Lucene search
China National Vulnerability DatabaseCNVD-2022-09273HistoryMar 09, 2021 - 12:00 a.m.
Zoho ManageEngine ADSelfService Plus跨站脚本漏洞
2021-03-0900:00:00
China National Vulnerability Database
www.cnvd.org.cn
5
zoho
manageengine
adselfservice plus
cross-site scripting
vulnerability
active directory
cloud applications
http requests
attack
EPSS
0.004
Percentile
72.6%
ZOHO ManageEngine ADSelfService Plus, an integrated self-service password management and single sign-on solution for Active Directory and cloud applications from ZOHO, is vulnerable to cross-site scripting. A cross-site scripting vulnerability exists in Zoho ManageEngine ADSelfService Plus, which can be exploited by attackers to perform blind HTTP requests or cross-site scripting (XSS) attacks against the management interface via HTTP requests.
Related
cvelist
cvelist
CVE-2021-27214
2021-02-19 18:39:28
prion
prion
Server side request forgery (ssrf)
2021-02-19 19:15:00
nvd
nvd
CVE-2021-27214
2021-02-19 19:15:12
cve
cve
CVE-2021-27214
2021-02-19 19:15:12