CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-6463

Malicious code in bioql PyPI...

7.4CVSS6.6AI score0.01319EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 7:29 a.m.•3 views

CVE-2024-9100

Zohocorp ManageEngine Analytics Plus versions before 5410 and Zoho Analytics On-Premise versions before 5410 are vulnerable to Path traversal...

6.5CVSS6.9AI score0.00221EPSS

Exploits0References1

RedhatCVE•added 2025/03/19 7:19 a.m.•4 views

CVE-2025-1724

Zohocorp's ManageEngine Analytics Plus and Zoho Analytics on-premise versions older than 6130 are vulnerable to an AD only account takeover because of a hardcoded sensitive token...

7.4CVSS6.8AI score0.01319EPSS

Exploits0References1

NVD•added 2025/03/17 7:15 a.m.•6 views

CVE-2025-1724

Zohocorp's ManageEngine Analytics Plus and Zoho Analytics on-premise versions older than 6130 are vulnerable to an AD only account takeover because of a hardcoded sensitive token...

7.4CVSS0.01319EPSS

Exploits0References2

Cvelist•added 2025/03/17 6:57 a.m.•6 views

CVE-2025-1724 Account Takeover

Zohocorp's ManageEngine Analytics Plus and Zoho Analytics on-premise versions older than 6130 are vulnerable to an AD only account takeover because of a hardcoded sensitive token...

7.4CVSS0.01319EPSS

Exploits0References2

CVE•added 2025/03/17 6:57 a.m.•60 views

CVE-2025-1724

Affected products: Zohocorp’s ManageEngine Analytics Plus and Zoho Analytics on‑premise, versions older than 6130. Root cause: hardcoded sensitive token leading to an AD‑only account takeover. Impact: potential unauthorized AD account access; impact details are as described in the sources. Exploi...

7.4CVSS6.8AI score0.01319EPSS

Exploits0References2

Cvelist•added 2024/10/03 2:17 p.m.•19 views

CVE-2024-9100 Local File Inclusion

Zohocorp ManageEngine Analytics Plus versions before 5410 and Zoho Analytics On-Premise versions before 5410 are vulnerable to Path traversal...

6.5CVSS0.00221EPSS

Exploits0References2

CVE•added 2024/10/03 2:17 p.m.•44 views

CVE-2024-9100

CVE-2024-9100 affects Zohocorp ManageEngine Analytics Plus prior to 5410 and Zoho Analytics On-Premise prior to 5410. The issue is a Path Traversal vulnerability. Public details confirm the affected versions and the underlying vulnerability class; no exploitation details are provided in the docum...

6.5CVSS6.4AI score0.00221EPSS

Exploits0References2

Vulnrichment•added 2024/10/03 2:17 p.m.•18 views

CVE-2024-9100 Local File Inclusion

Zohocorp ManageEngine Analytics Plus versions before 5410 and Zoho Analytics On-Premise versions before 5410 are vulnerable to Path traversal...

6.5CVSS6.9AI score0.00221EPSS

Exploits0References2

Tenable Nessus•added 2022/12/02 12:0 a.m.•57 views

ManageEngine ServiceDesk Plus MSP < 13.0 Build 13000 RCE

A remote code execution vulnerability exists in ManageEngine ServiceDesk Plus MSP prior to 13.0 Build 13000 due to a flaw in the Analytics Plus integration input field validation. Vulnerability requires an administrator role access. The option to integrate Zoho Analytics will no longer be availab...

7.2CVSS7.8AI score0.65998EPSS

Exploits0References3

OSV•added 2022/08/15 8:15 p.m.•1 views

CVE-2020-21641

Out-of-Band XML External Entity OOB-XXE vulnerability in Zoho ManageEngine Analytics Plus before 4.3.5 allows remote attackers to read arbitrary files, enumerate folders and scan internal ports via crafted XML license file...

7.5CVSS5.9AI score0.04582EPSS

Exploits0References1

Cvelist•added 2022/08/15 7:10 p.m.•15 views

CVE-2020-21642

Directory Traversal vulnerability ZDBQAREFSUBDIR parameter in /zropusermgmt API in Zoho ManageEngine Analytics Plus before 4350 allows remote attackers to run arbitrary code...

9.5AI score0.07111EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by