429 matches found
Cross site scripting
Zoho ManageEngine ADManager Plus before 7066 allows XSS...
CVE-2020-35594
Zoho ManageEngine ADManager Plus before 7066 allows XSS...
CVE-2020-35594
The CVE-2020-35594 issue affects Zoho ManageEngine ADManager Plus prior to version 7066, where a cross-site scripting (XSS) vulnerability exists. The vulnerability is evidenced across multiple sources (CNVD, PRION, NVD, Red Hat) consistently stating that versions before 7066 are vulnerable to XSS...
ZOHO ManageEngine ADManager Plus 跨站脚本漏洞
Zoho ManageEngine ADManager Plus is an easy-to-use Windows Active Directory management and reporting solution. A cross-site scripting vulnerability exists in versions prior to Zoho ManageEngine ADManager Plus 7066. No detailed vulnerability details are provided at this time...
CVE-2020-24786
An issue was discovered in Zoho ManageEngine Exchange Reporter Plus before build number 5510, AD360 before build number 4228, ADSelfService Plus before build number 5817, DataSecurity Plus before build number 6033, RecoverManager Plus before build number 6017, EventLog Analyzer before build numbe...
Authentication flaw
An issue was discovered in Zoho ManageEngine Exchange Reporter Plus before build number 5510, AD360 before build number 4228, ADSelfService Plus before build number 5817, DataSecurity Plus before build number 6033, RecoverManager Plus before build number 6017, EventLog Analyzer before build numbe...
CVE-2020-24786
CVE-2020-24786 affects multiple ManageEngine products (Exchange Reporter Plus, AD360, ADSelfService Plus, DataSecurity Plus, RecoverManager Plus, EventLog Analyzer, ADAudit Plus, O365 Manager Plus, Cloud Security Plus, ADManager Plus, Log360) with a remotely accessible Java servlet (com.manageeng...
Zoho ManageEngine ADManager Plus, ADSelfService Plus and DesktopCentral Permission License and Access Control Issues Vulnerabilities
ZOHO ManageEngine ADSelfService Plus and others are products of ZOHO Corporation.ZOHO ManageEngine ADSelfService Plus is a Web-based end-user password management software.ZOHO ManageEngine ADManager ZOHO ManageEngine ADManager Plus is a set of Microsoft Active Directory management software design...
CVE-2019-12876
Zoho ManageEngine ADManager Plus 6.6.5, ADSelfService Plus 5.7, and DesktopCentral 10.0.380 have Insecure Permissions, leading to Privilege Escalation from low level privileges to System...
Privilege escalation
Zoho ManageEngine ADManager Plus 6.6.5, ADSelfService Plus 5.7, and DesktopCentral 10.0.380 have Insecure Permissions, leading to Privilege Escalation from low level privileges to System...
CVE-2019-12876
CVE-2019-12876 affects Zoho ManageEngine ADManager Plus 6.6.5, ADSelfService Plus 5.7, and DesktopCentral 10.0.380. The issue is described as insecure permissions that enable privilege escalation from low-level to System, across multiple ManageEngine products. Connected sources (Red Hat advisory ...
CVE-2018-19374
Zoho ManageEngine ADManager Plus 6.6 Build 6657 allows local users to gain privileges after a reboot by placing a Trojan horse file into the permissive bin directory...
CVE-2018-19374
Zoho ManageEngine ADManager Plus 6.6 Build 6657 allows local users to gain privileges after a reboot by placing a Trojan horse file into the permissive bin directory...
Directory traversal
Zoho ManageEngine ADManager Plus 6.6 Build 6657 allows local users to gain privileges after a reboot by placing a Trojan horse file into the permissive bin directory...
CVE-2018-19374
Zoho ManageEngine ADManager Plus 6.6 Build 6657 allows local users to gain privileges after a reboot by placing a Trojan horse file into the permissive bin directory...
CVE-2018-19374
CVE-2018-19374 affects Zoho ManageEngine ADManager Plus 6.6 (Builds
Zoho ManageEngine ADManager Plus 6.6 (Build < 6659) - Privilege Escalation Vulnerability
Exploit for windows platform in category local exploits Exploit Title: Zoho ManageEngine ADManager Plus 6.6 Build 6659 Privilege Escalation Exploit Author: Digital Interruption Vendor Homepage: https://www.manageengine.co.uk/ Version: 6.6 Build 6658 Tested on: Windows Server 2012 R2 CVE :...
Zoho ManageEngine ADManager Plus 6.6 (Build 6659) - Privilege Escalation
Zoho ManageEngine ADManager Plus 6.6 Build 6659 - Privilege Escalation Exploit Title: Zoho ManageEngine ADManager Plus 6.6 Build 6659 Privilege Escalation Date: 15th April 2019 Exploit Author: Digital Interruption Vendor Homepage: https://www.manageengine.co.uk/ Version: 6.6 Build 6658 Tested on:...
Zoho ManageEngine ADManager Plus Cross-Site Scripting Vulnerability
ZOHO ManageEngine ADManager Plus is a suite of Microsoft Active Directory management software from ZOHO designed for enterprise users using Windows domains. The software assists AD administrators and helpdesk technicians with day-to-day administrative tasks, such as batch management of user...
CVE-2018-15608
Zoho ManageEngine ADManager Plus 6.5.7 allows HTML Injection on the "AD Delegation" "Help Desk Technicians" screen...