Lucene search
+L

173 matches found

CNNVD
CNNVD
added 2025/07/23 12:0 a.m.5 views

ZOHO ManageEngine Applications Manager 安全漏洞

ZOHO ManageEngine Applications Manager is a suite of IT operations management solutions from ZOHO USA. The product features application performance management, fault management, report generation and SLA management. A security vulnerability exists in ZOHO ManageEngine Applications Manager 176600...

6.4CVSS6AI score0.00396EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:11 a.m.8 views

CVE-2024-5678

Zohocorp ManageEngine Applications Manager versions 170900 and below are vulnerable to the authenticated admin-only SQL Injection in the Create Monitor feature...

4.7CVSS7.9AI score0.0255EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:2 a.m.6 views

CVE-2023-28341

Stored Cross site scripting XSS vulnerability in Zoho ManageEngine Applications Manager through 16340 allows an unauthenticated user to inject malicious javascript on the incorrect login details page...

6.1CVSS5.9AI score0.9881EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:54 p.m.7 views

CVE-2021-35512

An SSRF issue was discovered in Zoho ManageEngine Applications Manager build 15200...

6.5CVSS6.9AI score0.01564EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:21 p.m.13 views

CVE-2020-24743

An issue was found in /showReports.do Zoho ManageEngine Applications Manager up to 14550, allows attackers to gain escalated privileges via the resourceid parameter...

9.8CVSS7.1AI score0.02736EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 10:9 a.m.8 views

CVE-2019-19475

An issue was discovered in ManageEngine Applications Manager 14 with Build 14360. Integrated PostgreSQL which is built-in in Applications Manager is prone to attack due to lack of file permission security. The malicious users who are in “Authenticated Users” group can exploit privilege escalation...

9CVSS8.3AI score0.02552EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 1:25 a.m.9 views

CVE-2017-11557

An issue was discovered in ZOHO ManageEngine Applications Manager 12.3. It is possible for an unauthenticated user to view the list of domain names and usernames used in a company's network environment via a userconfiguration.do?method=editUser request...

5.3CVSS6.9AI score0.03696EPSS
Exploits1References1
OSV
OSV
added 2025/01/29 12:15 p.m.5 views

CVE-2024-41140

Zohocorp ManageEngine Applications Manager versions 174000 and prior are vulnerable to the incorrect authorization in the update user function...

6.5CVSS5.8AI score0.00896EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/29 12:0 a.m.8 views

PT-2025-2604 · Zohocorp · Zoho Manageengine Applications Manager

Name of the Vulnerable Software and Affected Versions: Zohocorp ManageEngine Applications Manager versions 174000 and prior Description: The issue is related to incorrect authorization in the update user function. This allows for potential unauthorized access or modifications. The estimated numbe...

8.1CVSS7AI score0.00896EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/04/02 12:0 a.m.9 views

ManageEngine Applications Manager SEoL (15.0.x)

According to its version, ManageEngine Applications Manager is 15.0.x. It is, therefore, no longer maintained by its vendor or provider. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it may contain security vulnerabilities...

5.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/04/02 12:0 a.m.12 views

ManageEngine Applications Manager SEoL (14.0.x)

According to its version, ManageEngine Applications Manager is 14.0.x. It is, therefore, no longer maintained by its vendor or provider. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it may contain security vulnerabilities...

5.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/04/02 12:0 a.m.12 views

ManageEngine Applications Manager SEoL (10.0.x)

According to its version, ManageEngine Applications Manager is 10.0.x. It is, therefore, no longer maintained by its vendor or provider. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it may contain security vulnerabilities...

5.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/04/02 12:0 a.m.18 views

ManageEngine Applications Manager SEoL (8.0.x)

According to its version, ManageEngine Applications Manager is 8.0.x. It is, therefore, no longer maintained by its vendor or provider. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it may contain security vulnerabilities...

5.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/04/02 12:0 a.m.11 views

ManageEngine Applications Manager SEoL (9.0.x)

According to its version, ManageEngine Applications Manager is 9.0.x. It is, therefore, no longer maintained by its vendor or provider. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it may contain security vulnerabilities...

5.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/04/02 12:0 a.m.13 views

ManageEngine Applications Manager SEoL (13.0.x)

According to its version, ManageEngine Applications Manager is 13.0.x. It is, therefore, no longer maintained by its vendor or provider. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it may contain security vulnerabilities...

5.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/04/02 12:0 a.m.11 views

ManageEngine Applications Manager SEoL (12.0.x)

According to its version, ManageEngine Applications Manager is 12.0.x. It is, therefore, no longer maintained by its vendor or provider. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it may contain security vulnerabilities...

5.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/04/02 12:0 a.m.12 views

ManageEngine Applications Manager SEoL (0.x <= x <= 6.x)

According to its version, ManageEngine Applications Manager is between 0.x and 6.x. It is, therefore, no longer maintained by its vendor or provider. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it may contain security...

5.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/04/02 12:0 a.m.12 views

ManageEngine Applications Manager SEoL (11.0.x)

According to its version, ManageEngine Applications Manager is 11.0.x. It is, therefore, no longer maintained by its vendor or provider. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it may contain security vulnerabilities...

5.5AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/11/15 12:0 a.m.22 views

ManageEngine Applications Manager SingleSignOn Cross-Site Scripting Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of ManageEngine Applications Manager. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

8.8CVSS7.5AI score0.01978EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/08/10 12:0 a.m.5 views

ZOHO ManageEngine Applications Manager 跨站脚本漏洞

ZOHO ManageEngine Applications Manager is a set of IT operation and maintenance management solutions of the United States ZhuoHao ZOHO company. The product has application performance management, fault management, report generation and SLA management and other functions. A cross-site scripting...

6.1CVSS6AI score0.01978EPSS
Exploits0References3
Rows per page
Query Builder