Vulnerability Database

296,772

Total vulnerabilities in the database

CVE-2024-48878

Zohocorp ManageEngine ADManager Plus versions 7241 and prior are vulnerable to SQL Injection in Archived Audit Report.

Published: Nov 4, 2024
Updated: May 4, 2025
CVE: CVE-2024-48878
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8.8
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-89

OWASP TOP 10:

A1 - Injection

Affected Software
References

Software	From	Fixed in
zohocorp / manageengine_admanager_plus	-	7.2
zohocorp / manageengine_admanager_plus	7.2-7200	7.2-7200.x
zohocorp / manageengine_admanager_plus	7.2-7201	7.2-7201.x
zohocorp / manageengine_admanager_plus	7.2-7202	7.2-7202.x
zohocorp / manageengine_admanager_plus	7.2-7203	7.2-7203.x
zohocorp / manageengine_admanager_plus	7.2-7210	7.2-7210.x
zohocorp / manageengine_admanager_plus	7.2-7211	7.2-7211.x
zohocorp / manageengine_admanager_plus	7.2-7212	7.2-7212.x
zohocorp / manageengine_admanager_plus	7.2-7220	7.2-7220.x
zohocorp / manageengine_admanager_plus	7.2-7221	7.2-7221.x
zohocorp / manageengine_admanager_plus	7.2-7222	7.2-7222.x
zohocorp / manageengine_admanager_plus	7.2-7223	7.2-7223.x
zohocorp / manageengine_admanager_plus	7.2-7224	7.2-7224.x
zohocorp / manageengine_admanager_plus	7.2-7230	7.2-7230.x
zohocorp / manageengine_admanager_plus	7.2-7231	7.2-7231.x
zohocorp / manageengine_admanager_plus	7.2-7232	7.2-7232.x
zohocorp / manageengine_admanager_plus	7.2-7240	7.2-7240.x
zohocorp / manageengine_admanager_plus	7.2-7241	7.2-7241.x

https://www.manageengine.com/products/ad-manager/admanager-kb/cve-2024-48878.html

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime