CVE-2008-1299

2008-03-1217:00:00

mitre

www.cve.org

cross-site scripting

manageengine

servicedesk plus

windows

vulnerability

AI Score

5.5

Confidence

High

EPSS

0.001

Percentile

48.7%

JSON

Cross-site scripting (XSS) vulnerability in SolutionSearch.do in ManageEngine ServiceDesk Plus 7.0.0 Build 7011 for Windows allows remote attackers to inject arbitrary web script or HTML via the searchText parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

References

secunia.com/advisories/29310

www.securityfocus.com/bid/28191