CVE-2019-8928
CVE-2019-8928 affects Zoho ManageEngine Netflow Analyzer Professional 7.0.0.2. The vulnerability is a cross-site scripting (XSS) flaw in the web UI, exposed in /netflow/jspui/userManagementForm.jsp via the GET parameters: authMeth, passWord, pwd1, and userName. The NVD entry lists a CVSS v2 base ...