CVE-2019-12596

An issue was discovered in Zoho ManageEngine AssetExplorer. There is XSS via SoftwareListView.do with the parameter swType or swComplianceType...

CVE-2019-12994

Server Side Request Forgery SSRF exists in Zoho ManageEngine AssetExplorer version 6.2.0 for the AJaxServlet servlet via a parameter in a URL...

CVE-2019-12959

Server Side Request Forgery SSRF exists in Zoho ManageEngine AssetExplorer 6.2.0 and before for the ClientUtilServlet servlet via a URL in a parameter...

CVE-2019-12595

An issue was discovered in Zoho ManageEngine AssetExplorer. There is XSS via the RCSettings.do rdsName parameter...

CVE-2019-12597

An issue was discovered in Zoho ManageEngine AssetExplorer. There is XSS via ResourcesAttachments.jsp with the parameter pageName...

EUVD-2019-4190

Malware in sbrugna...

EUVD-2019-4569

Malware in sbrugna...

EUVD-2015-5078

Malware in sbrugna...

EUVD-2019-4191

Malware in sbrugna...

EUVD-2012-5830

Malware in sbrugna...

EUVD-2019-4534

Malware in sbrugna...

EUVD-2015-2278

Malware in sbrugna...

EUVD-2018-9344

Malware in sbrugna...

EUVD-2019-4189

Malware in sbrugna...

EUVD-2019-5843

Malware in sbrugna...

EUVD-2020-29681

Malware in sbrugna...

EUVD-2019-4132

Malware in sbrugna...

EUVD-2023-33012

Malicious code in bioql PyPI...

ManageEngine AssetExplorer 7700 < 7710 Privilege Escalation

The version of ManageEngine AssetExplorer installed on the remote host is prior to 7.7 Build 7710. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-8309 advisory. - A privilege escalation vulnerability caused by the overly permissive regular expression regex rules in UR...

CVE-2020-8838

An issue was discovered in Zoho ManageEngine AssetExplorer 6.5. During an upgrade of the Windows agent, it does not validate the source and binary downloaded. This allows an attacker on an adjacent network to execute code with NT AUTHORITY/SYSTEM privileges on the agent machines by providing an...