XSS Vulnerability in Zoho ManageEngine Desktop Central 10.0.271 via Features & Articles Search Field

XSS Vulnerability in Zoho ManageEngine Desktop Central 10.0.271 via Features & Articles Search Field

CVE-2018-16833 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Zoho ManageEngine Desktop Central 10.0.271 has XSS via the "Features & Articles" search field to the /advsearch.do?SUBREQUEST=XMLHTTP URI.

Learn more about our Cis Benchmark Audit For Desktop Software.