Lucene search
K

194 matches found

Positive Technologies
Positive Technologies
added 2025/11/11 12:0 a.m.7 views

PT-2025-46319

Name of the Vulnerable Software and Affected Versions Zohocorp ManageEngine Exchange Reporter Plus versions 5723 and below Description The software is susceptible to a Stored Cross-Site Scripting XSS issue within the Public Folders report functionality. This allows for the injection of malicious...

7.3CVSS5.6AI score0.00478EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/11/11 12:0 a.m.6 views

ZOHO ManageEngine Exchange reporter Plus 安全漏洞

ZOHO ManageEngine Exchange reporter Plus is a Web-based Microsoft Exchange reporting, auditing and monitoring software from ZOHO. A cross-site scripting vulnerability exists in ZOHO ManageEngine Exchange reporter Plus, which can be exploited by an attacker to create privileged accounts within the...

7.3CVSS6.1AI score0.00478EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/11/11 12:0 a.m.5 views

ZOHO ManageEngine Exchange reporter Plus 安全漏洞

ZOHO ManageEngine Exchange reporter Plus is a Web-based Microsoft Exchange reporting, auditing and monitoring software from ZOHO. A cross-site scripting vulnerability exists in ZOHO ManageEngine Exchange reporter Plus, which can be exploited by an attacker to create privileged accounts and gain...

7.3CVSS6AI score0.00478EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/11/11 12:0 a.m.5 views

ZOHO ManageEngine Exchange reporter Plus 安全漏洞

ZOHO ManageEngine Exchange reporter Plus is a Web-based Microsoft Exchange reporting, auditing and monitoring software from ZOHO. A cross-site scripting vulnerability exists in ZOHO ManageEngine Exchange reporter Plus, which can be exploited by an attacker to create privileged accounts and gain...

7.3CVSS6AI score0.00483EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/11/11 12:0 a.m.7 views

PT-2025-46311

Name of the Vulnerable Software and Affected Versions ManageEngine Exchange Reporter Plus versions 5723 and below Description The software is susceptible to a Stored Cross-Site Scripting XSS issue present in the Mails Deleted or Moved report. This allows for the injection of malicious scripts tha...

7.3CVSS5.6AI score0.00478EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/11/11 12:0 a.m.7 views

ZOHO ManageEngine Exchange reporter Plus 安全漏洞

ZOHO ManageEngine Exchange reporter Plus is a Web-based Microsoft Exchange reporting, auditing and monitoring software from ZOHO. A cross-site scripting vulnerability exists in Zoho ManageEngine Exchange Reporter Plus, which can be exploited by an attacker to create privileged accounts and gain...

7.3CVSS5.9AI score0.00478EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/11/11 12:0 a.m.7 views

PT-2025-46318

Name of the Vulnerable Software and Affected Versions Zohocorp ManageEngine Exchange Reporter Plus versions 5723 and below Description The software contains a Stored Cross-Site Scripting XSS issue within the Folder Message Count and Size report. This allows for the injection of malicious scripts...

7.3CVSS5.6AI score0.00478EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/10/31 3:11 p.m.6 views

CVE-2025-5347

Zohocorp ManageEngine Exchange Reporter Plus versions before 5723 are vulnerable to Stored Cross Site Scripting in the reports module...

6.3CVSS6.2AI score0.00414EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/31 3:11 p.m.7 views

CVE-2025-5343

Zohocorp ManageEngine Exchange Reporter Plus versions through 5721 are vulnerable to Stored Cross Site Scripting in the Instant Search option...

6.3CVSS6.2AI score0.00414EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/31 3:11 p.m.4 views

CVE-2025-5342

Zohocorp ManageEngine Exchange Reporter Plus through 5721 are vulnerable to ReDOS vulnerability in the search module...

6.5CVSS6.9AI score0.01037EPSS
Exploits0References1
NVD
NVD
added 2025/10/30 3:15 p.m.8 views

CVE-2025-5343

Zohocorp ManageEngine Exchange Reporter Plus versions through 5721 are vulnerable to Stored Cross Site Scripting in the Instant Search option...

6.3CVSS0.00414EPSS
Exploits0References1
OSV
OSV
added 2025/10/30 3:15 p.m.5 views

CVE-2025-5343

Zohocorp ManageEngine Exchange Reporter Plus versions through 5721 are vulnerable to Stored Cross Site Scripting in the Instant Search option...

5.4CVSS5.8AI score0.00414EPSS
Exploits0References1
CVE
CVE
added 2025/10/30 2:31 p.m.24 views

CVE-2025-5347

CVE-2025-5347 affects Zohocorp ManageEngine Exchange Reporter Plus before version 5723. The vulnerability is a Stored Cross-Site Scripting flaw in the reports module, allowing injected scripts to be stored on the server and executed when users view affected reports. According to the connected adv...

6.3CVSS5.8AI score0.00414EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/30 2:31 p.m.7 views

EUVD-2025-37002

Zohocorp ManageEngine Exchange Reporter Plus versions before 5723 are vulnerable to Stored Cross Site Scripting in the reports module...

6.3CVSS5.7AI score0.00414EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/10/30 2:31 p.m.12 views

CVE-2025-5347 Stored XSS

Zohocorp ManageEngine Exchange Reporter Plus versions before 5723 are vulnerable to Stored Cross Site Scripting in the reports module...

6.3CVSS0.00414EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/30 2:31 p.m.4 views

CVE-2025-5347 Stored XSS

Zohocorp ManageEngine Exchange Reporter Plus versions before 5723 are vulnerable to Stored Cross Site Scripting in the reports module...

6.3CVSS5.8AI score0.00414EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/30 2:28 p.m.8 views

CVE-2025-5343 Stored XSS

Zohocorp ManageEngine Exchange Reporter Plus versions through 5721 are vulnerable to Stored Cross Site Scripting in the Instant Search option...

6.3CVSS5.8AI score0.00414EPSS
Exploits0References1
CVE
CVE
added 2025/10/30 2:28 p.m.16 views

CVE-2025-5343

CVE-2025-5343 concerns ManageEngine Exchange Reporter Plus, affected up to version 5721. The vulnerability is a Stored Cross-Site Scripting (XSS) flaw in the Instant Search feature, allowing an attacker to inject scripts that are stored on the server and executed when other users access the affec...

6.3CVSS5.8AI score0.00414EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/10/30 2:28 p.m.14 views

CVE-2025-5343 Stored XSS

Zohocorp ManageEngine Exchange Reporter Plus versions through 5721 are vulnerable to Stored Cross Site Scripting in the Instant Search option...

6.3CVSS0.00414EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/30 2:28 p.m.9 views

EUVD-2025-37003

Zohocorp ManageEngine Exchange Reporter Plus versions through 5721 are vulnerable to Stored Cross Site Scripting in the Instant Search option...

6.3CVSS5.7AI score0.00414EPSS
Exploits0References2
Rows per page
Query Builder