Zoho ManageEngine Applications Manager before 15130 is vulnerable to Stored XSS while importing malicious user details (e.g., a crafted user name) from AD.
References
Link | Resource |
---|---|
https://raxis.com/blog/cve-2021-31813 | Exploit Third Party Advisory |
https://www.manageengine.com/products/applications_manager/security-updates/security-updates-cve-2021-31813.html | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-07-01T11:58:51
Updated: 2021-07-20T18:19:52
Reserved: 2021-04-26T00:00:00
Link: CVE-2021-31813
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-07-01T12:15:07.593
Modified: 2021-09-21T16:13:52.687
Link: CVE-2021-31813
JSON object: View
Redhat Information
No data.
CWE