Medium severity4.8NVD Advisory· Published Jan 27, 2022· Updated Jun 17, 2026
CVE-2021-46065
CVE-2021-46065
Description
A Cross-site scripting (XSS) vulnerability in Secondary Email Field in Zoho ManageEngine ServiceDesk Plus 11.3 Build 11306 allows an attackers to inject arbitrary JavaScript code.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Zoho/ManageEngine ServiceDesk Plusdescription
- Range: 11.3 Build 11306
Patches
Vulnerability mechanics
References
2- github.com/corrupted-brain/Findings/blob/main/ManageEngine%20XSS.mdnvdExploitThird Party Advisory
- www.manageengine.com/products/service-desk/on-premises/readme.htmlnvdRelease NotesThird Party Advisory
News mentions
0No linked articles in our index yet.