Product:

Manageengine_adaudit_plus

(Zohocorp)
Repositories

Unknown:

This might be proprietary software.
#Vulnerabilities 36
Date Id Summary Products Score Patch Annotated
2024-01-25 CVE-2023-50785 Zoho ManageEngine ADAudit Plus before 7270 allows admin users to view names of arbitrary directories via path traversal. Manageengine_adaudit_plus 2.7
2024-02-02 CVE-2023-48793 Zoho ManageEngine ADAudit Plus through 7250 allows SQL Injection in the aggregate report feature. Manageengine_adaudit_plus 9.8
2024-02-02 CVE-2023-48792 Zoho ManageEngine ADAudit Plus through 7250 is vulnerable to SQL Injection in the report export option. Manageengine_adaudit_plus 9.8
2024-02-02 CVE-2024-0253 ManageEngine ADAudit Plus versions 7270 and below are vulnerable to the Authenticated SQL injection in home Graph-Data. Manageengine_adaudit_plus 8.8
2024-02-02 CVE-2024-0269 ManageEngine ADAudit Plus versions 7270 and below are vulnerable to the Authenticated SQL injection in File-Summary DrillDown. This issue has been fixed and released in version 7271. Manageengine_adaudit_plus 8.8
2024-05-27 CVE-2024-36037 Zoho ManageEngine ADAudit Plus versions 7260 and below allows unauthorized local agent machine users to view the session recordings. Manageengine_adaudit_plus 5.5
2024-08-12 CVE-2024-36518 Zohocorp ManageEngine ADAudit Plus versions below 8110 are vulnerable to authenticated SQL Injection in attack surface analyzer's dashboard. Manageengine_adaudit_plus 5.4
2024-10-24 CVE-2024-5608 Zohocorp ManageEngine ADAudit Plus versions below 8121 are vulnerable to SQL Injection in the technician reports feature. Manageengine_adaudit_plus 8.1
2024-11-18 CVE-2024-49574 Zohocorp ManageEngine ADAudit Plus versions below 8123 are vulnerable to SQL Injection in the reports module. Manageengine_adaudit_plus 8.8
2024-11-04 CVE-2024-36485 Zohocorp ManageEngine ADAudit Plus versions below 8121 are vulnerable to SQL Injection in Technician reports option. Manageengine_adaudit_plus 8.8