Support
 
Phone Get Quote
 
Support
 
US: +1 888 720 9500
US: +1 888 791 1189
Intl: +1 925 924 9500
Aus: +1 800 631 268
UK: 0800 028 6590
CN: +86 400 660 8680

Direct Inward Dialing: +1 408 916 9892

Security Updates

SQL Injection Vulnerability (CVE-2026-12062) fixed in ADAudit Plus build 8703

Vulnerability details
Severity High
CVE ID CVE-2026-12062
Affected Software Version(s) All ADAudit Plus builds below 8703
Fixed Version Build 8703
Fixed on June 12, 2026

Details

An SQL injection vulnerability in ADAudit Plus Reports API has been fixed.

Impact

This vulnerability could allow an authenticated adversary to execute arbitrary SQL queries and access database records through a vulnerable request.

Steps to update:

Update your ADAudit Plus instance to the latest version — 8703 — using the service pack.

Acknowledgements

This issue was reported by minhgalaxy at bl4ckh0l3 team from GalaxyOne.

Please contact support@adauditplus.com for more details.

ADAudit Plus Trusted By

Meet all auditing and IT security needs with ADAudit Plus.

  • Active Directory
  • File servers
  • Windows server
  • Workstation
  • Compliance
  • Related Products

A single pane of glass for complete Active Directory Auditing and Reporting

Free Trial Get Quote
Email Download Link