5 matches found
ManageEngine ADAudit Plus < Build 8123 SQLi (CVE-2024-49574)
The version of ManageEngine ADAudit Plus installed on the remote host is prior to build 8123. It is, therefore, affected by a SQL injection vulnerability in the reports module.. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version...
CVE-2024-49574
creationtimestamp| type| source ---|---|--- 2024-11-18 07:57:13+00:00| seen| https://infosec.exchange/users/cve/statuses/113502888468887530 2024-11-18 09:51:31+00:00| seen| https://t.me/cvedetector/11298...
CVE-2024-49574 SQL Injection
Zohocorp ManageEngine ADAudit Plus versions below 8123 are vulnerable to SQL Injection in the reports module...
CVE-2024-49574
Affected software: ManageEngine ADAudit Plus. Versions below build 8123 are vulnerable to a SQL injection flaw in the reports module. Root cause: improper handling of SQL queries in the reports component leading to injection. Impact: high confidentiality and integrity impact; partial availability...
CVE-2024-49574 SQL Injection
Zohocorp ManageEngine ADAudit Plus versions below 8123 are vulnerable to SQL Injection in the reports module...