C311

Name of the Vulnerable Software and Affected Versions Zohocorp ManageEngine Exchange Reporter Plus versions prior to 5802 Description The software is susceptible to a Stored Cross-Site Scripting (XSS) issue within the Distribution Lists report. Recommendations Update to version 5802 or later.

Name of the Vulnerable Software and Affected Versions Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 Description Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are susceptible to a Stored Cross-Site Scripting (XSS) issue within the Permissions based on Distribution Groups report. This allows for the injection of malicious scripts that can be stored on the target server and executed in the context of other users' browsers. Recommendations Update Zohocorp ManageEngine Exchange Reporter Plus to version 5802 or later.

Name of the Vulnerable Software and Affected Versions Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 Description Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are susceptible to a Stored Cross-Site Scripting (XSS) issue within the Mails Exchanged Between Users report. Recommendations Update Zohocorp ManageEngine Exchange Reporter Plus to version 5802 or later.

Name of the Vulnerable Software and Affected Versions ManageEngine Exchange Reporter Plus versions prior to 5802 Description ManageEngine Exchange Reporter Plus versions before 5802 are susceptible to Stored Cross-Site Scripting (XSS) in the Equipment Mailbox Details report. This allows for the injection of malicious scripts that can be executed in the context of other users' browsers. Recommendations Update ManageEngine Exchange Reporter Plus to version 5802 or later.

Name of the Vulnerable Software and Affected Versions Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 Description Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are susceptible to a Stored Cross-Site Scripting (XSS) issue within the Public Folder Client Permissions report. This allows for the injection of malicious scripts that can be stored and executed when other users access the affected report. Recommendations Update Zohocorp ManageEngine Exchange Reporter Plus to version 5802 or later.

Name of the Vulnerable Software and Affected Versions Zohocorp ManageEngine Exchange Reporter Plus versions prior to 5802 Description Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are susceptible to Stored Cross-Site Scripting (XSS) in the Folder Message Count and Size report. Recommendations Update Zohocorp ManageEngine Exchange Reporter Plus to version 5802 or later.

Name of the Vulnerable Software and Affected Versions Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 Description Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are susceptible to Stored Cross-Site Scripting (XSS) in the Non-Owner Mailbox Permission report. This allows for the injection of malicious scripts that can be executed in the context of a user's browser. Recommendations Update Zohocorp ManageEngine Exchange Reporter Plus to version 5802 or later.

Name of the Vulnerable Software and Affected Versions Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 Description Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are susceptible to Stored Cross-Site Scripting (XSS) in the 'Permissions Based on Mailboxes' report. This allows for the injection of malicious scripts that can be executed in the context of other users' browsers. Recommendations Update Zohocorp ManageEngine Exchange Reporter Plus to version 5802 or later.