Lucene search
China National Vulnerability DatabaseCNVD-2021-94825HistoryDec 02, 2021 - 12:00 a.m.
ZOHO ManageEngine SupportCenter Plus Cross-Site Scripting Vulnerability (CNVD-2021-94825)
2021-12-0200:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
zoho manageengine
supportcenter plus
cross-site scripting
vulnerability
authentication credentials
attackers
web-based software
EPSS
0.002
Percentile
51.8%
ZOHO ManageEngine SupportCenter Plus is a web-based customer support software from ZOHO, Inc. A cross-site scripting vulnerability exists in ZOHO ManageEngine SupportCenter Plus, which stems from the productβs failure to validate user identities and could be exploited by attackers to obtain a victimβs cookie-based authentication credentials of the victim.
Related
prion
prion
Cross site scripting
2021-11-30 19:15:00
cvelist
cvelist
CVE-2021-43295
2021-11-30 18:39:37
nvd
nvd
CVE-2021-43295
2021-11-30 19:15:10
cve
cve
CVE-2021-43295
2021-11-30 19:15:10