Total vulnerabilities in the database
Zoho ManageEngine ServiceDesk Plus MSP before 10604 allows path traversal (to WEBINF/web.xml from sample/WEB-INF/web.xml or sample/META-INF/web.xml).
| Software | From | Fixed in |
|---|---|---|
| zohocorp / manageengine_servicedesk_plus_msp | 10.6-10600 | 10.6-10600.x |
| zohocorp / manageengine_servicedesk_plus_msp | 10.6-10601 | 10.6-10601.x |
| zohocorp / manageengine_servicedesk_plus_msp | 10.6-10602 | 10.6-10602.x |
| zohocorp / manageengine_servicedesk_plus_msp | 10.6-10603 | 10.6-10603.x |
| zohocorp / manageengine_servicedesk_plus_msp | 10.6 | 10.6.x |
| zohocorp / manageengine_servicedesk_plus_msp | - | 10.6 |