Manageengine Opmanager — known CVE vulnerabilities
Every CVE whose affected-product data names Manageengine Opmanager, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2020-19554 — CVSS 6.1 (medium): Cross Site Scripting (XSS) vulnerability exists in ManageEngine OPManager <=12.5.174 when the API key contains an XML-based XSS payload.
CVE-2007-5891 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in jsp/Login.do in ManageEngine OpManager MSP Edition and OpManager 7.0 allow remote…