4.3
CVSSv2

CVE-2018-19288

Published: 15/11/2018 Updated: 04/05/2021
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 6.1 | Impact Score: 2.7 | Exploitability Score: 2.8
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Vulnerability Summary

Zoho ManageEngine OpManager 12.3 before Build 123223 has XSS via the updateWidget API.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

zohocorp manageengine opmanager 11.4

zohocorp manageengine opmanager 11.5

zohocorp manageengine opmanager 12.3

Mailing Lists

I VULNERABILITY ------------------------- Zoho ManageEngine OpManager 123 before Build 123223 has XSS via the updateWidget API II CVE REFERENCE ------------------------- CVE-2018-19288 III VENDOR ------------------------- wwwmanageenginecom IV TIMELINE ------------------------- 17/10/18 Vulnerability discovered 18/10/18 Vendor co ...
I VULNERABILITY ------------------------- Zoho ManageEngine OpManager 123 before Build 123223 has XSS via the updateWidget API II CVE REFERENCE ------------------------- CVE-2018-19288 III VENDOR ------------------------- wwwmanageenginecom IV TIMELINE ------------------------- 17/10/18 Vulnerability discovered 18/10/18 Vendor co ...