine_applications_manager	14.0-build14000	14.0-build14000.x
zohocorp / manageengine_applications_manager	14.5-build14540	14.5-build14540.x
zohocorp / manageengine_applications_manager	14.5-build14530	14.5-build14530.x
zohocorp / manageengine_applications_manager	14.5-build14520	14.5-build14520.x
zohocorp / manageengine_applications_manager	14.5-build14510	14.5-build14510.x
zohocorp / manageengine_applications_manager	14.5-build14500	14.5-build14500.x
zohocorp / manageengine_applications_manager	13.7-build13700	13.7-build13700.x
zohocorp / manageengine_applications_manager	13.7-build13710	13.7-build13710.x
zohocorp / manageengine_applications_manager	13.7-build13720	13.7-build13720.x
zohocorp / manageengine_applications_manager	13.7-build13730	13.7-build13730.x
zohocorp / manageengine_applications_manager	13.7-build13750	13.7-build13750.x
zohocorp / manageengine_applications_manager	13.7-build13760	13.7-build13760.x
zohocorp / manageengine_applications_manager	13.7-build13770	13.7-build13770.x
zohocorp / manageengine_applications_manager	13.7-build13780	13.7-build13780.x
zohocorp / manageengine_applications_manager	13.7-build13790	13.7-build13790.x
zohocorp / manageengine_applications_manager	13.9-build13990	13.9-build13990.x
zohocorp / manageengine_applications_manager	13.9-build13980	13.9-build13980.x
zohocorp / manageengine_applications_manager	13.9-build13970	13.9-build13970.x
zohocorp / manageengine_applications_manager	13.9-build13960	13.9-build13960.x
zohocorp / manageengine_applications_manager	13.9-build13950	13.9-build13950.x
zohocorp / manageengine_applications_manager	13.9-build13940	13.9-build13940.x
zohocorp / manageengine_applications_manager	13.9-build13930	13.9-build13930.x
zohocorp / manageengine_applications_manager	13.9-build13920	13.9-build13920.x
zohocorp / manageengine_applications_manager	13.9-build13910	13.9-build13910.x
zohocorp / manageengine_applications_manager	13.9-build13900	13.9-build13900.x
zohocorp / manageengine_applications_manager	13.8-build13831	13.8-build13831.x
zohocorp / manageengine_applications_manager	13.8-build13890	13.8-build13890.x
zohocorp / manageengine_applications_manager	13.8-build13880	13.8-build13880.x
zohocorp / manageengine_applications_manager	13.8-build13870	13.8-build13870.x
zohocorp / manageengine_applications_manager	13.8-build13860	13.8-build13860.x
zohocorp / manageengine_applications_manager	13.8-build13850	13.8-build13850.x
zohocorp / manageengine_applications_manager	13.8-build13840	13.8-build13840.x
zohocorp / manageengine_applications_manager	13.8-build13830	13.8-build13830.x
zohocorp / manageengine_applications_manager	13.8-build13820	13.8-build13820.x
zohocorp / manageengine_applications_manager	13.8-build13810	13.8-build13810.x
zohocorp / manageengine_applications_manager	13.8-build13800	13.8-build13800.x
zohocorp / manageengine_applications_manager	13.7-build13740	13.7-build13740.x
zohocorp / manageengine_applications_manager	13.6-build13690	13.6-build13690.x
zohocorp / manageengine_applications_manager	13.6-build13680	13.6-build13680.x
zohocorp / manageengine_applications_manager	13.6-build13670	13.6-build13670.x
zohocorp / manageengine_applications_manager	13.6-build13660	13.6-build13660.x
zohocorp / manageengine_applications_manager	13.6-build13650	13.6-build13650.x
zohocorp / manageengine_applications_manager	13.6-build13640	13.6-build13640.x
zohocorp / manageengine_applications_manager	13.6-build13630	13.6-build13630.x
zohocorp / manageengine_applications_manager	13.6-build13620	13.6-build13620.x
zohocorp / manageengine_applications_manager	13.6-build13610	13.6-build13610.x
zohocorp / manageengine_applications_manager	13.6-build13600	13.6-build13600.x
zohocorp / manageengine_applications_manager	13.5-build13591	13.5-build13591.x
zohocorp / manageengine_applications_manager	13.5-build13590	13.5-build13590.x
zohocorp / manageengine_applications_manager	13.5-build13580	13.5-build13580.x
zohocorp / manageengine_applications_manager	13.5-build13570	13.5-build13570.x
zohocorp / manageengine_applications_manager	13.5-build13560	13.5-build13560.x
zohocorp / manageengine_applications_manager	13.5-build13550	13.5-build13550.x
zohocorp / manageengine_applications_manager	13.5-build13540	13.5-build13540.x
zohocorp / manageengine_applications_manager	13.5-build13530	13.5-build13530.x
zohocorp / manageengine_applications_manager	13.5-build13520	13.5-build13520.x
zohocorp / manageengine_applications_manager	13.5-build13510	13.5-build13510.x
zohocorp / manageengine_applications_manager	13.5-build13500	13.5-build13500.x
zohocorp / manageengine_applications_manager	12.8-build12810	12.8-build12810.x
zohocorp / manageengine_applications_manager	12.9-build12900	12.9-build12900.x
zohocorp / manageengine_applications_manager	13.0-build13000	13.0-build13000.x
zohocorp / manageengine_applications_manager	13.1-build13100	13.1-build13100.x
zohocorp / manageengine_applications_manager	13.2-build13200	13.2-build13200.x
zohocorp / manageengine_applications_manager	13.2-build13210	13.2-build13210.x
zohocorp / manageengine_applications_manager	13.3-build13300	13.3-build13300.x
zohocorp / manageengine_applications_manager	13.4-build13400	13.4-build13400.x
zohocorp / manageengine_applications_manager	13.4-build13410	13.4-build13410.x
zohocorp / manageengine_applications_manager	13.4-build13420	13.4-build13420.x
zohocorp / manageengine_applications_manager	13.4-build13430	13.4-build13430.x
zohocorp / manageengine_applications_manager	13.4-build13440	13.4-build13440.x
zohocorp / manageengine_applications_manager	13.4-build13450	13.4-build13450.x
zohocorp / manageengine_applications_manager	11.5-build11520	11.5-build11520.x
zohocorp / manageengine_applications_manager	11.6-build11610	11.6-build11610.x
zohocorp / manageengine_applications_manager	11.7-build11700	11.7-build11700.x
zohocorp / manageengine_applications_manager	11.8-build11800	11.8-build11800.x
zohocorp / manageengine_applications_manager	11.9-build11912	11.9-build11912.x
zohocorp / manageengine_applications_manager	11.9-build11900	11.9-build11900.x
zohocorp / manageengine_applications_manager	12.0-build12000	12.0-build12000.x
zohocorp / manageengine_applications_manager	12.0-build12010	12.0-build12010.x
zohocorp / manageengine_applications_manager	12.0-build12020	12.0-build12020.x
zohocorp / manageengine_applications_manager	12.1-build12120	12.1-build12120.x
zohocorp / manageengine_applications_manager	12.1-build12100	12.1-build12100.x
zohocorp / manageengine_applications_manager	12.2-build12210	12.2-build12210.x
zohocorp / manageengine_applications_manager	12.2-build12200	12.2-build12200.x
zohocorp / manageengine_applications_manager	12.3-build12300	12.3-build12300.x
zohocorp / manageengine_applications_manager	12.5-build12500	12.5-build12500.x
zohocorp / manageengine_applications_manager	12.6-build12600	12.6-build12600.x
zohocorp / manageengine_applications_manager	12.7-build12700	12.7-build12700.x
zohocorp / manageengine_applications_manager	12.7-build12710	12.7-build12710.x
zohocorp / manageengine_applications_manager	11.4-build11410	11.4-build11410.x
zohocorp / manageengine_applications_manager	11.3-build11300	11.3-build11300.x
zohocorp / manageengine_applications_manager	11.2-build11220	11.2-build11220.x
zohocorp / manageengine_applications_manager	11.2-build11210	11.2-build11210.x
zohocorp / manageengine_applications_manager	11.2-build11200	11.2-build11200.x
zohocorp / manageengine_applications_manager	11.1-build11110	11.1-build11110.x
zohocorp / manageengine_applications_manager	11.0-build11100	11.0-build11100.x
zohocorp / manageengine_applications_manager	11.0-build11040	11.0-build11040.x
zohocorp / manageengine_applications_manager	11.0-build11030	11.0-build11030.x
zohocorp / manageengine_applications_manager	11.0-build11020	11.0-build11020.x
zohocorp / manageengine_applications_manager	11.0-build11010	11.0-build11010.x
zohocorp / manageengine_applications_manager	14.4-build14490	14.4-build14490.x
zohocorp / manageengine_applications_manager	14.4-build14480	14.4-build14480.x
zohocorp / manageengine_applications_manager	14.4-build14470	14.4-build14470.x
zohocorp / manageengine_applications_manager	14.4-build14460	14.4-build14460.x
zohocorp / manageengine_applications_manager	14.4-build14450	14.4-build14450.x
zohocorp / manageengine_applications_manager	14.4-build14440	14.4-build14440.x
zohocorp / manageengine_applications_manager	14.4-build14430	14.4-build14430.x
zohocorp / manageengine_applications_manager	14.4-build14401	14.4-build14401.x
zohocorp / manageengine_applications_manager	14.4-build14420	14.4-build14420.x
zohocorp / manageengine_applications_manager	14.4-build14410	14.4-build14410.x
zohocorp / manageengine_applications_manager	14.4-build14400	14.4-build14400.x
zohocorp / manageengine_applications_manager	14.3-build14361	14.3-build14361.x
zohocorp / manageengine_applications_manager	14.3-build14390	14.3-build14390.x
zohocorp / manageengine_applications_manager	14.3-build14380	14.3-build14380.x
zohocorp / manageengine_applications_manager	14.3-build14370	14.3-build14370.x
zohocorp / manageengine_applications_manager	14.3-build14332	14.3-build14332.x
zohocorp / manageengine_applications_manager	14.3-build14360	14.3-build14360.x
zohocorp / manageengine_applications_manager	14.3-build14350	14.3-build14350.x
zohocorp / manageengine_applications_manager	14.3-build14331	14.3-build14331.x
zohocorp / manageengine_applications_manager	14.3-build14340	14.3-build14340.x
zohocorp / manageengine_applications_manager	14.3-build14330	14.3-build14330.x
zohocorp / manageengine_applications_manager	14.3-build14310	14.3-build14310.x
zohocorp / manageengine_applications_manager	14.3-build14300	14.3-build14300.x
zohocorp / manageengine_applications_manager	14.2-build14262	14.2-build14262.x
zohocorp / manageengine_applications_manager	14.2-build14290	14.2-build14290.x
zohocorp / manageengine_applications_manager	14.2-build14280	14.2-build14280.x
zohocorp / manageengine_applications_manager	14.2-build14270	14.2-build14270.x
zohocorp / manageengine_applications_manager	14.2-build14261	14.2-build14261.x
zohocorp / manageengine_applications_manager	14.2-build14260	14.2-build14260.x
zohocorp / manageengine_applications_manager	14.2-build14250	14.2-build14250.x
zohocorp / manageengine_applications_manager	14.2-build14240	14.2-build14240.x
zohocorp / manageengine_applications_manager	14.2-build14230	14.2-build14230.x
zohocorp / manageengine_applications_manager	14.2-build14220	14.2-build14220.x
zohocorp / manageengine_applications_manager	14.2-build14210	14.2-build14210.x
zohocorp / manageengine_applications_manager	14.2-build14200	14.2-build14200.x
zohocorp / manageengine_applications_manager	14.1-build14190	14.1-build14190.x
zohocorp / manageengine_applications_manager	14.1-build14180	14.1-build14180.x
zohocorp / manageengine_applications_manager	14.1-build14170	14.1-build14170.x
zohocorp / manageengine_applications_manager	14.1-build14160	14.1-build14160.x
zohocorp / manageengine_applications_manager	14.1-build14150	14.1-build14150.x
zohocorp / manageengine_applications_manager	14.1-build14140	14.1-build14140.x
zohocorp / manageengine_applications_manager	14.1-build14130	14.1-build14130.x
zohocorp / manageengine_applications_manager	14.1-build14120	14.1-build14120.x
zohocorp / manageengine_applications_manager	14.1-build14110	14.1-build14110.x
zohocorp / manageengine_applications_manager	14.1-build14100	14.1-build14100.x

https://www.manageengine.com/products/applications_manager/issues.html#v14550

Vulnerability Database

289,784

CVE-2020-28679