Zohocorp: >> Manageengine Admanager Plus >> 6590 Security Vulnerabilities
Zoho ManageEngine ADManager Plus before 7203 allows Help Desk Technician users to read arbitrary files on the machine where this product is installed.
CVSS Score
4.9
EPSS Score
0.011
Published
2023-08-31
/LoadFrame in Zoho ManageEngine AD Manager Plus build 6590 - 6613 allows attackers to conduct URL Redirection attacks via the src parameter, resulting in a bypass of CSRF protection, or potentially masquerading a malicious URL as trusted.
CVSS Score
8.8
EPSS Score
0.003
Published
2018-02-07