CVE-2026-4108

HIGH CVSS 7.3 View on NVD ↗

Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in Non-Owner Mailbox Permission report.

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N

zohocorp/manageengine_exchange_reporter_plus

Published: Apr 03, 2026 12:16 UTC Modified: Apr 03, 2026 18:23 UTC