4 matches found
CVE-2018-10803
Cross-site scripting XSS vulnerability in the add credentials functionality in Zoho ManageEngine NetFlow Analyzer v12.3 before 12.3.125 build 123125 allows remote attackers to inject arbitrary web script or HTML via a crafted description value. This can be exploited through CSRF...
CVE-2018-10803
Cross-site scripting XSS vulnerability in the add credentials functionality in Zoho ManageEngine NetFlow Analyzer v12.3 before 12.3.125 build 123125 allows remote attackers to inject arbitrary web script or HTML via a crafted description value. This can be exploited through CSRF...
CVE-2018-10803
Cross-site scripting XSS vulnerability in the add credentials functionality in Zoho ManageEngine NetFlow Analyzer v12.3 before 12.3.125 build 123125 allows remote attackers to inject arbitrary web script or HTML via a crafted description value. This can be exploited through CSRF...
CVE-2018-10803
Zoho ManageEngine NetFlow Analyzer 12.3.x is affected (builds before 12.3.125, 123125). The vulnerability is a cross-site scripting (XSS) in the Add Credentials feature, exploitable via a crafted description value and CSRF, allowing an attacker to inject arbitrary web script or HTML. Remediation:...