An issue exists in Zoho ManageEngine AssetExplorer. There is XSS via ResourcesAttachments.jsp with the parameter pageName.
zohocorp manageengine assetexplorer 6.5