CVE-2025-5343

Name of the Vulnerable Software and Affected Versions ManageEngine Exchange Reporter Plus versions through 5721

Description The software is susceptible to a Stored Cross Site Scripting issue within the Instant Search functionality. The issue allows for the injection of malicious scripts that are stored on the target server and executed when other users access the affected feature.

Recommendations Update to a version later than 5721.