An issue was discovered in Zoho ManageEngine Desktop Central 10.0.124 and 10.0.184: directory traversal in the SCRIPT_NAME field when modifying existing scripts.
https://www.manageengine.com/products/desktop-central/elevation-of-privilege-vulnerability.html