3 matches found
CVE-2022-24681
Zoho ManageEngine ADSelfService Plus before 6121 allows XSS via the welcome name attribute to the Reset Password, Unlock Account, or User Must Change Password screen...
ManageEngine ADSelfService Plus < build 6121 XSS
According to its self-reported version, the ManageEngine ADSelfService Plus application running on the remote host is prior to build 6121. It is, therefore, affected by a cross-site scripting vulnerability affecting the welcome name attribute on the Reset Password, Unlock Account and User Must...
CVE-2022-24681
CVE-2022-24681 affects ManageEngine ADSelfService Plus prior to 6121, with a cross-site scripting (XSS) vulnerability via the welcome name attribute on the Reset Password, Unlock Account, and User Must Change Password screens. The Nuclei template and Red Hat/NVD entries corroborate the issue; sev...