Zenoss : Security Vulnerabilities, CVEs, (Sql injection)
Multiple SQL injection vulnerabilities in zport/dmd/Events/getJSONEventsInfo in Zenoss 2.3.3, and other versions before 2.5, allow remote authenticated users to execute arbitrary SQL commands via the (1) severity, (2) state, (3) filter, (4) offset, and (5) count parameters.
Max CVSS
6.5
EPSS Score
0.14%
Published
2010-02-26
Updated
2017-08-17
1 vulnerabilities found