Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2015-5150
HistoryJun 30, 2015 - 2:00 p.m.

CVE-2015-5150

2015-06-3014:00:00
mitre
www.cve.org
4
cross-site scripting
zoho manageengine
supportcenter plus
remote authenticated
web script
html
customreporthandler
resetadpwd
cachescreenwidth

AI Score

5.4

Confidence

High

EPSS

0.002

Percentile

52.8%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in Zoho ManageEngine SupportCenter Plus 7.90 allow remote authenticated users to inject arbitrary web script or HTML via the (1) query parameter in the run_query_editor_query module to CustomReportHandler.do, (2) compAcct parameter to jsp/ResetADPwd.jsp, or (3) redirectTo parameter to jsp/CacheScreenWidth.jsp.

Related

cve 1
nvd 1
prion 1
openvas 1
exploitdb 1
cve
cve
CVE-2015-5150
2015-06-30 14:59:07
nvd
nvd
CVE-2015-5150
2015-06-30 14:59:07
prion
prion
Cross site scripting
2015-06-30 14:59:00
openvas
openvas
ManageEngine SupportCenter Plus Multiple Vulnerabilities (Jun 2015)
2015-06-25 00:00:00
exploitdb
exploitdb
ManageEngine SupportCenter Plus 7.90 - Multiple Vulnerabilities
2015-06-19 00:00:00

AI Score

5.4

Confidence

High

EPSS

0.002

Percentile

52.8%

JSON
Related for CVELIST:CVE-2015-5150
cve1nvd1prion1openvas1exploitdb1