CVE-2026-28756

HIGH CVSS 7.3 View on NVD ↗

Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in Permissions based on Distribution Groups report.

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N

zohocorp/manageengine_exchange_reporter_plus

Published: Apr 03, 2026 11:17 UTC Modified: Apr 03, 2026 18:52 UTC