CVE-2023-41904 - Zoho ManageEngine ADManager Plus before 7203 allows 2FA bypass in REST APIs
A recent vulnerability, known as CVE-2023-41904, has been discovered in Zoho ManageEngine ADManager Plus, a popular web-based Active Directory management and reporting solution. This vulnerability
CVE-2023-29505: Cross-site WebSocket Hijacking Vulnerability Found in Zoho ManageEngine Network Configuration Manager 12.6.165 - Exploit Details and Mitigation Steps
Recently, an issue was discovered in Zoho ManageEngine Network Configuration Manager (version 12.6.165) that allows Cross-site WebSocket hijacking. This vulnerability has been assigned
CVE-2023-29084: Critical Command Injection Vulnerability in Zoho ManageEngine ADManager Plus Through 718
Security researchers have discovered a critical Command Injection vulnerability (CVE-2023-29084) in Zoho ManageEngine ADManager Plus versions up to and including 718. Zoho ManageEngine ADManager Plus
CVE-2022-47966: Critical Remote Code Execution Vulnerability in Multiple Zoho ManageEngine On-Premise Products
A critical vulnerability, identified as CVE-2022-47966, has been discovered in multiple on-premise Zoho ManageEngine products, including ServiceDesk Plus up to version 14003. This vulnerability, if
CVE-2022-40771: XML External Entity (XXE) Vulnerability in Zoho ManageEngine ServiceDesk Plus Versions 13010 and Below, Leading to Information Disclosure
Zoho ManageEngine ServiceDesk Plus is a popular IT help desk software used by organizations to manage their IT infrastructure. Recently, a critical vulnerability, identified as
Episode
00:00:00
00:00:00