Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / zohocorp

zohocorp

559 tracked vulnerabilities.

CVE-2014-6039 HIGH

ManageEngine EventLog Analyzer 7-9.9 - Credentials Disclosure

CVE-2014-6038 HIGH

ManageEngine Eventlog Analyzer Managed Hosts Administrator Credential Disclosure

CVE-2014-7862 CRITICAL

ManageEngine Desktop Central < 90109 - Unauthenticated Administrator Account Creation via DCPluginServelet

ZOHO ManageEngine Desktop Central <9 - CSRF

ManageEngine OpManager 8-11.5 - SQL Injection via FailOverHelperServlet Parameters

CVE-2014-100002

ManageEngine SupportCenter Plus < 7.9 - Path Traversal via WorkOrder.do Attach Parameter

ManageEngine ADSelfService Plus < 5.2 - Cross-Site Scripting via GroupSubscription.do Name Parameter

ManageEngine Desktop Central MSP <90075 - RCE

ZOHO ManageEngine OpManager 8-11.4 Path Traversal & Arbitrary File Write via Servlets

ManageEngine Password Manager Pro 5-7 build 7003 - SQL Injection via MetadataServlet sv Parameter

ManageEngine OpManager 11.3-11.4, IT360 10.3-10.4, Social IT Plus 11.0 SQL Injection

ZOHO ManageEngine OpManager 11.3-11.4, IT360 10.3-10.4, Social IT Plus 11.0 - SQL Injection via probeName Parameter

ManageEngine OpManager <11.3, Social IT Plus 11.0, IT360 <=10.4 - Path Traversal & File Deletion

ManageEngine OpManager < 11.3 - Path Traversal and Arbitrary File Write via FileCollector Servlet FILENAME Parameter

ManageEngine OpManager 8.8-11.3, Social IT Plus 11.0, IT360 <=10.4 - Path Traversal & Arbitrary File Write

ManageEngine Netflow Analyzer 8.6-10.2 and IT360 10.3 - Path Traversal via DisplayChartPDF Filename Parameter

ManageEngine Netflow Analyzer 8.6-10.2 and IT360 10.3 - Path Traversal via schFilePath Parameter

ManageEngine Password Manager Pro < 7.1 - Authenticated SQL Injection via BulkEditSearchResult.cc SEARCH_ALL Parameter

ManageEngine EventLog Analyzer 9.0/8.2 - Remote Code Execution via ZIP Traversal

ManageEngine Desktop Central < 9.0 - Remote Code Execution via File Upload Path Traversal

ManageEngine Desktop Central < 9.0 - Remote Code Execution via File Upload Path Traversal

ManageEngine EventLog Analyzer 9.0 build 9002 and 8.2 build 8020 - Authenticated Database Access via Direct Request

ManageEngine EventLog Analyzer <9.0 build 9002 - XSS

ManageEngine EventLog Analyzer 9 build 9000 - Cross-Site Scripting via j_username Parameter

ZOHO ManageEngine OpStor <build 8500 - XSS

Previous Page 22 of 23 Next

Products

manageengine_applications_manager 56 manageengine_opmanager 56 manageengine_admanager_plus 53 manageengine_adaudit_plus 52 manageengine_adselfservice_plus 51 manageengine_servicedesk_plus 50 manageengine_desktop_central 48 manageengine_supportcenter_plus 31 manageengine_exchange_reporter_plus 28 manageengine_netflow_analyzer 28 manageengine_assetexplorer 26 manageengine_servicedesk_plus_msp 26 manageengine_password_manager_pro 22 manageengine_eventlog_analyzer 19 manageengine_network_configuration_manager 14 manageengine_pam360 14 manageengine_remote_access_plus 14 manageengine_firewall_analyzer 12 manageengine_access_manager_plus 11 manageengine_it360 9 manageengine_log360 9 ManageEngine Exchange Reporter Plus 8 manageengine_endpoint_central 8 manageengine_oputils 8 manageengine_analytics_plus 7 manageengine_datasecurity_plus 6 manageengine_opmanager_msp 6 manageengine_opmanager_plus 6 manageengine_cloud_security_plus 5 manageengine_key_manager_plus 5

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy