Cross-site scripting (XSS) vulnerability in ZOHO ManageEngine ADSelfService Plus prior to 5.2 Build 5202 allows remote malicious users to inject arbitrary web script or HTML via the name parameter to GroupSubscription.do.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zohocorp manageengine adselfservice plus |