CVE-2025-41437
- EPSS 0.04%
- Veröffentlicht 09.06.2025 10:44:08
- Zuletzt bearbeitet 09.06.2025 12:15:47
Zohocorp ManageEngine OpManager, NetFlow Analyzer, Network Configuration Manager, Firewall Analyzer and OpUtils versions 128565 and below are vulnerable to Reflected XSS on the login page.
CVE-2024-38870
- EPSS 0.03%
- Veröffentlicht 17.07.2024 17:15:15
- Zuletzt bearbeitet 21.11.2024 09:26:54
Zohocorp ManageEngine OpManager, OpManager Plus, OpManager MSP and OpManager Enterprise Edition versions before 128104, from 128151 before 128238, from 128247 before 128250 are vulnerable to Stored XSS vulnerability in reports module.
CVE-2024-36038
- EPSS 0.06%
- Veröffentlicht 24.06.2024 12:15:09
- Zuletzt bearbeitet 21.11.2024 09:21:29
Zoho ManageEngine ITOM products versions from 128234 to 128248 are affected by the stored cross-site scripting vulnerability in the proxy server option.
CVE-2020-19554
- EPSS 0.32%
- Veröffentlicht 21.09.2021 20:15:07
- Zuletzt bearbeitet 21.11.2024 05:09:14
Cross Site Scripting (XSS) vulnerability exists in ManageEngine OPManager <=12.5.174 when the API key contains an XML-based XSS payload.
CVE-2007-5891
- EPSS 0.29%
- Veröffentlicht 08.11.2007 02:46:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
Multiple cross-site scripting (XSS) vulnerabilities in jsp/Login.do in ManageEngine OpManager MSP Edition and OpManager 7.0 allow remote attackers to inject arbitrary web script or HTML via the (1) requestid, (2) fileid, (3) woMode, and (2) woID para...