GCVE - cpe:2.3:a:zohocorp:manageengine_exchange_reporter

Approved changes feed: RSS · Atom

cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus:5.7:5721:*:*:*:*:*:*

part: a version: 5.7 update: 5721

Vendor	Zohocorp (`4f1ab088-ab0e-54ac-b0dc-2304879a7502`)
Product	Manageengine Exchange Reporter Plus (`9fa4b748-92d7-5237-a864-78c4be422321`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-7633`	vulnerable	2026-06-08 07:45:17.829195	Stored XSS HIGH (7.3) Zohocorp ManageEngine Exchange Reporter Plus versions 5723 and below are vulnerable to the Stored XSS Vulnerability in the Custom report. Published: 2025-11-11T10:32:01.920Z Updated: 2026-02-26T16:57:58.978Z Open on db.gcve.eu Reference links https://www.manageengine.com/products/exchange-reports/advisory/CVE-2025-7633.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-7632`	vulnerable	2026-06-08 07:45:17.825887	Stored XSS HIGH (7.3) Zohocorp ManageEngine Exchange Reporter Plus versions 5723 and below are vulnerable to the Stored XSS Vulnerability in the Public Folders report. Published: 2025-11-11T10:29:44.881Z Updated: 2026-02-26T16:57:59.315Z Open on db.gcve.eu Reference links https://www.manageengine.com/products/exchange-reports/advisory/CVE-2025-7632.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-7430`	vulnerable	2026-06-08 07:43:18.590906	Stored XSS HIGH (7.3) Zohocorp ManageEngine Exchange Reporter Plus versions 5723 and below are vulnerable to the Stored XSS Vulnerability in the Folder Message Count and Size report. Published: 2025-11-11T10:24:11.018Z Updated: 2026-02-26T16:57:59.721Z Open on db.gcve.eu Reference links https://www.manageengine.com/products/exchange-reports/advisory/CVE-2025-7430.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-7429`	vulnerable	2026-06-08 07:43:18.587876	Stored XSS HIGH (7.3) Zohocorp ManageEngine Exchange Reporter Plus versions 5723 and below are vulnerable to the Stored XSS Vulnerability in the Mails Deleted or Moved report. Published: 2025-11-11T07:40:26.374Z Updated: 2026-02-26T16:58:00.376Z Open on db.gcve.eu Reference links https://www.manageengine.com/products/exchange-reports/advisory/CVE-2025-7429.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-5966`	vulnerable	2026-06-08 07:37:26.177565	Stored XSS HIGH (8.1) Zohocorp ManageEngine Exchange reporter Plus version 5722 and below are vulnerable to Stored XSS in the Attachments by filename keyword report. Published: 2025-06-26T12:22:10.367Z Updated: 2025-06-26T12:54:07.728Z Open on db.gcve.eu Reference links https://www.manageengine.com/products/exchange-reports/advisory/CVE-2025-5966.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-5366`	vulnerable	2026-06-08 07:35:24.782736	Stored XSS HIGH (8.1) Zohocorp ManageEngine Exchange reporter Plus version 5722 and below are vulnerable to Stored XSS in the Folder-wise read mails with subject report. Published: 2025-06-26T12:21:02.567Z Updated: 2025-06-26T12:54:40.737Z Open on db.gcve.eu Reference links https://www.manageengine.com/products/exchange-reports/advisory/CVE-2025-5366.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-5347`	vulnerable	2026-06-08 07:35:24.715205	Stored XSS MEDIUM (6.3) Zohocorp ManageEngine Exchange Reporter Plus versions before 5723 are vulnerable to Stored Cross Site Scripting in the reports module. Published: 2025-10-30T14:31:51.240Z Updated: 2025-10-30T14:46:50.399Z Open on db.gcve.eu Reference links https://www.manageengine.com/products/exchange-reports/advisory/CVE-2025-5347.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-5343`	vulnerable	2026-06-08 07:35:24.707470	Stored XSS MEDIUM (6.3) Zohocorp ManageEngine Exchange Reporter Plus versions through 5721 are vulnerable to Stored Cross Site Scripting in the Instant Search option. Published: 2025-10-30T14:28:20.681Z Updated: 2025-10-30T14:46:41.725Z Open on db.gcve.eu Reference links https://www.manageengine.com/products/exchange-reports/advisory/CVE-2025-5343.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-5342`	vulnerable	2026-06-08 07:35:24.706007	Denial of Service (DoS) MEDIUM (4.3) Zohocorp ManageEngine Exchange Reporter Plus through 5721 are vulnerable to ReDOS vulnerability in the search module. Published: 2025-10-30T14:20:53.989Z Updated: 2025-10-30T14:46:13.685Z Open on db.gcve.eu Reference links https://www.manageengine.com/products/exchange-reports/advisory/CVE-2025-5342.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-3835`	vulnerable	2026-06-08 07:23:10.005456	Remote Code Execution CRITICAL (9.6) Zohocorp ManageEngine Exchange Reporter Plus versions 5721 and prior are vulnerable to Remote code execution in the Content Search module. Published: 2025-06-09T10:29:18.379Z Updated: 2026-02-26T17:51:06.541Z Open on db.gcve.eu Reference links https://www.manageengine.com/products/exchange-reports/advisory/CVE-2025-3835.html	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Zoho Corporation ManageEngine Exchange Reporter Plus 5.7 5721

PURL mappings

Vulnerability references

Contribute