CVE-2023-28341
Stored Cross site scripting (XSS) vulnerability in Zoho ManageEngine Applications Manager through 16340 allows an unauthenticated user to inject malicious javascript on the incorrect login details page.
| Software | From | Fixed in |
|---|---|---|
| zohocorp / manageengine_applications_manager | 16.3-build16310 | 16.3-build16310.x |
| zohocorp / manageengine_applications_manager | 16.3-build16320 | 16.3-build16320.x |
| zohocorp / manageengine_applications_manager | 16.3-build16300 | 16.3-build16300.x |
| zohocorp / manageengine_applications_manager | 16.0 | 16.3 |
| zohocorp / manageengine_applications_manager | 16.3-build16330 | 16.3-build16330.x |
| zohocorp / manageengine_applications_manager | 16.3-build16340 | 16.3-build16340.x |
| zohocorp / manageengine_applications_manager | 15.9-build15990 | 15.9-build15990.x |
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime