Lucene search
China National Vulnerability DatabaseCNVD-2023-64220HistoryAug 14, 2023 - 12:00 a.m.
ZOHO ManageEngine Applications Manager Cross-Site Scripting Vulnerability (CNVD-2023-64220)
2023-08-1400:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
it operation management
maintenance management
application performance
fault management
report generation
sla management
cross-site scripting vulnerability
user-supplied data filtering
crafted payload
EPSS
0.002
Percentile
56.3%
ZOHO ManageEngine Applications Manager is a set of IT operation and maintenance management solutions of the United States ZhuoHao (ZOHO) company. The product has application performance management, fault management, report generation and SLA management and other functions. A cross-site scripting vulnerability exists in ZOHO ManageEngine Applications Manager. The vulnerability stems from the lack of effective filtering and escaping of user-supplied data, which can be exploited to execute arbitrary web script or HTML by injecting a crafted payload.
Related
cvelist
cvelist
CVE-2023-38333
2023-08-10 00:00:00
cve
cve
CVE-2023-38333
2023-08-10 21:15:10
zdi
zdi
prion
prion
Cross site scripting
2023-08-10 21:15:00
nvd
nvd
CVE-2023-38333
2023-08-10 21:15:10