Total vulnerabilities in the database
Zoho ManageEngine ServiceDesk Plus MSP before 14504 allows stored XSS (by a low-privileged technician) via a task's name in a time sheet.
| Software | From | Fixed in |
|---|---|---|
| zohocorp / manageengine_servicedesk_plus_msp | 14.5-14501 | 14.5-14501.x |
| zohocorp / manageengine_servicedesk_plus_msp | 14.5-14502 | 14.5-14502.x |
| zohocorp / manageengine_servicedesk_plus_msp | 14.5-14503 | 14.5-14503.x |
| zohocorp / manageengine_servicedesk_plus_msp | - | 14.5 |
| zohocorp / manageengine_servicedesk_plus_msp | 14.5-14500 | 14.5-14500.x |