Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
admanager plus vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv3
CVE-2023-29084
Zoho ManageEngine ADManager Plus prior to 7181 allows for authenticated users to exploit command injection via Proxy settings.
Zohocorp Manageengine Admanager Plus 7.1
Zohocorp Manageengine Admanager Plus
1 Github repository
8.8
CVSSv3
CVE-2021-20130
ManageEngine ADManager Plus Build 7111 contains a post-authentication remote code execution vulnerability due to improperly validated file uploads in the PasswordExpiry interface.
Zohocorp Manageengine Admanager Plus
Zohocorp Manageengine Admanager Plus 7.1
8.8
CVSSv3
CVE-2021-20131
ManageEngine ADManager Plus Build 7111 contains a post-authentication remote code execution vulnerability due to improperly validated file uploads in the Personalization interface.
Zohocorp Manageengine Admanager Plus
Zohocorp Manageengine Admanager Plus 7.1
6.5
CVSSv3
CVE-2023-31492
Zoho ManageEngine ADManager Plus version 7182 and prior disclosed the default passwords for the account restoration of unauthorized domains to the authenticated users.
Zohocorp Manageengine Admanager Plus 7.1
Zohocorp Manageengine Admanager Plus
7.2
CVSSv3
CVE-2022-42904
Zoho ManageEngine ADManager Plus through 7151 allows authenticated admin users to execute the commands in proxy settings.
Zohocorp Manageengine Admanager Plus 7.1
Zohocorp Manageengine Admanager Plus
9.8
CVSSv3
CVE-2021-37930
Zoho ManageEngine ADManager Plus version 7110 and prior allows unrestricted file upload which leads to remote code execution.
Zohocorp Manageengine Admanager Plus
Zohocorp Manageengine Admanager Plus 7.1
6.1
CVSSv3
CVE-2020-35594
Zoho ManageEngine ADManager Plus prior to 7066 allows XSS.
Zohocorp Manageengine Admanager Plus
Zohocorp Manageengine Admanager Plus 7.0
6.5
CVSSv3
CVE-2023-38332
Zoho ManageEngine ADManager Plus through 7201 allow authenticated users to take over another user's account via sensitive information disclosure.
Zohocorp Manageengine Admanager Plus
Zohocorp Manageengine Admanager Plus 7.2
8.8
CVSSv3
CVE-2021-37741
ManageEngine ADManager Plus prior to 7111 has Pre-authentication RCE vulnerabilities.
Zohocorp Manageengine Admanager Plus 7.1
Zohocorp Manageengine Admanager Plus
9.8
CVSSv3
CVE-2021-37761
Zoho ManageEngine ADManager Plus version 7110 and prior is vulnerable to unrestricted file upload, leading to remote code execution.
Zohocorp Manageengine Admanager Plus
Zohocorp Manageengine Admanager Plus 7.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-21111
CVE-2024-32884
IDOR
CVE-2023-1000
CVE-2024-33260
CVE-2024-3682
reflected XSS
race condition
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »