7 matches found
ManageEngine AssetExplorer < 6.1.0 Build 6113 Multiple XSS
The version of ManageEngine AssetExplorer running on the remote host is prior to 6.1.0 build 6113. It is, therefore, affected by multiple cross-site scripting XSS vulnerabilities : - A cross-site scripting vulnerability exists due to improper validation of input to the Publisher name before...
ManageEngine Asset Explorer 6.1 - Persistent Cross-Site Scripting
ManageEngine Asset Explorer 6.1 - Persistent Cross-Site Scripting Title: =============== ManageEngine Asset Explorer v6.1 - XSS Vulnerability CVE-ID: ==================================== CVE-2015-2169 CVSS: ==================================== 3.5 Product & Service Introduction Taken from their...
ManageEngine Asset Explorer 6.1 - Persistent Cross-Site Scripting
Title: =============== ManageEngine Asset Explorer v6.1 - XSS Vulnerability CVE-ID: ==================================== CVE-2015-2169 CVSS: ==================================== 3.5 Product & Service Introduction Taken from their homepage: ==================================== ManageEngine...
CVE-2015-2169
Cross-site scripting XSS vulnerability in Zoho ManageEngine AssetExplorer 6.1 service pack 6112 allows remote attackers to inject arbitrary web script or HTML via a Publisher registry entry, which is not properly handled when the machine is scanned...
CVE-2015-2169
Cross-site scripting XSS vulnerability in Zoho ManageEngine AssetExplorer 6.1 service pack 6112 allows remote attackers to inject arbitrary web script or HTML via a Publisher registry entry, which is not properly handled when the machine is scanned...
CVE-2015-2169
Concretely, CVE-2015-2169 affects ManageEngine AssetExplorer 6.1.x prior to build 6113, with XSS via Publisher name input and also via organizationName in VendorDef.do. Root cause: improper input validation leading to script/HTML injection in authenticated sessions (though some entries note unaut...
ManageEngine Asset Explorer 6.1 Cross Site Scripting
Title: =============== ManageEngine Asset Explorer v6.1 - XSS Vulnerability CVE-ID: ==================================== CVE-2015-2169 CVSS: ==================================== 3.5 Product & Service Introduction Taken from their homepage: ==================================== ManageEngine...