Zohocorp Manageengine Netflow Analyzer vulnerabilities
23 known vulnerabilities affecting zohocorp/manageengine_netflow_analyzer.
Total CVEs
23
CISA KEV
0
Public exploits
9
Exploited in wild
1
Severity breakdown
CRITICAL1HIGH6MEDIUM16
Vulnerabilities
Page 2 of 2
CVE-2019-7425P4MEDIUMCVSS 6.1v7.0.0.22019-03-21
CVE-2019-7425 [MEDIUM] CWE-79 CVE-2019-7425: XSS exists in Zoho ManageEngine Netflow Analyzer Professional v7.0.0.2 in the Administration zone "/
XSS exists in Zoho ManageEngine Netflow Analyzer Professional v7.0.0.2 in the Administration zone "/netflow/jspui/linkdownalertConfig.jsp" file in the task parameter.
nvd
CVE-2025-9226P4MEDIUMCVSS 4.6fixed in 1285822026-01-30
CVE-2025-9226 [MEDIUM] CWE-79 CVE-2025-9226: Zohocorp ManageEngine OpManager, NetFlow Analyzer, and OpUtils versions prior to 128582 are affected
Zohocorp ManageEngine OpManager, NetFlow Analyzer, and OpUtils versions prior to 128582 are affected by a stored cross-site scripting vulnerability in the Subnet Details.
nvd
CVE-2018-10803P4MEDIUMCVSS 6.1≥ 12.3, < 12.3.1252018-05-10
CVE-2018-10803 [MEDIUM] CWE-79 CVE-2018-10803: Cross-site scripting (XSS) vulnerability in the add credentials functionality in Zoho ManageEngine N
Cross-site scripting (XSS) vulnerability in the add credentials functionality in Zoho ManageEngine NetFlow Analyzer v12.3 before 12.3.125 (build 123125) allows remote attackers to inject arbitrary web script or HTML via a crafted description value. This can be exploited through CSRF.
nvd
← Previous2 / 2