| Reporter | Title | Published | Views | Family All 11 |
|---|---|---|---|---|
| CVE-2022-24681 | 7 Apr 202222:15 | – | attackerkb | |
| CVE-2022-24681 | 8 Apr 202202:47 | – | circl | |
| Zoho Corporation ADSelfService Plus 跨站脚本漏洞 | 7 Mar 202200:00 | – | cnnvd | |
| CVE-2022-24681 | 7 Apr 202221:49 | – | cve | |
| CVE-2022-24681 | 7 Apr 202221:49 | – | cvelist | |
| ManageEngine ADSelfService Plus < build 6121 XSS | 13 Apr 202200:00 | – | nessus | |
| CVE-2022-24681 | 7 Apr 202222:15 | – | nvd | |
| CVE-2022-24681 | 7 Apr 202222:15 | – | osv | |
| Cross site scripting | 7 Apr 202222:15 | – | prion | |
| PT-2022-16796 · Zoho · Zoho Manageengine Adselfservice Plus | 7 Apr 202200:00 | – | ptsecurity |
id: CVE-2022-24681
info:
name: ManageEngine ADSelfService Plus <6121 - Stored Cross-Site Scripting
author: Open-Sec
severity: medium
description: |
ManageEngine ADSelfService Plus before 6121 contains a stored cross-site scripting vulnerability via the welcome name attribute to the Reset Password, Unlock Account, or User Must Change Password screens.
impact: |
Successful exploitation of this vulnerability could lead to the execution of arbitrary scripts or theft of sensitive information.
remediation: |
Upgrade to a version of ManageEngine ADSelfService Plus that is higher than 6121 to mitigate this vulnerability.
reference:
- https://raxis.com/blog/cve-2022-24681
- https://www.manageengine.com/products/self-service-password/advisory/CVE-2022-24681.html
- https://manageengine.com
- https://nvd.nist.gov/vuln/detail/CVE-2022-24681
- https://www.manageengine.com/products/self-service-password/kb/CVE-2022-24681.html
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
cvss-score: 6.1
cve-id: CVE-2022-24681
cwe-id: CWE-79
epss-score: 0.03619
epss-percentile: 0.88119
cpe: cpe:2.3:a:zohocorp:manageengine_adselfservice_plus:*:*:*:*:*:*:*:*
metadata:
max-request: 1
vendor: zohocorp
product: manageengine_adselfservice_plus
shodan-query:
- http.title:"manageengine"
- http.title:"adselfservice plus"
fofa-query:
- title="manageengine"
- title="adselfservice plus"
google-query:
- intitle:"adselfservice plus"
- intitle:"manageengine"
tags: cve,cve2022,manageengine,xss,authenticated,zohocorp,passive,vuln
http:
- raw:
- |
POST /servlet/GetProductVersion HTTP/1.1
Host: {{Hostname}}
matchers-condition: and
matchers:
- type: dsl
dsl:
- compare_versions(buildnumber, '< 6121')
- type: word
part: body
words:
- "ManageEngine"
- type: status
status:
- 200
extractors:
- type: regex
name: buildnumber
group: 1
regex:
- '"BUILD_NUMBER":"([0-9]+)",'
internal: true
part: body
# digest: 4b0a00483046022100da180bc67bdbf5d43c9837dd83798f61519174785b30e7f85653202f51ec7398022100da3c67f83f905d8c9abf9a5ba04c23a6543bba7add5f4f6a036d01f6e36111e1:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation