CVE-2025-8324 | Zoho ManageEngine Analytics Plus 4.3.5/4350/5410/6100/6130 Filter Configuration sql injection

Inserito da Angelo Barbosa | Nov 11, 2025 | CVE

A vulnerability labeled as critical has been found in Zoho ManageEngine Analytics Plus 4.3.5/4350/5410/6100/6130. The impacted element is an unknown function of the component Filter Configuration Handler. The manipulation results in sql injection.

This vulnerability is identified as CVE-2025-8324. The attack can be executed remotely. There is not any exploit available.

The affected component should be upgraded.

CVE-2025-8324 | Zoho ManageEngine Analytics Plus 4.3.5/4350/5410/6100/6130 Filter Configuration sql injection

Post correlati

CVE-2025-0169 | scriptsbundle DWT Plugin up to 3.3.4 on WordPress Shortcode cross site scripting

CVE-2025-1746 | OpenCart up to 4.0.x /product/search cross site scripting

CVE-2024-41465 | Tenda FH1201 1.2.0.14 ip/goform/setcfm funcpara1 stack-based overflow

CVE-2023-6638 | GTG Product Feed for Shopping Plugin up to 1.2.4 on WordPress Setting authorization