CVE-2025-9428 | Zoho ManageEngine Analytics Plus up to 6171 Key Update API sql injection

October 21, 2025 Yanac

A vulnerability has been found in Zoho ManageEngine Analytics Plus up to 6171 and classified as critical. This impacts an unknown function of the component Key Update API. The manipulation leads to sql injection.

This vulnerability is traded as CVE-2025-9428. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More

CVE-2025-10641 | EfficientLab WorkExaminer Professional up to 4.0.0.52001 cleartext transmission
CVE-2025-10640 | EfficientLab WorkExaminer Professional up to 4.0.0.52001 client-side enforcement of server-side security