Zohocorp: >> Manageengine Servicedesk Plus Msp >> 14.9 Security Vulnerabilities
Zohocorp ManageEngine ServiceDesk Plus MSP and SupportCenter Plus versions below 14920 are vulnerable to authenticated Local File Inclusion (LFI) in the Admin module, where help card content is loaded.
CVSS Score
6.5
EPSS Score
0.001
Published
2025-05-22
Zohocorp ManageEngine ServiceDesk Plus versions below 14920 , ServiceDesk Plus MSP and SupportCentre Plus versions below 14910 are vulnerable to Stored XSS in the task feature.
CVSS Score
6.3
EPSS Score
0.0
Published
2025-03-21