RSS   Vulnerabilities for 'Manageengine admanager plus'   RSS

2021-11-11
 
CVE-2021-42002

CWE-863
 

 
Zoho ManageEngine ADManager Plus before 7115 is vulnerable to a filter bypass that leads to file-upload remote code execution.

 
2021-10-13
 
CVE-2021-20130

CWE-434
 

 
ManageEngine ADManager Plus Build 7111 contains a post-authentication remote code execution vulnerability due to improperly validated file uploads in the PasswordExpiry interface.

 
 
CVE-2021-20131

CWE-434
 

 
ManageEngine ADManager Plus Build 7111 contains a post-authentication remote code execution vulnerability due to improperly validated file uploads in the Personalization interface.

 
2021-10-07
 
CVE-2021-38298

CWE-611
 

 
Zoho ManageEngine ADManager Plus before 7110 is vulnerable to blind XXE.

 
 
CVE-2021-37762

CWE-434
 

 
Zoho ManageEngine ADManager Plus version 7110 and prior allows unrestricted file overwrite leading to remote code execution.

 
 
CVE-2021-37918

CWE-434
 

 
Zoho ManageEngine ADManager Plus version 7110 and prior allows unrestricted file upload which leads to remote code execution.

 
 
CVE-2021-37919

CWE-434
 

 
Zoho ManageEngine ADManager Plus version 7110 and prior allows unrestricted file upload which leads to remote code execution.

 
 
CVE-2021-37920

CWE-434
 

 
Zoho ManageEngine ADManager Plus version 7110 and prior allows unrestricted file upload which leads to remote code execution.

 
 
CVE-2021-37921

CWE-434
 

 
Zoho ManageEngine ADManager Plus version 7110 and prior allows unrestricted file upload which leads to remote code execution.

 
 
CVE-2021-37922

CWE-22
 

 
Zoho ManageEngine ADManager Plus version 7110 and prior is vulnerable to path traversal which allows copying of files from one directory to another.

 


Copyright 2024, cxsecurity.com

 

Back to Top