Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / zohocorp

zohocorp

559 tracked vulnerabilities.

CVE-2025-5347 MEDIUM

ManageEngine Exchange Reporter Plus < 5723 - Stored Cross-Site Scripting in Reports Module

CVE-2025-5343 MEDIUM

ManageEngine Exchange Reporter Plus <= 5721 - Stored Cross-Site Scripting in Instant Search

CVE-2025-5342 MEDIUM

ManageEngine Exchange Reporter Plus <= 5721 - Denial of Service via Search Module ReDOS

CVE-2025-11248 LOW

ZohoCorp ManageEngine Endpoint Central <11.4.2528.05 - Info Disclosure

CVE-2025-6239 MEDIUM

Zohocorp ManageEngine Applications Manager <176800 - Info Disclosure

CVE-2025-10020 HIGH

ManageEngine ADManager Plus < 8024 - Authenticated Command Injection in Custom Script

CVE-2025-9428 HIGH

ManageEngine Analytics Plus <= 6171 - Authenticated SQL Injection via Key Update API

CVE-2025-7473 MEDIUM

Zohocorp ManageEngine EndPoint Central <11.4.2516.1 - XML Injection

CVE-2025-5496 LOW

Zohocorp Manageengine Endpoint Central < 11.4.2508.14 - Improper Privilege Management

CVE-2025-5494 LOW

Zohocorp Manageengine Endpoint Central < 11.4.2500.26 - Improper Privilege Management

CVE-2025-27930 MEDIUM

ManageEngine Applications Manager <= 176600 - Stored Cross-Site Scripting in File/Directory Monitor

CVE-2025-5966 HIGH

ManageEngine Exchange Reporter Plus <= 5722 - Stored Cross-Site Scripting in Attachments by Filename Report

CVE-2025-5366 HIGH

ManageEngine Exchange Reporter Plus <= 5722 - Stored Cross-Site Scripting in Folder-wise Read Mails Report

CVE-2025-41444 HIGH

ManageEngine ADAudit Plus <= 8510 - Authenticated SQL Injection in Alerts Module

CVE-2025-3835 CRITICAL

ManageEngine Exchange Reporter Plus <= 5721 - Remote Code Execution in Content Search Module

CVE-2025-36528 HIGH

ManageEngine ADAudit Plus <= 8510 - Authenticated SQL Injection in Service Account Auditing Reports

CVE-2025-27709 HIGH

ManageEngine ADAudit Plus <= 8510 - Authenticated SQL Injection in Service Account Auditing Reports

CVE-2025-41407 HIGH

ManageEngine ADAudit Plus < 8511 - SQL Injection in OU History Report

CVE-2025-36527 HIGH

ManageEngine ADAudit Plus < 8511 - SQL Injection via Report Export

CVE-2025-41403 HIGH

ManageEngine ADAudit Plus <= 8510 - Authenticated SQL Injection

CVE-2025-3836 HIGH

ManageEngine ADAudit Plus <= 8510 - Authenticated SQL Injection in Logon Events Aggregate Report

CVE-2025-3444 MEDIUM

ManageEngine ServiceDesk Plus MSP and SupportCenter Plus < 14920 - Authenticated Local File Inclusion in Admin Help Card

CVE-2025-3834 HIGH

ManageEngine ADAudit Plus <= 8510 - Authenticated SQL Injection in OU History Report

CVE-2025-3833 HIGH

ManageEngine ADSelfService Plus <= 6513 - Authenticated SQL Injection in MFA Reports

CVE-2025-1724 HIGH

Zohocorp's ManageEngine Analytics Plus & Zoho Analytics <6130 - Pri...

Previous Page 2 of 23 Next

Products

manageengine_applications_manager 56 manageengine_opmanager 56 manageengine_admanager_plus 53 manageengine_adaudit_plus 52 manageengine_adselfservice_plus 51 manageengine_servicedesk_plus 50 manageengine_desktop_central 48 manageengine_supportcenter_plus 31 manageengine_exchange_reporter_plus 28 manageengine_netflow_analyzer 28 manageengine_assetexplorer 26 manageengine_servicedesk_plus_msp 26 manageengine_password_manager_pro 22 manageengine_eventlog_analyzer 19 manageengine_network_configuration_manager 14 manageengine_pam360 14 manageengine_remote_access_plus 14 manageengine_firewall_analyzer 12 manageengine_access_manager_plus 11 manageengine_it360 9 manageengine_log360 9 ManageEngine Exchange Reporter Plus 8 manageengine_endpoint_central 8 manageengine_oputils 8 manageengine_analytics_plus 7 manageengine_datasecurity_plus 6 manageengine_opmanager_msp 6 manageengine_opmanager_plus 6 manageengine_cloud_security_plus 5 manageengine_key_manager_plus 5

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy