Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
plus vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-5556
Shihonkanri Plus GOOUT Ver1.5.8 and Ver2.2.10 allows remote malicious users to execute arbitrary OS commands via unspecified vectors.
Shihonkanri Plus Goout Project Shihonkanri Plus Goout 1.5.8
Shihonkanri Plus Goout Project Shihonkanri Plus Goout 2.2.10
9.1
CVSSv3
CVE-2020-5555
Shihonkanri Plus GOOUT Ver1.5.8 and Ver2.2.10 allows remote malicious users to read and write data of the files placed in the same directory where it is placed via unspecified vector due to the improper input validation issue.
Shihonkanri Plus Goout Project Shihonkanri Plus Goout 1.5.8
Shihonkanri Plus Goout Project Shihonkanri Plus Goout 2.2.10
8.1
CVSSv3
CVE-2023-35785
Zoho ManageEngine Active Directory 360 versions 4315 and below, ADAudit Plus 7202 and below, ADManager Plus 7200 and below, Asset Explorer 6993 and below and 7xxx 7002 and below, Cloud Security Plus 4161 and below, Data Security Plus 6110 and below, Eventlog Analyzer 12301 and be...
Zohocorp Manageengine Ad360
Zohocorp Manageengine Ad360 4.3
Zohocorp Manageengine Adaudit Plus 7.2
Zohocorp Manageengine Adaudit Plus
Zohocorp Manageengine Admanager Plus
Zohocorp Manageengine Admanager Plus 7.2
Zohocorp Manageengine Assetexplorer 6.9
Zohocorp Manageengine Assetexplorer
Zohocorp Manageengine Assetexplorer 7.0
Zohocorp Manageengine Cloud Security Plus 4.1
Zohocorp Manageengine Cloud Security Plus
Zohocorp Manageengine Datasecurity Plus 6.1
Zohocorp Manageengine Datasecurity Plus
Zohocorp Manageengine Eventlog Analyzer 12.3.0
Zohocorp Manageengine Eventlog Analyzer
Zohocorp Manageengine Exchange Reporter Plus 5.7
Zohocorp Manageengine Exchange Reporter Plus
Zohocorp Manageengine Log360
Zohocorp Manageengine Log360 5.3
Zohocorp Manageengine Log360 Ueba 4.0
Zohocorp Manageengine M365 Manager Plus 4.5
Zohocorp Manageengine M365 Manager Plus
5.4
CVSSv3
CVE-2023-34197
Zoho ManageEngine ServiceDesk Plus prior to 14202, ServiceDesk Plus MSP prior to 14300, and SupportCenter Plus prior to 14300 have a privilege escalation vulnerability in the Release module that allows unprivileged users to access the Reminders of a release ticket and make modifi...
Zohocorp Manageengine Servicedesk Plus
Zohocorp Manageengine Servicedesk Plus 14.2
Zohocorp Manageengine Servicedesk Plus Msp
Zohocorp Manageengine Servicedesk Plus Msp 14.2
Zohocorp Manageengine Supportcenter Plus
Zohocorp Manageengine Supportcenter Plus 14.2
7.2
CVSSv3
CVE-2022-40770
Zoho ManageEngine ServiceDesk Plus versions 13010 and prior are vulnerable to authenticated command injection. This can be exploited by high-privileged users.
Zohocorp Manageengine Servicedesk Plus 13.0
Zohocorp Manageengine Servicedesk Plus
Zohocorp Manageengine Servicedesk Plus Msp 10.6
Zohocorp Manageengine Servicedesk Plus Msp
Zohocorp Manageengine Supportcenter Plus 11.0
Zohocorp Manageengine Supportcenter Plus
9.8
CVSSv3
CVE-2020-24786
An issue exists in Zoho ManageEngine Exchange Reporter Plus before build number 5510, AD360 before build number 4228, ADSelfService Plus before build number 5817, DataSecurity Plus before build number 6033, RecoverManager Plus before build number 6017, EventLog Analyzer before bu...
Zohocorp Manageengine Adselfservice Plus 5.8
Zohocorp Manageengine Adselfservice Plus
Zohocorp Manageengine Exchange Reporter Plus
Zohocorp Manageengine Exchange Reporter Plus 5.5
Zohocorp Manageengine Ad360
Zohocorp Manageengine Ad360 4.2
Zohocorp Manageengine Datasecurity Plus
Zohocorp Manageengine Datasecurity Plus 6.0
Zohocorp Manageengine Recovermanager Plus
Zohocorp Manageengine Recovermanager Plus 6.0
Zohocorp Manageengine Eventlog Analyzer 12.1.3
Zohocorp Manageengine Eventlog Analyzer
Zohocorp Manageengine Adaudit Plus
Zohocorp Manageengine Adaudit Plus 6.0
Zohocorp Manageengine O365 Manager Plus 4.3
Zohocorp Manageengine O365 Manager Plus
Zohocorp Manageengine Cloud Security Plus
Zohocorp Manageengine Cloud Security Plus 4.1
Zohocorp Manageengine Admanager Plus
Zohocorp Manageengine Admanager Plus 7.0
Zohocorp Manageengine Log360
Zohocorp Manageengine Log360 5.1
9.8
CVSSv3
CVE-2022-47966
Multiple Zoho ManageEngine on-premise products, such as ServiceDesk Plus through 14003, allow remote code execution due to use of Apache Santuario xmlsec (aka XML Security for Java) 1.4.1, because the xmlsec XSLT features, by design in that version, make the application responsib...
Zohocorp Manageengine Access Manager Plus 4.3
Zohocorp Manageengine Access Manager Plus
Zohocorp Manageengine Ad360
Zohocorp Manageengine Ad360 4.3
Zohocorp Manageengine Adaudit Plus 7.0
Zohocorp Manageengine Adaudit Plus
Zohocorp Manageengine Admanager Plus 7.1
Zohocorp Manageengine Admanager Plus
Zohocorp Manageengine Adselfservice Plus 6.2
Zohocorp Manageengine Adselfservice Plus
Zohocorp Manageengine Analytics Plus
Zohocorp Manageengine Analytics Plus 5.1
Zohocorp Manageengine Assetexplorer 6.9
Zohocorp Manageengine Assetexplorer
Zohocorp Manageengine Key Manager Plus
Zohocorp Manageengine Key Manager Plus 6.4
Zohocorp Manageengine Pam360 5.7
Zohocorp Manageengine Pam360
Zohocorp Manageengine Password Manager Pro
Zohocorp Manageengine Password Manager Pro 12.1
Zohocorp Manageengine Servicedesk Plus
Zohocorp Manageengine Servicedesk Plus 14.0
2 Metasploit modules
6 Github repositories
1 Article
NA
CVE-2006-7001
Directory traversal vulnerability in avatar.php in PhpMyChat Plus 1.9 and previous versions allows remote malicious users to read arbitrary files via a .. (dot dot) in the L parameter, a different issue than CVE-2006-5897. NOTE: the provenance of this information is unknown; the ...
Phpmychat Plus Phpmychat Plus
5.5
CVSSv3
CVE-2023-40166
Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to heap buffer read overflow in `FileManager::detectLanguageFromTextBegining `. The exploitability of this issue is not clear. Potentially, it may be used to leak internal memory alloc...
Notepad-plus-plus Notepad\\+\\+
1 Github repository
7.8
CVSSv3
CVE-2023-6401
A vulnerability classified as problematic was found in NotePad++ up to 8.1. Affected by this vulnerability is an unknown functionality of the file dbghelp.exe. The manipulation leads to uncontrolled search path. An attack has to be approached locally. The identifier VDB-246421 wa...
Notepad-plus-plus Notepad\\+\\+
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »