CVE-2018-10075

Cross-site scripting (XSS) vulnerability in Zoho ManageEngine EventLog Analyzer 11.12 allows remote attackers to inject arbitrary web script or HTML via the import logs feature.

Date published : 2018-07-02

https://www.manageengine.com/products/eventlog/release-notes.html