CVE-2024-49574 | Zoho ManageEngine ADAudit Plus up to 8122 Reports Module sql injection

Posted by Angelo Barbosa | Nov 18, 2024 | CVE

A vulnerability, which was classified as critical, was found in Zoho ManageEngine ADAudit Plus up to 8122. Affected is an unknown function of the component Reports Module. The manipulation leads to sql injection.

This vulnerability is traded as CVE-2024-49574. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-49574 | Zoho ManageEngine ADAudit Plus up to 8122 Reports Module sql injection

Related Posts

CVE-2024-39275 | Advantech ADAM-5630 up to 2.5.1 persistent cookies containing sensitive information (icsa-24-270-02)

CVE-2023-28870 | NCP Secure Enterprise Client up to 12.21 Configuration File permission (usd-2022-0004)

CVE-2024-31839 | tiagorlampert CHAOS 5.0.1 handler.go sendCommandHandler cross site scripting

CVE-2024-3424 | SourceCodester Online Courseware 1.0 admin/listscore.php title sql injection