Known Vulnerabilities for Manageengine Adselfservice Plus by Zohocorp

Listed below are 10 of the newest known vulnerabilities associated with "Manageengine Adselfservice Plus" by "Zohocorp".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2022-24681	Zoho ManageEngine ADSelfService Plus before 6121 allows XSS via the welcome name attribute to the Reset Password, Unlock Acco...	6.1 - MEDIUM	2022-04-07	2022-10-06
CVE-2021-37416	Zoho ManageEngine ADSelfService Plus version 6103 and prior is vulnerable to reflected XSS on the loadframe page.	6.1 - MEDIUM	2021-08-30	2021-09-02
CVE-2021-33256	DISPUTED A CSV injection vulnerability on the login panel of ManageEngine ADSelfService Plus Version: 6.1 Build No: 610...	8.8 - HIGH	2021-08-09	2023-11-07
CVE-2021-33055	Zoho ManageEngine ADSelfService Plus through 6102 allows unauthenticated remote code execution in non-English editions.	9.8 - CRITICAL	2021-08-30	2021-09-02
CVE-2021-31874	Zoho ManageEngine ADSelfService Plus before 6104, in rare situations, allows attackers to obtain sensitive information about ...	5.9 - MEDIUM	2021-07-02	2022-04-12
CVE-2021-28958	Zoho ManageEngine ADSelfService Plus through 6101 is vulnerable to unauthenticated Remote Code Execution while changing the p...	9.8 - CRITICAL	2021-06-25	2022-07-12
CVE-2021-27956	Zoho ManageEngine ADSelfService Plus before 6104 allows stored XSS on the /webclient/index.html#/directory-search user search...	6.1 - MEDIUM	2021-05-20	2021-05-26
CVE-2021-27214	A Server-side request forgery (SSRF) vulnerability in the ProductConfig servlet in Zoho ManageEngine ADSelfService Plus throu...	6.1 - MEDIUM	2021-02-19	2022-07-12
CVE-2021-20148	ManageEngine ADSelfService Plus below build 6116 stores the password policy file for each domain under the html/ web root wit...	4.3 - MEDIUM	2022-01-03	2023-08-08
CVE-2021-20147	ManageEngine ADSelfService Plus below build 6116 contains an observable response discrepancy in the UMCP operation of the Cha...	5.3 - MEDIUM	2022-01-03	2022-01-13

Results limited to 10 most recent vulnerabilities

Known Affected Configurations (CPE V2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Zohocorp	Manageengine Adselfservice Plus	6.0	-	All	All
Application	Zohocorp	Manageengine Adselfservice Plus	6.0	6000	All	All
Application	Zohocorp	Manageengine Adselfservice Plus	6.0	6001	All	All
Application	Zohocorp	Manageengine Adselfservice Plus	6.0	6002	All	All
Application	Zohocorp	Manageengine Adselfservice Plus	6.0	6003	All	All
Application	Zohocorp	Manageengine Adselfservice Plus	6.0	6004	All	All
Application	Zohocorp	Manageengine Adselfservice Plus	6.0	6005	All	All
Application	Zohocorp	Manageengine Adselfservice Plus	6.0	6006	All	All
Application	Zohocorp	Manageengine Adselfservice Plus	6.0	6007	All	All
Application	Zohocorp	Manageengine Adselfservice Plus	6.0	6008	All	All
Application	Zohocorp	Manageengine Adselfservice Plus	5.8	-	All	All
Application	Zohocorp	Manageengine Adselfservice Plus	5.8	5800	All	All
Application	Zohocorp	Manageengine Adselfservice Plus	5.8	5801	All	All
Application	Zohocorp	Manageengine Adselfservice Plus	5.8	5802	All	All
Application	Zohocorp	Manageengine Adselfservice Plus	5.8	5803	All	All
Application	Zohocorp	Manageengine Adselfservice Plus	5.8	5804	All	All
Application	Zohocorp	Manageengine Adselfservice Plus	5.8	5805	All	All
Application	Zohocorp	Manageengine Adselfservice Plus	5.8	5806	All	All
Application	Zohocorp	Manageengine Adselfservice Plus	5.8	5807	All	All
Application	Zohocorp	Manageengine Adselfservice Plus	5.8	5808	All	All

Results limited to 20 most recent known configurations