Zoho ManageEngine ADSelfService Plus through 6101 is vulnerable to unauthenticated Remote Code Execution while changing the password.
Published June 25, 2021.
Zohocorp Manageengine Adselfservice Plus