Manageengine Exchange Reporter Plus
by Zohocorp
CVEs (24)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-38872 | 0.00 | — | 0.03 | Jul 26, 2024 | Zohocorp ManageEngine Exchange Reporter Plus versions 5717 and below are vulnerable to the authenticated SQL injection in the monitoring module. | |||
| CVE-2024-38871 | 0.00 | — | 0.03 | Jul 26, 2024 | Zohocorp ManageEngine Exchange Reporter Plus versions 5717 and below are vulnerable to the authenticated SQL injection in the reports module. | |||
| CVE-2024-21775 | 0.00 | — | 0.05 | Feb 16, 2024 | Zoho ManageEngine Exchange Reporter Plus versions 5714 and below are vulnerable to the Authenticated SQL injection in report exporting feature. | |||
| CVE-2023-22624 | 0.00 | — | 0.03 | Jan 17, 2023 | Zoho ManageEngine Exchange Reporter Plus before 5708 allows attackers to conduct XXE attacks. |
- CVE-2024-38872Jul 26, 2024risk 0.00cvss —epss 0.03
Zohocorp ManageEngine Exchange Reporter Plus versions 5717 and below are vulnerable to the authenticated SQL injection in the monitoring module.
- CVE-2024-38871Jul 26, 2024risk 0.00cvss —epss 0.03
Zohocorp ManageEngine Exchange Reporter Plus versions 5717 and below are vulnerable to the authenticated SQL injection in the reports module.
- CVE-2024-21775Feb 16, 2024risk 0.00cvss —epss 0.05
Zoho ManageEngine Exchange Reporter Plus versions 5714 and below are vulnerable to the Authenticated SQL injection in report exporting feature.
- CVE-2023-22624Jan 17, 2023risk 0.00cvss —epss 0.03
Zoho ManageEngine Exchange Reporter Plus before 5708 allows attackers to conduct XXE attacks.
Page 2 of 2