6 matches found
EUVD-2024-36137
Malicious code in bioql PyPI...
ZOHO ManageEngine ADAudit Plus SQL Injection Vulnerability (CNVD-2024-37484)
ZOHO ManageEngine ADAudit Plus is ZOHO's solution for simplifying audits, proving compliance and detecting threats. ZOHO ManageEngine ADAudit Plus prior to version 8000 suffers from a SQL injection vulnerability that can be exploited by an attacker to execute custom queries and access database...
CVE-2024-5556 SQL Injection
Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL injection in reports module...
CVE-2024-36515
CVE-2024-36515 affects Zohocorp ManageEngine ADAudit Plus versions below 8000. The issue is an authenticated SQL injection in the dashboard component, due to improper handling of inputs in dashboard queries. The impact is described as high in the CVE entries. No remediation steps are provided in ...
CVE-2024-36516 SQL Injection
Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL injection in dashboard. Note: This vulnerability is different from another vulnerability CVE-2024-36515, both of which have affected ADAudit Plus' dashboard...
CVE-2024-36517 SQL Injection
Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL injection in alerts module...