zohocorp

559 tracked vulnerabilities.

CVE-2019-10008 HIGH
Zoho ManageEngine ServiceDesk 9.3 - Privilege Escalation
Apr 24, 2019
CVSS 8.8
EPSS 0.09
CVE-2019-11469 CRITICAL
Zoho ManageEngine Apps Mgr <15 - SQL Injection
Apr 23, 2019
CVSS 9.8
EPSS 0.06
CVE-2019-11448 CRITICAL
Zoho ManageEngine Applications Manager <14.0 - Privilege Escalation
Apr 22, 2019
CVSS 9.8
EPSS 0.17
CVE-2019-10273 MEDIUM
ManageEngine ServiceDesk Plus 9.3 - Authenticated User Enumeration via Login Page
Apr 04, 2019
CVSS 4.3
EPSS 0.14
CVE-2019-7425 MEDIUM
Zoho ManageEngine Netflow Analyzer Professional <7.0.0.2 - XSS
Mar 21, 2019
CVSS 6.1
EPSS 0.01
CVE-2019-7424 MEDIUM
Zoho ManageEngine Netflow Analyzer Professional v7.0.0.2 - XSS
Mar 21, 2019
CVSS 6.1
EPSS 0.01
CVE-2019-7423 MEDIUM
Zoho ManageEngine Netflow Analyzer Pro <7.0.0.2 - XSS
Mar 21, 2019
CVSS 6.1
EPSS 0.01
CVE-2019-7422 MEDIUM
Zoho ManageEngine Netflow Analyzer Professional <7.0.0.2 - XSS
Mar 21, 2019
CVSS 6.1
EPSS 0.01
CVE-2019-7161 HIGH
Zoho ManageEngine ADSelfService Plus <5.x - Info Disclosure
Mar 21, 2019
CVSS 7.5
EPSS 0.02
CVE-2019-8395 CRITICAL
Zoho ManageEngine ServiceDesk Plus < 10.0 - Insecure Direct Object Reference via Request Attachment
Feb 17, 2019
CVSS 9.8
EPSS 0.12
CVE-2019-8394 MEDIUM KEV
ManageEngine ServiceDesk Plus < 10.0 - Unauthenticated Arbitrary File Upload via Login Page Customization
Feb 17, 2019
CVSS 6.5
EPSS 0.88
CVE-2019-3905 CRITICAL
ManageEngine ADSelfService Plus 5.x < 5703 - Server-Side Request Forgery
Jan 03, 2019
CVSS 10.0
EPSS 0.03
CVE-2018-5353 CRITICAL
Zoho ManageEngine ADSelfService Plus <5.5.5517 - Privilege Escalation
Sep 30, 2020
CVSS 9.8
EPSS 0.15
CVE-2018-19374 HIGH
Zoho ManageEngine ADManager Plus 6.6 Build 6657 - Privilege Escalation via Trojan Horse File in Bin Directory
Apr 30, 2019
CVSS 7.0
EPSS 0.00
CVE-2018-20664 CRITICAL
ManageEngine ADSelfService Plus 5.x < 5701 - XML External Entity Injection via License Upload
Jan 03, 2019
CVSS 9.8
EPSS 0.04
CVE-2018-20485 MEDIUM
ManageEngine ADSelfService Plus 5.7 - Cross-Site Scripting in Employee Search Feature
Dec 26, 2018
CVSS 6.1
EPSS 0.02
CVE-2018-20484 MEDIUM
Zoho ManageEngine ADSelfService Plus 5.7 - Cross-Site Scripting in Self-Update Layout
Dec 26, 2018
CVSS 6.1
EPSS 0.02
CVE-2018-20339 MEDIUM
Zoho ManageEngine OpManager 12.3 - Cross-Site Scripting in Alarms Notes Column
Dec 21, 2018
CVSS 6.1
EPSS 0.01
CVE-2018-20338 CRITICAL
Zoho ManageEngine OpManager < 12.3.239 - SQL Injection in Alarms Section
Dec 21, 2018
CVSS 9.8
EPSS 0.05
CVE-2018-20173 CRITICAL
Zoho ManageEngine OpManager <12.3 - SQL Injection
Dec 17, 2018
CVSS 9.8
EPSS 0.13
CVE-2018-19118 HIGH
ManageEngine ADAudit Plus < 5.1 - Denial of Service via Domain Name Field Buffer Overflow
Dec 13, 2018
CVSS 7.5
EPSS 0.07
CVE-2018-19921 MEDIUM
Zoho ManageEngine OpManager <12.3 - XSS
Dec 06, 2018
CVSS 6.1
EPSS 0.01
CVE-2018-18716 MEDIUM
Zoho ManageEngine OpManager 12.3 - Self Cross-Site Scripting
Nov 20, 2018
CVSS 6.1
EPSS 0.01
CVE-2018-18715 MEDIUM
Zoho ManageEngine OpManager 12.3 - Stored Cross-Site Scripting
Nov 20, 2018
CVSS 6.1
EPSS 0.01
CVE-2018-19288 MEDIUM
Zoho ManageEngine OpManager <12.3 - XSS
Nov 15, 2018
CVSS 6.1
EPSS 0.01
Products
manageengine_applications_manager 56 manageengine_opmanager 56 manageengine_admanager_plus 53 manageengine_adaudit_plus 52 manageengine_adselfservice_plus 51 manageengine_servicedesk_plus 50 manageengine_desktop_central 48 manageengine_supportcenter_plus 31 manageengine_exchange_reporter_plus 28 manageengine_netflow_analyzer 28 manageengine_assetexplorer 26 manageengine_servicedesk_plus_msp 26 manageengine_password_manager_pro 22 manageengine_eventlog_analyzer 19 manageengine_network_configuration_manager 14 manageengine_pam360 14 manageengine_remote_access_plus 14 manageengine_firewall_analyzer 12 manageengine_access_manager_plus 11 manageengine_it360 9 manageengine_log360 9 ManageEngine Exchange Reporter Plus 8 manageengine_endpoint_central 8 manageengine_oputils 8 manageengine_analytics_plus 7 manageengine_datasecurity_plus 6 manageengine_opmanager_msp 6 manageengine_opmanager_plus 6 manageengine_cloud_security_plus 5 manageengine_key_manager_plus 5
Quick Filters
Critical CVEs With Exploits In CISA KEV