Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zohocorp manageengine admanager plus vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-31492
Zoho ManageEngine ADManager Plus version 7182 and prior disclosed the default passwords for the account restoration of unauthorized domains to the authenticated users.
Zohocorp Manageengine Admanager Plus 7.1
Zohocorp Manageengine Admanager Plus
NA
CVE-2022-42904
Zoho ManageEngine ADManager Plus through 7151 allows authenticated admin users to execute the commands in proxy settings.
Zohocorp Manageengine Admanager Plus 7.1
Zohocorp Manageengine Admanager Plus
4.3
CVSSv2
CVE-2021-36772
Zoho ManageEngine ADManager Plus prior to 7110 allows stored XSS.
Zohocorp Manageengine Admanager Plus
Zohocorp Manageengine Admanager Plus 7.1
NA
CVE-2023-35786
Zoho ManageEngine ADManager Plus prior to 7183 allows admin users to exploit an XXE issue to view files.
Zohocorp Manageengine Admanager Plus 7.1
Zohocorp Manageengine Admanager Plus
6.5
CVSSv2
CVE-2021-20130
ManageEngine ADManager Plus Build 7111 contains a post-authentication remote code execution vulnerability due to improperly validated file uploads in the PasswordExpiry interface.
Zohocorp Manageengine Admanager Plus
Zohocorp Manageengine Admanager Plus 7.1
6.5
CVSSv2
CVE-2022-29457
Zoho ManageEngine ADSelfService Plus prior to 6121, ADAuditPlus 7060, Exchange Reporter Plus 5701, and ADManagerPlus 7131 allow NTLM Hash disclosure during certain storage-path configuration steps.
Zohocorp Manageengine Adselfservice Plus 6.1
Zohocorp Manageengine Adselfservice Plus
Zohocorp Manageengine Admanager Plus 7.1
Zohocorp Manageengine Admanager Plus
Zohocorp Manageengine Adaudit Plus 7.0.0
Zohocorp Manageengine Adaudit Plus
Zohocorp Manageengine Exchange Reporter Plus 5.7
Zohocorp Manageengine Exchange Reporter Plus
8.5
CVSSv2
CVE-2019-12876
Zoho ManageEngine ADManager Plus 6.6.5, ADSelfService Plus 5.7, and DesktopCentral 10.0.380 have Insecure Permissions, leading to Privilege Escalation from low level privileges to System.
Zohocorp Manageengine Admanager Plus 6.6.5
Zohocorp Manageengine Adselfservice Plus 5.7
Zohocorp Manageengine Desktop Central 10.0.380
10
CVSSv2
CVE-2020-24786
An issue exists in Zoho ManageEngine Exchange Reporter Plus before build number 5510, AD360 before build number 4228, ADSelfService Plus before build number 5817, DataSecurity Plus before build number 6033, RecoverManager Plus before build number 6017, EventLog Analyzer before bu...
Zohocorp Manageengine Adselfservice Plus 5.8
Zohocorp Manageengine Adselfservice Plus
Zohocorp Manageengine Exchange Reporter Plus
Zohocorp Manageengine Exchange Reporter Plus 5.5
Zohocorp Manageengine Ad360
Zohocorp Manageengine Ad360 4.2
Zohocorp Manageengine Datasecurity Plus
Zohocorp Manageengine Datasecurity Plus 6.0
Zohocorp Manageengine Recovermanager Plus
Zohocorp Manageengine Recovermanager Plus 6.0
Zohocorp Manageengine Eventlog Analyzer 12.1.3
Zohocorp Manageengine Eventlog Analyzer
Zohocorp Manageengine Adaudit Plus
Zohocorp Manageengine Adaudit Plus 6.0
Zohocorp Manageengine O365 Manager Plus 4.3
Zohocorp Manageengine O365 Manager Plus
Zohocorp Manageengine Cloud Security Plus
Zohocorp Manageengine Cloud Security Plus 4.1
Zohocorp Manageengine Admanager Plus
Zohocorp Manageengine Admanager Plus 7.0
Zohocorp Manageengine Log360
Zohocorp Manageengine Log360 5.1
NA
CVE-2023-38743
Zoho ManageEngine ADManager Plus before Build 7200 allows admin users to execute commands on the host machine.
Zohocorp Manageengine Admanager Plus
1 Github repository
6.8
CVSSv2
CVE-2017-17552
/LoadFrame in Zoho ManageEngine AD Manager Plus build 6590 - 6613 allows malicious users to conduct URL Redirection attacks via the src parameter, resulting in a bypass of CSRF protection, or potentially masquerading a malicious URL as trusted.
Zohocorp Manageengine Admanager Plus
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »