ZOHO WebNMS Framework 5.2 and 5.2 SP1 allows remote malicious users to bypass authentication and impersonate arbitrary users via the UserName HTTP header.
>> Multiple vulnerabilities in WebNMS Framework Server 52 and 52 SP1
>> Discovered by Pedro Ribeiro (pedrib@gmailcom), Agile Information Security
==========================================================================
Disclosure: 04/07/2016 / Last updated: 08/08/2016
>> Background on the affected product:
"WebNMS is an indu ...