ManageEngine ADManager Plus 6.5.7 - HTML Injection

vendor:

ManageEngine ADManager Plus

by:

Ismail Tasdelen

6.1

CVSS

MEDIUM

HTML Injection

Unknown

CWE

Product Name: ManageEngine ADManager Plus

Affected Version From: 6.5.2007

Affected Version To: 6.5.2007

Patch Exists: NO

Related CWE: CVE-2018-15608

CPE: Unknown

Metasploit:

Other Scripts:

Platforms Tested:

2018

ZOHO Corp ManageEngine ADManager Plus 6.5.7 allows HTML Injection on the "AD Delegation" "Help Desk Technicians" screen.

Unknown

Source