5 matches found
Zoho ManageEngine ADSelfService Plus 5.7 Cross Site Scripting
Zoho ManageEngine ADSelfService Plus 5.7 &searchType=contains&searchBy=ALLFIELDS&actionId=Search HTTP/1.1 &adscsrf= 4- Stored XSS in self-update layout imple...
Zoho ManageEngine ADSelfService Plus 5.7 5702 build - Cross-Site Scripting
Zoho ManageEngine ADSelfService Plus 5.7 5702 build - Cross-Site Scripting + Zoho ManageEngine ADSelfService Plus 5.7 &searchType=contains&searchBy=ALLFIELDS&actionId=Search HTTP/1.1 &adscsrf= 4- Stored XSS in self-update layout im...
Zoho ManageEngine ADSelfService Plus 5.7 < 5702 build - Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications + Zoho ManageEngine ADSelfService Plus 5.7 &searchType=contains&searchBy=ALLFIELDS&actionId=Search HTTP/1.1 &adscsrf= 4- Stored XSS in self-...
Zoho ManageEngine ADSelfService Plus 5.7 < 5702 build - Cross-Site Scripting
Zoho ManageEngine ADSelfService Plus 5.7 &searchType=contains&searchBy=ALLFIELDS&actionId=Search HTTP/1.1 &adscsrf= 4- Stored XSS in self-update layout implementation. /SelfService.do?meth...
CVE-2018-20485
Zoho ManageEngine ADSelfService Plus 5.7 before build 5702 is affected by a Cross‑Site Scripting (XSS) vulnerability in the Employee Search feature. The issue originates from an XSS flaw in the employee search handling, enabling injection of arbitrary web script or HTML. Public sources (e.g., exp...