Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zohocorp manageengine opmanager 11.3 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2015-9107
Zoho ManageEngine OpManager 11 up to and including 12.2 uses a custom encryption algorithm to protect the credential used to access the monitored devices. The implemented algorithm doesn't use a per-system key or even a salt; therefore, it's possible to create a univers...
Zohocorp Manageengine Opmanager 11.5
Zohocorp Manageengine Opmanager 11.3
Zohocorp Manageengine Opmanager 11.4
Zohocorp Manageengine Opmanager 11.0
Zohocorp Manageengine Opmanager 11.1
Zohocorp Manageengine Opmanager 11.6
Zohocorp Manageengine Opmanager 12.2
Zohocorp Manageengine Opmanager 11.2
NA
CVE-2014-7864
Multiple SQL injection vulnerabilities in the FailOverHelperServlet (aka FailServlet) servlet in ZOHO ManageEngine OpManager 8 up to and including 11.5 build 11400 and IT360 10.5 and previous versions allow remote attackers and remote authenticated users to execute arbitrary SQL ...
Zohocorp Manageengine Opmanager 9.0
Zohocorp Manageengine Opmanager 11.5
Zohocorp Manageengine Opmanager 8.8
Zohocorp Manageengine Opmanager 11.3
Zohocorp Manageengine Opmanager 11.4
Zohocorp Manageengine Opmanager 9.4
Zohocorp Manageengine Opmanager 11.0
Zohocorp Manageengine Opmanager 10.2
Zohocorp Manageengine Opmanager 11.1
Zohocorp Manageengine Opmanager 9.1
Zohocorp Manageengine Opmanager 9.2
Zohocorp Manageengine Opmanager 10.1
Zohocorp Manageengine Opmanager 11.2
Zohocorp Manageengine Opmanager 10.0
1 EDB exploit
NA
CVE-2014-7866
Multiple directory traversal vulnerabilities in ZOHO ManageEngine OpManager 8 (build 88xx) up to and including 11.4, IT360 10.3 and 10.4, and Social IT Plus 11.0 allow remote attackers or remote authenticated users to write and execute arbitrary files via a .. (dot dot) in the (1...
Zohocorp Manageengine Social It Plus 11.0
Zohocorp Manageengine It360 10.4
Zohocorp Manageengine It360 10.3.0
Zohocorp Manageengine Opmanager 9.0
Zohocorp Manageengine Opmanager 8.8
Zohocorp Manageengine Opmanager 11.3
Zohocorp Manageengine Opmanager 11.4
Zohocorp Manageengine Opmanager 9.4
Zohocorp Manageengine Opmanager 11.0
Zohocorp Manageengine Opmanager 10.2
Zohocorp Manageengine Opmanager 11.1
Zohocorp Manageengine Opmanager 9.1
Zohocorp Manageengine Opmanager 9.2
Zohocorp Manageengine Opmanager 10.1
Zohocorp Manageengine Opmanager 11.2
Zohocorp Manageengine Opmanager 10.0
2 EDB exploits
NA
CVE-2014-6034
Directory traversal vulnerability in the com.me.opmanager.extranet.remote.communication.fw.fe.FileCollector servlet in ZOHO ManageEngine OpManager 8.8 up to and including 11.3, Social IT Plus 11.0, and IT360 10.4 and previous versions allows remote attackers or remote authenticat...
Zohocorp Manageengine Social It Plus 11.0
Zohocorp Manageengine It360
Zohocorp Manageengine Opmanager 9.0
Zohocorp Manageengine Opmanager 8.8
Zohocorp Manageengine Opmanager 11.3
Zohocorp Manageengine Opmanager 9.4
Zohocorp Manageengine Opmanager 11.0
Zohocorp Manageengine Opmanager 10.2
Zohocorp Manageengine Opmanager 11.1
Zohocorp Manageengine Opmanager 9.1
Zohocorp Manageengine Opmanager 9.2
Zohocorp Manageengine Opmanager 10.1
Zohocorp Manageengine Opmanager 11.2
Zohocorp Manageengine Opmanager 10.0
2 EDB exploits
NA
CVE-2014-7867
SQL injection vulnerability in the com.manageengine.opmanager.servlet.UpdateProbeUpgradeStatus servlet in ZOHO ManageEngine OpManager 11.3 and 11.4, IT360 10.3 and 10.4, and Social IT Plus 11.0 allows remote attackers or remote authenticated users to execute arbitrary SQL command...
Zohocorp Manageengine Opmanager 11.3
Zohocorp Manageengine Opmanager 11.4
Zohocorp Manageengine Social It Plus 11.0
Zohocorp Manageengine It360 10.4
Zohocorp Manageengine It360 10.3.0
NA
CVE-2014-7868
Multiple SQL injection vulnerabilities in ZOHO ManageEngine OpManager 11.3 and 11.4, IT360 10.3 and 10.4, and Social IT Plus 11.0 allow remote attackers or remote authenticated users to execute arbitrary SQL commands via the (1) OPM_BVNAME parameter in a Delete operation to the A...
Zohocorp Manageengine Social It Plus 11.0
Zohocorp Manageengine Opmanager 11.3
Zohocorp Manageengine Opmanager 11.4
Zohocorp Manageengine It360 10.4
Zohocorp Manageengine It360 10.3.0
2 EDB exploits
NA
CVE-2014-6035
Directory traversal vulnerability in the FileCollector servlet in ZOHO ManageEngine OpManager 11.4, 11.3, and previous versions allows remote malicious users to write and execute arbitrary files via a .. (dot dot) in the FILENAME parameter.
Zohocorp Manageengine Opmanager
Zohocorp Manageengine Opmanager 11.4
1 EDB exploit
NA
CVE-2014-6036
Directory traversal vulnerability in the multipartRequest servlet in ZOHO ManageEngine OpManager 11.3 and previous versions, Social IT Plus 11.0, and IT360 10.3, 10.4, and previous versions allows remote attackers or remote authenticated users to delete arbitrary files via a .. (...
Zohocorp Manageengine Opmanager
Zohocorp Manageengine It360
Zohocorp Manageengine It360 10.3.0
Zohocorp Manageengine Social It Plus 11.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started