Shodan
Vulnerabilities
Vulnerable Software
Zohocorp:  >> Manageengine Supportcenter Plus  >> 11.0  Security Vulnerabilities
CVE-2022-25373
Zoho ManageEngine SupportCenter Plus before 11020 allows Stored XSS in the request history.
CVSS Score
5.4
EPSS Score
0.046
Published
2022-04-05
CVE-2021-43295
Zoho ManageEngine SupportCenter Plus before 11016 is vulnerable to Reflected XSS in the Accounts module.
CVSS Score
6.1
EPSS Score
0.051
Published
2021-11-30
CVE-2021-43296
Zoho ManageEngine SupportCenter Plus before 11016 is vulnerable to an SSRF attack in ActionExecutor.
CVSS Score
7.5
EPSS Score
0.075
Published
2021-11-30
CVE-2021-43294
Zoho ManageEngine SupportCenter Plus before 11016 is vulnerable to Reflected XSS in the Products module.
CVSS Score
6.1
EPSS Score
0.051
Published
2021-11-30
CVE-2021-44077
Known exploited
Zoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plus MSP before 10530, and SupportCenter Plus before 11014 are vulnerable to unauthenticated remote code execution. This is related to /RestAPI URLs in a servlet, and ImportTechnicians in the Struts configuration.
CVSS Score
9.8
EPSS Score
0.942
Published
2021-11-29


Products
Pricing
Contact Us

Shodan ® - All rights reserved