2 matches found
CVE-2020-6843
Zoho ManageEngine ServiceDesk Plus 11.0 Build 11007 is affected by a cross-site scripting (XSS) vulnerability. The issue is noted as a reflected XSS due to improper handling/validation of user-supplied input in the web application, with exploitation leading to client-side code execution. The fixe...
ZOHO ManageEngine ServiceDeskPlus 11.0 Build 11007 Cross Site Scripting
SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Reflected XSS product: ZOHO ManageEngine ServiceDeskPlus vulnerable version: = 11.0 Build 11007 fixed version: 11.0 Build 11010 CVE number: CVE-2020-6843 impact: medium...