Headline
CVE-2022-24681: ManageEngine - IT Operations and Service Management Software
Zoho ManageEngine ADSelfService Plus before 6121 allows XSS via the welcome name attribute to the Reset Password, Unlock Account, or User Must Change Password screen.
Unified endpoint
management and security****Desktops | Laptops | Servers | Mobile devices |
Browsers
Manage and secure desktops, servers, laptops, mobile devices, and web browsers.
Learn more
Related news
CVE-2022-29457: ADSelfService Plus Release Notes
Zoho ManageEngine ADSelfService Plus before 6121, ADAuditPlus 7060, Exchange Reporter Plus 5701, and ADManagerPlus 7131 allow NTLM Hash disclosure during certain storage-path configuration steps.