Vulnerabilities

CVE-2014-2670

by Fred · 29/03/2014

Cross-site scripting (XSS) vulnerability in Properties.do in ZOHO ManageEngine OpStor before build 8500 allows remote authenticated users to inject arbitrary web script or HTML via the name parameter, a different vulnerability than CVE-2014-0344.

Date published : 2014-03-29

http://www.securityfocus.com/bid/66499

http://www.kb.cert.org/vuls/id/140886

Related

Tags: Cybersecurity Alert