Zoho Corporation ManageEngine Exchange Reporter Plus 5.7 5717
Approved changes feed: RSS · Atom
cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus:5.7:5717:*:*:*:*:*:*
part: a version: 5.7 update: 5717
| Vendor | Zohocorp (4f1ab088-ab0e-54ac-b0dc-2304879a7502) |
|---|---|
| Product | Manageengine Exchange Reporter Plus (9fa4b748-92d7-5237-a864-78c4be422321) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-7633 |
vulnerable | 2026-06-03 15:13:40.621534 |
Stored XSS
HIGH (7.3)
Zohocorp ManageEngine Exchange Reporter Plus versions 5723 and below are vulnerable to the Stored XSS Vulnerability in the Custom report.
Published: 2025-11-11T10:32:01.920Z
Updated: 2026-02-26T16:57:58.978Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-7632 |
vulnerable | 2026-06-03 15:13:40.607087 |
Stored XSS
HIGH (7.3)
Zohocorp ManageEngine Exchange Reporter Plus versions 5723 and below are vulnerable to the Stored XSS Vulnerability in the Public Folders report.
Published: 2025-11-11T10:29:44.881Z
Updated: 2026-02-26T16:57:59.315Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-7430 |
vulnerable | 2026-06-03 15:12:31.251321 |
Stored XSS
HIGH (7.3)
Zohocorp ManageEngine Exchange Reporter Plus versions 5723 and below are vulnerable to the Stored XSS Vulnerability in the Folder Message Count and Size report.
Published: 2025-11-11T10:24:11.018Z
Updated: 2026-02-26T16:57:59.721Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-7429 |
vulnerable | 2026-06-03 15:12:31.244898 |
Stored XSS
HIGH (7.3)
Zohocorp ManageEngine Exchange Reporter Plus versions 5723 and below are vulnerable to the Stored XSS Vulnerability in the Mails Deleted or Moved report.
Published: 2025-11-11T07:40:26.374Z
Updated: 2026-02-26T16:58:00.376Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-5966 |
vulnerable | 2026-06-03 15:07:55.164662 |
Stored XSS
HIGH (8.1)
Zohocorp ManageEngine Exchange reporter Plus version 5722 and below are vulnerable to Stored XSS in the Attachments by filename keyword report.
Published: 2025-06-26T12:22:10.367Z
Updated: 2025-06-26T12:54:07.728Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-5366 |
vulnerable | 2026-06-03 15:06:27.672238 |
Stored XSS
HIGH (8.1)
Zohocorp ManageEngine Exchange reporter Plus version 5722 and below are vulnerable to Stored XSS in the Folder-wise read mails with subject report.
Published: 2025-06-26T12:21:02.567Z
Updated: 2025-06-26T12:54:40.737Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-5347 |
vulnerable | 2026-06-03 15:06:27.616069 |
Stored XSS
MEDIUM (6.3)
Zohocorp ManageEngine Exchange Reporter Plus versions before 5723 are vulnerable to Stored Cross Site Scripting in the reports module.
Published: 2025-10-30T14:31:51.240Z
Updated: 2025-10-30T14:46:50.399Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-5343 |
vulnerable | 2026-06-03 15:06:27.606918 |
Stored XSS
MEDIUM (6.3)
Zohocorp ManageEngine Exchange Reporter Plus versions through 5721 are vulnerable to Stored Cross Site Scripting in the Instant Search option.
Published: 2025-10-30T14:28:20.681Z
Updated: 2025-10-30T14:46:41.725Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-5342 |
vulnerable | 2026-06-03 15:06:27.602278 |
Denial of Service (DoS)
MEDIUM (4.3)
Zohocorp ManageEngine Exchange Reporter Plus through 5721 are vulnerable to ReDOS vulnerability in the search module.
Published: 2025-10-30T14:20:53.989Z
Updated: 2025-10-30T14:46:13.685Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-3835 |
vulnerable | 2026-06-03 15:01:05.750369 |
Remote Code Execution
CRITICAL (9.6)
Zohocorp ManageEngine Exchange Reporter Plus versions 5721 and prior are vulnerable to Remote code execution in the Content Search module.
Published: 2025-06-09T10:29:18.379Z
Updated: 2026-02-26T17:51:06.541Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-9459 |
vulnerable | 2026-06-03 14:58:21.538135 |
SQL Injection
HIGH (8.3)
Zohocorp ManageEngine Exchange Reporter Plus versions 5718 and prior are vulnerable to authenticated SQL Injection in reports module.
Published: 2024-11-05T05:44:57.368Z
Updated: 2024-11-05T16:24:05.731Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-38872 |
vulnerable | 2026-06-03 14:56:19.946226 |
SQL Injection
HIGH (8.3)
Zohocorp ManageEngine Exchange Reporter Plus versions 5717 and below are vulnerable to the authenticated SQL injection in the monitoring module.
Published: 2024-07-26T17:30:23.932Z
Updated: 2024-08-02T04:19:20.244Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-38871 |
vulnerable | 2026-06-03 14:56:19.944951 |
SQL Injection
HIGH (8.3)
Zohocorp ManageEngine Exchange Reporter Plus versions 5717 and below are vulnerable to the authenticated SQL injection in the reports module.
Published: 2024-07-26T17:29:42.911Z
Updated: 2024-08-02T04:19:20.491Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.