Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Manageengine_opmanager
(Zohocorp)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 56 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2018-12-21 | CVE-2018-20338 | Zoho ManageEngine OpManager 12.3 before build 123239 allows SQL injection in the Alarms section. | Manageengine_opmanager | 9.8 | ||
| 2018-12-21 | CVE-2018-20339 | Zoho ManageEngine OpManager 12.3 before build 123239 allows XSS in the Notes column of the Alarms section. | Manageengine_opmanager | 6.1 | ||
| 2018-12-06 | CVE-2018-19921 | Zoho ManageEngine OpManager 12.3 before 123237 has XSS in the domain controller. | Manageengine_opmanager | 6.1 | ||
| 2018-11-05 | CVE-2018-18949 | Zoho ManageEngine OpManager 12.3 before 123222 has SQL Injection via Mail Server settings. | Manageengine_opmanager | 9.8 | ||
| 2018-10-17 | CVE-2018-18262 | Zoho ManageEngine OpManager 12.3 before build 123214 has XSS. | Manageengine_opmanager | 6.1 | ||
| 2018-11-15 | CVE-2018-19288 | Zoho ManageEngine OpManager 12.3 before Build 123223 has XSS via the updateWidget API. | Manageengine_opmanager | 6.1 | ||
| 2018-12-17 | CVE-2018-20173 | Zoho ManageEngine OpManager 12.3 before 123238 allows SQL injection via the getGraphData API. | Manageengine_opmanager | 9.8 | ||
| 2018-11-20 | CVE-2018-18716 | Zoho ManageEngine OpManager 12.3 before 123219 has a Self XSS Vulnerability. | Manageengine_opmanager | 6.1 | ||
| 2018-11-20 | CVE-2018-18715 | Zoho ManageEngine OpManager 12.3 before 123219 has stored XSS. | Manageengine_opmanager | 6.1 | ||
| 2018-10-23 | CVE-2018-18475 | Zoho ManageEngine OpManager before 12.3 build 123214 allows Unrestricted Arbitrary File Upload. | Manageengine_opmanager | 9.8 |