Lucene search
K

4 matches found

OSV
OSV
added 2018/05/10 2:29 p.m.3 views

CVE-2018-10803

Cross-site scripting XSS vulnerability in the add credentials functionality in Zoho ManageEngine NetFlow Analyzer v12.3 before 12.3.125 build 123125 allows remote attackers to inject arbitrary web script or HTML via a crafted description value. This can be exploited through CSRF...

6.1CVSS5.9AI score0.00719EPSS
Exploits0References2
NVD
NVD
added 2018/05/10 2:29 p.m.29 views

CVE-2018-10803

Cross-site scripting XSS vulnerability in the add credentials functionality in Zoho ManageEngine NetFlow Analyzer v12.3 before 12.3.125 build 123125 allows remote attackers to inject arbitrary web script or HTML via a crafted description value. This can be exploited through CSRF...

6.1CVSS6AI score0.00719EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/05/10 2:0 p.m.24 views

CVE-2018-10803

Cross-site scripting XSS vulnerability in the add credentials functionality in Zoho ManageEngine NetFlow Analyzer v12.3 before 12.3.125 build 123125 allows remote attackers to inject arbitrary web script or HTML via a crafted description value. This can be exploited through CSRF...

6AI score0.00719EPSS
Exploits0References2
CVE
CVE
added 2018/05/10 2:0 p.m.54 views

CVE-2018-10803

Zoho ManageEngine NetFlow Analyzer 12.3.x is affected (builds before 12.3.125, 123125). The vulnerability is a cross-site scripting (XSS) in the Add Credentials feature, exploitable via a crafted description value and CSRF, allowing an attacker to inject arbitrary web script or HTML. Remediation:...

6.1CVSS6AI score0.00719EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder