Lucene search
K

4 matches found

NVD
NVD
added 2011/02/17 6:0 p.m.19 views

CVE-2010-3274

Multiple cross-site scripting XSS vulnerabilities in EmployeeSearch.cc in the Employee Search Engine in ZOHO ManageEngine ADSelfService Plus before 4.5 Build 4500 allow remote attackers to inject arbitrary web script or HTML via the searchString parameter in a 1 showList or 2 Search action...

4.3CVSS5.6AI score0.21004EPSS
Exploits2References9
Prion
Prion
added 2011/02/17 6:0 p.m.15 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in EmployeeSearch.cc in the Employee Search Engine in ZOHO ManageEngine ADSelfService Plus before 4.5 Build 4500 allow remote attackers to inject arbitrary web script or HTML via the searchString parameter in a 1 showList or 2 Search action...

4.3CVSS6AI score0.21004EPSS
Exploits2References9Affected Software1
Cvelist
Cvelist
added 2011/02/17 5:0 p.m.27 views

CVE-2010-3274

Multiple cross-site scripting XSS vulnerabilities in EmployeeSearch.cc in the Employee Search Engine in ZOHO ManageEngine ADSelfService Plus before 4.5 Build 4500 allow remote attackers to inject arbitrary web script or HTML via the searchString parameter in a 1 showList or 2 Search action...

5.6AI score0.21004EPSS
Exploits2References9
CVE
CVE
added 2011/02/17 5:0 p.m.53 views

CVE-2010-3274

Affected product/version: ManageEngine ADSelfService Plus (Zoho) prior to 4.5 Build 4500. Vulnerability type: Cross‑site scripting (XSS) in EmployeeSearch.cc, affecting the search functionality; exploits reflect user input back to the page. Impact/reason: Remote attackers can inject arbitrary scr...

4.3CVSS5.6AI score0.21004EPSS
Exploits2References9Affected Software1
Rows per page
Query Builder