Lucene search
K

5 matches found

Packet Storm
Packet Storm
added 2019/05/09 12:0 a.m.44 views

Zoho ManageEngine ADSelfService Plus 5.7 Cross Site Scripting

Zoho ManageEngine ADSelfService Plus 5.7 &searchType=contains&searchBy=ALLFIELDS&actionId=Search HTTP/1.1 &adscsrf= 4- Stored XSS in self-update layout imple...

4.3CVSS0.1AI score0.05273EPSS
Exploits4
exploitpack
exploitpack
added 2019/05/09 12:0 a.m.66 views

Zoho ManageEngine ADSelfService Plus 5.7 5702 build - Cross-Site Scripting

Zoho ManageEngine ADSelfService Plus 5.7 5702 build - Cross-Site Scripting + Zoho ManageEngine ADSelfService Plus 5.7 &searchType=contains&searchBy=ALLFIELDS&actionId=Search HTTP/1.1 &adscsrf= 4- Stored XSS in self-update layout im...

4.3CVSS0.1AI score0.05273EPSS
Exploits4
0day.today
0day.today
added 2019/05/09 12:0 a.m.235 views

Zoho ManageEngine ADSelfService Plus 5.7 < 5702 build - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications + Zoho ManageEngine ADSelfService Plus 5.7 &searchType=contains&searchBy=ALLFIELDS&actionId=Search HTTP/1.1 &adscsrf= 4- Stored XSS in self-...

4.3CVSS0.1AI score0.05273EPSS
Exploits4
Exploit DB
Exploit DB
added 2019/05/09 12:0 a.m.112 views

Zoho ManageEngine ADSelfService Plus 5.7 &lt; 5702 build - Cross-Site Scripting

Zoho ManageEngine ADSelfService Plus 5.7 &searchType=contains&searchBy=ALLFIELDS&actionId=Search HTTP/1.1 &adscsrf= 4- Stored XSS in self-update layout implementation. /SelfService.do?meth...

6.1CVSS6.3AI score0.05273EPSS
Exploits4
CVE
CVE
added 2018/12/26 6:0 p.m.73 views

CVE-2018-20485

Zoho ManageEngine ADSelfService Plus 5.7 before build 5702 is affected by a Cross‑Site Scripting (XSS) vulnerability in the Employee Search feature. The issue originates from an XSS flaw in the employee search handling, enabling injection of arbitrary web script or HTML. Public sources (e.g., exp...

6.1CVSS5.9AI score0.05273EPSS
Exploits4References2Affected Software1
Rows per page
Query Builder