Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Manageengine_adaudit_plus
(Zohocorp)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 64 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2024-01-25 | CVE-2023-50785 | Zoho ManageEngine ADAudit Plus before 7270 allows admin users to view names of arbitrary directories via path traversal. | Manageengine_adaudit_plus | 2.7 | ||
| 2024-02-02 | CVE-2024-0253 | ManageEngine ADAudit Plus versions 7270 and below are vulnerable to the Authenticated SQL injection in home Graph-Data. | Manageengine_adaudit_plus | 8.8 | ||
| 2024-02-02 | CVE-2024-0269 | ManageEngine ADAudit Plus versions 7270 and below are vulnerable to the Authenticated SQL injection in File-Summary DrillDown. This issue has been fixed and released in version 7271. | Manageengine_adaudit_plus | 8.8 | ||
| 2024-05-27 | CVE-2024-36037 | Zoho ManageEngine ADAudit Plus versions 7260 and below allows unauthorized local agent machine users to view the session recordings. | Manageengine_adaudit_plus | 5.5 | ||
| 2024-08-12 | CVE-2024-36518 | Zohocorp ManageEngine ADAudit Plus versions below 8110 are vulnerable to authenticated SQL Injection in attack surface analyzer's dashboard. | Manageengine_adaudit_plus | 5.4 | ||
| 2024-10-24 | CVE-2024-5608 | Zohocorp ManageEngine ADAudit Plus versions below 8121 are vulnerable to SQL Injection in the technician reports feature. | Manageengine_adaudit_plus | 8.1 | ||
| 2024-11-18 | CVE-2024-49574 | Zohocorp ManageEngine ADAudit Plus versions below 8123 are vulnerable to SQL Injection in the reports module. | Manageengine_adaudit_plus | 8.8 | ||
| 2024-11-04 | CVE-2024-36485 | Zohocorp ManageEngine ADAudit Plus versions below 8121 are vulnerable to SQL Injection in Technician reports option. | Manageengine_adaudit_plus | 8.8 | ||
| 2024-08-23 | CVE-2024-36514 | Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL injection in file summary option. | Manageengine_adaudit_plus | 8.8 | ||
| 2024-08-23 | CVE-2024-36515 | Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL injection in dashboard. Note: This vulnerability is different from another vulnerability (CVE-2024-36516), both of which have affected ADAudit Plus' dashboard. | Manageengine_adaudit_plus | 8.8 |