Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / zohocorp

zohocorp

559 tracked vulnerabilities.

CVE-2023-49333 HIGH

Zoho ManageEngine ADAudit Plus <7271 - SQL Injection

CVE-2023-49332 HIGH

Zoho ManageEngine ADAudit Plus <7271 - SQL Injection

CVE-2023-49331 HIGH

Zoho ManageEngine ADAudit Plus <7271 - SQL Injection

CVE-2023-49330 HIGH

Zoho ManageEngine ADAudit Plus <7271 - SQL Injection

CVE-2023-48793 CRITICAL

Zoho ManageEngine ADAudit Plus <7250 - SQL Injection

CVE-2023-48792 CRITICAL

Zoho ManageEngine ADAudit Plus <7250 - SQL Injection

CVE-2023-50785 LOW

ManageEngine ADAudit Plus < 7270 - Authenticated Path Traversal

CVE-2023-49943 MEDIUM

ManageEngine ServiceDesk Plus MSP < 14504 - Stored Cross-Site Scripting via Task Name in Timesheet

CVE-2023-47211 CRITICAL NUCLEI

ManageEngine Firewall Analyzer < 12.7 - Path Traversal and Arbitrary File Write via MIB Upload

CVE-2023-50891 MEDIUM

Zoho Forms < 3.0.1 - Stored Cross-Site Scripting

CVE-2023-48646 HIGH

Zoho ManageEngine RecoveryManager Plus <6070 - Command Injection

CVE-2023-6105 MEDIUM

ManageEngine Products - Unauthorized Encryption Key Exposure

CVE-2023-4769 MEDIUM

ManageEngine Desktop Central 9.1.0 - Authenticated Server-Side Request Forgery via /smtpConfig.do

CVE-2023-4768 MEDIUM

ManageEngine Desktop Central <9.1.0 - CRLF Injection

CVE-2023-4767 MEDIUM

ManageEngine Desktop Central <9.1.0 - CRLF Injection

CVE-2023-41904 MEDIUM

ManageEngine ADManager Plus < 7203 - Two-Factor Authentication Bypass via REST API

CVE-2023-38743 HIGH

Zoho ManageEngine ADManager Plus <Build 7200 - Command Injection

CVE-2023-35719 MEDIUM

ManageEngine ADSelfService Plus - Unauthenticated Authentication Bypass via GINA Client Password Reset Portal

CVE-2023-39912 MEDIUM

ManageEngine ADManager Plus < 7203 - Authenticated Arbitrary File Read via Help Desk Technician Role

CVE-2023-35785 HIGH

ManageEngine Active Directory 360 <= 4315 - Two-Factor Authentication Bypass via TOTP Authenticators

CVE-2023-31492 MEDIUM

Zoho ManageEngine ADManager Plus <7182 - Info Disclosure

CVE-2023-38333 MEDIUM

Zoho ManageEngine Applications Manager <16530 - XSS

CVE-2023-32783 HIGH

Zoho ManageEngine ADAudit Plus 7.1.1 - Audit Detection Bypass via User Account Name Suffix

CVE-2023-38332 MEDIUM

Zoho ManageEngine ADManager Plus <7201 - Info Disclosure

CVE-2023-29505 MEDIUM

ManageEngine Network Configuration Manager 12.6.165 - Cross-site WebSocket Hijacking via WebSocket Endpoint

Previous Page 5 of 23 Next

Products

manageengine_applications_manager 56 manageengine_opmanager 56 manageengine_admanager_plus 53 manageengine_adaudit_plus 52 manageengine_adselfservice_plus 51 manageengine_servicedesk_plus 50 manageengine_desktop_central 48 manageengine_supportcenter_plus 31 manageengine_exchange_reporter_plus 28 manageengine_netflow_analyzer 28 manageengine_assetexplorer 26 manageengine_servicedesk_plus_msp 26 manageengine_password_manager_pro 22 manageengine_eventlog_analyzer 19 manageengine_network_configuration_manager 14 manageengine_pam360 14 manageengine_remote_access_plus 14 manageengine_firewall_analyzer 12 manageengine_access_manager_plus 11 manageengine_it360 9 manageengine_log360 9 ManageEngine Exchange Reporter Plus 8 manageengine_endpoint_central 8 manageengine_oputils 8 manageengine_analytics_plus 7 manageengine_datasecurity_plus 6 manageengine_opmanager_msp 6 manageengine_opmanager_plus 6 manageengine_cloud_security_plus 5 manageengine_key_manager_plus 5

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy