exploitDog

GHSA-5rfp-9wcc-x567

Опубликовано: 01 фев. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

Cross site scripting (XSS) vulnerability in Zoho ManageEngine ServiceDesk Plus 14 via the comment field when changing the credentials in the Assets.

Cross site scripting (XSS) vulnerability in Zoho ManageEngine ServiceDesk Plus 14 via the comment field when changing the credentials in the Assets.

Ссылки

EPSS

Процентиль: 96%

0.25666

Средний

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2023-23078

CVSS3: 6.1

nvd

около 3 лет назад

Cross site scripting (XSS) vulnerability in Zoho ManageEngine ServiceDesk Plus 14 via the comment field when changing the credentials in the Assets.

EPSS

Процентиль: 96%

0.25666

Средний

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79