Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zohocorp manageengine servicedesk plus 10.0 vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2019-8395
An Insecure Direct Object Reference (IDOR) vulnerability exists in Zoho ManageEngine ServiceDesk Plus (SDP) prior to 10.0 build 10007 via an attachment to a request.
Zohocorp Manageengine Servicedesk Plus
605
VMScore
CVE-2021-44526
Zoho ManageEngine ServiceDesk Plus prior to 12003 allows authentication bypass in certain admin configurations.
Zohocorp Manageengine Servicedesk Plus 10.0.0
Zohocorp Manageengine Servicedesk Plus 11.1
Zohocorp Manageengine Servicedesk Plus 9.1
Zohocorp Manageengine Servicedesk Plus 9.2
Zohocorp Manageengine Servicedesk Plus 9.3
Zohocorp Manageengine Servicedesk Plus 8.2
Zohocorp Manageengine Servicedesk Plus 9.0
Zohocorp Manageengine Servicedesk Plus 9.4
Zohocorp Manageengine Servicedesk Plus 10.5
Zohocorp Manageengine Servicedesk Plus 11.0
Zohocorp Manageengine Servicedesk Plus 8.1
Zohocorp Manageengine Servicedesk Plus 10.0
Zohocorp Manageengine Servicedesk Plus 11.2
Zohocorp Manageengine Servicedesk Plus 11.3
Zohocorp Manageengine Servicedesk Plus 12.0
405
VMScore
CVE-2019-8394
Zoho ManageEngine ServiceDesk Plus (SDP) prior to 10.0 build 10012 allows remote malicious users to upload arbitrary files via login page customization.
Zohocorp Manageengine Servicedesk Plus
1 EDB exploit
383
VMScore
CVE-2019-15083
Default installations of Zoho ManageEngine ServiceDesk Plus 10.0 prior to 10500 are vulnerable to XSS injected by a workstation local administrator. Using the installed program names of the computer as a vector, the local administrator can execute code on the Manage Engine Servic...
Zohocorp Manageengine Servicedesk Plus 10.0.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started