Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / zohocorp

zohocorp

559 tracked vulnerabilities.

CVE-2023-38331 MEDIUM

Zoho ManageEngine Support Center Plus <14001 - XSS

CVE-2023-37308 MEDIUM

ManageEngine ADAudit Plus < 7100 - Cross-Site Scripting via Username Field

CVE-2023-34197 MEDIUM

Zoho ManageEngine <14202-14300 - Privilege Escalation

CVE-2023-35786 MEDIUM

ManageEngine ADManager Plus < 7183 - Authenticated XML External Entity Injection

CVE-2023-35854 CRITICAL

ManageEngine ADSelfService Plus <= 6113 - Authentication Bypass via Session Token Theft

CVE-2023-31099 HIGH

Zoho ManageEngine OPManager <126323 - RCE

CVE-2023-2291 HIGH

ManageEngine Access Manager Plus, Password Manager Pro, and PAM360 - Use of Hard-coded Credentials in PostgreSQL Data

CVE-2023-29443 MEDIUM

ManageEngine AssetExplorer < 6989 - XML External Entity Injection via Reports Integration API

CVE-2023-29442 MEDIUM

ManageEngine Applications Manager < 16400 - DOM-Based Cross-Site Scripting via proxy.html

CVE-2023-29084 HIGH NUCLEI

ManageEngine ADManager Plus ChangePasswordAction Authenticated Command Injection

CVE-2023-28341 MEDIUM

Zoho ManageEngine Applications Manager <= 16340 - Unauthenticated Stored Cross-Site Scripting via Login Page

CVE-2023-28340 MEDIUM

Zoho ManageEngine Applications Manager <= 16320 - Authenticated XML External Entity Injection

CVE-2023-28342 HIGH

ManageEngine ADSelfService Plus < 6218 - Unauthenticated Denial of Service via Mobile App Authentication API

CVE-2023-26601 HIGH

ManageEngine Asset Explorer < 6.9 - Denial of Service

CVE-2023-26600 MEDIUM

ManageEngine - Privilege Escalation

CVE-2023-0169 MEDIUM

Zoho Forms < 3.0.1 - Stored Cross-Site Scripting via Shortcode Attributes

CVE-2023-23078 MEDIUM

Zoho ManageEngine ServiceDesk Plus 14 - Stored Cross-Site Scripting via Assets Comment Field

CVE-2023-23077 MEDIUM

ManageEngine ServiceDesk Plus 13 - Stored Cross-Site Scripting via Status Comment Field

CVE-2023-23076 CRITICAL

ManageEngine Support Center Plus 11 - OS Command Injection via Executor in Action

CVE-2023-23075 MEDIUM

Zoho ManageEngine AssetExplorer 6.9 - Stored Cross-Site Scripting via Credential Name

CVE-2023-23074 MEDIUM

ManageEngine ServiceDesk Plus 14 - Stored Cross-Site Scripting via Video Embedding in Language Component

CVE-2023-23073 MEDIUM

ManageEngine ServiceDesk Plus 14 - Stored Cross-Site Scripting via Purchase Order in Purchase Component

CVE-2023-22964 CRITICAL

ManageEngine ServiceDesk Plus MSP < 10611 and 13x < 13004 - Authentication Bypass via LDAP

CVE-2023-22624 HIGH

ManageEngine Exchange Reporter Plus < 5708 - XML External Entity Injection

CVE-2022-43473 MEDIUM

ManageEngine OpManager <12.6.168 - SSRF

Previous Page 6 of 23 Next

Products

manageengine_applications_manager 56 manageengine_opmanager 56 manageengine_admanager_plus 53 manageengine_adaudit_plus 52 manageengine_adselfservice_plus 51 manageengine_servicedesk_plus 50 manageengine_desktop_central 48 manageengine_supportcenter_plus 31 manageengine_exchange_reporter_plus 28 manageengine_netflow_analyzer 28 manageengine_assetexplorer 26 manageengine_servicedesk_plus_msp 26 manageengine_password_manager_pro 22 manageengine_eventlog_analyzer 19 manageengine_network_configuration_manager 14 manageengine_pam360 14 manageengine_remote_access_plus 14 manageengine_firewall_analyzer 12 manageengine_access_manager_plus 11 manageengine_it360 9 manageengine_log360 9 ManageEngine Exchange Reporter Plus 8 manageengine_endpoint_central 8 manageengine_oputils 8 manageengine_analytics_plus 7 manageengine_datasecurity_plus 6 manageengine_opmanager_msp 6 manageengine_opmanager_plus 6 manageengine_cloud_security_plus 5 manageengine_key_manager_plus 5

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy