CVE-2019-15510

ManageEngine_DesktopCentral.exe in Zoho ManageEngine Desktop Central 10 allows HTML injection on the user administration page via the description of a role.
Configurations

Configuration 1 (hide)

cpe:2.3:a:zohocorp:manageengine_desktop_central:10.0:*:*:*:*:*:*:*

History

03 Feb 2023, 19:25

Type Values Removed Values Added
References (CONFIRM) https://www.manageengine.com/products/desktop-central/html-injection.html - (CONFIRM) https://www.manageengine.com/products/desktop-central/html-injection.html - Vendor Advisory

Information

Published : 2020-03-23 14:15

Updated : 2023-12-10 13:27


NVD link : CVE-2019-15510

Mitre link : CVE-2019-15510

CVE.ORG link : CVE-2019-15510


JSON object : View

Products Affected

zohocorp

  • manageengine_desktop_central
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')