CVE-2023-49335 | Zoho ManageEngine ADAudit Plus up to 7270 File Server Detail sql injection

Posted by Angelo Barbosa | May 20, 2024 | CVE

A vulnerability was found in Zoho ManageEngine ADAudit Plus up to 7270. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component File Server Detail Handler. The manipulation leads to sql injection.

This vulnerability is known as CVE-2023-49335. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-49335 | Zoho ManageEngine ADAudit Plus up to 7270 File Server Detail sql injection

Related Posts

CVE-2024-48168 | D-Link DCS-960L 1.09 HNAP Service sub_402280 stack-based overflow

CVE-2024-50485 | Udit Rawat Exam Matrix Plugin up to 1.5 on WordPress privileges assignment

CVE-2023-43741 | Buildkite Elastic CI for AWS up to 5.22.4/6.7.0 PIPELINE_PATH toctou (ATREDIS-2023-0003)

CVE-2024-28860 | Cilium up to 1.13.14/1.14.8/1.15.2 ESP Sequence Number inadequate encryption (GHSA-pwqm-x5x6-5586)