Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-48793


Zoho ManageEngine ADAudit Plus through 7250 allows SQL Injection in the aggregate report feature.


Published

2024-02-02T02:15:16.637

Last Modified

2025-06-11T17:15:34.760

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 9.8 (CRITICAL)

Weaknesses
  • Type: Primary
    CWE-89
  • Type: Secondary
    CWE-89

Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application zohocorp manageengine_adaudit_plus < 7.2 Yes
Application zohocorp manageengine_adaudit_plus 7.2 Yes
Application zohocorp manageengine_adaudit_plus 7.2 Yes
Application zohocorp manageengine_adaudit_plus 7.2 Yes
Application zohocorp manageengine_adaudit_plus 7.2 Yes
Application zohocorp manageengine_adaudit_plus 7.2 Yes
Application zohocorp manageengine_adaudit_plus 7.2 Yes
Application zohocorp manageengine_adaudit_plus 7.2 Yes
Application zohocorp manageengine_adaudit_plus 7.2 Yes
Application zohocorp manageengine_adaudit_plus 7.2 Yes
Application zohocorp manageengine_adaudit_plus 7.2 Yes
Application zohocorp manageengine_adaudit_plus 7.2 Yes
Application zohocorp manageengine_adaudit_plus 7.2 Yes
Application zohocorp manageengine_adaudit_plus 7.2 Yes
Application zohocorp manageengine_adaudit_plus 7.2 Yes

References