Unrated severityNVD Advisory· Published May 17, 2019· Updated Aug 4, 2024

CVE-2019-8928

Description

An issue was discovered in Zoho ManageEngine Netflow Analyzer Professional 7.0.0.2. XSS exists in /netflow/jspui/userManagementForm.jsp via these GET parameters: authMeth, passWord, pwd1, and userName.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Zoho/ManageEngine Netflow Analyzer Professionaldescription
Zoho/ManageEngine Netflow Analyzer Professionalllm-fuzzy
Range: =7.0.0.2

Patches

Vulnerability mechanics

References

www.exploit-db.com/exploits/46425/mitreexploitx_refsource_EXPLOIT-DB
packetstormsecurity.com/files/151757/Zoho-ManageEngine-Netflow-Analyzer-Professional-7.0.0.2-Traversal-XSS.htmlmitrex_refsource_MISC
seclists.org/fulldisclosure/2019/Feb/45mitremailing-listx_refsource_FULLDISC
www.manageengine.com/products/netflow/mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.005
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000