Zoho ManageEngine Applications Manager through 16320 allows the admin user to conduct an XXE attack.
6.5CVSS
6.4AI Score
0.001EPSS
Stored Cross site scripting (XSS) vulnerability in Zoho ManageEngine Applications Manager through 16340 allows an unauthenticated user to inject malicious javascript on the incorrect login details page.
6.1CVSS
6AI Score
0.002EPSS
6.1CVSS
6.3AI Score
0.004EPSS
Zoho ManageEngine Applications Manager through 16530 allows reflected XSS while logged in.
6.1CVSS
6AI Score
0.002EPSS