Lucene search
K

24 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-1436

Malware in sbrugna...

4.3CVSS6.4AI score0.00855EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-39124

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.0579EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/20 12:0 a.m.8 views

ManageEngine SupportCenter Plus < 14.9 Build 14940 Privilege Escalation

The version of ManageEngine SupportCenter Plus installed on the remote host is prior to 14.9 Build 14940. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-8309 advisory. - A privilege escalation vulnerability caused by the overly permissive regular expression regex rule...

8.1CVSS5.6AI score0.00239EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 7:44 p.m.12 views

CVE-2021-43296

Zoho ManageEngine SupportCenter Plus before 11016 is vulnerable to an SSRF attack in ActionExecutor...

7.5CVSS6.8AI score0.02617EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/21 8:52 p.m.9 views

CVE-2008-1432

Cross-site scripting XSS vulnerability in SolutionSearch.do in ManageEngine SupportCenter Plus 7.0.0 allows remote attackers to inject arbitrary web script or HTML via the searchText parameter, a related issue to CVE-2008-1299. NOTE: the provenance of this information is unknown; the details are...

6.1CVSS5.6AI score0.00855EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/08/24 12:0 a.m.33 views

ManageEngine SupportCenter Plus < 14.8 Build 14810

The version of ManageEngine SupportCenter Plus installed on the remote host is prior to 14.8 Build 14810. It is, therefore, affected by a vulnerability as referenced in the support-centerCVE-2024-41150 advisory. - An Stored Cross-site Scripting vulnerability in request module affects Zohocorp...

6.3CVSS5.6AI score0.01202EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/05/24 12:0 a.m.42 views

ManageEngine SupportCenter Plus < 14.7 Build 14720

The version of ManageEngine SupportCenter Plus installed on the remote host is prior to 14.7 Build 14720. It is, therefore, affected by a vulnerability as referenced in the support-centercve-2024-27314 advisory. - A stored cross-site scripting XSS vulnerability allowed users with the SDAdmin role...

2.4CVSS5.2AI score0.01908EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/11/15 12:0 a.m.17 views

ManageEngine SupportCenter Plus < 14.2 Build 14200

The version of ManageEngine SupportCenter Plus installed on the remote host is prior to 14.2 Build 14200. It is, therefore, affected by a vulnerability as referenced in the support-centerCVE-2023-38331 advisory. - Zoho ManageEngine Support Center Plus 14001 and below is vulnerable to stored XSS i...

5.4CVSS5.7AI score0.01887EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/11/15 12:0 a.m.26 views

ManageEngine SupportCenter Plus < 11.0 Build 11025

The version of ManageEngine SupportCenter Plus installed on the remote host is prior to 11.0 Build 11025. It is, therefore, affected by a vulnerability as referenced in the support-centercve-2022-40773 advisory. - Zoho ManageEngine ServiceDesk Plus MSP before 10609 and SupportCenter Plus before...

8.8CVSS7.9AI score0.04545EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/11/15 12:0 a.m.19 views

ManageEngine SupportCenter Plus < 11.0 Build 11023

The version of ManageEngine SupportCenter Plus installed on the remote host is prior to 11.0 Build 11023, 11.0 Build 11023, 11.0 Build 11023. It is, therefore, affected by a vulnerability as referenced in the support- centercve-2022-36412 advisory. - In Zoho ManageEngine SupportCenter Plus before...

9.8CVSS8.3AI score0.0579EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/07/07 12:0 a.m.4 views

PT-2023-24732 · Zoho · Zoho Manageengine Servicedesk Plus +1

Name of the Vulnerable Software and Affected Versions: Zoho ManageEngine ServiceDesk Plus versions prior to 14202 Zoho ManageEngine ServiceDesk Plus MSP versions prior to 14300 Zoho ManageEngine SupportCenter Plus versions prior to 14300 Description: The issue allows unprivileged users to access...

5.4CVSS7.4AI score0.02985EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2023/03/17 12:0 a.m.31 views

ManageEngine SupportCenter Plus < 14.0 Build 14000 Privilege Escalation

The version of ManageEngine SupportCenter Plus prior to 14.0 Build 14000 is running on the remote web server. It is, therefore, affected by the following: - A privilege escalation vulnerability in query reports. This vulnerability allows an attacker to gain access to restricted data in a Postgres...

6.5CVSS6.6AI score0.06308EPSS
Exploits0References2
NVD
NVD
added 2021/11/30 7:15 p.m.22 views

CVE-2021-43294

Zoho ManageEngine SupportCenter Plus before 11016 is vulnerable to Reflected XSS in the Products module...

6.1CVSS0.00986EPSS
Exploits0References2
CNVD
CNVD
added 2018/09/25 12:0 a.m.4 views

ZOHO ManageEngine SupportCenter Plus Cross-Site Scripting Vulnerability (CNVD-2018-19734)

ZOHO ManageEngine SupportCenter Plus is a suite of customer service support management software from ZOHO USA. The software provides help desk, customer management, service level management and tracking of customer requests. A cross-site scripting vulnerability exists in ZOHO ManageEngine...

6.1CVSS6AI score0.02549EPSS
Exploits2References1
0day.today
0day.today
added 2018/09/20 12:0 a.m.48 views

ManageEngine SupportCenter Plus 8.1.0 Cross Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: ManageEngine SupportCenter Plus 8.1.0 - HTML Injection and Stored XSS Exploit Author: Ismail Tasdelen Vendor Homepage: https://www.manageengine.com/ Hardware Link : https://www.manageengine.com/products/support-center/ Software ...

0.02549EPSS
Exploits2
CNVD
CNVD
added 2015/07/02 12:0 a.m.1 views

ZOHO ManageEngine SupportCenter Plus Cross-Site Scripting Vulnerability

ZOHO ManageEngine SupportCenter Plus is a customer service support management software from ZOHO USA. The software provides help desk, customer management, service level management and tracking of customer requests. A cross-site scripting vulnerability exists in ZOHO ManageEngine SupportCenter Pl...

3.5CVSS6.2AI score0.04256EPSS
Exploits1References1
Prion
Prion
added 2015/06/30 2:59 p.m.17 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Zoho ManageEngine SupportCenter Plus 7.90 allow remote authenticated users to inject arbitrary web script or HTML via the 1 query parameter in the runqueryeditorquery module to CustomReportHandler.do, 2 compAcct parameter to jsp/ResetADPwd.jsp,...

3.5CVSS5.6AI score0.04256EPSS
Exploits1References3Affected Software1
OpenVAS
OpenVAS
added 2015/06/25 12:0 a.m.16 views

ManageEngine SupportCenter Plus Multiple Vulnerabilities (Jun 2015)

ManageEngine SupportCenter Plus is prone to multiple vulnerabilities. Copyright C 2015 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

6.7AI score
Exploits0References2
NVD
NVD
added 2015/01/13 11:59 a.m.20 views

CVE-2014-100002

Directory traversal vulnerability in ManageEngine SupportCenter Plus 7.9 before 7917 allows remote attackers to read arbitrary files via a ..%2f dot dot encoded slash in the attach parameter to WorkOrder.do in the file attachment for a new ticket...

5CVSS6.7AI score0.59859EPSS
Exploits3References4
Prion
Prion
added 2015/01/13 11:59 a.m.16 views

Directory traversal

Directory traversal vulnerability in ManageEngine SupportCenter Plus 7.9 before 7917 allows remote attackers to read arbitrary files via a ..%2f dot dot encoded slash in the attach parameter to WorkOrder.do in the file attachment for a new ticket...

5CVSS7.2AI score0.59859EPSS
Exploits3References4Affected Software1
Rows per page
Query Builder