Cross-site Scripting Vulnerability in ManageEngine OpUtils by Zoho
CVE-2008-2797

Currently unrated

Key Information:

Vendor

Manageengine
Status
Oputils
Vendor
CVE Published:
20 June 2008

What is CVE-2008-2797?

A cross-site scripting (XSS) vulnerability exists in the MainLayout.do component of ManageEngine OpUtils 5.0. This flaw allows remote attackers to inject malicious web scripts or HTML content via the hostName parameter while viewing SNMP graphs. By exploiting this vulnerability, attackers may manipulate the display of web pages for end users, potentially leading to data theft or unauthorized actions performed in the context of logged-in users.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://secunia.com/advisories/30745
third-party-advisoryx_refsource_SECUNIA
https://exchange.xforce.ibmcloud.com/vulnerabilities/43158
vdb-entryx_refsource_XF
http://www.securityfocus.com/bid/29785
vdb-entryx_refsource_BID

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.