2 matches found
CVE-2017-11739
creationtimestamp| type| source ---|---|--- 2019-05-23 16:48:23+00:00| seen| https://t.me/cvemitreorg/198 2019-05-23 20:29:25+00:00| seen| https://t.me/cibsecurity/4489...
CVE-2017-11739
In Zoho ManageEngine Application Manager 13.1 Build 13100, an authenticated user with administrative privileges can add a widget on any dashboard, specifically a "Utility Widget" with a "Custom HTML or Text" field. The created widget is loaded on the dashboard and can host malicious JavaScript, e...