Vulnerabilities > Manageengine > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-09-21 | CVE-2020-19554 | Cross-site Scripting vulnerability in Manageengine Opmanager 12.3 Cross Site Scripting (XSS) vulnerability exists in ManageEngine OPManager <=12.5.174 when the API key contains an XML-based XSS payload. | 6.1 |
| 2018-08-28 | CVE-2018-15608 | Cross-site Scripting vulnerability in Manageengine Admanager Plus 6.5.7 Zoho ManageEngine ADManager Plus 6.5.7 allows HTML Injection on the "AD Delegation" "Help Desk Technicians" screen. | 6.1 |
| 2018-06-05 | CVE-2016-9490 | Cross-site Scripting vulnerability in Manageengine Applications Manager 12.0/13.0 ManageEngine Applications Manager versions 12 and 13 before build 13200 suffer from a Reflected Cross-Site Scripting vulnerability. | 6.1 |