3 matches found
CVE-2019-12541
Zoho ManageEngine ServiceDesk Plus 9.3 is affected by a cross-site scripting (XSS) vulnerability in the SolutionSearch.do searchText parameter. Root cause: inadequate validation/escaping in the SolutionSearch.do endpoint. Impact: potential execution of malicious client-side scripts in affected us...
Zoho ManageEngine ServiceDesk Plus 9.3 - 'SolutionSearch.do' Cross-Site Scripting
Exploit Title: Zoho ManageEngine ServiceDesk Plus 9.3 Cross-Site Scripting via SolutionSearch.do Date: 2019-06-04 Exploit Author: Tarantula Team - VinCSS a member of Vingroup Vendor Homepage: https://www.manageengine.com/products/service-desk Version: Zoho ManageEngine ServiceDesk Plus 9.3 CVE :...
Zoho ManageEngine ServiceDesk Plus 9.3 Cross Site Scripting
Exploit Title: Zoho ManageEngine ServiceDesk Plus 9.3 Cross-Site Scripting via SiteLookup.do Date: 2019-06-04 Exploit Author: Tarantula Team - VinCSS a member of Vingroup Vendor Homepage: https://www.manageengine.com/products/service-desk Version: Zoho ManageEngine ServiceDesk Plus 9.3 CVE :...