CVE-2024-5467 | Zoho ManageEngine ADAudit Plus up to 8120 Account Lockout Report sql injection

Inserito da Angelo Barbosa | Ago 23, 2024 | CVE

A vulnerability was found in Zoho ManageEngine ADAudit Plus up to 8120 and classified as critical. This issue affects some unknown processing of the component Account Lockout Report. The manipulation leads to sql injection.

The identification of this vulnerability is CVE-2024-5467. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-5467 | Zoho ManageEngine ADAudit Plus up to 8120 Account Lockout Report sql injection

Post correlati

CVE-2024-20435 | Cisco Secure Web Appliance up to 15.1.0-287 CLI unnecessary privileges (cisco-sa-swa-priv-esc-7uHpZsCC)

CVE-2024-5613 | Formula Plugin up to 0.5.1 on WordPress quality_customizer_notify_dismiss_action cross site scripting

CVE-2024-9109 | UPS Live Rates and Access Points Plugin up to 2.3.11 on WordPress Plugin API Key Reset authorization

CVE-2024-37499 | vCita Online Booking & Scheduling Calendar for WordPress by vcita Plugin path traversal