ZohoCorp ManageEngine Applications Manager 14.0 Build 14530
Approved changes feed: RSS · Atom
cpe:2.3:a:zohocorp:manageengine_applications_manager:14.0:build14530:*:*:*:*:*:*
part: a version: 14.0 update: build14530
| Vendor | Zohocorp (4f1ab088-ab0e-54ac-b0dc-2304879a7502) |
|---|---|
| Product | Manageengine Applications Manager (49d485f6-953f-5232-b32c-ce1df3e28335) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2020-27995 |
vulnerable | 2026-06-03 14:42:18.955300 |
Details available
SQL Injection in Zoho ManageEngine Applications Manager 14 before 14560 allows an attacker to execute commands on the server via the MyPage.do template_resid parameter.
Published: 2020-10-29T16:31:52.000Z
Updated: 2024-08-04T16:25:44.113Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-27733 |
vulnerable | 2026-06-03 14:42:18.423392 |
Details available
Zoho ManageEngine Applications Manager before 14 build 14880 allows an authenticated SQL Injection via a crafted Alarmview request.
Published: 2021-01-19T15:53:26.000Z
Updated: 2024-08-04T16:18:45.525Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-15521 |
vulnerable | 2026-06-03 14:41:45.971082 |
Details available
Zoho ManageEngine Applications Manager before 14 build 14730 has no protection against jsp/header.jsp Cross-site Scripting (XSS) .
Published: 2020-09-25T06:05:44.000Z
Updated: 2024-08-04T13:15:20.820Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-15394 |
vulnerable | 2026-06-03 14:41:45.802621 |
Details available
The REST API in Zoho ManageEngine Applications Manager before build 14740 allows an unauthenticated SQL Injection via a crafted request, leading to Remote Code Execution.
Published: 2020-09-25T06:11:41.000Z
Updated: 2024-08-04T13:15:20.703Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-14008 |
vulnerable | 2026-06-03 14:41:37.699869 |
Details available
Zoho ManageEngine Applications Manager 14710 and before allows an authenticated admin user to upload a vulnerable jar in a specific location, which leads to remote code execution.
Published: 2020-09-04T14:14:15.000Z
Updated: 2024-08-04T12:32:14.657Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.