Lucene search
MitreCVELIST:CVE-2018-12996HistoryJun 29, 2018 - 12:00 p.m.
CVE-2018-12996
2018-06-2912:00:00
mitre
www.cve.org
1
EPSS
0.006
Percentile
78.9%
A reflected Cross-site scripting (XSS) vulnerability in Zoho ManageEngine Applications Manager before 13 (Build 13800) allows remote attackers to inject arbitrary web script or HTML via the parameter ‘method’ to GraphicalView.do.
References
packetstormsecurity.com/files/148635/Zoho-ManageEngine-13-13790-build-XSS-File-Read-File-Deletion.html
seclists.org/fulldisclosure/2018/Jul/71
www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-201807-038
github.com/unh3x/just4cve/issues/7
www.manageengine.com/products/applications_manager/issues.html
www.manageengine.com/products/applications_manager/security-updates/security-updates-cve-2018-12996.html
Related
prion
prion
Cross site scripting
2018-06-29 12:29:00
nvd
nvd
CVE-2018-12996
2018-06-29 12:29:00
cve
cve
CVE-2018-12996
2018-06-29 12:29:00
zdt
zdt
packetstorm
packetstorm
Zoho ManageEngine 13 (13790 build) XSS / File Read / File Deletion
2018-07-22 00:00:00