Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zohocorp manageengine admanager plus vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2021-42002
Zoho ManageEngine ADManager Plus prior to 7115 is vulnerable to a filter bypass that leads to file-upload remote code execution.
Zohocorp Manageengine Admanager Plus 7.1
Zohocorp Manageengine Admanager Plus
7.5
CVSSv3
CVE-2021-37419
Zoho ManageEngine ADSelfService Plus prior to 6112 is vulnerable to SSRF.
Zohocorp Manageengine Admanager Plus
Zohocorp Manageengine Admanager Plus 6.1
6.5
CVSSv3
CVE-2021-37420
Zoho ManageEngine ADSelfService Plus prior to 6112 is vulnerable to mail spoofing.
Zohocorp Manageengine Admanager Plus
Zohocorp Manageengine Admanager Plus 6.1
9.8
CVSSv3
CVE-2021-37424
ManageEngine ADSelfService Plus prior to 6112 is vulnerable to domain user account takeover.
Zohocorp Manageengine Admanager Plus
Zohocorp Manageengine Admanager Plus 6.1
9.8
CVSSv3
CVE-2021-37539
Zoho ManageEngine ADManager Plus prior to 7111 is vulnerable to unrestricted file which leads to Remote code execution.
Zohocorp Manageengine Admanager Plus
Zohocorp Manageengine Admanager Plus 7.1
6.1
CVSSv3
CVE-2021-36771
Zoho ManageEngine ADManager Plus prior to 7110 allows reflected XSS.
Zohocorp Manageengine Admanager Plus
Zohocorp Manageengine Admanager Plus 7.1
6.1
CVSSv3
CVE-2021-36772
Zoho ManageEngine ADManager Plus prior to 7110 allows stored XSS.
Zohocorp Manageengine Admanager Plus
Zohocorp Manageengine Admanager Plus 7.1
4.9
CVSSv3
CVE-2023-35786
Zoho ManageEngine ADManager Plus prior to 7183 allows admin users to exploit an XXE issue to view files.
Zohocorp Manageengine Admanager Plus 7.1
Zohocorp Manageengine Admanager Plus
9.8
CVSSv3
CVE-2021-33911
Zoho ManageEngine ADManager Plus prior to 7110 allows remote code execution.
Zohocorp Manageengine Admanager Plus 7.1
Zohocorp Manageengine Admanager Plus
5.4
CVSSv3
CVE-2023-41904
Zoho ManageEngine ADManager Plus prior to 7203 allows 2FA bypass (for AuthToken generation) in REST APIs.
Zohocorp Manageengine Admanager Plus
Zohocorp Manageengine Admanager Plus 7.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
CVE-2006-4304
CVE-2023-26603
CVE-2024-28327
CVE-2023-50363
CVE-2024-21905
template injection
CVE-2024-3400
cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »