Zohocorp · Zoho Manageengine Applications Manager · CVE-2024-5678
**Name of the Vulnerable Software and Affected Versions**
Zohocorp ManageEngine Applications Manager versions 17.0900 and below
**Description**
The issue concerns an authenticated admin-only SQL Injection in the Create Monitor feature.
**Recommendations**
For versions 17.0900 and below, update to a version above 17.0900 to resolve the issue. As a temporary workaround, consider restricting access to the Create Monitor feature until a patch is available.