CVE-2021-46065

CVE-2021-46065

EPSS 91.7%

A Cross-site scripting (XSS) vulnerability in Secondary Email Field in Zoho ManageEngine ServiceDesk Plus 11.3 Build 11306 allows an attackers to inject arbitrary JavaScript code.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/corrupted-brain/Findings/blob/main/ManageEngine%20XSS.md https://www.manageengine.com/products/service-desk/on-premises/readme.html