Show filters
506 Total Results
Displaying 381-390 of 506
Sort by:
Attacker Value
Unknown

CVE-2018-20339

Disclosure Date: December 21, 2018 (last updated November 27, 2024)
Zoho ManageEngine OpManager 12.3 before build 123239 allows XSS in the Notes column of the Alarms section.
0
0
Attacker Value
Unknown

CVE-2018-20173

Disclosure Date: December 17, 2018 (last updated November 27, 2024)
Zoho ManageEngine OpManager 12.3 before 123238 allows SQL injection via the getGraphData API.
0
0
Attacker Value
Unknown

CVE-2018-19118

Disclosure Date: December 13, 2018 (last updated November 27, 2024)
Zoho ManageEngine ADAudit before 5.1 build 5120 allows remote attackers to cause a denial of service (stack-based buffer overflow) via the 'Domain Name' field when adding a new domain.
0
0
Attacker Value
Unknown

CVE-2018-19921

Disclosure Date: December 06, 2018 (last updated November 27, 2024)
Zoho ManageEngine OpManager 12.3 before 123237 has XSS in the domain controller.
0
0
Attacker Value
Unknown

CVE-2018-18716

Disclosure Date: November 20, 2018 (last updated November 27, 2024)
Zoho ManageEngine OpManager 12.3 before 123219 has a Self XSS Vulnerability.
0
0
Attacker Value
Unknown

CVE-2018-18715

Disclosure Date: November 20, 2018 (last updated November 27, 2024)
Zoho ManageEngine OpManager 12.3 before 123219 has stored XSS.
0
0
Attacker Value
Unknown

CVE-2018-19288

Disclosure Date: November 15, 2018 (last updated November 27, 2024)
Zoho ManageEngine OpManager 12.3 before Build 123223 has XSS via the updateWidget API.
0
0
Attacker Value
Unknown

CVE-2018-18980

Disclosure Date: November 06, 2018 (last updated November 27, 2024)
An XML External Entity injection (XXE) vulnerability exists in Zoho ManageEngine Network Configuration Manager and OpManager before 12.3.214 via the RequestXML parameter in a /devices/ProcessRequest.do GET request. For example, the attacker can trigger the transmission of local files to an arbitrary remote FTP server.
0
0
Attacker Value
Unknown

CVE-2018-18949

Disclosure Date: November 05, 2018 (last updated November 27, 2024)
Zoho ManageEngine OpManager 12.3 before 123222 has SQL Injection via Mail Server settings.
0
0
Attacker Value
Unknown

CVE-2018-18475

Disclosure Date: October 23, 2018 (last updated November 27, 2024)
Zoho ManageEngine OpManager before 12.3 build 123214 allows Unrestricted Arbitrary File Upload.
0
0
View More Topics  < Previous  Next >