VYPR
Unrated severityNVD Advisory· Published Oct 9, 2015· Updated Jun 17, 2026

CVE-2015-7766

CVE-2015-7766

Description

PGSQL:SubmitQuery.do in ZOHO ManageEngine OpManager 11.6, 11.5, and earlier allows remote administrators to bypass SQL query restrictions via a comment in the query to api/json/admin/SubmitQuery, as demonstrated by "INSERT/**/INTO."

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • cpe:2.3:a:zohocorp:manageengine_opmanager:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:zohocorp:manageengine_opmanager:*:*:*:*:*:*:*:*range: <=11.5
    • cpe:2.3:a:zohocorp:manageengine_opmanager:11.6:*:*:*:*:*:*:*
  • Range: <=11.6

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.