This page lists publicly disclosed CVE vulnerabilities affecting zohocorp manageengine_adaudit_plus (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-41444 | Zohocorp ManageEngine ADAudit Plus versions 8510 and prior are vulnerable to authenticated SQL injection in the alerts module. | 0fc0942c-577d-436f-ae8e-945763c79b02 | 8.3 | 1.25% | 2025-06-09 | 2026-06-17 |
| CVE-2025-36528 | Zohocorp ManageEngine ADAudit Plus versions 8510 and prior are vulnerable to authenticated SQL injection in Service Account Auditing reports. | 0fc0942c-577d-436f-ae8e-945763c79b02 | 8.3 | 1.25% | 2025-06-09 | 2026-06-17 |
| CVE-2025-27709 | Zohocorp ManageEngine ADAudit Plus versions 8510 and prior are vulnerable to authenticated SQL injection in the Service Account Auditing reports. | 0fc0942c-577d-436f-ae8e-945763c79b02 | 8.3 | 1.25% | 2025-06-09 | 2026-06-17 |
| CVE-2025-41407 | Zohocorp ManageEngine ADAudit Plus versions below 8511 are vulnerable to SQL injection in the OU History report. | 0fc0942c-577d-436f-ae8e-945763c79b02 | 8.3 | 1.20% | 2025-05-23 | 2026-06-17 |
| CVE-2025-36527 | Zohocorp ManageEngine ADAudit Plus versions below 8511 are vulnerable to SQL injection while exporting reports. | 0fc0942c-577d-436f-ae8e-945763c79b02 | 8.3 | 20.19% | 2025-05-23 | 2026-06-17 |
| CVE-2025-41403 | Zohocorp ManageEngine ADAudit Plus versions 8510 and prior are vulnerable to authenticated SQL injection while fetching service account audit data. | 0fc0942c-577d-436f-ae8e-945763c79b02 | 8.3 | 1.36% | 2025-05-22 | 2026-06-17 |
| CVE-2025-3836 | Zohocorp ManageEngine ADAudit Plus versions 8510 and prior are vulnerable to authenticated SQL injection in the logon events aggregate report. | 0fc0942c-577d-436f-ae8e-945763c79b02 | 8.3 | 4.59% | 2025-05-22 | 2026-06-17 |
| CVE-2025-3834 | Zohocorp ManageEngine ADAudit Plus versions 8510 and prior are vulnerable to authenticated SQL injection in the OU History report. | 0fc0942c-577d-436f-ae8e-945763c79b02 | 8.1 | 1.29% | 2025-05-14 | 2026-06-17 |
| CVE-2024-49574 | Zohocorp ManageEngine ADAudit Plus versions below 8123 are vulnerable to SQL Injection in the reports module. | 0fc0942c-577d-436f-ae8e-945763c79b02 | 8.3 | 1.68% | 2024-11-18 | 2026-06-17 |
| CVE-2024-36485 | Zohocorp ManageEngine ADAudit Plus versions below 8121 are vulnerable to SQL Injection in Technician reports option. | 0fc0942c-577d-436f-ae8e-945763c79b02 | 8.3 | 1.50% | 2024-11-04 | 2026-06-17 |
| CVE-2024-5608 | Zohocorp ManageEngine ADAudit Plus versions below 8121 are vulnerable to SQL Injection in the technician reports feature. | 0fc0942c-577d-436f-ae8e-945763c79b02 | 8.3 | 1.31% | 2024-10-24 | 2026-06-17 |
| CVE-2024-5586 | Zohocorp ManageEngine ADAudit Plus versions below 8121 are vulnerable to the authenticated SQL injection in extranet lockouts report option. | 0fc0942c-577d-436f-ae8e-945763c79b02 | 8.3 | 5.17% | 2024-08-23 | 2026-06-17 |
| CVE-2024-5556 | Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL injection in reports module. | 0fc0942c-577d-436f-ae8e-945763c79b02 | 8.3 | 4.50% | 2024-08-23 | 2026-06-17 |
| CVE-2024-5490 | Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL injection in aggregate reports option. | 0fc0942c-577d-436f-ae8e-945763c79b02 | 8.3 | 4.04% | 2024-08-23 | 2026-06-17 |
| CVE-2024-5467 | Zohocorp ManageEngine ADAudit Plus versions below 8121 are vulnerable to the authenticated SQL injection in account lockout report. | 0fc0942c-577d-436f-ae8e-945763c79b02 | 8.3 | 4.52% | 2024-08-23 | 2026-06-17 |
| CVE-2024-36517 | Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL injection in alerts module. | 0fc0942c-577d-436f-ae8e-945763c79b02 | 8.3 | 5.28% | 2024-08-23 | 2026-06-17 |
| CVE-2024-36516 | Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL injection in dashboard. Note: This vulnerability is different from another vulnerability (CVE-2024-36515), both of which have affected ADAudit Plus' dashboard. | 0fc0942c-577d-436f-ae8e-945763c79b02 | 8.3 | 4.41% | 2024-08-23 | 2026-06-17 |
| CVE-2024-36515 | Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL injection in dashboard. Note: This vulnerability is different from another vulnerability (CVE-2024-36516), both of which have affected ADAudit Plus' dashboard. | 0fc0942c-577d-436f-ae8e-945763c79b02 | 8.3 | 4.50% | 2024-08-23 | 2026-06-17 |
| CVE-2024-36514 | Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL injection in file summary option. | 0fc0942c-577d-436f-ae8e-945763c79b02 | 8.3 | 4.04% | 2024-08-23 | 2026-06-17 |
| CVE-2024-5527 | Zohocorp ManageEngine ADAudit Plus versions below 8110 are vulnerable to authenticated SQL Injection in file auditing configuration. | 0fc0942c-577d-436f-ae8e-945763c79b02 | 8.3 | 4.70% | 2024-08-12 | 2026-06-17 |