EPSS
Percentile
72.5%
A Cross-site scripting (XSS) vulnerability in Secondary Email Field in Zoho ManageEngine ServiceDesk Plus 11.3 Build 11306 allows an attackers to inject arbitrary JavaScript code.
github.com/corrupted-brain/Findings/blob/main/ManageEngine%20XSS.md
www.manageengine.com/products/service-desk/on-premises/readme.html