Trend Micro Control Manager GetProductCategory SQL Injection (CVE-2018-3602)

An SQL injection vulnerability exists in the Trend Micro Control Manager. The vulnerability is due to improper validation of user-supplied input HTTP parameter.

You can read the full article here.