Zoho Analytics Plus Dir Traversal via /zropusermgmt API
CVE-2020-21642 Published on August 15, 2022

Directory Traversal vulnerability ZDBQAREFSUBDIR parameter in /zropusermgmt API in Zoho ManageEngine Analytics Plus before 4350 allows remote attackers to run arbitrary code.

NVD

Products Associated with CVE-2020-21642

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2020-21642 are published in Zoho Corp Manageengine Analytics Plus:

Zoho Corp Manageengine Analytics Plus

Exploit Probability

EPSS

7.11%

Percentile

91.36%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Zoho Analytics Plus Dir Traversal via /zropusermgmt APICVE-2020-21642 Published on August 15, 2022

Products Associated with CVE-2020-21642

Exploit Probability

Zoho Analytics Plus Dir Traversal via /zropusermgmt API
CVE-2020-21642 Published on August 15, 2022