CVE-2025-1724 – Zohocorp ManageEngine Analytics Plus/Zoho Analytics Hardcoded Token Vulnerability

March 17, 2025
10:17 am

CVE ID : CVE-2025-1724

Published : March 17, 2025, 7:15 a.m. | 2 hours, 14 minutes ago

Description : Zohocorp’s ManageEngine Analytics Plus and Zoho Analytics on-premise versions older than 6130 are vulnerable to an AD only account takeover because of a hardcoded sensitive token.

Severity: 7.4 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-1724 – Zohocorp ManageEngine Analytics Plus/Zoho Analytics Hardcoded Token Vulnerability

Elvescore.io

Recent Posts

CVE-2025-2262 – WordPress Logo Slider – Unauthenticated Shortcode Execution

CVE-2025-2471 – PHPGurukul Boat Booking System SQL Injection Vulnerability

CVE-2025-2472 – PHPGurukul Apartment Visitors Management System SQL Injection Vulnerability

CVE-2025-2473 – PHPGurukul Company Visitor Management System SQL Injection Vulnerability

CVE-2023-50183 – Apache HTTP Server Cross-Site Request Forgery

CVE-2023-50184 – Apache HTTP Server Remote Code Execution

CVE-2025-1724 – Zohocorp ManageEngine Analytics Plus/Zoho Analytics Hardcoded Token Vulnerability

CVE-2025-1724 – Zohocorp ManageEngine Analytics Plus/Zoho Analytics Hardcoded Token Vulnerability