Multiple cross-site scripting (XSS) vulnerabilities in ZOHO ManageEngine ADManager Plus before 6.2 Build 6270 allow remote attackers to inject arbitrary web script or HTML via the (1) technicianSearchText parameter to the Help Desk Technician page or (2) rolesSearchText parameter to the Help Desk Roles.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2015-03-11T14:00:00

Updated: 2024-08-06T04:33:20.305Z

Reserved: 2015-01-10T00:00:00

Link: CVE-2015-1026

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2015-03-11T14:59:04.017

Modified: 2018-10-09T19:55:41.077

Link: CVE-2015-1026

cve-icon Redhat

No data.